Wednesday, March 2, 2022

Debian: CVE-2022-24407: cyrus-sasl2 -- security update

debian vulnerabilities In: , 
Description
In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement.
Solution(s)
  • debian-upgrade-cyrus-sasl2


    • References
  • https://attackerkb.com/topics/cve-2022-24407
  • CVE - 2022-24407
  • DSA-5087-1




    •  

    Copyright © 2021 Vulnerability Database | Cyber Details™

    thank you Templateism for the design - You should have written the code a little more complicated - Nothing Encrypted anymore