Scientific Linux alert SLSA-2023:3741-1 (c-ares)


From:
               Farhan Ahmed <fahmed@fnal.gov>
To:
               scientific-linux-errata@listserv.fnal.gov
Subject:
               Security ERRATA Important: c-ares on SL7.x x86_64
Date:
               Thu, 22 Jun 2023 14:28:48 -0000
Message-ID:
               <20230622142848.1494.54790@50523906fb6c>
Synopsis:          Important: c-ares security update
Advisory ID:       SLSA-2023:3741-1
Issue Date:        2023-06-22
CVE Numbers:       CVE-2023-32067
--

Security Fix(es):

* c-ares: 0-byte UDP payload Denial of Service (CVE-2023-32067)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
--

SL7
  x86_64
    c-ares-1.10.0-3.el7_9.1.i686.rpm
    c-ares-1.10.0-3.el7_9.1.x86_64.rpm
    c-ares-debuginfo-1.10.0-3.el7_9.1.i686.rpm
    c-ares-debuginfo-1.10.0-3.el7_9.1.x86_64.rpm
    c-ares-devel-1.10.0-3.el7_9.1.i686.rpm
    c-ares-devel-1.10.0-3.el7_9.1.x86_64.rpm

- Scientific Linux Development Team

From:		Farhan Ahmed <fahmed@fnal.gov>
To:		scientific-linux-errata@listserv.fnal.gov
Subject:		Security ERRATA Important: c-ares on SL7.x x86_64
Date:		Thu, 22 Jun 2023 14:28:48 -0000
Message-ID:		<20230622142848.1494.54790@50523906fb6c>