Описание
ELSA-2023-6578: libqb security update (MODERATE)
[2.0.6-4]
- bump rpm version for rhel-exception build Resolves: rhbz#2230712
[2.0.6-3]
- blackbox: fix buffer overflow with long log lines Resolves: rhbz#2236171
[2.0.6-1]
- ipc: Retry receiving credentials if the the message is short Resolves: rhbz2149647
[2.0.6-1]
- Rebase to 2.0.6 Resolves: rhbz#2072903
[2.0.3-8]
- Fix negative errno in qb_ipcc_connect (introduced in 2.0.3-4) Resolves: rhbz#2057527
[2.0.3-7]
- Bump soname for async-connect API addition Resolves: rhbz#bz2031865
[2.0.3-6]
- Fix gating.yaml for RHEL-9 Resolves: rhbz#bz2031865
[2.0.3-5]
- Add gating.yaml from RHEL Resolves: rhbz#bz2031865
[2.0.3-4]
- Add async connect call for Pacemaker Resolves: rhbz#bz2031865
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
libqb
2.0.6-4.el9_3
Oracle Linux x86_64
libqb
2.0.6-4.el9_3
Связанные CVE
Связанные уязвимости
CVSS3: 9.8
ubuntu
около 2 лет назад
log_blackbox.c in libqb before 2.0.8 allows a buffer overflow via long log messages because the header size is not considered.
CVSS3: 7.2
redhat
около 2 лет назад
log_blackbox.c in libqb before 2.0.8 allows a buffer overflow via long log messages because the header size is not considered.
CVSS3: 9.8
nvd
около 2 лет назад
log_blackbox.c in libqb before 2.0.8 allows a buffer overflow via long log messages because the header size is not considered.
CVSS3: 9.8
debian
около 2 лет назад
log_blackbox.c in libqb before 2.0.8 allows a buffer overflow via long ...