Описание
Security update for libcdio
This update for libcdio fixes the following issues:
- CVE-2017-18201: Fixed a double free vulnerability (bsc#1082877).
Список пакетов
SUSE Linux Enterprise Desktop 12 SP2
libcdio14-0.90-6.3.1
libcdio14-32bit-0.90-6.3.1
libiso9660-8-0.90-6.3.1
SUSE Linux Enterprise Desktop 12 SP3
libcdio14-0.90-6.3.1
libcdio14-32bit-0.90-6.3.1
libiso9660-8-0.90-6.3.1
SUSE Linux Enterprise Server 12 SP2
libcdio14-0.90-6.3.1
libcdio14-32bit-0.90-6.3.1
SUSE Linux Enterprise Server 12 SP3
libcdio14-0.90-6.3.1
libcdio14-32bit-0.90-6.3.1
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
libcdio14-0.90-6.3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
libcdio14-0.90-6.3.1
libcdio14-32bit-0.90-6.3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP3
libcdio14-0.90-6.3.1
libcdio14-32bit-0.90-6.3.1
SUSE Linux Enterprise Software Development Kit 12 SP2
libcdio++0-0.90-6.3.1
libcdio-devel-0.90-6.3.1
libiso9660-8-0.90-6.3.1
libudf0-0.90-6.3.1
SUSE Linux Enterprise Software Development Kit 12 SP3
libcdio++0-0.90-6.3.1
libcdio-devel-0.90-6.3.1
libiso9660-8-0.90-6.3.1
libudf0-0.90-6.3.1
SUSE Linux Enterprise Workstation Extension 12 SP2
libiso9660-8-0.90-6.3.1
SUSE Linux Enterprise Workstation Extension 12 SP3
libiso9660-8-0.90-6.3.1
Ссылки
- Link for SUSE-SU-2018:0673-1
- E-Mail link for SUSE-SU-2018:0673-1
- SUSE Security Ratings
- SUSE Bug 1082877
- SUSE CVE CVE-2017-18201 page
Описание
An issue was discovered in GNU libcdio before 2.0.0. There is a double free in get_cdtext_generic() in lib/driver/_cdio_generic.c.
Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP2:libcdio14-0.90-6.3.1
SUSE Linux Enterprise Desktop 12 SP2:libcdio14-32bit-0.90-6.3.1
SUSE Linux Enterprise Desktop 12 SP2:libiso9660-8-0.90-6.3.1
SUSE Linux Enterprise Desktop 12 SP3:libcdio14-0.90-6.3.1
Ссылки
- CVE-2017-18201
- SUSE Bug 1082877