Описание
Security update for libpcap
This update for libpcap fixes the following issues:
- CVE-2019-15165: Added sanity checks for PHB header length before allocating memory (bsc#1153332).
- CVE-2018-16301: Fixed a buffer overflow (bsc#1153332).
Список пакетов
Container suse/sle-micro/5.0/toolbox:latest
libpcap1-1.8.1-4.3.1
Container suse/sles/15.2/virt-launcher:0.38.1
libpcap1-1.8.1-4.3.1
Image SLES15-Azure-BYOS
libpcap1-1.8.1-4.3.1
Image SLES15-EC2-CHOST-HVM-BYOS
libpcap1-1.8.1-4.3.1
Image SLES15-EC2-HVM-BYOS
libpcap1-1.8.1-4.3.1
Image SLES15-GCE-BYOS
libpcap1-1.8.1-4.3.1
Image SLES15-OCI-BYOS
libpcap1-1.8.1-4.3.1
Image SLES15-SAP-Azure
libpcap1-1.8.1-4.3.1
Image SLES15-SAP-Azure-BYOS
libpcap1-1.8.1-4.3.1
Image SLES15-SAP-Azure-LI-BYOS-Production
libpcap1-1.8.1-4.3.1
Image SLES15-SAP-Azure-VLI-BYOS-Production
libpcap1-1.8.1-4.3.1
Image SLES15-SAP-EC2-HVM
libpcap1-1.8.1-4.3.1
Image SLES15-SAP-EC2-HVM-BYOS
libpcap1-1.8.1-4.3.1
Image SLES15-SAP-GCE
libpcap1-1.8.1-4.3.1
Image SLES15-SAP-GCE-BYOS
libpcap1-1.8.1-4.3.1
Image SLES15-SAP-OCI-BYOS
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-Azure-BYOS
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-Azure-HPC-BYOS
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-CAP-Deployment-BYOS-EC2-HVM
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-CAP-Deployment-BYOS-GCE
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-CHOST-BYOS-Azure
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-CHOST-BYOS-EC2
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-CHOST-BYOS-GCE
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-EC2-HPC-HVM-BYOS
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-EC2-HVM-BYOS
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-GCE-BYOS
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-Manager-4-0-Azure-BYOS-Proxy
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-Manager-4-0-Azure-BYOS-Server
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-Manager-4-0-EC2-HVM-BYOS-Proxy
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-Manager-4-0-EC2-HVM-BYOS-Server
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-Manager-4-0-GCE-BYOS-Proxy
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-Manager-4-0-GCE-BYOS-Server
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-OCI-BYOS
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-SAP-Azure
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-SAP-Azure-BYOS
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-SAP-EC2-HVM
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-SAP-EC2-HVM-BYOS
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-SAP-GCE
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-SAP-GCE-BYOS
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-SAP-OCI-BYOS
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-SAPCAL-Azure
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-SAPCAL-EC2-HVM
libpcap1-1.8.1-4.3.1
Image SLES15-SP1-SAPCAL-GCE
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-Azure-Basic
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-Azure-Standard
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-BYOS-Azure
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-BYOS-EC2-HVM
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-BYOS-GCE
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-CAP-Deployment-BYOS-Azure
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-CHOST-BYOS-Aliyun
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-CHOST-BYOS-Azure
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-CHOST-BYOS-EC2
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-CHOST-BYOS-GCE
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-EC2-ECS-HVM
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-EC2-HVM
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-GCE
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-HPC-Azure
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-HPC-BYOS-Azure
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-HPC-BYOS-EC2-HVM
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-Manager-4-1-Proxy-BYOS-Azure
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-Manager-4-1-Proxy-BYOS-EC2-HVM
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-Manager-4-1-Proxy-BYOS-GCE
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-Manager-4-1-Server-BYOS-Azure
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-Manager-4-1-Server-BYOS-EC2-HVM
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-Manager-4-1-Server-BYOS-GCE
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-SAP-Azure
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-SAP-BYOS-Azure
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-SAP-BYOS-EC2-HVM
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-SAP-BYOS-GCE
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-SAP-EC2-HVM
libpcap1-1.8.1-4.3.1
Image SLES15-SP2-SAP-GCE
libpcap1-1.8.1-4.3.1
SUSE Linux Enterprise Module for Basesystem 15
libpcap-devel-1.8.1-4.3.1
libpcap1-1.8.1-4.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP1
libpcap-devel-1.8.1-4.3.1
libpcap1-1.8.1-4.3.1
Ссылки
- Link for SUSE-SU-2019:2673-1
- E-Mail link for SUSE-SU-2019:2673-1
- SUSE Security Ratings
- SUSE Bug 1153332
- SUSE CVE CVE-2018-16301 page
- SUSE CVE CVE-2019-15165 page
Описание
The command-line argument parser in tcpdump before 4.99.0 has a buffer overflow in tcpdump.c:read_infile(). To trigger this vulnerability the attacker needs to create a 4GB file on the local filesystem and to specify the file name as the value of the -F command-line argument of tcpdump.
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:libpcap1-1.8.1-4.3.1
Container suse/sles/15.2/virt-launcher:0.38.1:libpcap1-1.8.1-4.3.1
Image SLES15-Azure-BYOS:libpcap1-1.8.1-4.3.1
Image SLES15-EC2-CHOST-HVM-BYOS:libpcap1-1.8.1-4.3.1
Ссылки
- CVE-2018-16301
- SUSE Bug 1153098
- SUSE Bug 1153332
- SUSE Bug 1195825
Описание
sf-pcapng.c in libpcap before 1.9.1 does not properly validate the PHB header length before allocating memory.
Затронутые продукты
Container suse/sle-micro/5.0/toolbox:latest:libpcap1-1.8.1-4.3.1
Container suse/sles/15.2/virt-launcher:0.38.1:libpcap1-1.8.1-4.3.1
Image SLES15-Azure-BYOS:libpcap1-1.8.1-4.3.1
Image SLES15-EC2-CHOST-HVM-BYOS:libpcap1-1.8.1-4.3.1
Ссылки
- CVE-2019-15165
- SUSE Bug 1153332