SUSE-SU-2016:2097-1

Опубликовано: 18 авг. 2016

Источник: suse-cvrf

Описание

Security update for ctags

This update for ctags fixes the following issues:

CVE-2014-7204: Potential denial of service (infinite loop and CPU and disk consumption) via a crafted JavaScript file. (bsc#899486)
Missing Requires(post) on coreutils as it is using rm(1). (bsc#976920)

Список пакетов

SUSE Linux Enterprise Desktop 12 SP1

ctags-5.8-7.1

SUSE Linux Enterprise Server 12 SP1

ctags-5.8-7.1

SUSE Linux Enterprise Server for SAP Applications 12 SP1

ctags-5.8-7.1

Ссылки

https://www.suse.com/support/update/announcement/2016/suse-su-20162097-1/
Link for SUSE-SU-2016:2097-1
https://lists.suse.com/pipermail/sle-security-updates/2016-August/002216.html
E-Mail link for SUSE-SU-2016:2097-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/899486
SUSE Bug 899486
https://bugzilla.suse.com/976920
SUSE Bug 976920
https://www.suse.com/security/cve/CVE-2014-7204/
SUSE CVE CVE-2014-7204 page

Описание

jscript.c in Exuberant Ctags 5.8 allows remote attackers to cause a denial of service (infinite loop and CPU and disk consumption) via a crafted JavaScript file.

Затронутые продукты

SUSE Linux Enterprise Desktop 12 SP1:ctags-5.8-7.1

SUSE Linux Enterprise Server 12 SP1:ctags-5.8-7.1

SUSE Linux Enterprise Server for SAP Applications 12 SP1:ctags-5.8-7.1

Ссылки

https://www.suse.com/security/cve/CVE-2014-7204.html
CVE-2014-7204
https://bugzilla.suse.com/899486
SUSE Bug 899486

SUSE-SU-2016:2097-1

Описание

Список пакетов

SUSE Linux Enterprise Desktop 12 SP1

SUSE Linux Enterprise Server 12 SP1

SUSE Linux Enterprise Server for SAP Applications 12 SP1

Ссылки

Уязвимость: CVE-2014-7204

Описание

Затронутые продукты

Ссылки