SUSE-SU-2017:2117-1

Опубликовано: 09 авг. 2017

Источник: suse-cvrf

Описание

Security update for librsvg

This update librsvg to version 2.40.18 fixes the following issues:

Security issue fixed:

CVE-2017-11464: A SIGFPE is raised in the function box_blur_line of rsvg-filter.c. (bsc#1049607)

Список пакетов

SUSE Linux Enterprise Desktop 12 SP2

gdk-pixbuf-loader-rsvg-2.40.18-5.3.1

librsvg-2-2-2.40.18-5.3.1

librsvg-2-2-32bit-2.40.18-5.3.1

rsvg-view-2.40.18-5.3.1

SUSE Linux Enterprise Desktop 12 SP3

gdk-pixbuf-loader-rsvg-2.40.18-5.3.1

librsvg-2-2-2.40.18-5.3.1

librsvg-2-2-32bit-2.40.18-5.3.1

rsvg-view-2.40.18-5.3.1

SUSE Linux Enterprise Server 12 SP2

gdk-pixbuf-loader-rsvg-2.40.18-5.3.1

librsvg-2-2-2.40.18-5.3.1

librsvg-2-2-32bit-2.40.18-5.3.1

rsvg-view-2.40.18-5.3.1

SUSE Linux Enterprise Server 12 SP3

gdk-pixbuf-loader-rsvg-2.40.18-5.3.1

librsvg-2-2-2.40.18-5.3.1

librsvg-2-2-32bit-2.40.18-5.3.1

rsvg-view-2.40.18-5.3.1

SUSE Linux Enterprise Server for Raspberry Pi 12 SP2

gdk-pixbuf-loader-rsvg-2.40.18-5.3.1

librsvg-2-2-2.40.18-5.3.1

rsvg-view-2.40.18-5.3.1

SUSE Linux Enterprise Server for SAP Applications 12 SP2

gdk-pixbuf-loader-rsvg-2.40.18-5.3.1

librsvg-2-2-2.40.18-5.3.1

librsvg-2-2-32bit-2.40.18-5.3.1

rsvg-view-2.40.18-5.3.1

SUSE Linux Enterprise Server for SAP Applications 12 SP3

gdk-pixbuf-loader-rsvg-2.40.18-5.3.1

librsvg-2-2-2.40.18-5.3.1

librsvg-2-2-32bit-2.40.18-5.3.1

rsvg-view-2.40.18-5.3.1

SUSE Linux Enterprise Software Development Kit 12 SP2

librsvg-devel-2.40.18-5.3.1

typelib-1_0-Rsvg-2_0-2.40.18-5.3.1

SUSE Linux Enterprise Software Development Kit 12 SP3

librsvg-devel-2.40.18-5.3.1

typelib-1_0-Rsvg-2_0-2.40.18-5.3.1

Ссылки

https://www.suse.com/support/update/announcement/2017/suse-su-20172117-1/
Link for SUSE-SU-2017:2117-1
https://lists.suse.com/pipermail/sle-security-updates/2017-August/003126.html
E-Mail link for SUSE-SU-2017:2117-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1049607
SUSE Bug 1049607
https://www.suse.com/security/cve/CVE-2017-11464/
SUSE CVE CVE-2017-11464 page

Описание

A SIGFPE is raised in the function box_blur_line of rsvg-filter.c in GNOME librsvg 2.40.17 during an attempted parse of a crafted SVG file, because of incorrect protection against division by zero.

Затронутые продукты

SUSE Linux Enterprise Desktop 12 SP2:gdk-pixbuf-loader-rsvg-2.40.18-5.3.1

SUSE Linux Enterprise Desktop 12 SP2:librsvg-2-2-2.40.18-5.3.1

SUSE Linux Enterprise Desktop 12 SP2:librsvg-2-2-32bit-2.40.18-5.3.1

SUSE Linux Enterprise Desktop 12 SP2:rsvg-view-2.40.18-5.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-11464.html
CVE-2017-11464
https://bugzilla.suse.com/1049607
SUSE Bug 1049607

SUSE-SU-2017:2117-1

Описание

Список пакетов

SUSE Linux Enterprise Desktop 12 SP2

SUSE Linux Enterprise Desktop 12 SP3

SUSE Linux Enterprise Server 12 SP2

SUSE Linux Enterprise Server 12 SP3

SUSE Linux Enterprise Server for Raspberry Pi 12 SP2

SUSE Linux Enterprise Server for SAP Applications 12 SP2

SUSE Linux Enterprise Server for SAP Applications 12 SP3

SUSE Linux Enterprise Software Development Kit 12 SP2

SUSE Linux Enterprise Software Development Kit 12 SP3

Ссылки

Уязвимость: CVE-2017-11464

Описание

Затронутые продукты

Ссылки