Описание
Security update for screen
This update for screen fixes the following issues:
Security issue fixed:
- CVE-2015-6806: Fixed a stack overflow due to deep recursion (bsc#944458).
Non-security issue fixed:
- Fixed segmentation faults related to altscreen and resizing screen (bsc#1130831).
Список пакетов
Image SLES12-SP5-Azure-BYOS
screen-4.0.4-23.3.3
Image SLES12-SP5-Azure-Basic-On-Demand
screen-4.0.4-23.3.3
Image SLES12-SP5-Azure-HPC-BYOS
screen-4.0.4-23.3.3
Image SLES12-SP5-Azure-HPC-On-Demand
screen-4.0.4-23.3.3
Image SLES12-SP5-Azure-SAP-BYOS
screen-4.0.4-23.3.3
Image SLES12-SP5-Azure-SAP-On-Demand
screen-4.0.4-23.3.3
Image SLES12-SP5-Azure-Standard-On-Demand
screen-4.0.4-23.3.3
Image SLES12-SP5-EC2-BYOS
screen-4.0.4-23.3.3
Image SLES12-SP5-EC2-On-Demand
screen-4.0.4-23.3.3
Image SLES12-SP5-EC2-SAP-BYOS
screen-4.0.4-23.3.3
Image SLES12-SP5-EC2-SAP-On-Demand
screen-4.0.4-23.3.3
Image SLES12-SP5-GCE-BYOS
screen-4.0.4-23.3.3
Image SLES12-SP5-GCE-On-Demand
screen-4.0.4-23.3.3
Image SLES12-SP5-GCE-SAP-BYOS
screen-4.0.4-23.3.3
Image SLES12-SP5-GCE-SAP-On-Demand
screen-4.0.4-23.3.3
Image SLES12-SP5-OCI-BYOS-BYOS
screen-4.0.4-23.3.3
Image SLES12-SP5-OCI-BYOS-SAP-BYOS
screen-4.0.4-23.3.3
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
screen-4.0.4-23.3.3
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
screen-4.0.4-23.3.3
SUSE Linux Enterprise Desktop 12 SP3
screen-4.0.4-23.3.3
SUSE Linux Enterprise Desktop 12 SP4
screen-4.0.4-23.3.3
SUSE Linux Enterprise Server 12 SP3
screen-4.0.4-23.3.3
SUSE Linux Enterprise Server 12 SP4
screen-4.0.4-23.3.3
SUSE Linux Enterprise Server for SAP Applications 12 SP3
screen-4.0.4-23.3.3
SUSE Linux Enterprise Server for SAP Applications 12 SP4
screen-4.0.4-23.3.3
Ссылки
- Link for SUSE-SU-2019:1354-1
- E-Mail link for SUSE-SU-2019:1354-1
- SUSE Security Ratings
- SUSE Bug 1130831
- SUSE Bug 944458
- SUSE CVE CVE-2015-6806 page
Описание
The MScrollV function in ansi.c in GNU screen 4.3.1 and earlier does not properly limit recursion, which allows remote attackers to cause a denial of service (stack consumption) via an escape sequence with a large repeat count value.
Затронутые продукты
Image SLES12-SP5-Azure-BYOS:screen-4.0.4-23.3.3
Image SLES12-SP5-Azure-Basic-On-Demand:screen-4.0.4-23.3.3
Image SLES12-SP5-Azure-HPC-BYOS:screen-4.0.4-23.3.3
Image SLES12-SP5-Azure-HPC-On-Demand:screen-4.0.4-23.3.3
Ссылки
- CVE-2015-6806
- SUSE Bug 944458