{"affected":[{"ecosystem_specific":{"binaries":[{"libeconf0":"0.5.2-150400.3.6.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Micro 5.5","name":"libeconf","purl":"pkg:rpm/suse/libeconf&distro=SUSE%20Linux%20Enterprise%20Micro%205.5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"0.5.2-150400.3.6.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for libeconf fixes the following issues:\n\nUpdate to version 0.5.2.\n\n- CVE-2023-30078, CVE-2023-32181: Fixed a stack-buffer-overflow vulnerability in 'econf_writeFile' function (bsc#1211078).\n- CVE-2023-30079, CVE-2023-22652: Fixed a stack-buffer-overflow vulnerability in 'read_file' function. (bsc#1211078)\n","id":"SUSE-SU-2024:2426-1","modified":"2024-07-12T13:00:51Z","published":"2024-07-12T13:00:51Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2024/suse-su-20242426-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1211078"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-22652"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-30078"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-30079"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-32181"}],"related":["CVE-2023-22652","CVE-2023-30078","CVE-2023-30079","CVE-2023-32181"],"summary":"Security update for libeconf","upstream":["CVE-2023-22652","CVE-2023-30078","CVE-2023-30079","CVE-2023-32181"]}