Описание
Security update for opus
This update for opus fixes the following issues:
- CVE-2017-0381: Fixed a remote code execution vulnerability in silk/NLSF_stabilize.c when playing certain media files (bsc#1020102)
Список пакетов
SUSE Linux Enterprise Desktop 12 SP1
libopus0-1.1-3.1
SUSE Linux Enterprise Desktop 12 SP2
libopus0-1.1-3.1
SUSE Linux Enterprise Server 12 SP1
libopus0-1.1-3.1
SUSE Linux Enterprise Server 12 SP2
libopus0-1.1-3.1
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
libopus0-1.1-3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP1
libopus0-1.1-3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
libopus0-1.1-3.1
SUSE Linux Enterprise Software Development Kit 12 SP1
libopus-devel-1.1-3.1
libopus-devel-static-1.1-3.1
SUSE Linux Enterprise Software Development Kit 12 SP2
libopus-devel-1.1-3.1
libopus-devel-static-1.1-3.1
Ссылки
- Link for SUSE-SU-2017:0436-1
- E-Mail link for SUSE-SU-2017:0436-1
- SUSE Security Ratings
- SUSE Bug 1020102
- SUSE CVE CVE-2017-0381 page
Описание
An information disclosure vulnerability in silk/NLSF_stabilize.c in libopus in Mediaserver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used to access sensitive data without permission. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1. Android ID: A-31607432.
Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP1:libopus0-1.1-3.1
SUSE Linux Enterprise Desktop 12 SP2:libopus0-1.1-3.1
SUSE Linux Enterprise Server 12 SP1:libopus0-1.1-3.1
SUSE Linux Enterprise Server 12 SP2:libopus0-1.1-3.1
Ссылки
- CVE-2017-0381
- SUSE Bug 1020102