SUSE-SU-2020:2238-1

Опубликовано: 14 авг. 2020

Источник: suse-cvrf

Описание

Security update for perl-PlRPC

This update for perl-PlRPC fixes the following issues:

Security notice: [bsc#858243, CVE-2013-7284]
- Document security vulnerability on Storable and reply attack
Add perl-PlRPC-CVE-2013-7284.patch

Список пакетов

SUSE Linux Enterprise Server 12 SP5

perl-PlRPC-0.2020-25.3.1

SUSE Linux Enterprise Server for SAP Applications 12 SP5

perl-PlRPC-0.2020-25.3.1

Ссылки

https://www.suse.com/support/update/announcement/2020/suse-su-20202238-1/
Link for SUSE-SU-2020:2238-1
https://lists.suse.com/pipermail/sle-security-updates/2020-August/007267.html
E-Mail link for SUSE-SU-2020:2238-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/858243
SUSE Bug 858243
https://www.suse.com/security/cve/CVE-2013-7284/
SUSE CVE CVE-2013-7284 page

Описание

The PlRPC module, possibly 0.2020 and earlier, for Perl uses the Storable module, which allows remote attackers to execute arbitrary code via a crafted request, which is not properly handled when it is deserialized.

Затронутые продукты

SUSE Linux Enterprise Server 12 SP5:perl-PlRPC-0.2020-25.3.1

SUSE Linux Enterprise Server for SAP Applications 12 SP5:perl-PlRPC-0.2020-25.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2013-7284.html
CVE-2013-7284
https://bugzilla.suse.com/858243
SUSE Bug 858243

SUSE-SU-2020:2238-1

Описание

Список пакетов

SUSE Linux Enterprise Server 12 SP5

SUSE Linux Enterprise Server for SAP Applications 12 SP5

Ссылки

Уязвимость: CVE-2013-7284

Описание

Затронутые продукты

Ссылки