Описание
Security update for graphviz
This update for graphviz fixes the following issues:
- CVE-2018-10196: Fixed a null dereference in rebuild_vlis (bsc#1093447).
Список пакетов
SUSE Linux Enterprise High Availability Extension 11 SP4
graphviz-python-2.20.2-8.3.6
Ссылки
- Link for SUSE-SU-2020:14524-1
- E-Mail link for SUSE-SU-2020:14524-1
- SUSE Security Ratings
- SUSE Bug 1093447
- SUSE CVE CVE-2018-10196 page
Описание
NULL pointer dereference vulnerability in the rebuild_vlists function in lib/dotgen/conc.c in the dotgen library in Graphviz 2.40.1 allows remote attackers to cause a denial of service (application crash) via a crafted file.
Затронутые продукты
SUSE Linux Enterprise High Availability Extension 11 SP4:graphviz-python-2.20.2-8.3.6
Ссылки
- CVE-2018-10196
- SUSE Bug 1093447