VYPR
Unrated severityNVD Advisory· Published Aug 23, 2021· Updated Aug 4, 2024

Regression of CVE-2017-12613

CVE-2021-35940

Description

An out-of-bounds array read in the apr_time_exp*() functions was fixed in the Apache Portable Runtime 1.6.3 release (CVE-2017-12613). The fix for this issue was not carried forward to the APR 1.7.x branch, and hence version 1.7.0 regressed compared to 1.6.3 and is vulnerable to the same issue.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4

Patches

Vulnerability mechanics

References

16

News mentions

0

No linked articles in our index yet.