You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@apr.apache.org by co...@apache.org on 2023/01/31 15:25:03 UTC

svn commit: r1907155 - /apr/apr/branches/1.7.x/CHANGES

Author: covener
Date: Tue Jan 31 15:25:02 2023
New Revision: 1907155

URL: http://svn.apache.org/viewvc?rev=1907155&view=rev
Log:
changes for released CVES

Modified:
    apr/apr/branches/1.7.x/CHANGES

Modified: apr/apr/branches/1.7.x/CHANGES
URL: http://svn.apache.org/viewvc/apr/apr/branches/1.7.x/CHANGES?rev=1907155&r1=1907154&r2=1907155&view=diff
==============================================================================
--- apr/apr/branches/1.7.x/CHANGES [utf-8] (original)
+++ apr/apr/branches/1.7.x/CHANGES [utf-8] Tue Jan 31 15:25:02 2023
@@ -1,6 +1,16 @@
                                                      -*- coding: utf-8 -*-
 Changes for APR 1.7.1
 
+  *) SECURITY: CVE-2022-24963 (cve.mitre.org)
+     Integer Overflow or Wraparound vulnerability in apr_encode functions of 
+     Apache Portable Runtime (APR) allows an attacker to write beyond bounds 
+     of a buffer.
+
+  *) SECURITY: CVE-2022-28331 (cve.mitre.org)
+     On Windows, Apache Portable Runtime 1.7.0 and earlier may write beyond 
+     the end of a stack based buffer in apr_socket_sendv(). This is a result 
+     of integer overflow.
+
   *) SECURITY: CVE-2021-35940 (cve.mitre.org)
      Restore fix for out-of-bounds array dereference in apr_time_exp*() functions.
      (This issue was addressed as CVE-2017-12613 in APR 1.6.3 and