Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Debian: Important Glibc Memory Leak Fix Released on 2023-041-03

slackware
Calendar Grey February 1, 2023
Dist Slackware Esm H88
A security patch releases updated apr-util packages for Slackware 15.0 addressing buffer overflow vulnerabilities. Please update immediately.
New apr-util packages are available for Slackware 15.0 and -current to fix a security issue

Summary

Here are the details from the Slackware 15.0 ChangeLog: patches/packages/apr-util-1.6.3-i586-1_slack15.0.txz: Upgraded. This update fixes a security issue: Integer Overflow or Wraparound vulnerability in apr_base64 functions of Apache Portable Runtime Utility (APR-util) allows an attacker to write beyond bounds of a buffer. (CVE-2022-25147) For more information, see: https://www.cve.org/CVERecord?id=CVE-2022-25147 (* Security fix *)

Topics%20covered

Topics Covered

security advisory buffer overflow critical fix slackware apr-util

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 15.0: ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/apr-util-1.6.3-i586-1_slack15.0.txz
Updated package for Slackware x86_64 15.0: ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/apr-util-1.6.3-x86_64-1_slack15.0.txz
Updated package for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/l/apr-util-1.6.3-i586-1.txz
Updated package for Slackware x86_64 -current: ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/l/apr-util-1.6.3-x86_64-1.txz

MD5 Signatures

Slackware 15.0 package: 6a07516dc4ebc58003dc197f7e237af9 apr-util-1.6.3-i586-1_slack15.0.txz
Slackware x86_64 15.0 package: 4866e956e3704d94499ae65898032829 apr-util-1.6.3-x86_64-1_slack15.0.txz
Slackware -current package: 3c4740597034be368eca2f3565a87421 l/apr-util-1.6.3-i586-1.txz
Slackware x86_64 -current package: 974e390b328a88b7593b63bcb064428a l/apr-util-1.6.3-x86_64-1.txz

Severity
important
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory buffer overflow critical fix slackware apr-util

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg apr-util-1.6.3-i586-1_slack15.0.txz

Your message here