Описание
Security update for libapr-util1
This update for libapr-util1 fixes the following issues:
Security issue fixed:
- CVE-2017-12618: DoS via crafted SDBM database files in apr_sdbm*() functions (bsc#1064990)
This update was imported from the SUSE:SLE-12:Update update project.
Список пакетов
openSUSE Leap 42.2
libapr-util1-1.5.3-8.1
libapr-util1-dbd-mysql-1.5.3-8.1
libapr-util1-dbd-pgsql-1.5.3-8.1
libapr-util1-dbd-sqlite3-1.5.3-8.1
libapr-util1-devel-1.5.3-8.1
openSUSE Leap 42.3
libapr-util1-1.5.3-8.1
libapr-util1-dbd-mysql-1.5.3-8.1
libapr-util1-dbd-pgsql-1.5.3-8.1
libapr-util1-dbd-sqlite3-1.5.3-8.1
libapr-util1-devel-1.5.3-8.1
Ссылки
- E-Mail link for openSUSE-SU-2017:3325-1
- SUSE Security Ratings
Описание
Apache Portable Runtime Utility (APR-util) 1.6.0 and prior fail to validate the integrity of SDBM database files used by apr_sdbm*() functions, resulting in a possible out of bound read access. A local user with write access to the database can make a program or process using these functions crash, and cause a denial of service.
Затронутые продукты
openSUSE Leap 42.2:libapr-util1-1.5.3-8.1
openSUSE Leap 42.2:libapr-util1-dbd-mysql-1.5.3-8.1
openSUSE Leap 42.2:libapr-util1-dbd-pgsql-1.5.3-8.1
openSUSE Leap 42.2:libapr-util1-dbd-sqlite3-1.5.3-8.1
Ссылки
- CVE-2017-12618
- SUSE Bug 1064990