CVE-2022-25147: Apache Portable Runtime (APR): out-of-bounds writes in the apr_base64 family of functions

Eric Covener Tue, 31 Jan 2023 07:38:36 -0800

Severity: moderate

Description:


Integer Overflow or Wraparound vulnerability in apr_base64 functions of Apache 
Portable Runtime Utility (APR-util) allows an attacker to write beyond bounds 
of a buffer.\nThis issue affects Apache Portable Runtime Utility (APR-util) 
1.6.1 and prior versions.

Credit:

Ronald Crane (Zippenhop LLC) (reporter)

References:

https://apr.apache.org/
https://www.cve.org/CVERecord?id=CVE-2022-25147

CVE-2022-25147: Apache Portable Runtime (APR): out-of-bounds writes in the apr_base64 family of functions

Reply via email to