libsolv-0.7.16-3.el8
エラータID: AXSA:2021-2517:03
リリース日:
2021/11/24 Wednesday - 04:44
題名:
libsolv-0.7.16-3.el8
影響のあるチャネル:
Asianux Server 8 for x86_64
Severity:
Moderate
Description:
以下項目について対処しました。
[Security Fix]
- libsolv の src/repo.h 内の pool_installable 関数にはバッファーオーバーフローの問題があり、
攻撃者がサービス拒否を引き起こせる脆弱性があります。(CVE-2021-33928)
- libsolv の src/repo.h 内の pool_disabled_solvable 関数にはバッファーオーバーフローの
問題があり、攻撃者がサービス拒否を引き起こせる脆弱性があります。(CVE-2021-33929)
- libsolv の src/repo.h 内の pool_installable_whatprovides 関数にはバッファーオーバーフローの
問題があり、攻撃者がサービス拒否を引き起こせる脆弱性があります。(CVE-2021-33930)
- libsolv の src/policy.c 内の prune_to_recommended 関数にはバッファーオーバーフローの
問題があり、攻撃者がサービス拒否を引き起こせる脆弱性があります。(CVE-2021-33938)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2021-33928
Buffer overflow vulnerability in function pool_installable in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
Buffer overflow vulnerability in function pool_installable in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
CVE-2021-33929
Buffer overflow vulnerability in function pool_disabled_solvable in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
Buffer overflow vulnerability in function pool_disabled_solvable in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
CVE-2021-33930
Buffer overflow vulnerability in function pool_installable_whatprovides in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
Buffer overflow vulnerability in function pool_installable_whatprovides in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
CVE-2021-33938
Buffer overflow vulnerability in function prune_to_recommended in src/policy.c in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
Buffer overflow vulnerability in function prune_to_recommended in src/policy.c in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
追加情報:
N/A
ダウンロード:
SRPMS
- libsolv-0.7.16-3.el8.src.rpm
MD5: 2c8ace5ba03e0b7d3329ff4f2e62aa2b
SHA-256: 9b82e8d2dc5825b27f9362e0e98fba6707d9864cb449b1b619a13d1a67428148
Size: 738.73 kB
Asianux Server 8 for x86_64
- libsolv-0.7.16-3.el8.x86_64.rpm
MD5: 662a68528de2875136235cd9ab7249ba
SHA-256: 9969d68e916e906feb807ad116268fd852c3c215fded9dc4de56e73400e4178c
Size: 361.50 kB - libsolv-devel-0.7.16-3.el8.x86_64.rpm
MD5: e6f38eb06354a9d5be808b0830bb6f10
SHA-256: 8b59363b05bcd10cb936aaf0f7439f0f655c5a721ac3ed21731319793f37c413
Size: 116.61 kB - libsolv-tools-0.7.16-3.el8.x86_64.rpm
MD5: 614170ed38ac7ef0bb57fd6b85f00b1e
SHA-256: 9a7c319cdddcf67561cac6d9cd8dcd427d9242eb3728a0c0a1f29133de90ea7e
Size: 89.56 kB - python3-solv-0.7.16-3.el8.x86_64.rpm
MD5: fcb51a47249f20ea42ebd7f41153c18c
SHA-256: 561978e07a63374a47527514927681eadc5e195b8343175a238a2fb794216a02
Size: 131.73 kB - libsolv-0.7.16-3.el8.i686.rpm
MD5: a3209706a21b582c7b37813d231aac04
SHA-256: 1160c38c70bcc3f6aada2a11a015e38b285d8cb2548810491b3362dead92840a
Size: 378.22 kB - libsolv-devel-0.7.16-3.el8.i686.rpm
MD5: bbcbbc3517c6b6a6e7bf99df90e0a611
SHA-256: 09c8ff67a1231d30bd8716e1b655b86020935af22190428ccd3d141b798e2577
Size: 116.62 kB
English