Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2019:2745-1

Опубликовано: 22 окт. 2019
Источник: suse-cvrf

Описание

Security update for libcaca

This update for libcaca fixes the following issues:

Security issues fixed:

  • CVE-2018-20544: Fixed a floating point exception at caca/dither.c (bsc#1120502)
  • CVE-2018-20545: Fixed a WRITE memory access in the load_image function at common-image.c for 4bpp (bsc#1120584)
  • CVE-2018-20546: Fixed a READ memory access in the get_rgba_default function at caca/dither.c for bpp (bsc#1120503)
  • CVE-2018-20547: Fixed a READ memory access in the get_rgba_default function at caca/dither.c for 24bpp (bsc#1120504)
  • CVE-2018-20548: Fixed a WRITE memory access in the load_image function at common-image.c for 1bpp (bsc#1120589)
  • CVE-2018-20549: Fixed a WRITE memory access in the caca_file_read function at caca/file.c (bsc#1120470)

Список пакетов

SUSE Linux Enterprise Desktop 12 SP4
libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Server 12 SP4
libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Server for SAP Applications 12 SP4
libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Software Development Kit 12 SP4
libcaca-devel-0.99.beta18-14.3.27
libcaca0-plugins-0.99.beta18-14.3.27

Ссылки

Описание

There is floating point exception at caca/dither.c (function caca_dither_bitmap) in libcaca 0.99.beta19.

Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP4:libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Server 12 SP4:libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Server for SAP Applications 12 SP4:libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Software Development Kit 12 SP4:libcaca-devel-0.99.beta18-14.3.27
Ссылки

Описание

There is an illegal WRITE memory access at common-image.c (function load_image) in libcaca 0.99.beta19 for 4bpp data.

Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP4:libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Server 12 SP4:libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Server for SAP Applications 12 SP4:libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Software Development Kit 12 SP4:libcaca-devel-0.99.beta18-14.3.27
Ссылки

Описание

There is an illegal READ memory access at caca/dither.c (function get_rgba_default) in libcaca 0.99.beta19 for the default bpp case.

Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP4:libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Server 12 SP4:libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Server for SAP Applications 12 SP4:libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Software Development Kit 12 SP4:libcaca-devel-0.99.beta18-14.3.27
Ссылки

Описание

There is an illegal READ memory access at caca/dither.c (function get_rgba_default) in libcaca 0.99.beta19 for 24bpp data.

Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP4:libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Server 12 SP4:libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Server for SAP Applications 12 SP4:libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Software Development Kit 12 SP4:libcaca-devel-0.99.beta18-14.3.27
Ссылки

Описание

There is an illegal WRITE memory access at common-image.c (function load_image) in libcaca 0.99.beta19 for 1bpp data.

Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP4:libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Server 12 SP4:libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Server for SAP Applications 12 SP4:libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Software Development Kit 12 SP4:libcaca-devel-0.99.beta18-14.3.27
Ссылки

Описание

There is an illegal WRITE memory access at caca/file.c (function caca_file_read) in libcaca 0.99.beta19.

Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP4:libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Server 12 SP4:libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Server for SAP Applications 12 SP4:libcaca0-0.99.beta18-14.3.27
SUSE Linux Enterprise Software Development Kit 12 SP4:libcaca-devel-0.99.beta18-14.3.27
Ссылки
Уязвимость SUSE-SU-2019:2745-1