Описание
Security update for minicom
This update for minicom fixes the following issue:
This security issue was fixed:
- CVE-2017-7467: Invalid cursor coordinates and scroll regions could lead to code execution (bsc#1033783).
Список пакетов
SUSE Linux Enterprise Desktop 12 SP1
minicom-2.7-3.1
SUSE Linux Enterprise Desktop 12 SP2
minicom-2.7-3.1
SUSE Linux Enterprise Server 12 SP1
minicom-2.7-3.1
SUSE Linux Enterprise Server 12 SP2
minicom-2.7-3.1
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
minicom-2.7-3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP1
minicom-2.7-3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
minicom-2.7-3.1
Ссылки
- Link for SUSE-SU-2017:1092-1
- E-Mail link for SUSE-SU-2017:1092-1
- SUSE Security Ratings
- SUSE Bug 1033783
- SUSE CVE CVE-2017-7467 page
Описание
A buffer overflow flaw was found in the way minicom before version 2.7.1 handled VT100 escape sequences. A malicious terminal device could potentially use this flaw to crash minicom, or execute arbitrary code in the context of the minicom process.
Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP1:minicom-2.7-3.1
SUSE Linux Enterprise Desktop 12 SP2:minicom-2.7-3.1
SUSE Linux Enterprise Server 12 SP1:minicom-2.7-3.1
SUSE Linux Enterprise Server 12 SP2:minicom-2.7-3.1
Ссылки
- CVE-2017-7467
- SUSE Bug 1033783