SUSE-SU-2020:0145-1

Опубликовано: 21 янв. 2020

Источник: suse-cvrf

Описание

Security update for Mesa

This update for Mesa fixes the following issues:

Security issue fixed:

CVE-2019-5068: Fixed exploitable shared memory permissions vulnerability (bsc#1156015).

Список пакетов

SUSE Linux Enterprise Desktop 12 SP4

Mesa-18.0.2-8.3.2

Mesa-32bit-18.0.2-8.3.2

Mesa-dri-18.0.2-8.3.2

Mesa-dri-32bit-18.0.2-8.3.2

Mesa-libEGL1-18.0.2-8.3.2

Mesa-libEGL1-32bit-18.0.2-8.3.2

Mesa-libGL1-18.0.2-8.3.2

Mesa-libGL1-32bit-18.0.2-8.3.2

Mesa-libGLESv2-2-18.0.2-8.3.2

Mesa-libGLESv2-2-32bit-18.0.2-8.3.2

Mesa-libglapi0-18.0.2-8.3.2

Mesa-libglapi0-32bit-18.0.2-8.3.2

libgbm1-18.0.2-8.3.2

libgbm1-32bit-18.0.2-8.3.2

libxatracker2-1.0.0-8.3.2

SUSE Linux Enterprise Server 12 SP4

Mesa-18.0.2-8.3.2

Mesa-32bit-18.0.2-8.3.2

Mesa-dri-18.0.2-8.3.2

Mesa-dri-32bit-18.0.2-8.3.2

Mesa-libEGL1-18.0.2-8.3.2

Mesa-libEGL1-32bit-18.0.2-8.3.2

Mesa-libGL1-18.0.2-8.3.2

Mesa-libGL1-32bit-18.0.2-8.3.2

Mesa-libGLESv2-2-18.0.2-8.3.2

Mesa-libglapi0-18.0.2-8.3.2

Mesa-libglapi0-32bit-18.0.2-8.3.2

libgbm1-18.0.2-8.3.2

libgbm1-32bit-18.0.2-8.3.2

libxatracker2-1.0.0-8.3.2

SUSE Linux Enterprise Server for SAP Applications 12 SP4

Mesa-18.0.2-8.3.2

Mesa-32bit-18.0.2-8.3.2

Mesa-dri-18.0.2-8.3.2

Mesa-dri-32bit-18.0.2-8.3.2

Mesa-libEGL1-18.0.2-8.3.2

Mesa-libEGL1-32bit-18.0.2-8.3.2

Mesa-libGL1-18.0.2-8.3.2

Mesa-libGL1-32bit-18.0.2-8.3.2

Mesa-libGLESv2-2-18.0.2-8.3.2

Mesa-libglapi0-18.0.2-8.3.2

Mesa-libglapi0-32bit-18.0.2-8.3.2

libgbm1-18.0.2-8.3.2

libgbm1-32bit-18.0.2-8.3.2

libxatracker2-1.0.0-8.3.2

SUSE Linux Enterprise Software Development Kit 12 SP4

Mesa-devel-18.0.2-8.3.2

Mesa-dri-devel-18.0.2-8.3.2

Mesa-libEGL-devel-18.0.2-8.3.2

Mesa-libGL-devel-18.0.2-8.3.2

Mesa-libGLESv1_CM-devel-18.0.2-8.3.2

Mesa-libGLESv1_CM1-18.0.2-8.3.2

Mesa-libGLESv2-devel-18.0.2-8.3.2

Mesa-libGLESv3-devel-18.0.2-8.3.2

Mesa-libglapi-devel-18.0.2-8.3.2

libOSMesa-devel-18.0.2-8.3.2

libOSMesa8-18.0.2-8.3.2

libOSMesa8-32bit-18.0.2-8.3.2

libgbm-devel-18.0.2-8.3.2

libxatracker-devel-1.0.0-8.3.2

SUSE Linux Enterprise Workstation Extension 12 SP4

Mesa-libGLESv2-2-32bit-18.0.2-8.3.2

Ссылки

https://www.suse.com/support/update/announcement/2020/suse-su-20200145-1/
Link for SUSE-SU-2020:0145-1
https://lists.suse.com/pipermail/sle-security-updates/2020-January/006389.html
E-Mail link for SUSE-SU-2020:0145-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1156015
SUSE Bug 1156015
https://www.suse.com/security/cve/CVE-2019-5068/
SUSE CVE CVE-2019-5068 page

Описание

An exploitable shared memory permissions vulnerability exists in the functionality of X11 Mesa 3D Graphics Library 19.1.2. An attacker can access the shared memory without any specific permissions to trigger this vulnerability.

Затронутые продукты

SUSE Linux Enterprise Desktop 12 SP4:Mesa-18.0.2-8.3.2

SUSE Linux Enterprise Desktop 12 SP4:Mesa-32bit-18.0.2-8.3.2

SUSE Linux Enterprise Desktop 12 SP4:Mesa-dri-18.0.2-8.3.2

SUSE Linux Enterprise Desktop 12 SP4:Mesa-dri-32bit-18.0.2-8.3.2

Ссылки

https://www.suse.com/security/cve/CVE-2019-5068.html
CVE-2019-5068
https://bugzilla.suse.com/1156015
SUSE Bug 1156015

SUSE-SU-2020:0145-1

Описание

Список пакетов

SUSE Linux Enterprise Desktop 12 SP4

SUSE Linux Enterprise Server 12 SP4

SUSE Linux Enterprise Server for SAP Applications 12 SP4

SUSE Linux Enterprise Software Development Kit 12 SP4

SUSE Linux Enterprise Workstation Extension 12 SP4

Ссылки

Уязвимость: CVE-2019-5068

Описание

Затронутые продукты

Ссылки