Описание
Security update for transfig
This update for transfig fixes the following issues:
Security issue fixed:
- CVE-2018-16140: Fixed a buffer underwrite vulnerability in get_line() in read.c, which allowed an attacker to write prior to the beginning of the buffer via specially crafted .fig file (bsc#1106531)
Список пакетов
SUSE Linux Enterprise Workstation Extension 15
transfig-3.2.6a-4.3.51
Ссылки
- Link for SUSE-SU-2019:1291-1
- E-Mail link for SUSE-SU-2019:1291-1
- SUSE Security Ratings
- SUSE Bug 1106531
- SUSE CVE CVE-2018-16140 page
Описание
A buffer underwrite vulnerability in get_line() (read.c) in fig2dev 3.2.7a allows an attacker to write prior to the beginning of the buffer via a crafted .fig file.
Затронутые продукты
SUSE Linux Enterprise Workstation Extension 15:transfig-3.2.6a-4.3.51
Ссылки
- CVE-2018-16140
- SUSE Bug 1106531