Описание
Security update for minicom
This update for minicom fixes the following issues:
- CVE-2017-7467: Invalid cursor coordinates and scroll regions could lead to code execution (bsc#1033783)
Список пакетов
SUSE Linux Enterprise Server 11 SP4
minicom-2.3-27.24.6.2
SUSE Linux Enterprise Server for SAP Applications 11 SP4
minicom-2.3-27.24.6.2
Ссылки
- Link for SUSE-SU-2017:1136-1
- E-Mail link for SUSE-SU-2017:1136-1
- SUSE Security Ratings
- SUSE Bug 1033783
- SUSE CVE CVE-2017-7467 page
Описание
A buffer overflow flaw was found in the way minicom before version 2.7.1 handled VT100 escape sequences. A malicious terminal device could potentially use this flaw to crash minicom, or execute arbitrary code in the context of the minicom process.
Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:minicom-2.3-27.24.6.2
SUSE Linux Enterprise Server for SAP Applications 11 SP4:minicom-2.3-27.24.6.2
Ссылки
- CVE-2017-7467
- SUSE Bug 1033783