SUSE-SU-2020:2475-2

Опубликовано: 01 дек. 2020

Источник: suse-cvrf

Описание

Security update for libX11

This update for libX11 fixes the following issues:

CVE-2020-14363: Fix an integer overflow in init_om() (bsc#1175239).

Список пакетов

Container caasp/v4/nginx-ingress-controller:beta1

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

HPE Helion OpenStack 8

libX11-6-1.6.2-12.15.1

libX11-6-32bit-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

libX11-xcb1-32bit-1.6.2-12.15.1

Image SLES12-SP4-Azure-BYOS

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

Image SLES12-SP4-EC2-HVM-BYOS

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

Image SLES12-SP4-GCE-BYOS

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

Image SLES12-SP4-OCI-BYOS

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

Image SLES12-SP4-SAP-Azure

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

Image SLES12-SP4-SAP-Azure-BYOS

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

Image SLES12-SP4-SAP-Azure-LI-BYOS-Production

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

Image SLES12-SP4-SAP-EC2-HVM

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

Image SLES12-SP4-SAP-EC2-HVM-BYOS

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

Image SLES12-SP4-SAP-GCE

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

Image SLES12-SP4-SAP-GCE-BYOS

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

Image SLES12-SP4-SAP-OCI-BYOS

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

Image SLES12-SP5-Azure-BYOS

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

Image SLES12-SP5-Azure-Basic-On-Demand

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

Image SLES12-SP5-Azure-HPC-BYOS

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

Image SLES12-SP5-Azure-HPC-On-Demand

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

Image SLES12-SP5-Azure-SAP-BYOS

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

Image SLES12-SP5-Azure-SAP-On-Demand

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

Image SLES12-SP5-Azure-Standard-On-Demand

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

Image SLES12-SP5-EC2-BYOS

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

Image SLES12-SP5-EC2-ECS-On-Demand

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

Image SLES12-SP5-EC2-On-Demand

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

Image SLES12-SP5-EC2-SAP-BYOS

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

Image SLES12-SP5-EC2-SAP-On-Demand

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

Image SLES12-SP5-GCE-BYOS

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

Image SLES12-SP5-GCE-On-Demand

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

Image SLES12-SP5-GCE-SAP-BYOS

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

Image SLES12-SP5-GCE-SAP-On-Demand

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

Image SLES12-SP5-OCI-BYOS-BYOS

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

Image SLES12-SP5-OCI-BYOS-SAP-BYOS

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

Image SLES12-SP5-SAP-Azure-LI-BYOS-Production

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production

libX11-6-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

SUSE Enterprise Storage 5

libX11-6-1.6.2-12.15.1

libX11-6-32bit-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

libX11-xcb1-32bit-1.6.2-12.15.1

SUSE Linux Enterprise Server 12 SP2-BCL

libX11-6-1.6.2-12.15.1

libX11-6-32bit-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

libX11-xcb1-32bit-1.6.2-12.15.1

SUSE Linux Enterprise Server 12 SP2-LTSS

libX11-6-1.6.2-12.15.1

libX11-6-32bit-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

libX11-xcb1-32bit-1.6.2-12.15.1

SUSE Linux Enterprise Server 12 SP3-BCL

libX11-6-1.6.2-12.15.1

libX11-6-32bit-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

libX11-xcb1-32bit-1.6.2-12.15.1

SUSE Linux Enterprise Server 12 SP3-LTSS

libX11-6-1.6.2-12.15.1

libX11-6-32bit-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

libX11-xcb1-32bit-1.6.2-12.15.1

SUSE Linux Enterprise Server 12 SP4-LTSS

libX11-6-1.6.2-12.15.1

libX11-6-32bit-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

libX11-xcb1-32bit-1.6.2-12.15.1

SUSE Linux Enterprise Server for SAP Applications 12 SP2

