SUSE-SU-2018:0232-1

Опубликовано: 26 янв. 2018

Источник: suse-cvrf

Описание

Security update for transfig

This update for transfig fixes the following issues:

Security issue fixed:

CVE-2017-16899: Fix array index error in the fig2dev program (bsc#1069257).

Список пакетов

SUSE Linux Enterprise Server 11 SP4

transfig-3.2.5-160.3.2

SUSE Linux Enterprise Server for SAP Applications 11 SP4

transfig-3.2.5-160.3.2

Ссылки

https://www.suse.com/support/update/announcement/2018/suse-su-20180232-1/
Link for SUSE-SU-2018:0232-1
https://lists.suse.com/pipermail/sle-security-updates/2018-January/003636.html
E-Mail link for SUSE-SU-2018:0232-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1069257
SUSE Bug 1069257
https://www.suse.com/security/cve/CVE-2017-16899/
SUSE CVE CVE-2017-16899 page

Описание

An array index error in the fig2dev program in Xfig 3.2.6a allows remote attackers to cause a denial-of-service attack or information disclosure with a maliciously crafted Fig format file, related to a negative font value in dev/gentikz.c, and the read_textobject functions in read.c and read1_3.c.

Затронутые продукты

SUSE Linux Enterprise Server 11 SP4:transfig-3.2.5-160.3.2

SUSE Linux Enterprise Server for SAP Applications 11 SP4:transfig-3.2.5-160.3.2

Ссылки

https://www.suse.com/security/cve/CVE-2017-16899.html
CVE-2017-16899
https://bugzilla.suse.com/1069257
SUSE Bug 1069257

SUSE-SU-2018:0232-1

Описание

Список пакетов

SUSE Linux Enterprise Server 11 SP4

SUSE Linux Enterprise Server for SAP Applications 11 SP4

Ссылки

Уязвимость: CVE-2017-16899

Описание

Затронутые продукты

Ссылки