SUSE-SU-2018:2145-1

Опубликовано: 30 июл. 2018

Источник: suse-cvrf

Описание

Security update for gdk-pixbuf

This update for gdk-pixbuf fixes the following issues:

Security issue fixed:

CVE-2015-4491: Fix integer multiplication overflow that allows for DoS or potentially RCE (bsc#1053417).

Список пакетов

SUSE Linux Enterprise Desktop 12 SP3

gdk-pixbuf-lang-2.34.0-19.14.2

gdk-pixbuf-query-loaders-2.34.0-19.14.2

gdk-pixbuf-query-loaders-32bit-2.34.0-19.14.2

libgdk_pixbuf-2_0-0-2.34.0-19.14.2

libgdk_pixbuf-2_0-0-32bit-2.34.0-19.14.2

typelib-1_0-GdkPixbuf-2_0-2.34.0-19.14.2

SUSE Linux Enterprise Server 12 SP3

gdk-pixbuf-lang-2.34.0-19.14.2

gdk-pixbuf-query-loaders-2.34.0-19.14.2

gdk-pixbuf-query-loaders-32bit-2.34.0-19.14.2

libgdk_pixbuf-2_0-0-2.34.0-19.14.2

libgdk_pixbuf-2_0-0-32bit-2.34.0-19.14.2

typelib-1_0-GdkPixbuf-2_0-2.34.0-19.14.2

SUSE Linux Enterprise Server for SAP Applications 12 SP3

gdk-pixbuf-lang-2.34.0-19.14.2

gdk-pixbuf-query-loaders-2.34.0-19.14.2

gdk-pixbuf-query-loaders-32bit-2.34.0-19.14.2

libgdk_pixbuf-2_0-0-2.34.0-19.14.2

libgdk_pixbuf-2_0-0-32bit-2.34.0-19.14.2

typelib-1_0-GdkPixbuf-2_0-2.34.0-19.14.2

SUSE Linux Enterprise Software Development Kit 12 SP3

gdk-pixbuf-devel-2.34.0-19.14.2

Ссылки

https://www.suse.com/support/update/announcement/2018/suse-su-20182145-1/
Link for SUSE-SU-2018:2145-1
https://lists.suse.com/pipermail/sle-security-updates/2018-July/004361.html
E-Mail link for SUSE-SU-2018:2145-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1053417
SUSE Bug 1053417
https://www.suse.com/security/cve/CVE-2015-4491/
SUSE CVE CVE-2015-4491 page

Описание

Integer overflow in the make_filter_table function in pixops/pixops.c in gdk-pixbuf before 2.31.5, as used in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 on Linux, Google Chrome on Linux, and other products, allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow and application crash) via crafted bitmap dimensions that are mishandled during scaling.

Затронутые продукты

SUSE Linux Enterprise Desktop 12 SP3:gdk-pixbuf-lang-2.34.0-19.14.2

SUSE Linux Enterprise Desktop 12 SP3:gdk-pixbuf-query-loaders-2.34.0-19.14.2

SUSE Linux Enterprise Desktop 12 SP3:gdk-pixbuf-query-loaders-32bit-2.34.0-19.14.2

SUSE Linux Enterprise Desktop 12 SP3:libgdk_pixbuf-2_0-0-2.34.0-19.14.2

Ссылки

https://www.suse.com/security/cve/CVE-2015-4491.html
CVE-2015-4491
https://bugzilla.suse.com/940806
SUSE Bug 940806
https://bugzilla.suse.com/942801
SUSE Bug 942801
https://bugzilla.suse.com/948790
SUSE Bug 948790

SUSE-SU-2018:2145-1

Описание

Список пакетов

SUSE Linux Enterprise Desktop 12 SP3

SUSE Linux Enterprise Server 12 SP3

SUSE Linux Enterprise Server for SAP Applications 12 SP3

SUSE Linux Enterprise Software Development Kit 12 SP3

Ссылки

Уязвимость: CVE-2015-4491

Описание

Затронутые продукты

Ссылки