Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2018:2067-1

Опубликовано: 26 июл. 2018
Источник: suse-cvrf

Описание

Security update for exempi

This update for exempi fixes the following issues:

Security issue fixed:

  • CVE-2018-7730: Fix heap-based buffer overflow in XMPFiles/source/FormatSupport/PSIR_FileWriter.cpp (bsc#1085295).
  • CVE-2017-18234: Fix use-after-free issue that allows remote attackers to cause a denial of service via a .pdf file (bsc#1085585).

Список пакетов

SUSE Linux Enterprise Server 11 SP4
libexempi3-2.0.2-4.5.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4
libexempi3-2.0.2-4.5.1
SUSE Linux Enterprise Software Development Kit 11 SP4
libexempi-devel-2.0.2-4.5.1

Ссылки

Описание

An issue was discovered in Exempi before 2.4.3. It allows remote attackers to cause a denial of service (invalid memcpy with resultant use-after-free) or possibly have unspecified other impact via a .pdf file containing JPEG data, related to XMPFiles/source/FormatSupport/ReconcileTIFF.cpp, XMPFiles/source/FormatSupport/TIFF_MemoryReader.cpp, and XMPFiles/source/FormatSupport/TIFF_Support.hpp.

Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:libexempi3-2.0.2-4.5.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4:libexempi3-2.0.2-4.5.1
SUSE Linux Enterprise Software Development Kit 11 SP4:libexempi-devel-2.0.2-4.5.1
Ссылки

Описание

An issue was discovered in Exempi through 2.4.4. A certain case of a 0xffffffff length is mishandled in XMPFiles/source/FormatSupport/PSIR_FileWriter.cpp, leading to a heap-based buffer over-read in the PSD_MetaHandler::CacheFileData() function.

Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:libexempi3-2.0.2-4.5.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4:libexempi3-2.0.2-4.5.1
SUSE Linux Enterprise Software Development Kit 11 SP4:libexempi-devel-2.0.2-4.5.1
Ссылки