Univention Bugzilla – Bug 55738
apr-util: Multiple issues (5.0)
Last modified: 2023-02-23 16:55:11 CET
New Debian apr-util 1.6.1-4+deb10u1 fixes: This update addresses the following issue: * out-of-bounds writes in the apr_base64 (CVE-2022-25147)
--- mirror/ftp/pool/main/a/apr-util/apr-util_1.6.1-4.dsc +++ apt/ucs_5.0-0-errata5.0-3/source/apr-util_1.6.1-4+deb10u1.dsc @@ -1,3 +1,9 @@ +1.6.1-4+deb10u1 [Tue, 21 Feb 2023 18:59:52 +0200] Adrian Bunk <bunk@debian.org>: + + * Non-maintainer upload by the LTS team. + * CVE-2022-25147: Integer Overflow or Wraparound vulnerability + in apr_base64(). + 1.6.1-4 [Sun, 21 Apr 2019 09:39:02 +0200] Stefan Fritsch <sf@debian.org>: * Fix libaprutil1-dbd-mysql with mariadb 10.3. Closes: #926400 <http://piuparts.knut.univention.de/5.0-3/#3899882123798276730>
OK: bug OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-3] c203889cd9 Bug #55738: apr-util 1.6.1-4+deb10u1 doc/errata/staging/apr-util.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) [5.0-3] da29ba751f Bug #55738: apr-util 1.6.1-4+deb10u1 doc/errata/staging/apr-util.yaml | 12 ++++++++++++ 1 file changed, 12 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x589>