Bug#992789: apr: CVE-2021-35940

To: 992789@bugs.debian.org
Subject: Bug#992789: apr: CVE-2021-35940
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Mon, 23 Aug 2021 22:53:56 +0200
Message-id: <[🔎] YSQK5Ok2KzJaeUVI@eldamar.lan>
Reply-to: Salvatore Bonaccorso <carnil@debian.org>, 992789@bugs.debian.org
In-reply-to: <[🔎] 162972624518.690681.13611271044033599426.reportbug@eldamar.lan>
References: <[🔎] 162972624518.690681.13611271044033599426.reportbug@eldamar.lan> <[🔎] 162972624518.690681.13611271044033599426.reportbug@eldamar.lan>

Control: tags -1 + patch

On Mon, Aug 23, 2021 at 03:44:05PM +0200, Salvatore Bonaccorso wrote:
> Source: apr
> Version: 1.7.0-6
> Severity: important
> Tags: security upstream
> X-Debbugs-Cc: carnil@debian.org, Debian Security Team <team@security.debian.org>
> 
> Hi,
> 
> The following vulnerability was published for apr.
> 
> CVE-2021-35940[0]:
> | An out-of-bounds array read in the apr_time_exp*() functions was fixed
> | in the Apache Portable Runtime 1.6.3 release (CVE-2017-12613). The fix
> | for this issue was not carried forward to the APR 1.7.x branch, and
> | hence version 1.7.0 regressed compared to 1.6.3 and is vulnerable to
> | the same issue.

proposed change in https://salsa.debian.org/apache-team/apr/-/merge_requests/8

Regards,
Salvatore

Reply to:

References:
- Bug#992789: apr: CVE-2021-35940
  - From: Salvatore Bonaccorso <carnil@debian.org>

Prev by Date: Processed: Re: Bug#992789: apr: CVE-2021-35940
Next by Date: Processed: Bug#992789 marked as pending in apr
Previous by thread: Processed: Re: Bug#992789: apr: CVE-2021-35940
Next by thread: Processed: Bug#992789 marked as pending in apr
Index(es):
- Date
- Thread