SUSE-SU-2020:2901-1

Опубликовано: 13 окт. 2020

Источник: suse-cvrf

Описание

Security update for libproxy

This update for libproxy fixes the following issues:

CVE-2020-25219: Rewrote url::recvline to be nonrecursive (bsc#1176410).
CVE-2020-26154: Fixed a buffer overflow when PAC is enabled (bsc#1177143).

Список пакетов

Container caasp/v4/389-ds:1.4.2

libproxy1-0.4.15-4.3.1

Container caasp/v4/busybox:1.34.1

libproxy1-0.4.15-4.3.1

Container caasp/v4/caasp-dex:2.16.0

libproxy1-0.4.15-4.3.1

Container caasp/v4/cert-exporter:2.3.0

libproxy1-0.4.15-4.3.1

Container caasp/v4/cilium-etcd-operator:2.0.5

libproxy1-0.4.15-4.3.1

Container caasp/v4/cilium-init:1.5.3

libproxy1-0.4.15-4.3.1

Container caasp/v4/cilium-operator:1.6.6

libproxy1-0.4.15-4.3.1

Container caasp/v4/cilium:1.6.6

libproxy1-0.4.15-4.3.1

Container caasp/v4/cloud-provider-openstack:1.15.0

libproxy1-0.4.15-4.3.1

Container caasp/v4/configmap-reload:0.3.0

libproxy1-0.4.15-4.3.1

Container caasp/v4/coredns:1.6.7

libproxy1-0.4.15-4.3.1

Container caasp/v4/curl:7.60.0

libproxy1-0.4.15-4.3.1

Container caasp/v4/etcd:3.4.13

libproxy1-0.4.15-4.3.1

Container caasp/v4/gangway:3.1.0

libproxy1-0.4.15-4.3.1

Container caasp/v4/grafana:7.5.12

libproxy1-0.4.15-4.3.1

Container caasp/v4/helm-tiller:2.16.12

libproxy1-0.4.15-4.3.1

Container caasp/v4/hyperkube:v1.17.17

libproxy1-0.4.15-4.3.1

Container caasp/v4/k8s-sidecar:0.1.75

libproxy1-0.4.15-4.3.1

Container caasp/v4/kube-state-metrics:1.9.3

libproxy1-0.4.15-4.3.1

Container caasp/v4/kubernetes-client:1.17.17

libproxy1-0.4.15-4.3.1

Container caasp/v4/kucero:1.3.0

libproxy1-0.4.15-4.3.1

Container caasp/v4/kured:1.3.0

libproxy1-0.4.15-4.3.1

Container caasp/v4/metrics-server:0.3.6

libproxy1-0.4.15-4.3.1

Container caasp/v4/prometheus-alertmanager:0.16.2

libproxy1-0.4.15-4.3.1

Container caasp/v4/prometheus-node-exporter:1.1.2

libproxy1-0.4.15-4.3.1

Container caasp/v4/prometheus-pushgateway:0.6.0

libproxy1-0.4.15-4.3.1

Container caasp/v4/prometheus-server:2.7.1

libproxy1-0.4.15-4.3.1

Container caasp/v4/rsyslog:8.39.0

libproxy1-0.4.15-4.3.1

Container caasp/v4/skuba-tooling:0.1.0

libproxy1-0.4.15-4.3.1

Container caasp/v4/test-update:beta

libproxy1-0.4.15-4.3.1

Container caasp/v4/velero-plugin-for-aws:1.0.1

libproxy1-0.4.15-4.3.1

Container caasp/v4/velero-plugin-for-gcp:1.0.1

libproxy1-0.4.15-4.3.1

Container caasp/v4/velero-plugin-for-microsoft-azure:1.0.1

libproxy1-0.4.15-4.3.1

Container caasp/v4/velero-restic-restore-helper:1.3.1

libproxy1-0.4.15-4.3.1

Container caasp/v4/velero:1.3.1

libproxy1-0.4.15-4.3.1

Container ses/6/cephcsi/cephcsi:latest

libproxy1-0.4.15-4.3.1

Container ses/6/rook/ceph:latest

libproxy1-0.4.15-4.3.1

Container ses/7/ceph/ceph:latest

libproxy1-0.4.15-4.3.1

Container ses/7/ceph/grafana:latest

libproxy1-0.4.15-4.3.1

Container ses/7/ceph/prometheus-alertmanager:latest

libproxy1-0.4.15-4.3.1

Container ses/7/ceph/prometheus-node-exporter:latest

libproxy1-0.4.15-4.3.1

Container ses/7/ceph/prometheus-server:latest

libproxy1-0.4.15-4.3.1

Container ses/7/cephcsi/cephcsi:latest

libproxy1-0.4.15-4.3.1

Container ses/7/cephcsi/csi-attacher:v2.1.0

libproxy1-0.4.15-4.3.1

Container ses/7/cephcsi/csi-attacher:v3.3.0

libproxy1-0.4.15-4.3.1

Container ses/7/cephcsi/csi-livenessprobe:v1.1.0

libproxy1-0.4.15-4.3.1

Container ses/7/cephcsi/csi-node-driver-registrar:v1.2.0

libproxy1-0.4.15-4.3.1

Container ses/7/cephcsi/csi-node-driver-registrar:v2.3.0

libproxy1-0.4.15-4.3.1

Container ses/7/cephcsi/csi-provisioner:v1.6.0

libproxy1-0.4.15-4.3.1

Container ses/7/cephcsi/csi-provisioner:v3.0.0

libproxy1-0.4.15-4.3.1

Container ses/7/cephcsi/csi-resizer:v0.4.0

libproxy1-0.4.15-4.3.1

Container ses/7/cephcsi/csi-resizer:v1.3.0

libproxy1-0.4.15-4.3.1

Container ses/7/cephcsi/csi-snapshotter:v2.1.0

libproxy1-0.4.15-4.3.1

Container ses/7/cephcsi/csi-snapshotter:v2.1.1

libproxy1-0.4.15-4.3.1

Container ses/7/cephcsi/csi-snapshotter:v4.2.0

libproxy1-0.4.15-4.3.1

Container ses/7/prometheus-webhook-snmp:latest

libproxy1-0.4.15-4.3.1

Container ses/7/rook/ceph:latest

libproxy1-0.4.15-4.3.1

