SUSE-SU-2019:13984-1

Опубликовано: 21 мар. 2019

Источник: suse-cvrf

Описание

Security update for unzip

This update for unzip fixes the following issues:

CVE-2018-18384: Fixed a buffer overflow when listing archives (bsc#1110194)

Список пакетов

SUSE Linux Enterprise Server 11 SP4

unzip-6.00-11.18.8.1

SUSE Linux Enterprise Server for SAP Applications 11 SP4

unzip-6.00-11.18.8.1

Ссылки

https://www.suse.com/support/update/announcement/2019/suse-su-201913984-1/
Link for SUSE-SU-2019:13984-1
https://lists.suse.com/pipermail/sle-security-updates/2019-March/005218.html
E-Mail link for SUSE-SU-2019:13984-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1110194
SUSE Bug 1110194
https://www.suse.com/security/cve/CVE-2018-18384/
SUSE CVE CVE-2018-18384 page

Описание

Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive has a crafted relationship between the compressed-size value and the uncompressed-size value, because a buffer size is 10 and is supposed to be 12.

Затронутые продукты

SUSE Linux Enterprise Server 11 SP4:unzip-6.00-11.18.8.1

SUSE Linux Enterprise Server for SAP Applications 11 SP4:unzip-6.00-11.18.8.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-18384.html
CVE-2018-18384
https://bugzilla.suse.com/1110194
SUSE Bug 1110194
https://bugzilla.suse.com/1148898
SUSE Bug 1148898
https://bugzilla.suse.com/1153715
SUSE Bug 1153715

SUSE-SU-2019:13984-1

Описание

Список пакетов

SUSE Linux Enterprise Server 11 SP4

SUSE Linux Enterprise Server for SAP Applications 11 SP4

Ссылки

Уязвимость: CVE-2018-18384

Описание

Затронутые продукты

Ссылки