Описание
Security update for glibc
This update for glibc fixes the following issues:
- Fix buffer overrun in EUC-KR conversion module (CVE-2019-25013, bsc#1182117, BZ #24973)
- gconv: Fix assertion failure in ISO-2022-JP-3 module (CVE-2021-3326, bsc#1181505, BZ #27256)
- Fix parsing of /sys/devices/system/cpu/online (bsc#1180038, BZ #25859)
- powerpc: Add support for POWER10 (bsc#1181365)
Список пакетов
Container suse/ltss/sle12.5/sles12sp5:latest
glibc-2.22-114.5.1
Container suse/sles12sp4:latest
glibc-2.22-114.5.1
Container suse/sles12sp5:latest
glibc-2.22-114.5.1
Image SLES12-SP4-Azure-BYOS
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP4-EC2-HVM-BYOS
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP4-GCE-BYOS
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP4-OCI-BYOS
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP4-SAP-Azure
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP4-SAP-Azure-BYOS
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP4-SAP-Azure-LI-BYOS-Production
glibc-2.22-114.5.1
glibc-32bit-2.22-114.5.1
glibc-devel-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production
glibc-2.22-114.5.1
glibc-32bit-2.22-114.5.1
glibc-devel-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP4-SAP-EC2-HVM
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP4-SAP-EC2-HVM-BYOS
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP4-SAP-GCE
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP4-SAP-GCE-BYOS
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP4-SAP-OCI-BYOS
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP5-Azure-BYOS
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP5-Azure-Basic-On-Demand
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP5-Azure-HPC-BYOS
glibc-2.22-114.5.1
glibc-32bit-2.22-114.5.1
glibc-devel-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP5-Azure-HPC-On-Demand
glibc-2.22-114.5.1
glibc-32bit-2.22-114.5.1
glibc-devel-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP5-Azure-SAP-BYOS
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP5-Azure-SAP-On-Demand
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP5-Azure-Standard-On-Demand
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP5-EC2-BYOS
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP5-EC2-ECS-On-Demand
glibc-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP5-EC2-On-Demand
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP5-EC2-SAP-BYOS
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP5-EC2-SAP-On-Demand
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP5-GCE-BYOS
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP5-GCE-On-Demand
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP5-GCE-SAP-BYOS
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP5-GCE-SAP-On-Demand
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP5-OCI-BYOS-BYOS
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP5-OCI-BYOS-SAP-BYOS
glibc-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
glibc-2.22-114.5.1
glibc-32bit-2.22-114.5.1
glibc-devel-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
glibc-2.22-114.5.1
glibc-32bit-2.22-114.5.1
glibc-devel-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-locale-2.22-114.5.1
nscd-2.22-114.5.1
SUSE Linux Enterprise Server 12 SP5
glibc-2.22-114.5.1
glibc-32bit-2.22-114.5.1
glibc-devel-2.22-114.5.1
glibc-devel-32bit-2.22-114.5.1
glibc-html-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-info-2.22-114.5.1
glibc-locale-2.22-114.5.1
glibc-locale-32bit-2.22-114.5.1
glibc-profile-2.22-114.5.1
glibc-profile-32bit-2.22-114.5.1
nscd-2.22-114.5.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
glibc-2.22-114.5.1
glibc-32bit-2.22-114.5.1
glibc-devel-2.22-114.5.1
glibc-devel-32bit-2.22-114.5.1
glibc-html-2.22-114.5.1
glibc-i18ndata-2.22-114.5.1
glibc-info-2.22-114.5.1
glibc-locale-2.22-114.5.1
glibc-locale-32bit-2.22-114.5.1
glibc-profile-2.22-114.5.1
glibc-profile-32bit-2.22-114.5.1
nscd-2.22-114.5.1
SUSE Linux Enterprise Software Development Kit 12 SP5
glibc-devel-static-2.22-114.5.1
glibc-info-2.22-114.5.1
Ссылки
- Link for SUSE-SU-2021:0608-1
- E-Mail link for SUSE-SU-2021:0608-1
- SUSE Security Ratings
- SUSE Bug 1180038
- SUSE Bug 1181365
- SUSE Bug 1181505
- SUSE Bug 1182117
- SUSE CVE CVE-2019-25013 page
- SUSE CVE CVE-2021-3326 page
Описание
The iconv feature in the GNU C Library (aka glibc or libc6) through 2.32, when processing invalid multi-byte input sequences in the EUC-KR encoding, may have a buffer over-read.
Затронутые продукты
Container suse/ltss/sle12.5/sles12sp5:latest:glibc-2.22-114.5.1
Container suse/sles12sp4:latest:glibc-2.22-114.5.1
Container suse/sles12sp5:latest:glibc-2.22-114.5.1
Image SLES12-SP4-Azure-BYOS:glibc-2.22-114.5.1
Ссылки
- CVE-2019-25013
- SUSE Bug 1182117
- SUSE Bug 1220988
Описание
The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid input sequences in the ISO-2022-JP-3 encoding, fails an assertion in the code path and aborts the program, potentially resulting in a denial of service.
Затронутые продукты
Container suse/ltss/sle12.5/sles12sp5:latest:glibc-2.22-114.5.1
Container suse/sles12sp4:latest:glibc-2.22-114.5.1
Container suse/sles12sp5:latest:glibc-2.22-114.5.1
Image SLES12-SP4-Azure-BYOS:glibc-2.22-114.5.1
Ссылки
- CVE-2021-3326
- SUSE Bug 1181505
- SUSE Bug 1212283
- SUSE Bug 1220988