Overview

File _patchinfo of Package patchinfo.34730

<patchinfo incident="34730">
  <issue tracker="cve" id="2023-52168"/>
  <issue tracker="cve" id="2023-52169"/>
  <issue tracker="bnc" id="1227358">VUL-0: CVE-2023-52168: 7zip,p7zip: heap-based buffer overflow in the NTFS handler allows two bytes to be overwritten at multiple offsets</issue>
  <issue tracker="bnc" id="1227359">VUL-0: CVE-2023-52169: 7zip,p7zip: out-of-bounds read in NTFS handler allows bytes read beyond the intended buffer size to be presented as a part of a filename listed in the file system image</issue>
  <packager>ateixeira</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for p7zip</summary>
  <description>This update for p7zip fixes the following issues:

- CVE-2023-52168: Fixed heap-based buffer overflow in the NTFS handler allows two bytes to be overwritten at multiple offsets (bsc#1227358)
- CVE-2023-52169: Fixed out-of-bounds read in NTFS handler (bsc#1227359)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places