Overview

File _patchinfo of Package patchinfo.30582

<patchinfo incident="30582">
  <issue tracker="cve" id="2023-32181"/>
  <issue tracker="cve" id="2023-30079"/>
  <issue tracker="cve" id="2023-30078"/>
  <issue tracker="cve" id="2023-22652"/>
  <issue tracker="bnc" id="1198165">econf_getStringValue() regression: The "su" command is broken (bad $PATH)</issue>
  <issue tracker="bnc" id="1211078">VUL-0: CVE-2023-22652, CVE-2023-32181: libeconf: Two stack-buffer-overflow issues</issue>
  <packager>schubi2</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for libeconf</summary>
  <description>This update for libeconf fixes the following issues:

Update to version 0.5.2.

- CVE-2023-30078, CVE-2023-32181: Fixed a stack-buffer-overflow vulnerability in "econf_writeFile" function (bsc#1211078).
- CVE-2023-30079, CVE-2023-22652: Fixed a stack-buffer-overflow vulnerability in "read_file" function. (bsc#1211078)

The following non-security bug was fixed:

- Fixed parsing files correctly which have space characters AND none space characters as delimiters (bsc#1198165).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places