You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@zookeeper.apache.org by "priya Vijay (Jira)" <ji...@apache.org> on 2021/04/23 07:03:00 UTC

[jira] [Created] (ZOOKEEPER-4285) High CVE-2019-25013 reported by Clair scanner for Zookeeper 3.6.1

priya Vijay created ZOOKEEPER-4285:
--------------------------------------

             Summary: High CVE-2019-25013 reported by Clair scanner for Zookeeper 3.6.1
                 Key: ZOOKEEPER-4285
                 URL: https://issues.apache.org/jira/browse/ZOOKEEPER-4285
             Project: ZooKeeper
          Issue Type: Bug
            Reporter: priya Vijay


On running clair scanner for Zookeeper 3.6.1, the following high priority vulnerability is reported: 

CVE-2019-25013  [https://nvd.nist.gov/vuln/detail/CVE-2019-25013]
 details: The iconv feature in the GNU C Library (aka glibc or libc6) through 2.32, when processing invalid multi-byte input sequences in the EUC-KR encoding, may have a buffer over-read



--
This message was sent by Atlassian Jira
(v8.3.4#803005)