First published: Tue Oct 24 2017(Updated: )
APR. Multiple issues in Perl were addressed with improved memory handling.
Credit: Craig Young Tripwire VERTCraig Young Tripwire VERTCraig Young Tripwire VERTCraig Young Tripwire VERT security@apache.org
Affected Software | Affected Version | How to fix |
---|---|---|
Apple macOS Mojave | <10.14 | 10.14 |
Apple macOS Mojave | <10.14.1 | 10.14.1 |
Apple High Sierra | ||
Apple Sierra | ||
redhat/apr | <1.6.3 | 1.6.3 |
Apache Portable Runtime | <1.7.0 | |
Debian Debian Linux | =7.0 | |
Debian Debian Linux | =9.0 | |
Redhat Jboss Core Services | ||
Redhat Jboss Core Services | =1.0 | |
Redhat Jboss Enterprise Web Server | =3.0.0 | |
Redhat Software Collections | =1.0 | |
Redhat Enterprise Linux Desktop | =6.0 | |
Redhat Enterprise Linux Desktop | =7.0 | |
Redhat Enterprise Linux Eus | =6.7 | |
Redhat Enterprise Linux Eus | =7.3 | |
Redhat Enterprise Linux Eus | =7.4 | |
Redhat Enterprise Linux Eus | =7.5 | |
Redhat Enterprise Linux Eus | =7.6 | |
Redhat Enterprise Linux Eus | =7.7 | |
Redhat Enterprise Linux Server | =6.0 | |
Redhat Enterprise Linux Server | =7.0 | |
Redhat Enterprise Linux Server Aus | =6.4 | |
Redhat Enterprise Linux Server Aus | =6.5 | |
Redhat Enterprise Linux Server Aus | =6.6 | |
Redhat Enterprise Linux Server Aus | =7.2 | |
Redhat Enterprise Linux Server Aus | =7.3 | |
Redhat Enterprise Linux Server Aus | =7.4 | |
Redhat Enterprise Linux Server Aus | =7.6 | |
Redhat Enterprise Linux Server Aus | =7.7 | |
Redhat Enterprise Linux Server Tus | =6.6 | |
Redhat Enterprise Linux Server Tus | =7.2 | |
Redhat Enterprise Linux Server Tus | =7.3 | |
Redhat Enterprise Linux Server Tus | =7.4 | |
Redhat Enterprise Linux Server Tus | =7.6 | |
Redhat Enterprise Linux Server Tus | =7.7 | |
Redhat Enterprise Linux Workstation | =6.0 | |
Redhat Enterprise Linux Workstation | =7.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2017-12613 is a vulnerability in Apache Portable Runtime (APR) that allows for out of bounds memory access when certain functions are invoked with an invalid month field value.
CVE-2017-12613 has a severity rating of high, with a severity value of 7.
The vulnerability affects APR version 1.6.2 and prior. It also affects various versions of macOS Mojave, Apple High Sierra, Apple Sierra, Debian Linux, Redhat Jboss Enterprise Web Server, and Redhat Software Collections.
To fix the CVE-2017-12613 vulnerability, update Apache Portable Runtime to version 1.6.3.
More information about CVE-2017-12613 can be found on the Apache website, the Red Hat Bugzilla page, and the Apache Subversion repository.