Bug#1014389: mapcache: CVE-2022-30045 incorrect memory handling leading to a heap out-of-bounds read
Sebastiaan Couwenberg
sebastic at xs4all.nl
Tue Jul 5 10:58:12 BST 2022
On 7/5/22 11:14, Neil Williams wrote:
> CVE-2022-30045[0]:
> | An issue was discovered in libezxml.a in ezXML 0.8.6. The function
> | ezxml_decode() performs incorrect memory handling while parsing
> | crafted XML files, leading to a heap out-of-bounds read.
How is this different from #989363?
It's another ezxml bug that needs to be fixed by updating the embedded
copy of switching to something else.
I'm tempted to merge these two issues.
Kind Regards,
Bas
--
GPG Key ID: 4096R/6750F10AE88D4AF1
Fingerprint: 8182 DE41 7056 408D 6146 50D1 6750 F10A E88D 4AF1
More information about the Pkg-grass-devel
mailing list