SUSE-SU-2018:0373-1

Опубликовано: 06 фев. 2018

Источник: suse-cvrf

Описание

Security update for libjpeg-turbo

This update for libjpeg-turbo fixes the following issues:

Feature update:

Update from version 1.3.1 to version 1.5.2 (fate#324061).

Security issue fixed:

CVE-2017-15232: Fix NULL pointer dereference in jdpostct.c and jquant1.c (bsc#1062937).

Список пакетов

SUSE Linux Enterprise Desktop 12 SP2

libjpeg-turbo-1.5.3-31.7.4

libjpeg62-62.2.0-31.7.4

libjpeg62-32bit-62.2.0-31.7.4

libjpeg62-turbo-1.5.3-31.7.4

libjpeg8-8.1.2-31.7.4

libjpeg8-32bit-8.1.2-31.7.4

libturbojpeg0-8.1.2-31.7.4

SUSE Linux Enterprise Desktop 12 SP3

libjpeg-turbo-1.5.3-31.7.4

libjpeg62-62.2.0-31.7.4

libjpeg62-32bit-62.2.0-31.7.4

libjpeg62-turbo-1.5.3-31.7.4

libjpeg8-8.1.2-31.7.4

libjpeg8-32bit-8.1.2-31.7.4

libturbojpeg0-8.1.2-31.7.4

SUSE Linux Enterprise Server 12 SP2

libjpeg-turbo-1.5.3-31.7.4

libjpeg62-62.2.0-31.7.4

libjpeg62-32bit-62.2.0-31.7.4

libjpeg62-turbo-1.5.3-31.7.4

libjpeg8-8.1.2-31.7.4

libjpeg8-32bit-8.1.2-31.7.4

libturbojpeg0-8.1.2-31.7.4

SUSE Linux Enterprise Server 12 SP3

libjpeg-turbo-1.5.3-31.7.4

libjpeg62-62.2.0-31.7.4

libjpeg62-32bit-62.2.0-31.7.4

libjpeg62-turbo-1.5.3-31.7.4

libjpeg8-8.1.2-31.7.4

libjpeg8-32bit-8.1.2-31.7.4

libturbojpeg0-8.1.2-31.7.4

SUSE Linux Enterprise Server for Raspberry Pi 12 SP2

libjpeg-turbo-1.5.3-31.7.4

libjpeg62-62.2.0-31.7.4

libjpeg62-turbo-1.5.3-31.7.4

libjpeg8-8.1.2-31.7.4

libturbojpeg0-8.1.2-31.7.4

SUSE Linux Enterprise Server for SAP Applications 12 SP2

libjpeg-turbo-1.5.3-31.7.4

libjpeg62-62.2.0-31.7.4

libjpeg62-32bit-62.2.0-31.7.4

libjpeg62-turbo-1.5.3-31.7.4

libjpeg8-8.1.2-31.7.4

libjpeg8-32bit-8.1.2-31.7.4

libturbojpeg0-8.1.2-31.7.4

SUSE Linux Enterprise Server for SAP Applications 12 SP3

libjpeg-turbo-1.5.3-31.7.4

libjpeg62-62.2.0-31.7.4

libjpeg62-32bit-62.2.0-31.7.4

libjpeg62-turbo-1.5.3-31.7.4

libjpeg8-8.1.2-31.7.4

libjpeg8-32bit-8.1.2-31.7.4

libturbojpeg0-8.1.2-31.7.4

SUSE Linux Enterprise Software Development Kit 12 SP2

libjpeg62-devel-62.2.0-31.7.4

libjpeg8-devel-8.1.2-31.7.4

SUSE Linux Enterprise Software Development Kit 12 SP3

libjpeg62-devel-62.2.0-31.7.4

libjpeg8-devel-8.1.2-31.7.4

Ссылки

https://www.suse.com/support/update/announcement/2018/suse-su-20180373-1/
Link for SUSE-SU-2018:0373-1
https://lists.suse.com/pipermail/sle-security-updates/2018-February/003709.html
E-Mail link for SUSE-SU-2018:0373-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1062937
SUSE Bug 1062937
https://www.suse.com/security/cve/CVE-2017-15232/
SUSE CVE CVE-2017-15232 page

Описание

libjpeg-turbo 1.5.2 has a NULL Pointer Dereference in jdpostct.c and jquant1.c via a crafted JPEG file.

Затронутые продукты

SUSE Linux Enterprise Desktop 12 SP2:libjpeg-turbo-1.5.3-31.7.4

SUSE Linux Enterprise Desktop 12 SP2:libjpeg62-32bit-62.2.0-31.7.4

SUSE Linux Enterprise Desktop 12 SP2:libjpeg62-62.2.0-31.7.4

SUSE Linux Enterprise Desktop 12 SP2:libjpeg62-turbo-1.5.3-31.7.4

Ссылки

https://www.suse.com/security/cve/CVE-2017-15232.html
CVE-2017-15232
https://bugzilla.suse.com/1062937
SUSE Bug 1062937

SUSE-SU-2018:0373-1

Описание

Список пакетов

SUSE Linux Enterprise Desktop 12 SP2

SUSE Linux Enterprise Desktop 12 SP3

SUSE Linux Enterprise Server 12 SP2

SUSE Linux Enterprise Server 12 SP3

SUSE Linux Enterprise Server for Raspberry Pi 12 SP2

SUSE Linux Enterprise Server for SAP Applications 12 SP2

SUSE Linux Enterprise Server for SAP Applications 12 SP3

SUSE Linux Enterprise Software Development Kit 12 SP2

SUSE Linux Enterprise Software Development Kit 12 SP3

Ссылки

Уязвимость: CVE-2017-15232

Описание

Затронутые продукты

Ссылки