Описание
Security update for exempi
This update for exempi fixes the following security issues:
- CVE-2017-18233: Prevent integer overflow in the Chunk class that allowed remote attackers to cause a denial of service (infinite loop) via crafted XMP data in a .avi file (bsc#1085584).
- CVE-2017-18238: The TradQT_Manager::ParseCachedBoxes function allowed remote attackers to cause a denial of service (infinite loop) via crafted XMP data in a .qt file (bsc#1085583).
- CVE-2018-7728: Fixed heap-based buffer overflow, which allowed denial of service via crafted TIFF image (bsc#1085297).
- CVE-2018-7730: Fixed heap-based buffer overflow in XMPFiles/source/FormatSupport/PSIR_FileWriter.cpp (bsc#1085295).
- CVE-2017-18236: The ASF_Support::ReadHeaderObject function allowed remote attackers to cause a denial of service (infinite loop) via a crafted .asf file (bsc#1085589).
- CVE-2017-18234: Prevent use-after-free that allowed remote attackers to cause a denial of service or possibly have unspecified other impact via a .pdf file containing JPEG data (bsc#1085585).
Список пакетов
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Software Development Kit 12 SP3
Ссылки
- Link for SUSE-SU-2018:3389-1
- E-Mail link for SUSE-SU-2018:3389-1
- SUSE Security Ratings
- SUSE Bug 1085295
- SUSE Bug 1085297
- SUSE Bug 1085583
- SUSE Bug 1085584
- SUSE Bug 1085585
- SUSE Bug 1085589
- SUSE CVE CVE-2017-18233 page
- SUSE CVE CVE-2017-18234 page
- SUSE CVE CVE-2017-18236 page
- SUSE CVE CVE-2017-18238 page
- SUSE CVE CVE-2018-7728 page
- SUSE CVE CVE-2018-7730 page
Описание
An issue was discovered in Exempi before 2.4.4. Integer overflow in the Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp allows remote attackers to cause a denial of service (infinite loop) via crafted XMP data in a .avi file.
Затронутые продукты
Ссылки
- CVE-2017-18233
- SUSE Bug 1085584
- SUSE Bug 1085585
Описание
An issue was discovered in Exempi before 2.4.3. It allows remote attackers to cause a denial of service (invalid memcpy with resultant use-after-free) or possibly have unspecified other impact via a .pdf file containing JPEG data, related to XMPFiles/source/FormatSupport/ReconcileTIFF.cpp, XMPFiles/source/FormatSupport/TIFF_MemoryReader.cpp, and XMPFiles/source/FormatSupport/TIFF_Support.hpp.
Затронутые продукты
Ссылки
- CVE-2017-18234
- SUSE Bug 1085585
- SUSE Bug 1103718
Описание
An issue was discovered in Exempi before 2.4.4. The ASF_Support::ReadHeaderObject function in XMPFiles/source/FormatSupport/ASF_Support.cpp allows remote attackers to cause a denial of service (infinite loop) via a crafted .asf file.
Затронутые продукты
Ссылки
- CVE-2017-18236
- SUSE Bug 1085585
- SUSE Bug 1085589
Описание
An issue was discovered in Exempi before 2.4.4. The TradQT_Manager::ParseCachedBoxes function in XMPFiles/source/FormatSupport/QuickTime_Support.cpp allows remote attackers to cause a denial of service (infinite loop) via crafted XMP data in a .qt file.
Затронутые продукты
Ссылки
- CVE-2017-18238
- SUSE Bug 1085583
- SUSE Bug 1085585
Описание
An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FileHandlers/TIFF_Handler.cpp mishandles a case of a zero length, leading to a heap-based buffer over-read in the MD5Update() function in third-party/zuid/interfaces/MD5.cpp.
Затронутые продукты
Ссылки
- CVE-2018-7728
- SUSE Bug 1085297
- SUSE Bug 1085585
Описание
An issue was discovered in Exempi through 2.4.4. A certain case of a 0xffffffff length is mishandled in XMPFiles/source/FormatSupport/PSIR_FileWriter.cpp, leading to a heap-based buffer over-read in the PSD_MetaHandler::CacheFileData() function.
Затронутые продукты
Ссылки
- CVE-2018-7730
- SUSE Bug 1085295
- SUSE Bug 1085585
- SUSE Bug 1103718