Ronald Crane discovered that missing input sanitizing in the apr_base64
functions of apr-util, the Apache Portable Runtime utility library, may
result in denial of service or potentially the execution of arbitrary
code
For the stable distribution (bullseye), this problem has been fixed in
version 161-5+deb11u1
We recommend that you upgrade your ...
Integer Overflow or Wraparound vulnerability in apr_base64 functions of Apache Portable Runtime Utility (APR-util) allows an attacker to write beyond bounds of a buffer This issue affects Apache Portable Runtime Utility (APR-util) 161 and prior versions (CVE-2022-25147) ...
Integer Overflow or Wraparound vulnerability in apr_base64 functions of Apache Portable Runtime Utility (APR-util) allows an attacker to write beyond bounds of a buffer This issue affects Apache Portable Runtime Utility (APR-util) 161 and prior versions (CVE-2022-25147) ...
Synopsis
Important: apr-util security update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for apr-util is now available for Red Hat Enterprise Linux 81 Update Services for SAP SolutionsRed Hat Product Secur ...
Synopsis
Moderate: OpenShift Container Platform 4131 bug fix and security update
Type/Severity
Security Advisory: Moderate
Topic
Red Hat OpenShift Container Platform release 4131 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Con ...
Synopsis
Moderate: apr-util security update
Type/Severity
Security Advisory: Moderate
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for apr-util is now available for Red Hat Enterprise Linux 82 Advanced Update Support, Red Hat Enterprise Linux 82 Tel ...
Synopsis
Important: Red Hat JBoss Core Services Apache HTTP Server 2451 SP2 security update
Type/Severity
Security Advisory: Important
Topic
Red Hat JBoss Core Services Apache HTTP Server 2451 Service Pack 2 is now availableRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Sco ...
Synopsis
Important: Red Hat JBoss Core Services Apache HTTP Server 2451 SP2 security update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update is now available for Red Hat JBoss Core Services Apache HTTP Server 2 ...
Synopsis
Important: apr-util security update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for apr-util is now available for Red Hat Enterprise Linux 90 Extended Update SupportRed Hat Product Security has ra ...
Synopsis
Important: apr-util security update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for apr-util is now available for Red Hat Enterprise Linux 9Red Hat Product Security has rated this update as having ...
Synopsis
Important: apr-util security update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for apr-util is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having ...
Synopsis
Important: apr-util security update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for apr-util is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having ...
Synopsis
Moderate: OpenShift Container Platform 41219 bug fix and security update
Type/Severity
Security Advisory: Moderate
Topic
Red Hat OpenShift Container Platform release 41219 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift C ...
Synopsis
Important: apr-util security update
Type/Severity
Security Advisory: Important
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for apr-util is now available for Red Hat Enterprise Linux 86 Extended Update SupportRed Hat Product Security has ra ...
Synopsis
Moderate: Logging Subsystem 572 - Red Hat OpenShift security update
Type/Severity
Security Advisory: Moderate
Topic
Logging Subsystem 572 - Red Hat OpenShiftRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severi ...
Synopsis
Important: Migration Toolkit for Containers (MTC) 1710 security and bug fix update
Type/Severity
Security Advisory: Important
Topic
The Migration Toolkit for Containers (MTC) 1710 is now availableRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) ...
Synopsis
Important: OpenShift Container Platform 4132 bug fix and security update
Type/Severity
Security Advisory: Important
Topic
Red Hat OpenShift Container Platform release 4132 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift C ...
DescriptionThe MITRE CVE dictionary describes this issue as: Integer Overflow or Wraparound vulnerability in apr_base64 functions of Apache Portable Runtime Utility (APR-util) allows an attacker to write beyond bounds of a buffer This issue affects Apache Portable Runtime Utility (APR-util) 161 and prior versions ...
A vulnerability (CVE-2022-25147) exists in Cosminexus HTTP Server
Affected products and versions are listed below Please upgrade your version to the appropriate version ...
Multiple vulnerabilities have been found in Hitachi Configuration Manager and Hitachi Ops Center API Configuration Manager
CVE-2022-25147, CVE-2022-28331
Affected products and versions are listed below Please upgrade your version to the appropriate version ...