Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.Test your applications
- Snyk ID SNYK-ORACLE8-LIBCOMERR-3120753
- published 16 Nov 2022
- disclosed 14 Apr 2022
How to fix?
libcom_err to version 0:1.45.6-5.el8 or higher.
This issue was patched in
Note: Versions mentioned in the description apply only to the upstream
libcom_err package and not the
libcom_err package as distributed by
How to fix? for
Oracle:8 relevant fixed versions and status.
An out-of-bounds read/write vulnerability was found in e2fsprogs 1.46.5. This issue leads to a segmentation fault and possibly arbitrary code execution via a specially crafted filesystem.