HCE2-SA-2023-0064 Critical HCE 2.0 Security Fix(es): ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. (CVE-2022-38126) zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches. (CVE-2018-25032) zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference). (CVE-2022-37434) HCE 2.0 binutils-2.37-6.r14.hce2.aarch64.rpm binutils-devel-2.37-6.r14.hce2.aarch64.rpm binutils-extra-2.37-6.r14.hce2.aarch64.rpm binutils-2.37-6.r14.hce2.x86_64.rpm binutils-devel-2.37-6.r14.hce2.x86_64.rpm binutils-extra-2.37-6.r14.hce2.x86_64.rpm