[FEDORA-2023-30e81e5293] Fedora 36: c-ares

Severity High

Affected Packages 1

CVEs 1

Update to 1.19.0. Fixes CVE-2022-4904.

Package	Affected Version
pkg:rpm/fedora/c-ares?distro=fedora-36	< 1.19.0.1.fc36

ID

FEDORA-2023-30e81e5293

Severity

high

Severity from

CVE-2022-4904

URL

Published

2023-03-08T01:22:23
(18 months ago)

Modified

2023-03-08T01:22:23
(18 months ago)

Rights

Other Advisories

Source	# ID	Name	URL
Bugzilla	2168631	Bug #2168631 - CVE-2022-4904 c-ares: buffer overflow in config_sortlist() due to missing string length check	https://bugzilla.redhat.com/show_bug.cgi?id=2168631

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform	Arch	Patch / Fix
Affected	pkg:rpm/fedora/c-ares?distro=fedora-36	fedora	c-ares	< 1.19.0.1.fc36	fedora-36

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date