products/SUSE_ALP_Standard
9
0
Fork 1
Code Issues 1 Pull Requests Packages Projects Releases Wiki Activity

Adding patchinfo patchinfo.20240925225150241819.88530327813663

Browse Source
This commit is contained in:
Adrian Schröter 2024-11-28 14:31:16 +01:00
parent f5fdb66193
commit 89d1dcc96d
1 changed files with 20 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

20
patchinfo.20240925225150241819.88530327813663/_patchinfo Normal file
View File

@ -0,0 +1,20 @@
<patchinfo>
<!-- generated from request(s) 332593 -->
<issue tracker="bnc" id="1223887">VUL-0: CVE-2024-34402: uriparser: integer overflow via long keys or values in ComposeQueryEngine() in UriQuery.c</issue>
<issue tracker="bnc" id="1223888">VUL-0: CVE-2024-34403: uriparser: integer overflow via a long string in ComposeQueryMallocExMm() in UriQuery.c</issue>
<issue tracker="cve" id="2024-34402"/>
<issue tracker="cve" id="2024-34403"/>
<packager>adamm</packager>
<rating>important</rating>
<category>security</category>
<summary>Security update for uriparser</summary>
<description>This update for uriparser fixes the following issues:
- Protect against integer overflow in ComposeQueryEngine (bsc#1223887, CVE-2024-34402)
- Protect against integer overflow in ComposeQueryMallocExMm (bsc#1223888, CVE-2024-34403)
- enable unit tests
</description>
<package>uriparser</package>
<seperate_build_arch/>
</patchinfo>