Описание
Security update for zeromq
This update for zeromq fixes the following issues:
-
CVE-2019-13132: An unauthenticated remote attacker could have exploited a stack overflow vulnerability on a server that is supposed to be protected by encryption and authentication to potentially gain a remote code execution. (bsc#1140255)
-
Correctly mark license files as licence instead of documentation (bsc#1082318)
Список пакетов
Container containers/lmcache-vllm-openai:0
libzmq5-4.2.3-3.8.1
Container containers/open-webui:0
libzmq5-4.2.3-3.8.1
Container containers/vllm-openai:0
libzmq5-4.2.3-3.8.1
Container suse/manager/4.3/proxy-salt-broker:latest
libzmq5-4.2.3-3.8.1
Container suse/manager/5.0/x86_64/proxy-salt-broker:latest
libzmq5-4.2.3-3.8.1
Container suse/manager/5.0/x86_64/server:latest
libzmq5-4.2.3-3.8.1
Container suse/multi-linux-manager/5.1/x86_64/proxy-salt-broker:latest
libzmq5-4.2.3-3.8.1
Container suse/multi-linux-manager/5.1/x86_64/server:latest
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-BYOS-EC2-HVM
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-HPC-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-HPC-BYOS-EC2-HVM
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-HPC-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-EC2-HVM
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-Micro-5-1-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-Micro-5-1-BYOS-EC2-HVM
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-Micro-5-1-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-Micro-5-2-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-Micro-5-2-BYOS-EC2-HVM
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-Micro-5-2-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-Micro-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-SAP-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-SAP-BYOS-EC2-HVM
libzmq5-4.2.3-3.8.1
Image SLES15-SP3-SAP-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-BYOS
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-HPC-BYOS
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-HPC-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-HPC-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-HPC-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-HPC-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-HPC-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Hardened-BYOS
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Hardened-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Hardened-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Hardened-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Manager-Proxy-4-3-BYOS
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Manager-Proxy-4-3-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Manager-Server-4-3
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Manager-Server-4-3-Azure-llc
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Manager-Server-4-3-Azure-ltd
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Manager-Server-4-3-BYOS
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Manager-Server-4-3-EC2-llc
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Manager-Server-4-3-EC2-ltd
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Micro-5-3
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Micro-5-3-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Micro-5-3-BYOS
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Micro-5-3-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Micro-5-3-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Micro-5-3-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Micro-5-3-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Micro-5-3-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Micro-5-4
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Micro-5-4-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Micro-5-4-BYOS
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Micro-5-4-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Micro-5-4-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Micro-5-4-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Micro-5-4-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-Micro-5-4-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-SAP-BYOS
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-SAP-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-SAP-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-SAP-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-SAP-Hardened-BYOS
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-SAP-Hardened-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-SAP-Hardened-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP4-SAP-Hardened-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-HPC-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-HPC-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-HPC-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-HPC-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-HPC-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-Hardened-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-Hardened-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-Hardened-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-Micro-5-5
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-Micro-5-5-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-Micro-5-5-BYOS
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-Micro-5-5-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-Micro-5-5-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-Micro-5-5-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-Micro-5-5-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-Micro-5-5-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-SAP-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-SAP-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-SAP-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-SAP-Hardened-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-SAP-Hardened-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-SAP-Hardened-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP5-SAP-Hardened-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-BYOS
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-HPC-BYOS
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-HPC-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-HPC-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-HPC-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-HPC-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-HPC-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-Hardened-BYOS
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-Hardened-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-Hardened-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-Hardened-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-SAP-BYOS
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-SAP-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-SAP-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-SAP-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-SAP-Hardened-BYOS
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-SAP-Hardened-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-SAP-Hardened-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-SAP-Hardened-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP6-SAP-Hardened-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP7-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP7-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP7-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP7-HPC-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP7-HPC-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP7-HPC-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP7-Hardened-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP7-Hardened-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP7-Hardened-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP7-SAP-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP7-SAP-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP7-SAP-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image SLES15-SP7-SAP-Hardened-BYOS-Azure
libzmq5-4.2.3-3.8.1
Image SLES15-SP7-SAP-Hardened-BYOS-EC2
libzmq5-4.2.3-3.8.1
Image SLES15-SP7-SAP-Hardened-BYOS-GCE
libzmq5-4.2.3-3.8.1
Image ai_15_6
libzmq5-4.2.3-3.8.1
Image proxy-salt-broker-image
libzmq5-4.2.3-3.8.1
Image server-image
libzmq5-4.2.3-3.8.1
SUSE Linux Enterprise Module for Basesystem 15
libzmq5-4.2.3-3.8.1
zeromq-devel-4.2.3-3.8.1
SUSE Linux Enterprise Module for Basesystem 15 SP1
libzmq5-4.2.3-3.8.1
zeromq-devel-4.2.3-3.8.1
Ссылки
- Link for SUSE-SU-2019:1776-1
- E-Mail link for SUSE-SU-2019:1776-1
- SUSE Security Ratings
- SUSE Bug 1082318
- SUSE Bug 1140255
- SUSE CVE CVE-2019-13132 page
Описание
In ZeroMQ libzmq before 4.0.9, 4.1.x before 4.1.7, and 4.2.x before 4.3.2, a remote, unauthenticated client connecting to a libzmq application, running with a socket listening with CURVE encryption/authentication enabled, may cause a stack overflow and overwrite the stack with arbitrary data, due to a buffer overflow in the library. Users running public servers with the above configuration are highly encouraged to upgrade as soon as possible, as there are no known mitigations.
Затронутые продукты
Container containers/lmcache-vllm-openai:0:libzmq5-4.2.3-3.8.1
Container containers/open-webui:0:libzmq5-4.2.3-3.8.1
Container containers/vllm-openai:0:libzmq5-4.2.3-3.8.1
Container suse/manager/4.3/proxy-salt-broker:latest:libzmq5-4.2.3-3.8.1
Ссылки
- CVE-2019-13132
- SUSE Bug 1140255