Updated c-ares packages fix security vulnerability
Publication date: 27 Feb 2023Type: security
Affected Mageia releases : 8
CVE: CVE-2022-4904
Description
The config_sortlist function is missing checks about the validity of the input string, which allows a possible arbitrary length stack overflow and thus may cause a denial of service. (CVE-2022-4904)
References
SRPMS
8/core
- c-ares-1.17.1-1.2.mga8