Container suse/sle-micro/5.0/toolbox:latest

libproxy1-0.4.15-4.3.1

Container suse/sle15:15.0

libproxy1-0.4.15-4.3.1

Container suse/sle15:15.1

libproxy1-0.4.15-4.3.1

Container suse/sle15:15.2

libproxy1-0.4.15-4.3.1

Image SLES15-Azure-BYOS

libproxy1-0.4.15-4.3.1

Image SLES15-EC2-CHOST-HVM-BYOS

libproxy1-0.4.15-4.3.1

Image SLES15-EC2-HVM-BYOS

libproxy1-0.4.15-4.3.1

Image SLES15-GCE-BYOS

libproxy1-0.4.15-4.3.1

Image SLES15-OCI-BYOS

libproxy1-0.4.15-4.3.1

Image SLES15-SAP-Azure

libproxy1-0.4.15-4.3.1

Image SLES15-SAP-Azure-BYOS

libproxy1-0.4.15-4.3.1

Image SLES15-SAP-Azure-LI-BYOS-Production

libproxy1-0.4.15-4.3.1

Image SLES15-SAP-Azure-VLI-BYOS-Production

libproxy1-0.4.15-4.3.1

Image SLES15-SAP-EC2-HVM

libproxy1-0.4.15-4.3.1

Image SLES15-SAP-EC2-HVM-BYOS

libproxy1-0.4.15-4.3.1

Image SLES15-SAP-GCE

libproxy1-0.4.15-4.3.1

Image SLES15-SAP-GCE-BYOS

libproxy1-0.4.15-4.3.1

Image SLES15-SAP-OCI-BYOS

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-Azure-BYOS

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-Azure-HPC-BYOS

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-CAP-Deployment-BYOS-EC2-HVM

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-CAP-Deployment-BYOS-GCE

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-CHOST-BYOS-Azure

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-CHOST-BYOS-EC2

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-CHOST-BYOS-GCE

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-EC2-HPC-HVM-BYOS

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-EC2-HVM-BYOS

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-GCE-BYOS

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-Manager-4-0-Azure-BYOS-Proxy

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-Manager-4-0-Azure-BYOS-Server

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-Manager-4-0-EC2-HVM-BYOS-Proxy

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-Manager-4-0-EC2-HVM-BYOS-Server

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-Manager-4-0-GCE-BYOS-Proxy

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-Manager-4-0-GCE-BYOS-Server

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-OCI-BYOS

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-SAP-Azure

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-SAP-Azure-BYOS

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-SAP-Azure-LI-BYOS-Production

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-SAP-EC2-HVM

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-SAP-EC2-HVM-BYOS

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-SAP-GCE

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-SAP-GCE-BYOS

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-SAP-OCI-BYOS

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-SAPCAL-Azure

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-SAPCAL-EC2-HVM

libproxy1-0.4.15-4.3.1

Image SLES15-SP1-SAPCAL-GCE

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-Azure-Basic

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-Azure-Standard

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-BYOS-Azure

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-BYOS-EC2-HVM

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-BYOS-GCE

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-CAP-Deployment-BYOS-Azure

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-CHOST-BYOS-Aliyun

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-CHOST-BYOS-Azure

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-CHOST-BYOS-EC2

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-CHOST-BYOS-GCE

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-EC2-ECS-HVM

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-EC2-HVM

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-GCE

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-HPC-Azure

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-HPC-BYOS-Azure

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-HPC-BYOS-EC2-HVM

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-Manager-4-1-Proxy-BYOS-Azure

