SUSE-SU-2021:1857-1

Опубликовано: 04 июн. 2021

Источник: suse-cvrf

Описание

Security update for djvulibre

This update for djvulibre fixes the following issues:

CVE-2021-3500: Stack overflow in function DJVU:DjVuDocument:get_djvu_file() via crafted djvu file (bsc#1186253)

Список пакетов

SUSE Enterprise Storage 6

libdjvulibre-devel-3.5.27-3.14.1

libdjvulibre21-3.5.27-3.14.1

SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS

libdjvulibre-devel-3.5.27-3.14.1

libdjvulibre21-3.5.27-3.14.1

SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS

libdjvulibre-devel-3.5.27-3.14.1

libdjvulibre21-3.5.27-3.14.1

SUSE Linux Enterprise High Performance Computing 15-ESPOS

libdjvulibre-devel-3.5.27-3.14.1

libdjvulibre21-3.5.27-3.14.1

SUSE Linux Enterprise High Performance Computing 15-LTSS

libdjvulibre-devel-3.5.27-3.14.1

libdjvulibre21-3.5.27-3.14.1

SUSE Linux Enterprise Server 15 SP1-BCL

libdjvulibre-devel-3.5.27-3.14.1

libdjvulibre21-3.5.27-3.14.1

SUSE Linux Enterprise Server 15 SP1-LTSS

libdjvulibre-devel-3.5.27-3.14.1

libdjvulibre21-3.5.27-3.14.1

SUSE Linux Enterprise Server 15-LTSS

libdjvulibre-devel-3.5.27-3.14.1

libdjvulibre21-3.5.27-3.14.1

SUSE Linux Enterprise Server for SAP Applications 15

libdjvulibre-devel-3.5.27-3.14.1

libdjvulibre21-3.5.27-3.14.1

SUSE Linux Enterprise Server for SAP Applications 15 SP1

libdjvulibre-devel-3.5.27-3.14.1

libdjvulibre21-3.5.27-3.14.1

SUSE Manager Proxy 4.0

libdjvulibre-devel-3.5.27-3.14.1

libdjvulibre21-3.5.27-3.14.1

SUSE Manager Retail Branch Server 4.0

libdjvulibre-devel-3.5.27-3.14.1

libdjvulibre21-3.5.27-3.14.1

SUSE Manager Server 4.0

libdjvulibre-devel-3.5.27-3.14.1

libdjvulibre21-3.5.27-3.14.1

Ссылки

https://www.suse.com/support/update/announcement/2021/suse-su-20211857-1/
Link for SUSE-SU-2021:1857-1
https://lists.suse.com/pipermail/sle-security-updates/2021-June/008932.html
E-Mail link for SUSE-SU-2021:1857-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1186253
SUSE Bug 1186253
https://www.suse.com/security/cve/CVE-2021-3500/
SUSE CVE CVE-2021-3500 page

Описание

A flaw was found in djvulibre-3.5.28 and earlier. A Stack overflow in function DJVU::DjVuDocument::get_djvu_file() via crafted djvu file may lead to application crash and other consequences.

Затронутые продукты

SUSE Enterprise Storage 6:libdjvulibre-devel-3.5.27-3.14.1

SUSE Enterprise Storage 6:libdjvulibre21-3.5.27-3.14.1

SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libdjvulibre-devel-3.5.27-3.14.1

SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libdjvulibre21-3.5.27-3.14.1

Ссылки

https://www.suse.com/security/cve/CVE-2021-3500.html
CVE-2021-3500
https://bugzilla.suse.com/1186253
SUSE Bug 1186253

SUSE-SU-2021:1857-1

Описание

Список пакетов

SUSE Enterprise Storage 6

SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS

SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS

SUSE Linux Enterprise High Performance Computing 15-ESPOS

SUSE Linux Enterprise High Performance Computing 15-LTSS

SUSE Linux Enterprise Server 15 SP1-BCL

SUSE Linux Enterprise Server 15 SP1-LTSS

SUSE Linux Enterprise Server 15-LTSS

SUSE Linux Enterprise Server for SAP Applications 15

SUSE Linux Enterprise Server for SAP Applications 15 SP1

SUSE Manager Proxy 4.0

SUSE Manager Retail Branch Server 4.0

SUSE Manager Server 4.0

Ссылки

Уязвимость: CVE-2021-3500

Описание

Затронутые продукты

Ссылки