Overview

File _patchinfo of Package patchinfo.17535

<patchinfo incident="17535">
  <issue tracker="bnc" id="1200332">VUL-0: CVE-2022-31212: dbus-broker: a stack buffer over-read if a malicious Exec line is supplied</issue>
  <issue tracker="bnc" id="1200333">VUL-0: CVE-2022-31213: dbus-broker: null pointer reference when supplying a malformed XML config file</issue>
  <issue tracker="cve" id="2022-31212"/>
  <issue tracker="cve" id="2022-31213"/>
  <packager>simotek</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for dbus-broker</summary>
  <description>This update for dbus-broker fixes the following issues:

- CVE-2022-31212: Fix a stack buffer over-read in bundled c-shquote (boo#1200332)
- CVE-2022-31213: Fix a NULL pointer dereferences in bundled c-shquote (boo#1200333)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places