SUSE-SU-2020:0911-1

Опубликовано: 03 апр. 2020

Источник: suse-cvrf

Описание

Security update for libpng12

This update for libpng12 fixes the following issues:

Security issue fixed:

CVE-2017-12652: Fixed an Input Validation Error related to the length of chunks (bsc#1141493).

Список пакетов

Image SLES12-SP4-SAP-Azure

libpng12-0-1.2.50-20.3.2

Image SLES12-SP4-SAP-Azure-BYOS

libpng12-0-1.2.50-20.3.2

Image SLES12-SP4-SAP-Azure-LI-BYOS-Production

libpng12-0-1.2.50-20.3.2

Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production

libpng12-0-1.2.50-20.3.2

Image SLES12-SP4-SAP-EC2-HVM

libpng12-0-1.2.50-20.3.2

Image SLES12-SP4-SAP-EC2-HVM-BYOS

libpng12-0-1.2.50-20.3.2

Image SLES12-SP4-SAP-GCE

libpng12-0-1.2.50-20.3.2

Image SLES12-SP4-SAP-GCE-BYOS

libpng12-0-1.2.50-20.3.2

Image SLES12-SP4-SAP-OCI-BYOS

libpng12-0-1.2.50-20.3.2

Image SLES12-SP5-Azure-SAP-BYOS

libpng12-0-1.2.50-20.3.2

Image SLES12-SP5-Azure-SAP-On-Demand

libpng12-0-1.2.50-20.3.2

Image SLES12-SP5-EC2-SAP-BYOS

libpng12-0-1.2.50-20.3.2

Image SLES12-SP5-EC2-SAP-On-Demand

libpng12-0-1.2.50-20.3.2

Image SLES12-SP5-GCE-SAP-BYOS

libpng12-0-1.2.50-20.3.2

Image SLES12-SP5-GCE-SAP-On-Demand

libpng12-0-1.2.50-20.3.2

Image SLES12-SP5-OCI-BYOS-SAP-BYOS

libpng12-0-1.2.50-20.3.2

Image SLES12-SP5-SAP-Azure-LI-BYOS-Production

libpng12-0-1.2.50-20.3.2

Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production

libpng12-0-1.2.50-20.3.2

SUSE Linux Enterprise Server 12 SP4

libpng12-0-1.2.50-20.3.2

libpng12-0-32bit-1.2.50-20.3.2

SUSE Linux Enterprise Server 12 SP5

libpng12-0-1.2.50-20.3.2

libpng12-0-32bit-1.2.50-20.3.2

SUSE Linux Enterprise Server for SAP Applications 12 SP4

libpng12-0-1.2.50-20.3.2

libpng12-0-32bit-1.2.50-20.3.2

SUSE Linux Enterprise Server for SAP Applications 12 SP5

libpng12-0-1.2.50-20.3.2

libpng12-0-32bit-1.2.50-20.3.2

SUSE Linux Enterprise Software Development Kit 12 SP4

libpng12-compat-devel-1.2.50-20.3.2

libpng12-devel-1.2.50-20.3.2

SUSE Linux Enterprise Software Development Kit 12 SP5

libpng12-compat-devel-1.2.50-20.3.2

libpng12-devel-1.2.50-20.3.2

Ссылки

https://www.suse.com/support/update/announcement/2020/suse-su-20200911-1/
Link for SUSE-SU-2020:0911-1
https://lists.suse.com/pipermail/sle-security-updates/2020-April/006673.html
E-Mail link for SUSE-SU-2020:0911-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1141493
SUSE Bug 1141493
https://www.suse.com/security/cve/CVE-2017-12652/
SUSE CVE CVE-2017-12652 page

Описание

libpng before 1.6.32 does not properly check the length of chunks against the user limit.

Затронутые продукты

Image SLES12-SP4-SAP-Azure-BYOS:libpng12-0-1.2.50-20.3.2

Image SLES12-SP4-SAP-Azure-LI-BYOS-Production:libpng12-0-1.2.50-20.3.2

Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production:libpng12-0-1.2.50-20.3.2

Image SLES12-SP4-SAP-Azure:libpng12-0-1.2.50-20.3.2

Ссылки

https://www.suse.com/security/cve/CVE-2017-12652.html
CVE-2017-12652
https://bugzilla.suse.com/1141493
SUSE Bug 1141493

SUSE-SU-2020:0911-1

Описание

Список пакетов

Image SLES12-SP4-SAP-Azure

Image SLES12-SP4-SAP-Azure-BYOS

Image SLES12-SP4-SAP-Azure-LI-BYOS-Production

Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production

Image SLES12-SP4-SAP-EC2-HVM

Image SLES12-SP4-SAP-EC2-HVM-BYOS

Image SLES12-SP4-SAP-GCE

Image SLES12-SP4-SAP-GCE-BYOS

Image SLES12-SP4-SAP-OCI-BYOS

Image SLES12-SP5-Azure-SAP-BYOS

Image SLES12-SP5-Azure-SAP-On-Demand

Image SLES12-SP5-EC2-SAP-BYOS

Image SLES12-SP5-EC2-SAP-On-Demand

Image SLES12-SP5-GCE-SAP-BYOS

Image SLES12-SP5-GCE-SAP-On-Demand

Image SLES12-SP5-OCI-BYOS-SAP-BYOS

Image SLES12-SP5-SAP-Azure-LI-BYOS-Production

Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production

SUSE Linux Enterprise Server 12 SP4

SUSE Linux Enterprise Server 12 SP5

SUSE Linux Enterprise Server for SAP Applications 12 SP4

SUSE Linux Enterprise Server for SAP Applications 12 SP5

SUSE Linux Enterprise Software Development Kit 12 SP4

SUSE Linux Enterprise Software Development Kit 12 SP5

Ссылки

Уязвимость: CVE-2017-12652

Описание

Затронутые продукты

Ссылки