20 lines
958 B
Plaintext
20 lines
958 B
Plaintext
<patchinfo incident="103">
|
|
<!-- generated from request(s) 332593 -->
|
|
<issue tracker="bnc" id="1223887">VUL-0: CVE-2024-34402: uriparser: integer overflow via long keys or values in ComposeQueryEngine() in UriQuery.c</issue>
|
|
<issue tracker="bnc" id="1223888">VUL-0: CVE-2024-34403: uriparser: integer overflow via a long string in ComposeQueryMallocExMm() in UriQuery.c</issue>
|
|
<issue tracker="cve" id="2024-34402"/>
|
|
<issue tracker="cve" id="2024-34403"/>
|
|
<packager>adamm</packager>
|
|
<rating>important</rating>
|
|
<category>security</category>
|
|
<summary>Security update for uriparser</summary>
|
|
<description>This update for uriparser fixes the following issues:
|
|
|
|
- Protect against integer overflow in ComposeQueryEngine (bsc#1223887, CVE-2024-34402)
|
|
- Protect against integer overflow in ComposeQueryMallocExMm (bsc#1223888, CVE-2024-34403)
|
|
- enable unit tests
|
|
|
|
</description>
|
|
<package>uriparser</package>
|
|
<seperate_build_arch/>
|
|
</patchinfo> |