Synopsis: Moderate: unixODBC security update
Advisory ID:       SLSA-2019:2336-1
Issue Date:        2019-08-06
CVE Numbers:       CVE-2018-7409
                   CVE-2018-7485
--

Security Fix(es):

* unixODBC: Buffer overflow in unicode_to_ansi_copy() can lead to crash or
other unspecified impact (CVE-2018-7409)

* unixODBC: Insecure buffer copy in SQLWriteFileDSN function in
odbcinst/SQLWriteFileDSN.c (CVE-2018-7485)
--

SL7
  x86_64
    unixODBC-devel-2.3.1-14.el7.x86_64.rpm
    unixODBC-2.3.1-14.el7.i686.rpm
    unixODBC-devel-2.3.1-14.el7.i686.rpm
    unixODBC-2.3.1-14.el7.x86_64.rpm
    unixODBC-debuginfo-2.3.1-14.el7.i686.rpm
    unixODBC-debuginfo-2.3.1-14.el7.x86_64.rpm

- Scientific Linux Development Team