14 lines
968 B
JSON
14 lines
968 B
JSON
{
|
|
"id": "openEuler-SA-2022-1904",
|
|
"url": "https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2022-1904",
|
|
"title": "An update for sudo is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP3 and openEuler-22.03-LTS",
|
|
"severity": "Moderate",
|
|
"description": "Sudo is a program designed to allow a sysadmin to give limited root privileges to users and log root activity. The basic philosophy is to give as few privileges as possible but still allow people to get their work done.\r\n\r\nSecurity Fix(es):\r\n\r\nProtobuf-c v1.4.0 was discovered to contain an invalid arithmetic shift via the function parse_tag_and_wiretype in protobuf-c/protobuf-c.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via unspecified vectors.(CVE-2022-33070)",
|
|
"cves": [
|
|
{
|
|
"id": "CVE-2022-33070",
|
|
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-33070",
|
|
"severity": "Moderate"
|
|
}
|
|
]
|
|
} |