USN-5056-1

Source

https://ubuntu.com/security/notices/USN-5056-1

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/USN-5056-1.json

Related

CVE-2021-35940

Published

2021-08-30T13:52:56.033619Z

Modified

2021-08-30T13:52:56.033619Z

Summary

apr vulnerability

Details

It was discovered that APR incorrectly handled certain inputs. An attacker could possibly use this issue to expose sensitive information.

References

Affected packages

Ubuntu:Pro:14.04:LTS / apr

Package

Name: apr

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

1.5.0-1ubuntu0.1~esm1

Ecosystem specific

{
    "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
    "binaries": [
        {
            "libapr1": "1.5.0-1ubuntu0.1~esm1",
            "libapr1-dev": "1.5.0-1ubuntu0.1~esm1"
        }
    ]
}

Ubuntu:Pro:16.04:LTS / apr

Package

Name: apr

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

1.5.2-3ubuntu0.1~esm1

Ecosystem specific

{
    "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
    "binaries": [
        {
            "libapr1": "1.5.2-3ubuntu0.1~esm1",
            "libapr1-dev": "1.5.2-3ubuntu0.1~esm1"
        }
    ]
}