Описание
Security update for libX11
This update for libX11 fixes the following issues:
- CVE-2020-14363: Fix an integer overflow in init_om() (bsc#1175239).
Список пакетов
Container caasp/v4/nginx-ingress-controller:beta1
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
Image SLES12-SP4-Azure-BYOS
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
Image SLES12-SP4-EC2-HVM-BYOS
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
Image SLES12-SP4-GCE-BYOS
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
Image SLES12-SP4-OCI-BYOS
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
Image SLES12-SP4-SAP-Azure
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
libX11-xcb1-1.6.2-12.15.1
Image SLES12-SP4-SAP-Azure-BYOS
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
libX11-xcb1-1.6.2-12.15.1
Image SLES12-SP4-SAP-Azure-LI-BYOS-Production
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
libX11-xcb1-1.6.2-12.15.1
Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
libX11-xcb1-1.6.2-12.15.1
Image SLES12-SP4-SAP-EC2-HVM
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
libX11-xcb1-1.6.2-12.15.1
Image SLES12-SP4-SAP-EC2-HVM-BYOS
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
libX11-xcb1-1.6.2-12.15.1
Image SLES12-SP4-SAP-GCE
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
libX11-xcb1-1.6.2-12.15.1
Image SLES12-SP4-SAP-GCE-BYOS
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
libX11-xcb1-1.6.2-12.15.1
Image SLES12-SP4-SAP-OCI-BYOS
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
libX11-xcb1-1.6.2-12.15.1
Image SLES12-SP5-Azure-BYOS
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
Image SLES12-SP5-Azure-Basic-On-Demand
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
Image SLES12-SP5-Azure-HPC-BYOS
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
Image SLES12-SP5-Azure-HPC-On-Demand
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
Image SLES12-SP5-Azure-SAP-BYOS
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
libX11-xcb1-1.6.2-12.15.1
Image SLES12-SP5-Azure-SAP-On-Demand
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
libX11-xcb1-1.6.2-12.15.1
Image SLES12-SP5-Azure-Standard-On-Demand
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
Image SLES12-SP5-EC2-BYOS
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
Image SLES12-SP5-EC2-ECS-On-Demand
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
Image SLES12-SP5-EC2-On-Demand
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
Image SLES12-SP5-EC2-SAP-BYOS
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
libX11-xcb1-1.6.2-12.15.1
Image SLES12-SP5-EC2-SAP-On-Demand
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
libX11-xcb1-1.6.2-12.15.1
Image SLES12-SP5-GCE-BYOS
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
Image SLES12-SP5-GCE-On-Demand
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
Image SLES12-SP5-GCE-SAP-BYOS
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
libX11-xcb1-1.6.2-12.15.1
Image SLES12-SP5-GCE-SAP-On-Demand
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
libX11-xcb1-1.6.2-12.15.1
Image SLES12-SP5-OCI-BYOS-BYOS
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
Image SLES12-SP5-OCI-BYOS-SAP-BYOS
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
libX11-xcb1-1.6.2-12.15.1
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
libX11-xcb1-1.6.2-12.15.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
libX11-6-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
libX11-xcb1-1.6.2-12.15.1
SUSE Linux Enterprise Server 12 SP5
libX11-6-1.6.2-12.15.1
libX11-6-32bit-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
libX11-xcb1-1.6.2-12.15.1
libX11-xcb1-32bit-1.6.2-12.15.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libX11-6-1.6.2-12.15.1
libX11-6-32bit-1.6.2-12.15.1
libX11-data-1.6.2-12.15.1
libX11-xcb1-1.6.2-12.15.1
libX11-xcb1-32bit-1.6.2-12.15.1
SUSE Linux Enterprise Software Development Kit 12 SP5
libX11-devel-1.6.2-12.15.1
Ссылки
- Link for SUSE-SU-2020:2475-1
- E-Mail link for SUSE-SU-2020:2475-1
- SUSE Security Ratings
- SUSE Bug 1175239
- SUSE CVE CVE-2020-14363 page
Описание
An integer overflow vulnerability leading to a double-free was found in libX11. This flaw allows a local privileged attacker to cause an application compiled with libX11 to crash, or in some cases, result in arbitrary code execution. The highest threat from this flaw is to confidentiality, integrity as well as system availability.
Затронутые продукты
Container caasp/v4/nginx-ingress-controller:beta1:libX11-6-1.6.2-12.15.1
Container caasp/v4/nginx-ingress-controller:beta1:libX11-data-1.6.2-12.15.1
Image SLES12-SP4-Azure-BYOS:libX11-6-1.6.2-12.15.1
Image SLES12-SP4-Azure-BYOS:libX11-data-1.6.2-12.15.1
Ссылки
- CVE-2020-14363
- SUSE Bug 1175239