CVE-2022-24963: apr: Integer Overflo…” : Bugs : StarlingX

CVE-2022-24963: https://nvd.nist.gov/vuln/detail/CVE-2023-25725

Integer Overflow or Wraparound vulnerability in apr_encode functions of Apache Portable Runtime (APR) allows an attacker to write beyond bounds of a buffer. This issue affects Apache Portable Runtime (APR) version 1.7.0.

Score:
cve_id status cvss3Score av ac pr ui ai
CVE-2022-24963 fixed 9.8 N L N N H

References:
[‘libapr1_1.7.0-6+deb11u1_amd64.deb===>libapr1_1.7.0-6+deb11u2_amd64.deb’]