Описание
Security update for gegl
This update for gegl fixes the following issues:
- CVE-2018-10113: The process function in operations/external/ppm-load.c has unbounded memory allocation, leading to a denial of service (application crash) upon allocation failure. (bsc#1089731)
Список пакетов
SUSE Linux Enterprise Software Development Kit 12 SP4
gegl-devel-0.2.0-15.3.99
libgegl-0_2-0-0.2.0-15.3.99
SUSE Linux Enterprise Software Development Kit 12 SP5
gegl-devel-0.2.0-15.3.99
libgegl-0_2-0-0.2.0-15.3.99
SUSE Linux Enterprise Workstation Extension 12 SP4
gegl-0_2-0.2.0-15.3.99
gegl-0_2-lang-0.2.0-15.3.99
libgegl-0_2-0-0.2.0-15.3.99
SUSE Linux Enterprise Workstation Extension 12 SP5
gegl-0_2-0.2.0-15.3.99
gegl-0_2-lang-0.2.0-15.3.99
libgegl-0_2-0-0.2.0-15.3.99
Ссылки
- Link for SUSE-SU-2020:1658-1
- E-Mail link for SUSE-SU-2020:1658-1
- SUSE Security Ratings
- SUSE Bug 1089731
- SUSE CVE CVE-2018-10113 page
Описание
An issue was discovered in GEGL through 0.3.32. The process function in operations/external/ppm-load.c has unbounded memory allocation, leading to a denial of service (application crash) upon allocation failure.
Затронутые продукты
SUSE Linux Enterprise Software Development Kit 12 SP4:gegl-devel-0.2.0-15.3.99
SUSE Linux Enterprise Software Development Kit 12 SP4:libgegl-0_2-0-0.2.0-15.3.99
SUSE Linux Enterprise Software Development Kit 12 SP5:gegl-devel-0.2.0-15.3.99
SUSE Linux Enterprise Software Development Kit 12 SP5:libgegl-0_2-0-0.2.0-15.3.99
Ссылки
- CVE-2018-10113
- SUSE Bug 1089725
- SUSE Bug 1089731