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-Manager-4-1-Proxy-BYOS-EC2-HVM

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-Manager-4-1-Proxy-BYOS-GCE

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-Manager-4-1-Server-BYOS-Azure

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-Manager-4-1-Server-BYOS-EC2-HVM

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-Manager-4-1-Server-BYOS-GCE

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-SAP-Azure

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-SAP-Azure-LI-BYOS-Production

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-SAP-BYOS-Azure

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-SAP-BYOS-EC2-HVM

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-SAP-BYOS-GCE

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-SAP-EC2-HVM

libproxy1-0.4.15-4.3.1

Image SLES15-SP2-SAP-GCE

libproxy1-0.4.15-4.3.1

SUSE Linux Enterprise High Performance Computing 15-ESPOS

libproxy-devel-0.4.15-4.3.1

libproxy1-0.4.15-4.3.1

perl-Net-Libproxy-0.4.15-4.3.1

SUSE Linux Enterprise High Performance Computing 15-LTSS

libproxy-devel-0.4.15-4.3.1

libproxy1-0.4.15-4.3.1

perl-Net-Libproxy-0.4.15-4.3.1

SUSE Linux Enterprise Module for Basesystem 15 SP1

libproxy-devel-0.4.15-4.3.1

libproxy1-0.4.15-4.3.1

SUSE Linux Enterprise Module for Basesystem 15 SP2

libproxy-devel-0.4.15-4.3.1

libproxy1-0.4.15-4.3.1

SUSE Linux Enterprise Module for Development Tools 15 SP1

perl-Net-Libproxy-0.4.15-4.3.1

SUSE Linux Enterprise Module for Development Tools 15 SP2

perl-Net-Libproxy-0.4.15-4.3.1

SUSE Linux Enterprise Server 15-LTSS

libproxy-devel-0.4.15-4.3.1

libproxy1-0.4.15-4.3.1

perl-Net-Libproxy-0.4.15-4.3.1

SUSE Linux Enterprise Server for SAP Applications 15

libproxy-devel-0.4.15-4.3.1

libproxy1-0.4.15-4.3.1

perl-Net-Libproxy-0.4.15-4.3.1

SUSE Linux Enterprise Workstation Extension 15 SP1

libproxy1-config-gnome3-0.4.15-4.3.1

libproxy1-networkmanager-0.4.15-4.3.1

SUSE Linux Enterprise Workstation Extension 15 SP2

libproxy1-config-gnome3-0.4.15-4.3.1

libproxy1-networkmanager-0.4.15-4.3.1

Ссылки

https://www.suse.com/support/update/announcement/2020/suse-su-20202901-1/
Link for SUSE-SU-2020:2901-1
https://lists.suse.com/pipermail/sle-security-updates/2020-October/007540.html
E-Mail link for SUSE-SU-2020:2901-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1176410
SUSE Bug 1176410
https://bugzilla.suse.com/1177143
SUSE Bug 1177143
https://www.suse.com/security/cve/CVE-2020-25219/
SUSE CVE CVE-2020-25219 page
https://www.suse.com/security/cve/CVE-2020-26154/
SUSE CVE CVE-2020-26154 page

Описание

url::recvline in url.cpp in libproxy 0.4.x through 0.4.15 allows a remote HTTP server to trigger uncontrolled recursion via a response composed of an infinite stream that lacks a newline character. This leads to stack exhaustion.

Затронутые продукты

Container caasp/v4/389-ds:1.4.2:libproxy1-0.4.15-4.3.1

Container caasp/v4/busybox:1.34.1:libproxy1-0.4.15-4.3.1

Container caasp/v4/caasp-dex:2.16.0:libproxy1-0.4.15-4.3.1

Container caasp/v4/cert-exporter:2.3.0:libproxy1-0.4.15-4.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-25219.html
CVE-2020-25219
https://bugzilla.suse.com/1176410
SUSE Bug 1176410

Описание

url.cpp in libproxy through 0.4.15 is prone to a buffer overflow when PAC is enabled, as demonstrated by a large PAC file that is delivered without a Content-length header.

Затронутые продукты

Container caasp/v4/389-ds:1.4.2:libproxy1-0.4.15-4.3.1

Container caasp/v4/busybox:1.34.1:libproxy1-0.4.15-4.3.1

Container caasp/v4/caasp-dex:2.16.0:libproxy1-0.4.15-4.3.1

Container caasp/v4/cert-exporter:2.3.0:libproxy1-0.4.15-4.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-26154.html
CVE-2020-26154
https://bugzilla.suse.com/1177143
SUSE Bug 1177143