Alibaba Cloud Linux 2.1903 Security Advisory: ALINUX2-SA-2024:0045
Issued: 2024-12-03
Updated: 2024-12-03
Summary
xerces-c security update
Severity
Important
Description
Package updates are available for Alibaba Cloud Linux 2.1903 that fix the following vulnerabilities:
CVE-2023-37536:
An integer overflow in xerces-c++ 3.2.3 in BigFix Platform allows remote attackers to cause out-of-bound access via HTTP request.
References
Updated Packages
- aarch64
- xerces-c-3.1.1-10.1.al7.1.aarch64.rpm → (download)
- xerces-c-debuginfo-3.1.1-10.1.al7.1.aarch64.rpm → (download)
- xerces-c-devel-3.1.1-10.1.al7.1.aarch64.rpm → (download)
- i686
- xerces-c-3.1.1-10.1.al7.1.i686.rpm → (download)
- xerces-c-debuginfo-3.1.1-10.1.al7.1.i686.rpm → (download)
- xerces-c-devel-3.1.1-10.1.al7.1.i686.rpm → (download)
- src
- xerces-c-3.1.1-10.1.al7.1.src.rpm → (download)
- x86_64
- xerces-c-3.1.1-10.1.al7.1.x86_64.rpm → (download)
- xerces-c-debuginfo-3.1.1-10.1.al7.1.x86_64.rpm → (download)
- xerces-c-devel-3.1.1-10.1.al7.1.x86_64.rpm → (download)
- noarch
- xerces-c-doc-3.1.1-10.1.al7.1.noarch.rpm → (download)