An update for freetds is now available for openEuler-22.03-LTS
Security Advisory
openeuler-security@openeuler.org
openEuler security committee
openEuler-SA-2022-2075
Final
1.0
1.0
2022-11-11
Initial
2022-11-11
2022-11-11
openEuler SA Tool V1.0
2022-11-11
freetds security update
An update for freetds is now available for openEuler-22.03-LTS.
FreeTDS is an open source implementation of the TDS (Tabular Data Stream) protocol used by these databases for their own clients. It supports many different flavors of the protocol and three APIs to access it. FreeTDS includes call level interfaces for DB-Lib, CT-Lib, and ODBC.
Security Fix(es):
FreeTDS through 1.1.11 has a Buffer Overflow.(CVE-2019-13508)
An update for freetds is now available for openEuler-22.03-LTS.
openEuler Security has rated this update as having a security impact of critical. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.
Critical
freetds
https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2022-2075
https://www.openeuler.org/en/security/cve/detail.html?id=CVE-2019-13508
https://nvd.nist.gov/vuln/detail/CVE-2019-13508
openEuler-22.03-LTS
freetds-debugsource-1.00.38-8.oe2203.aarch64.rpm
freetds-devel-1.00.38-8.oe2203.aarch64.rpm
freetds-1.00.38-8.oe2203.aarch64.rpm
freetds-debuginfo-1.00.38-8.oe2203.aarch64.rpm
freetds-help-1.00.38-8.oe2203.noarch.rpm
freetds-1.00.38-8.oe2203.src.rpm
freetds-debuginfo-1.00.38-8.oe2203.x86_64.rpm
freetds-devel-1.00.38-8.oe2203.x86_64.rpm
freetds-debugsource-1.00.38-8.oe2203.x86_64.rpm
freetds-1.00.38-8.oe2203.x86_64.rpm
FreeTDS through 1.1.11 has a Buffer Overflow.
2022-11-11
CVE-2019-13508
openEuler-22.03-LTS
Critical
9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
freetds security update
2022-11-11
https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2022-2075