Описание
Security update for ldns
This update for ldns fixes the following issues:
- CVE-2017-1000231: Fixed a buffer overflow during token parsing (bsc#1068711).
- CVE-2017-1000232: Fixed a double-free vulnerability in str2host.c (bsc#1068709).
Список пакетов
SUSE Linux Enterprise Module for Basesystem 15 SP1
ldns-devel-1.7.0-4.3.1
libldns2-1.7.0-4.3.1
SUSE Linux Enterprise Module for Development Tools 15 SP1
perl-DNS-LDNS-1.7.0-4.3.1
Ссылки
- Link for SUSE-SU-2020:0801-1
- E-Mail link for SUSE-SU-2020:0801-1
- SUSE Security Ratings
- SUSE Bug 1068709
- SUSE Bug 1068711
- SUSE CVE CVE-2017-1000231 page
- SUSE CVE CVE-2017-1000232 page
Описание
A double-free vulnerability in parse.c in ldns 1.7.0 have unspecified impact and attack vectors.
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15 SP1:ldns-devel-1.7.0-4.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP1:libldns2-1.7.0-4.3.1
SUSE Linux Enterprise Module for Development Tools 15 SP1:perl-DNS-LDNS-1.7.0-4.3.1
Ссылки
- CVE-2017-1000231
- SUSE Bug 1068711
Описание
A double-free vulnerability in str2host.c in ldns 1.7.0 have unspecified impact and attack vectors.
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15 SP1:ldns-devel-1.7.0-4.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP1:libldns2-1.7.0-4.3.1
SUSE Linux Enterprise Module for Development Tools 15 SP1:perl-DNS-LDNS-1.7.0-4.3.1
Ссылки
- CVE-2017-1000232
- SUSE Bug 1068709