[ALSA-2024:4249] Low: c-ares security update
Type:
security
Severity:
low
Release date:
2024-07-03
Description:
The c-ares C library defines asynchronous DNS (Domain Name System) requests and provides name resolving API. Security Fix(es): * c-ares: Out of bounds read in ares__read_line() (CVE-2024-25629) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 c-ares-1.13.0-11.el8_10.aarch64.rpm 024a7ecb2a45158d10789a019942e041c5b6e5f8bc044b29dab303df5fe49222
aarch64 c-ares-devel-1.13.0-11.el8_10.aarch64.rpm 8aa81cfb86422fe6ed3def0becec1d0e5ce6639675789b87769bc7d49bba3ad7
i686 c-ares-devel-1.13.0-11.el8_10.i686.rpm 7c1553f7ebab9f49b1f6d8590e9e9b81ecd574ae5883cc83ecb208f288d876a4
i686 c-ares-1.13.0-11.el8_10.i686.rpm ef2dfa5feaab1f933a65e2d205da82ac293a8af7ca4976519e9b8365e05e49f5
ppc64le c-ares-1.13.0-11.el8_10.ppc64le.rpm 2ae92e0a79c03bec4aec962a881343e25497dcba248e5500c3e2f97eb73cb829
ppc64le c-ares-devel-1.13.0-11.el8_10.ppc64le.rpm 9164b6809e45b8404a67bf8c5f4f934ea3113fbc3ff08338a3adb8e8652a14e2
s390x c-ares-devel-1.13.0-11.el8_10.s390x.rpm 067b228e324910acd17a6ae127114e959437ab3a1b15f640323e69e7235e68f9
s390x c-ares-1.13.0-11.el8_10.s390x.rpm dd1e87f6bfee3660acae2e79f81b5e063971310fc27b852dd444c23a7bf161aa
x86_64 c-ares-1.13.0-11.el8_10.x86_64.rpm 238b55cc8af5ec1934f35cfecca1716574585cbcef6a1d28b2ff9cd4547b7b0c
x86_64 c-ares-devel-1.13.0-11.el8_10.x86_64.rpm 4df62a70a46b5fb3381552b3238cc3c2d3d9b19023a3e927d02d0e04fcfa2671
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.