Описание
Security update for aspell
This update for aspell fixes the following issues:
- CVE-2019-17544: Fixed a stack-based buffer over-read in acommon:unescape in common/getdata.cpp via an isolated backslash (bsc#1153892).
Список пакетов
SUSE Linux Enterprise Desktop 12 SP4
aspell-0.60.6.1-18.3.1
libaspell15-0.60.6.1-18.3.1
libaspell15-32bit-0.60.6.1-18.3.1
SUSE Linux Enterprise Server 12 SP4
aspell-0.60.6.1-18.3.1
aspell-ispell-0.60.6.1-18.3.1
libaspell15-0.60.6.1-18.3.1
libaspell15-32bit-0.60.6.1-18.3.1
SUSE Linux Enterprise Server 12 SP5
aspell-0.60.6.1-18.3.1
aspell-ispell-0.60.6.1-18.3.1
libaspell15-0.60.6.1-18.3.1
libaspell15-32bit-0.60.6.1-18.3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP4
aspell-0.60.6.1-18.3.1
aspell-ispell-0.60.6.1-18.3.1
libaspell15-0.60.6.1-18.3.1
libaspell15-32bit-0.60.6.1-18.3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
aspell-0.60.6.1-18.3.1
aspell-ispell-0.60.6.1-18.3.1
libaspell15-0.60.6.1-18.3.1
libaspell15-32bit-0.60.6.1-18.3.1
SUSE Linux Enterprise Software Development Kit 12 SP4
aspell-devel-0.60.6.1-18.3.1
libpspell15-0.60.6.1-18.3.1
SUSE Linux Enterprise Software Development Kit 12 SP5
aspell-devel-0.60.6.1-18.3.1
libpspell15-0.60.6.1-18.3.1
Ссылки
- Link for SUSE-SU-2019:3034-1
- E-Mail link for SUSE-SU-2019:3034-1
- SUSE Security Ratings
- SUSE Bug 1153892
- SUSE CVE CVE-2019-17544 page
Описание
libaspell.a in GNU Aspell before 0.60.8 has a stack-based buffer over-read in acommon::unescape in common/getdata.cpp via an isolated \ character.
Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP4:aspell-0.60.6.1-18.3.1
SUSE Linux Enterprise Desktop 12 SP4:libaspell15-0.60.6.1-18.3.1
SUSE Linux Enterprise Desktop 12 SP4:libaspell15-32bit-0.60.6.1-18.3.1
SUSE Linux Enterprise Server 12 SP4:aspell-0.60.6.1-18.3.1
Ссылки
- CVE-2019-17544
- SUSE Bug 1153892