SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-344

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-344

Security update for orc

Type: security

Severity: important

Issued: 2025-02-03

Description:

This update for orc fixes the following issues:

- CVE-2024-40897: Fixed stack-based buffer overflow in the Orc compiler when
  formatting error messages for certain input files (bsc#1228184)

References

CVE: CVE-2024-40897
Bugzilla: 1228184 VUL-0: CVE-2024-40897: orc: Stack-based buffer overflow in the Orc compiler when formatting error messages for certain input files

Packages

orc-0.4.28-150000.3.9.1