Overview

File _patchinfo of Package patchinfo.7945

<patchinfo incident="7945">
  <issue id="1086730" tracker="bnc">VUL-0: CVE-2018-1000140: librelp: Stack-based buffer overflow in relpTcpChkPeerName function in src/tcp,c</issue>
  <issue id="2018-1000140" tracker="cve" />
  <category>security</category>
  <rating>important</rating>
  <packager>tsaupe</packager>
  <description>This update for librelp fixes the following issues:
   
- CVE-2018-1000140: A stack-based buffer overflow in the code for checking of x509 certificates
  allowed a remote attacker with an access to the rsyslog logging facility to potentially
  execute arbitrary code by sending a specially crafted x509 certificate. (bsc#1086730)

This update was imported from the SUSE:SLE-12-SP3:Update update project.</description>
  <summary>Security update for librelp</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places