libX11-6-1.6.2-12.15.1

libX11-6-32bit-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

libX11-xcb1-32bit-1.6.2-12.15.1

SUSE Linux Enterprise Server for SAP Applications 12 SP3

libX11-6-1.6.2-12.15.1

libX11-6-32bit-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

libX11-xcb1-32bit-1.6.2-12.15.1

SUSE Linux Enterprise Server for SAP Applications 12 SP4

libX11-6-1.6.2-12.15.1

libX11-6-32bit-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

libX11-xcb1-32bit-1.6.2-12.15.1

SUSE OpenStack Cloud 7

libX11-6-1.6.2-12.15.1

libX11-6-32bit-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

libX11-xcb1-32bit-1.6.2-12.15.1

SUSE OpenStack Cloud 8

libX11-6-1.6.2-12.15.1

libX11-6-32bit-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

libX11-xcb1-32bit-1.6.2-12.15.1

SUSE OpenStack Cloud 9

libX11-6-1.6.2-12.15.1

libX11-6-32bit-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

libX11-xcb1-32bit-1.6.2-12.15.1

SUSE OpenStack Cloud Crowbar 8

libX11-6-1.6.2-12.15.1

libX11-6-32bit-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

libX11-xcb1-32bit-1.6.2-12.15.1

SUSE OpenStack Cloud Crowbar 9

libX11-6-1.6.2-12.15.1

libX11-6-32bit-1.6.2-12.15.1

libX11-data-1.6.2-12.15.1

libX11-xcb1-1.6.2-12.15.1

libX11-xcb1-32bit-1.6.2-12.15.1

Ссылки

https://www.suse.com/support/update/announcement/2020/suse-su-20202475-2/
Link for SUSE-SU-2020:2475-2
https://lists.suse.com/pipermail/sle-security-updates/2020-December/007895.html
E-Mail link for SUSE-SU-2020:2475-2
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1175239
SUSE Bug 1175239
https://www.suse.com/security/cve/CVE-2020-14363/
SUSE CVE CVE-2020-14363 page

Описание

An integer overflow vulnerability leading to a double-free was found in libX11. This flaw allows a local privileged attacker to cause an application compiled with libX11 to crash, or in some cases, result in arbitrary code execution. The highest threat from this flaw is to confidentiality, integrity as well as system availability.

Затронутые продукты

Container caasp/v4/nginx-ingress-controller:beta1:libX11-6-1.6.2-12.15.1

Container caasp/v4/nginx-ingress-controller:beta1:libX11-data-1.6.2-12.15.1

HPE Helion OpenStack 8:libX11-6-1.6.2-12.15.1

HPE Helion OpenStack 8:libX11-6-32bit-1.6.2-12.15.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-14363.html
CVE-2020-14363
https://bugzilla.suse.com/1175239
SUSE Bug 1175239

SUSE-SU-2020:2475-2

Описание

Список пакетов

Container caasp/v4/nginx-ingress-controller:beta1

HPE Helion OpenStack 8

Image SLES12-SP4-Azure-BYOS

Image SLES12-SP4-EC2-HVM-BYOS

Image SLES12-SP4-GCE-BYOS

Image SLES12-SP4-OCI-BYOS

Image SLES12-SP4-SAP-Azure

Image SLES12-SP4-SAP-Azure-BYOS

Image SLES12-SP4-SAP-Azure-LI-BYOS-Production

Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production

Image SLES12-SP4-SAP-EC2-HVM

Image SLES12-SP4-SAP-EC2-HVM-BYOS

Image SLES12-SP4-SAP-GCE

Image SLES12-SP4-SAP-GCE-BYOS

Image SLES12-SP4-SAP-OCI-BYOS

Image SLES12-SP5-Azure-BYOS

Image SLES12-SP5-Azure-Basic-On-Demand

Image SLES12-SP5-Azure-HPC-BYOS

Image SLES12-SP5-Azure-HPC-On-Demand

Image SLES12-SP5-Azure-SAP-BYOS

Image SLES12-SP5-Azure-SAP-On-Demand

Image SLES12-SP5-Azure-Standard-On-Demand

Image SLES12-SP5-EC2-BYOS

Image SLES12-SP5-EC2-ECS-On-Demand

Image SLES12-SP5-EC2-On-Demand

Image SLES12-SP5-EC2-SAP-BYOS

Image SLES12-SP5-EC2-SAP-On-Demand

Image SLES12-SP5-GCE-BYOS

Image SLES12-SP5-GCE-On-Demand

Image SLES12-SP5-GCE-SAP-BYOS

Image SLES12-SP5-GCE-SAP-On-Demand

Image SLES12-SP5-OCI-BYOS-BYOS

Image SLES12-SP5-OCI-BYOS-SAP-BYOS

Image SLES12-SP5-SAP-Azure-LI-BYOS-Production

Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production

SUSE Enterprise Storage 5

SUSE Linux Enterprise Server 12 SP2-BCL

SUSE Linux Enterprise Server 12 SP2-LTSS

SUSE Linux Enterprise Server 12 SP3-BCL

SUSE Linux Enterprise Server 12 SP3-LTSS

SUSE Linux Enterprise Server 12 SP4-LTSS

SUSE Linux Enterprise Server for SAP Applications 12 SP2

SUSE Linux Enterprise Server for SAP Applications 12 SP3

SUSE Linux Enterprise Server for SAP Applications 12 SP4

SUSE OpenStack Cloud 7

SUSE OpenStack Cloud 8

SUSE OpenStack Cloud 9

SUSE OpenStack Cloud Crowbar 8

SUSE OpenStack Cloud Crowbar 9

Ссылки

Уязвимость: CVE-2020-14363

Описание

Затронутые продукты

Ссылки