SUSE-SU-2020:3351-1

Опубликовано: 16 нояб. 2020

Источник: suse-cvrf

Описание

Security update for raptor

This update for raptor fixes the following issues:

Fixed a heap overflow vulnerability (bsc#1178593, CVE-2017-18926).
Update raptor to version 2.0.15
- Made several fixes to Turtle / N-Triples family of parsers and serializers
- Added utility functions for re-entrant sorting of objects and sequences.
- Made other fixes and improvements including fixing reported issues: 0000574, 0000575, 0000576, 0000577, 0000579, 0000581 and 0000584.

Список пакетов

HPE Helion OpenStack 8

libraptor2-0-2.0.15-5.3.1

SUSE Enterprise Storage 5

libraptor2-0-2.0.15-5.3.1

SUSE Linux Enterprise Server 12 SP2-BCL

libraptor2-0-2.0.15-5.3.1

SUSE Linux Enterprise Server 12 SP2-LTSS

libraptor2-0-2.0.15-5.3.1

SUSE Linux Enterprise Server 12 SP3-BCL

libraptor2-0-2.0.15-5.3.1

SUSE Linux Enterprise Server 12 SP3-LTSS

libraptor2-0-2.0.15-5.3.1

SUSE Linux Enterprise Server 12 SP4-LTSS

libraptor2-0-2.0.15-5.3.1

SUSE Linux Enterprise Server 12 SP5

libraptor2-0-2.0.15-5.3.1

SUSE Linux Enterprise Server for SAP Applications 12 SP2

libraptor2-0-2.0.15-5.3.1

SUSE Linux Enterprise Server for SAP Applications 12 SP3

libraptor2-0-2.0.15-5.3.1

SUSE Linux Enterprise Server for SAP Applications 12 SP4

libraptor2-0-2.0.15-5.3.1

SUSE Linux Enterprise Server for SAP Applications 12 SP5

libraptor2-0-2.0.15-5.3.1

SUSE Linux Enterprise Software Development Kit 12 SP5

libraptor-devel-2.0.15-5.3.1

raptor-2.0.15-5.3.1

SUSE Linux Enterprise Workstation Extension 12 SP5

raptor-2.0.15-5.3.1

SUSE OpenStack Cloud 7

libraptor2-0-2.0.15-5.3.1

SUSE OpenStack Cloud 8

libraptor2-0-2.0.15-5.3.1

SUSE OpenStack Cloud 9

libraptor2-0-2.0.15-5.3.1

SUSE OpenStack Cloud Crowbar 8

libraptor2-0-2.0.15-5.3.1

SUSE OpenStack Cloud Crowbar 9

libraptor2-0-2.0.15-5.3.1

Ссылки

https://www.suse.com/support/update/announcement/2020/suse-su-20203351-1/
Link for SUSE-SU-2020:3351-1
https://lists.suse.com/pipermail/sle-security-updates/2020-November/007782.html
E-Mail link for SUSE-SU-2020:3351-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1178593
SUSE Bug 1178593
https://www.suse.com/security/cve/CVE-2017-18926/
SUSE CVE CVE-2017-18926 page

Описание

raptor_xml_writer_start_element_common in raptor_xml_writer.c in Raptor RDF Syntax Library 2.0.15 miscalculates the maximum nspace declarations for the XML writer, leading to heap-based buffer overflows (sometimes seen in raptor_qname_format_as_xml).

Затронутые продукты

HPE Helion OpenStack 8:libraptor2-0-2.0.15-5.3.1

SUSE Enterprise Storage 5:libraptor2-0-2.0.15-5.3.1

SUSE Linux Enterprise Server 12 SP2-BCL:libraptor2-0-2.0.15-5.3.1

SUSE Linux Enterprise Server 12 SP2-LTSS:libraptor2-0-2.0.15-5.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-18926.html
CVE-2017-18926
https://bugzilla.suse.com/1178593
SUSE Bug 1178593
https://bugzilla.suse.com/1178784
SUSE Bug 1178784
https://bugzilla.suse.com/1178903
SUSE Bug 1178903
https://bugzilla.suse.com/1183914
SUSE Bug 1183914

SUSE-SU-2020:3351-1

Описание

Список пакетов

HPE Helion OpenStack 8

SUSE Enterprise Storage 5

SUSE Linux Enterprise Server 12 SP2-BCL

SUSE Linux Enterprise Server 12 SP2-LTSS

SUSE Linux Enterprise Server 12 SP3-BCL

SUSE Linux Enterprise Server 12 SP3-LTSS

SUSE Linux Enterprise Server 12 SP4-LTSS

SUSE Linux Enterprise Server 12 SP5

SUSE Linux Enterprise Server for SAP Applications 12 SP2

SUSE Linux Enterprise Server for SAP Applications 12 SP3

SUSE Linux Enterprise Server for SAP Applications 12 SP4

SUSE Linux Enterprise Server for SAP Applications 12 SP5

SUSE Linux Enterprise Software Development Kit 12 SP5

SUSE Linux Enterprise Workstation Extension 12 SP5

SUSE OpenStack Cloud 7

SUSE OpenStack Cloud 8

SUSE OpenStack Cloud 9

SUSE OpenStack Cloud Crowbar 8

SUSE OpenStack Cloud Crowbar 9

Ссылки

Уязвимость: CVE-2017-18926

Описание

Затронутые продукты

Ссылки