ALSA-2023:7207
See a problem?- Source
- https://errata.almalinux.org/8/ALSA-2023-7207.html
- Import Source
- https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2023:7207.json
- JSON Data
- https://api.osv.dev/v1/vulns/ALSA-2023:7207
- Related
- Published
- 2023-11-14T00:00:00Z
- Modified
- 2023-11-23T10:20:03Z
- Summary
- Moderate: c-ares security update
- Details
-
The c-ares C library defines asynchronous DNS (Domain Name System) requests and provides name resolving API.
Security Fix(es):
- c-ares: Heap buffer over read in aresparsesoa_reply (CVE-2020-22217)
- c-ares: Buffer Underwrite in aresinetnet_pton() (CVE-2023-31130)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
- References
Affected packages
AlmaLinux:8 / c-ares
Package
- Name
- c-ares