Описание
Security update for gdk-pixbuf
This update for gdk-pixbuf fixes the following security issue:
- CVE-2017-1000422: Prevent several integer overflow in the gif_get_lzw function resulting in memory corruption and potential code execution (bsc#1074462).
Список пакетов
SUSE Linux Enterprise Desktop 12 SP3
gdk-pixbuf-lang-2.34.0-19.11.1
gdk-pixbuf-query-loaders-2.34.0-19.11.1
gdk-pixbuf-query-loaders-32bit-2.34.0-19.11.1
libgdk_pixbuf-2_0-0-2.34.0-19.11.1
libgdk_pixbuf-2_0-0-32bit-2.34.0-19.11.1
typelib-1_0-GdkPixbuf-2_0-2.34.0-19.11.1
SUSE Linux Enterprise Server 12 SP3
gdk-pixbuf-lang-2.34.0-19.11.1
gdk-pixbuf-query-loaders-2.34.0-19.11.1
gdk-pixbuf-query-loaders-32bit-2.34.0-19.11.1
libgdk_pixbuf-2_0-0-2.34.0-19.11.1
libgdk_pixbuf-2_0-0-32bit-2.34.0-19.11.1
typelib-1_0-GdkPixbuf-2_0-2.34.0-19.11.1
SUSE Linux Enterprise Server for SAP Applications 12 SP3
gdk-pixbuf-lang-2.34.0-19.11.1
gdk-pixbuf-query-loaders-2.34.0-19.11.1
gdk-pixbuf-query-loaders-32bit-2.34.0-19.11.1
libgdk_pixbuf-2_0-0-2.34.0-19.11.1
libgdk_pixbuf-2_0-0-32bit-2.34.0-19.11.1
typelib-1_0-GdkPixbuf-2_0-2.34.0-19.11.1
SUSE Linux Enterprise Software Development Kit 12 SP3
gdk-pixbuf-devel-2.34.0-19.11.1
Ссылки
- Link for SUSE-SU-2018:1950-1
- E-Mail link for SUSE-SU-2018:1950-1
- SUSE Security Ratings
- SUSE Bug 1074462
- SUSE CVE CVE-2017-1000422 page
Описание
Gnome gdk-pixbuf 2.36.8 and older is vulnerable to several integer overflow in the gif_get_lzw function resulting in memory corruption and potential code execution
Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP3:gdk-pixbuf-lang-2.34.0-19.11.1
SUSE Linux Enterprise Desktop 12 SP3:gdk-pixbuf-query-loaders-2.34.0-19.11.1
SUSE Linux Enterprise Desktop 12 SP3:gdk-pixbuf-query-loaders-32bit-2.34.0-19.11.1
SUSE Linux Enterprise Desktop 12 SP3:libgdk_pixbuf-2_0-0-2.34.0-19.11.1
Ссылки
- CVE-2017-1000422
- SUSE Bug 1074462