Описание
ELSA-2019-2336: unixODBC security update (MODERATE)
[2.3.1-14.0.1]
- backport unchecked malloc memory references fix [Orabug: 29684195]
[2.3.1-14]
- fixed insecure buffer copy (#1571530)
- fixed possible buffer overflow (#1571528)
[2.3.1-13]
- revert: ltdl bundling
[2.3.1-12]
- fix the libtool-ltdl compatibility Resolves: rhbz#1267438
Обновленные пакеты
Oracle Linux 7
Oracle Linux aarch64
unixODBC
2.3.1-14.0.1.el7
unixODBC-devel
2.3.1-14.0.1.el7
Oracle Linux x86_64
unixODBC
2.3.1-14.0.1.el7
unixODBC-devel
2.3.1-14.0.1.el7
Связанные CVE
Связанные уязвимости
The SQLWriteFileDSN function in odbcinst/SQLWriteFileDSN.c in unixODBC 2.3.5 has strncpy arguments in the wrong order, which allows attackers to cause a denial of service or possibly have unspecified other impact.
The SQLWriteFileDSN function in odbcinst/SQLWriteFileDSN.c in unixODBC 2.3.5 has strncpy arguments in the wrong order, which allows attackers to cause a denial of service or possibly have unspecified other impact.
The SQLWriteFileDSN function in odbcinst/SQLWriteFileDSN.c in unixODBC 2.3.5 has strncpy arguments in the wrong order, which allows attackers to cause a denial of service or possibly have unspecified other impact.