Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2021:1651-1

Опубликовано: 19 мая 2021
Источник: suse-cvrf

Описание

Security update for graphviz

This update for graphviz fixes the following issues:

  • CVE-2020-18032: Fixed possible remote code execution via buffer overflow (bsc#1185833).

Список пакетов

Image SLES15-SAP-Azure
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SAP-Azure-BYOS
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SAP-Azure-LI-BYOS-Production
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SAP-Azure-VLI-BYOS-Production
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SAP-EC2-HVM
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SAP-EC2-HVM-BYOS
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SAP-GCE
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SAP-GCE-BYOS
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP1-SAP-Azure
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP1-SAP-Azure-BYOS
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP1-SAP-EC2-HVM
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP1-SAP-EC2-HVM-BYOS
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP1-SAP-GCE
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP1-SAP-GCE-BYOS
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP2-SAP-Azure
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP2-SAP-BYOS-Azure
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP2-SAP-BYOS-EC2-HVM
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP2-SAP-BYOS-GCE
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP2-SAP-EC2-HVM
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP2-SAP-GCE
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP3-SAP-BYOS-Azure
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP3-SAP-BYOS-EC2-HVM
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
Image SLES15-SP3-SAP-BYOS-GCE
graphviz-2.40.1-6.9.1
graphviz-gd-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
SUSE Enterprise Storage 6
graphviz-2.40.1-6.9.1
graphviz-devel-2.40.1-6.9.1
graphviz-perl-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
graphviz-tcl-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
SUSE Linux Enterprise High Availability Extension 15
graphviz-gd-2.40.1-6.9.1
graphviz-python-2.40.1-6.9.1
SUSE Linux Enterprise High Availability Extension 15 SP1
graphviz-gd-2.40.1-6.9.1
graphviz-python-2.40.1-6.9.1
SUSE Linux Enterprise High Availability Extension 15 SP2
graphviz-gd-2.40.1-6.9.1
graphviz-python-2.40.1-6.9.1
SUSE Linux Enterprise High Availability Extension 15 SP3
graphviz-gd-2.40.1-6.9.1
graphviz-python-2.40.1-6.9.1
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS
graphviz-2.40.1-6.9.1
graphviz-devel-2.40.1-6.9.1
graphviz-perl-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
graphviz-tcl-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
graphviz-2.40.1-6.9.1
graphviz-devel-2.40.1-6.9.1
graphviz-perl-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
graphviz-tcl-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
SUSE Linux Enterprise High Performance Computing 15-ESPOS
graphviz-2.40.1-6.9.1
graphviz-devel-2.40.1-6.9.1
graphviz-perl-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
graphviz-tcl-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
SUSE Linux Enterprise High Performance Computing 15-LTSS
graphviz-2.40.1-6.9.1
graphviz-devel-2.40.1-6.9.1
graphviz-perl-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
graphviz-tcl-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
SUSE Linux Enterprise Module for Basesystem 15 SP2
graphviz-2.40.1-6.9.1
graphviz-devel-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
SUSE Linux Enterprise Module for Basesystem 15 SP3
graphviz-2.40.1-6.9.1
graphviz-devel-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
SUSE Linux Enterprise Module for Development Tools 15 SP2
graphviz-perl-2.40.1-6.9.1
SUSE Linux Enterprise Module for Development Tools 15 SP3
graphviz-perl-2.40.1-6.9.1
SUSE Linux Enterprise Module for Package Hub 15 SP2
graphviz-gnome-2.40.1-6.9.1
SUSE Linux Enterprise Module for Package Hub 15 SP3
graphviz-gnome-2.40.1-6.9.1
SUSE Linux Enterprise Module for Server Applications 15 SP2
graphviz-tcl-2.40.1-6.9.1
SUSE Linux Enterprise Module for Server Applications 15 SP3
graphviz-tcl-2.40.1-6.9.1
SUSE Linux Enterprise Server 15 SP1-BCL
graphviz-2.40.1-6.9.1
graphviz-devel-2.40.1-6.9.1
graphviz-perl-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
graphviz-tcl-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
SUSE Linux Enterprise Server 15 SP1-LTSS
graphviz-2.40.1-6.9.1
graphviz-devel-2.40.1-6.9.1
graphviz-perl-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
graphviz-tcl-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
SUSE Linux Enterprise Server 15-LTSS
graphviz-2.40.1-6.9.1
graphviz-devel-2.40.1-6.9.1
graphviz-perl-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
graphviz-tcl-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
SUSE Linux Enterprise Server for SAP Applications 15
graphviz-2.40.1-6.9.1
graphviz-devel-2.40.1-6.9.1
graphviz-perl-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
graphviz-tcl-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
graphviz-2.40.1-6.9.1
graphviz-devel-2.40.1-6.9.1
graphviz-perl-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
graphviz-tcl-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
SUSE Manager Proxy 4.0
graphviz-2.40.1-6.9.1
graphviz-devel-2.40.1-6.9.1
graphviz-perl-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
graphviz-tcl-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
SUSE Manager Retail Branch Server 4.0
graphviz-2.40.1-6.9.1
graphviz-devel-2.40.1-6.9.1
graphviz-perl-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
graphviz-tcl-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1
SUSE Manager Server 4.0
graphviz-2.40.1-6.9.1
graphviz-devel-2.40.1-6.9.1
graphviz-perl-2.40.1-6.9.1
graphviz-plugins-core-2.40.1-6.9.1
graphviz-tcl-2.40.1-6.9.1
libgraphviz6-2.40.1-6.9.1

Ссылки

Описание

Buffer Overflow in Graphviz Graph Visualization Tools from commit ID f8b9e035 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (application crash) by loading a crafted file into the "lib/common/shapes.c" component.

Затронутые продукты
Image SLES15-SAP-Azure-BYOS:graphviz-2.40.1-6.9.1
Image SLES15-SAP-Azure-BYOS:graphviz-gd-2.40.1-6.9.1
Image SLES15-SAP-Azure-BYOS:graphviz-plugins-core-2.40.1-6.9.1
Image SLES15-SAP-Azure-BYOS:libgraphviz6-2.40.1-6.9.1
Ссылки
Уязвимость SUSE-SU-2021:1651-1