Количество 47
Количество 47
SUSE-SU-2023:2477-1
Security update for libcares2
SUSE-SU-2023:2313-1
Security update for c-ares
RLSA-2023:4034
Important: nodejs:16 security update
RLSA-2023:3577
Important: nodejs:18 security update
ELSA-2023-4034
ELSA-2023-4034: nodejs:16 security update (IMPORTANT)
ELSA-2023-3586
ELSA-2023-3586: nodejs security update (IMPORTANT)
ELSA-2023-3577
ELSA-2023-3577: 18 security update (IMPORTANT)
RLSA-2023:4035
Important: nodejs:18 security update
ELSA-2023-4035
ELSA-2023-4035: nodejs:18 security update (IMPORTANT)
SUSE-SU-2023:2861-1
Security update for nodejs16
SUSE-SU-2023:2663-1
Security update for nodejs16
SUSE-SU-2023:2655-1
Security update for nodejs16
SUSE-SU-2023:2669-1
Security update for nodejs18
SUSE-SU-2023:2662-1
Security update for nodejs18
ELSA-2023-6635
ELSA-2023-6635: c-ares security, bug fix, and enhancement update (MODERATE)
ROS-20240404-02
Множественные уязвимости c-ares
CVE-2023-31130
c-ares is an asynchronous resolver library. ares_inet_net_pton() is vulnerable to a buffer underflow for certain ipv6 addresses, in particular "0::00:00:00/2" was found to cause an issue. C-ares only uses this function internally for configuration purposes which would require an administrator to configure such an address via ares_set_sortlist(). However, users may externally use ares_inet_net_pton() for other purposes and thus be vulnerable to more severe issues. This issue has been fixed in 1.19.1.
CVE-2023-31130
c-ares is an asynchronous resolver library. ares_inet_net_pton() is vulnerable to a buffer underflow for certain ipv6 addresses, in particular "0::00:00:00/2" was found to cause an issue. C-ares only uses this function internally for configuration purposes which would require an administrator to configure such an address via ares_set_sortlist(). However, users may externally use ares_inet_net_pton() for other purposes and thus be vulnerable to more severe issues. This issue has been fixed in 1.19.1.
CVE-2023-31130
c-ares is an asynchronous resolver library. ares_inet_net_pton() is vulnerable to a buffer underflow for certain ipv6 addresses, in particular "0::00:00:00/2" was found to cause an issue. C-ares only uses this function internally for configuration purposes which would require an administrator to configure such an address via ares_set_sortlist(). However, users may externally use ares_inet_net_pton() for other purposes and thus be vulnerable to more severe issues. This issue has been fixed in 1.19.1.
CVE-2023-31130
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | SUSE-SU-2023:2477-1 Security update for libcares2 | больше 2 лет назад | ||
| SUSE-SU-2023:2313-1 Security update for c-ares | больше 2 лет назад | ||
 | RLSA-2023:4034 Important: nodejs:16 security update | больше 2 лет назад | ||
| RLSA-2023:3577 Important: nodejs:18 security update | больше 2 лет назад | ||
| ELSA-2023-4034 ELSA-2023-4034: nodejs:16 security update (IMPORTANT) | больше 2 лет назад | ||
| ELSA-2023-3586 ELSA-2023-3586: nodejs security update (IMPORTANT) | больше 2 лет назад | ||
| ELSA-2023-3577 ELSA-2023-3577: 18 security update (IMPORTANT) | больше 2 лет назад | ||
| RLSA-2023:4035 Important: nodejs:18 security update | больше 2 лет назад | ||
| ELSA-2023-4035 ELSA-2023-4035: nodejs:18 security update (IMPORTANT) | больше 2 лет назад | ||
| SUSE-SU-2023:2861-1 Security update for nodejs16 | больше 2 лет назад | ||
| SUSE-SU-2023:2663-1 Security update for nodejs16 | больше 2 лет назад | ||
| SUSE-SU-2023:2655-1 Security update for nodejs16 | больше 2 лет назад | ||
| SUSE-SU-2023:2669-1 Security update for nodejs18 | больше 2 лет назад | ||
| SUSE-SU-2023:2662-1 Security update for nodejs18 | больше 2 лет назад | ||
| ELSA-2023-6635 ELSA-2023-6635: c-ares security, bug fix, and enhancement update (MODERATE) | около 2 лет назад | ||
 | ROS-20240404-02 Множественные уязвимости c-ares | CVSS3: 6.4 | больше 1 года назад | |
 | CVE-2023-31130 c-ares is an asynchronous resolver library. ares_inet_net_pton() is vulnerable to a buffer underflow for certain ipv6 addresses, in particular "0::00:00:00/2" was found to cause an issue. C-ares only uses this function internally for configuration purposes which would require an administrator to configure such an address via ares_set_sortlist(). However, users may externally use ares_inet_net_pton() for other purposes and thus be vulnerable to more severe issues. This issue has been fixed in 1.19.1. | CVSS3: 4.1 | 0% Низкий | больше 2 лет назад |
 | CVE-2023-31130 c-ares is an asynchronous resolver library. ares_inet_net_pton() is vulnerable to a buffer underflow for certain ipv6 addresses, in particular "0::00:00:00/2" was found to cause an issue. C-ares only uses this function internally for configuration purposes which would require an administrator to configure such an address via ares_set_sortlist(). However, users may externally use ares_inet_net_pton() for other purposes and thus be vulnerable to more severe issues. This issue has been fixed in 1.19.1. | CVSS3: 5.7 | 0% Низкий | больше 2 лет назад |
 | CVE-2023-31130 c-ares is an asynchronous resolver library. ares_inet_net_pton() is vulnerable to a buffer underflow for certain ipv6 addresses, in particular "0::00:00:00/2" was found to cause an issue. C-ares only uses this function internally for configuration purposes which would require an administrator to configure such an address via ares_set_sortlist(). However, users may externally use ares_inet_net_pton() for other purposes and thus be vulnerable to more severe issues. This issue has been fixed in 1.19.1. | CVSS3: 4.1 | 0% Низкий | больше 2 лет назад |
 | CVSS3: 6.4 | 0% Низкий | 8 месяцев назад |
Уязвимостей на страницу