exploitDog

SUSE-SU-2021:14800-1

Опубликовано: 16 сент. 2021

Источник: suse-cvrf

Описание

Security update for libcroco

This update for libcroco fixes the following issues:

CVE-2020-12825: Fixed recursion issue in block and any productions (bsc#1171685).

Список пакетов

SUSE Linux Enterprise Point of Sale 11 SP3

libcroco-0_6-3-0.6.1-122.9.1

SUSE Linux Enterprise Server 11 SP4-LTSS

libcroco-0_6-3-0.6.1-122.9.1

libcroco-0_6-3-32bit-0.6.1-122.9.1

Ссылки

https://www.suse.com/support/update/announcement/2021/suse-su-202114800-1/
Link for SUSE-SU-2021:14800-1
https://lists.suse.com/pipermail/sle-security-updates/2021-September/009454.html
E-Mail link for SUSE-SU-2021:14800-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1171685
SUSE Bug 1171685
https://www.suse.com/security/cve/CVE-2020-12825/
SUSE CVE CVE-2020-12825 page

Описание

libcroco through 0.6.13 has excessive recursion in cr_parser_parse_any_core in cr-parser.c, leading to stack consumption.

Затронутые продукты

SUSE Linux Enterprise Point of Sale 11 SP3:libcroco-0_6-3-0.6.1-122.9.1

SUSE Linux Enterprise Server 11 SP4-LTSS:libcroco-0_6-3-0.6.1-122.9.1

SUSE Linux Enterprise Server 11 SP4-LTSS:libcroco-0_6-3-32bit-0.6.1-122.9.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-12825.html
CVE-2020-12825
https://bugzilla.suse.com/1171685
SUSE Bug 1171685
https://bugzilla.suse.com/1203730
SUSE Bug 1203730
https://bugzilla.suse.com/1208647
SUSE Bug 1208647