The SQLWriteFileDSN function in odbcinst/SQLWriteFileDSN.c in unixODBC 2.3.5 has strncpy arguments in the wrong order, which allows attackers to cause a denial of service or possibly have unspecified other impact. Upstream patch: https://github.com/lurcher/unixODBC/commit/45ef78e037f578b15fc58938a3a3251655e71d6f#diff-d52750c7ba4e594410438569d8e2963aL24
Created unixODBC tracking bugs for this issue: Affects: fedora-all [bug 1549637]
Analysis: This flaw is essentially an argument order confusion in the SQLWriteFileDSN API, can only be exploited via a malicious ODBC database connector package and can possible cause Denial of Service only. We believe that arbitrary code execution is not possible, therefore this flaw has been rated as having Moderate security impact.
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2019:2336 https://access.redhat.com/errata/RHSA-2019:2336
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2018-7485
This issue has been addressed in the following products: Red Hat Enterprise Linux 7.6 Extended Update Support Via RHSA-2020:4999 https://access.redhat.com/errata/RHSA-2020:4999