1218868 – (CVE-2023-6780) VUL-0: CVE-2023-6780: glibc: integer overflow in __vsyslog_internal

Bug 1218868 (CVE-2023-6780) - VUL-0: CVE-2023-6780: glibc: integer overflow in __vsyslog_internal

Summary: VUL-0: CVE-2023-6780: glibc: integer overflow in __vsyslog_internal

Status:	RESOLVED FIXED

Alias:	CVE-2023-6780

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P3 - Medium Severity: Normal
Target Milestone:	---
Assignee:	Andreas Schwab
QA Contact:	Security Team bot

URL:
Whiteboard:
Keywords:

Depends on:	CVE-2023-6246
Blocks:	CVE-2023-6779
	Show dependency tree / graph

Clone This Bug

Reported:	2024-01-16 16:26 UTC by Alexander Bergmann
Modified:	2024-05-13 14:41 UTC (History)
CC List:	5 users (show)

See Also:
Found By:	---
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Comment 2 Alexander Bergmann 2024-01-16 16:27:36 UTC

CRD: 2024-01-30 18:00 UTC

Comment 3 Thomas Leroy 2024-01-23 08:27:34 UTC

Any news Andreas?

Comment 4 Marcus Meissner 2024-01-31 07:49:57 UTC

is public

Comment 5 Marcus Meissner 2024-01-31 08:21:19 UTC

could not find the code in 15-sp3 glibc. so only ALP / Factory affected.

Comment 7 OBSbugzilla Bot 2024-01-31 15:35:03 UTC

This is an autogenerated message for OBS integration:
This bug (1218868) was mentioned in
https://build.opensuse.org/request/show/1143042 Factory / glibc

Comment 10 Marcus Meissner 2024-05-13 14:41:09 UTC

done