Read Time:23 Second
FEDORA-2024-318343049c
Packages in this update:
apr-1.7.5-1.fc39
Update description:
This update to the apr package fixes a security issue in the handling of shared memory permissions.
SECURITY: CVE-2023-49582: Apache Portable Runtime (APR):
Unexpected lax shared memory permissions (cve.mitre.org)
Lax permissions set by the Apache Portable Runtime library on
Unix platforms would allow local users read access to named
shared memory segments, potentially revealing sensitive
application data.