SUSE-SU-2019:0144-1

Опубликовано: 23 янв. 2019

Источник: suse-cvrf

Описание

Security update for ghostscript

This update for ghostscript to version 9.26a fixes the following issues:

Security issue fixed:

CVE-2019-6116: subroutines within pseudo-operators must themselves be pseudo-operators (bsc#1122319)

Список пакетов

SUSE Enterprise Storage 4

ghostscript-9.26a-23.19.1

ghostscript-x11-9.26a-23.19.1

libspectre1-0.2.7-12.6.1

SUSE Linux Enterprise Desktop 12 SP3

ghostscript-9.26a-23.19.1

ghostscript-x11-9.26a-23.19.1

libspectre1-0.2.7-12.6.1

SUSE Linux Enterprise Desktop 12 SP4

ghostscript-9.26a-23.19.1

ghostscript-x11-9.26a-23.19.1

libspectre1-0.2.7-12.6.1

SUSE Linux Enterprise Server 12 SP1-LTSS

ghostscript-9.26a-23.19.1

ghostscript-x11-9.26a-23.19.1

libspectre1-0.2.7-12.6.1

SUSE Linux Enterprise Server 12 SP2-BCL

ghostscript-9.26a-23.19.1

ghostscript-x11-9.26a-23.19.1

libspectre1-0.2.7-12.6.1

SUSE Linux Enterprise Server 12 SP2-LTSS

ghostscript-9.26a-23.19.1

ghostscript-x11-9.26a-23.19.1

libspectre1-0.2.7-12.6.1

SUSE Linux Enterprise Server 12 SP3

ghostscript-9.26a-23.19.1

ghostscript-x11-9.26a-23.19.1

libspectre1-0.2.7-12.6.1

SUSE Linux Enterprise Server 12 SP4

ghostscript-9.26a-23.19.1

ghostscript-x11-9.26a-23.19.1

libspectre1-0.2.7-12.6.1

SUSE Linux Enterprise Server 12-LTSS

ghostscript-9.26a-23.19.1

ghostscript-x11-9.26a-23.19.1

libspectre1-0.2.7-12.6.1

SUSE Linux Enterprise Server for SAP Applications 12 SP2

ghostscript-9.26a-23.19.1

ghostscript-x11-9.26a-23.19.1

libspectre1-0.2.7-12.6.1

SUSE Linux Enterprise Server for SAP Applications 12 SP3

ghostscript-9.26a-23.19.1

ghostscript-x11-9.26a-23.19.1

libspectre1-0.2.7-12.6.1

SUSE Linux Enterprise Server for SAP Applications 12 SP4

ghostscript-9.26a-23.19.1

ghostscript-x11-9.26a-23.19.1

libspectre1-0.2.7-12.6.1

SUSE Linux Enterprise Software Development Kit 12 SP3

ghostscript-devel-9.26a-23.19.1

libspectre-devel-0.2.7-12.6.1

SUSE Linux Enterprise Software Development Kit 12 SP4

ghostscript-devel-9.26a-23.19.1

libspectre-devel-0.2.7-12.6.1

SUSE OpenStack Cloud 7

ghostscript-9.26a-23.19.1

ghostscript-x11-9.26a-23.19.1

libspectre1-0.2.7-12.6.1

Ссылки

https://www.suse.com/support/update/announcement/2019/suse-su-20190144-1/
Link for SUSE-SU-2019:0144-1
https://lists.suse.com/pipermail/sle-security-updates/2019-January/005061.html
E-Mail link for SUSE-SU-2019:0144-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1122319
SUSE Bug 1122319
https://www.suse.com/security/cve/CVE-2019-6116/
SUSE CVE CVE-2019-6116 page

Описание

In Artifex Ghostscript through 9.26, ephemeral or transient procedures can allow access to system operators, leading to remote code execution.

Затронутые продукты

SUSE Enterprise Storage 4:ghostscript-9.26a-23.19.1

SUSE Enterprise Storage 4:ghostscript-x11-9.26a-23.19.1

SUSE Enterprise Storage 4:libspectre1-0.2.7-12.6.1

SUSE Linux Enterprise Desktop 12 SP3:ghostscript-9.26a-23.19.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-6116.html
CVE-2019-6116
https://bugzilla.suse.com/1122319
SUSE Bug 1122319
https://bugzilla.suse.com/1129186
SUSE Bug 1129186
https://bugzilla.suse.com/1134156
SUSE Bug 1134156

SUSE-SU-2019:0144-1

Описание

Список пакетов

SUSE Enterprise Storage 4

SUSE Linux Enterprise Desktop 12 SP3

SUSE Linux Enterprise Desktop 12 SP4

SUSE Linux Enterprise Server 12 SP1-LTSS

SUSE Linux Enterprise Server 12 SP2-BCL

SUSE Linux Enterprise Server 12 SP2-LTSS

SUSE Linux Enterprise Server 12 SP3

SUSE Linux Enterprise Server 12 SP4

SUSE Linux Enterprise Server 12-LTSS

SUSE Linux Enterprise Server for SAP Applications 12 SP2

SUSE Linux Enterprise Server for SAP Applications 12 SP3

SUSE Linux Enterprise Server for SAP Applications 12 SP4

SUSE Linux Enterprise Software Development Kit 12 SP3

SUSE Linux Enterprise Software Development Kit 12 SP4

SUSE OpenStack Cloud 7

Ссылки

Уязвимость: CVE-2019-6116

Описание

Затронутые продукты

Ссылки