Описание
Security update for libapr-util1
This update for libapr-util1 fixes the following issues:
- CVE-2022-25147: Fixed a buffer overflow possible with specially crafted input during base64 encoding (bsc#1207866)
Список пакетов
SUSE Linux Enterprise Server 12 SP2-BCL
libapr-util1-1.5.3-2.11.1
libapr-util1-dbd-sqlite3-1.5.3-2.11.1
Ссылки
- Link for SUSE-SU-2023:0338-1
- E-Mail link for SUSE-SU-2023:0338-1
- SUSE Security Ratings
- SUSE Bug 1207866
- SUSE CVE CVE-2022-25147 page
Описание
Integer Overflow or Wraparound vulnerability in apr_base64 functions of Apache Portable Runtime Utility (APR-util) allows an attacker to write beyond bounds of a buffer. This issue affects Apache Portable Runtime Utility (APR-util) 1.6.1 and prior versions.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP2-BCL:libapr-util1-1.5.3-2.11.1
SUSE Linux Enterprise Server 12 SP2-BCL:libapr-util1-dbd-sqlite3-1.5.3-2.11.1
Ссылки
- CVE-2022-25147
- SUSE Bug 1207866
- SUSE Bug 1209320