Advisories ยป MGASA-2023-0069

Updated c-ares packages fix security vulnerability

Publication date: 27 Feb 2023
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-4904

Description

The config_sortlist function is missing checks about the validity of the
input string, which allows a possible arbitrary length stack overflow and
thus may cause a denial of service. (CVE-2022-4904)
                

References

SRPMS

8/core