SUSE-SU-2018:2630-1

Опубликовано: 06 сент. 2018

Источник: suse-cvrf

Описание

Security update for apache-pdfbox

This update for apache-pdfbox fixes the following issues:

Security issue fixed:

CVE-2018-8036: Fix infinite loop while parsing files that leads to an out of memory issue (bsc#1099721).

Список пакетов

SUSE Linux Enterprise Module for Development Tools 15

apache-pdfbox-1.8.12-5.3.13

Ссылки

https://www.suse.com/support/update/announcement/2018/suse-su-20182630-1/
Link for SUSE-SU-2018:2630-1
https://lists.suse.com/pipermail/sle-security-updates/2018-September/004534.html
E-Mail link for SUSE-SU-2018:2630-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1099721
SUSE Bug 1099721
https://www.suse.com/security/cve/CVE-2018-8036/
SUSE CVE CVE-2018-8036 page

Описание

In Apache PDFBox 1.8.0 to 1.8.14 and 2.0.0RC1 to 2.0.10, a carefully crafted (or fuzzed) file can trigger an infinite loop which leads to an out of memory exception in Apache PDFBox's AFMParser.

Затронутые продукты

SUSE Linux Enterprise Module for Development Tools 15:apache-pdfbox-1.8.12-5.3.13

Ссылки

https://www.suse.com/security/cve/CVE-2018-8036.html
CVE-2018-8036
https://bugzilla.suse.com/1099721
SUSE Bug 1099721

SUSE-SU-2018:2630-1

Описание

Список пакетов

SUSE Linux Enterprise Module for Development Tools 15

Ссылки

Уязвимость: CVE-2018-8036

Описание

Затронутые продукты

Ссылки