Описание
Security update for libjpeg-turbo
This update for libjpeg-turbo fixes the following issues:
- CVE-2020-17541: Fixed a stack-based buffer overflow in the 'transform' component (bsc#1186764).
Список пакетов
Container bci/openjdk-devel:11
libjpeg8-8.1.2-5.18.1
Container bci/openjdk:latest
libjpeg8-8.1.2-5.18.1
Container suse/rmt-nginx:latest
libjpeg8-8.1.2-5.18.1
Container suse/sles/15.3/libguestfs-tools:0.45.0
libjpeg8-8.1.2-5.18.1
Container suse/sles/15.3/virt-launcher:0.45.0
libjpeg8-8.1.2-5.18.1
Image SLES15-SAP-Azure
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SAP-Azure-BYOS
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SAP-Azure-LI-BYOS-Production
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SAP-Azure-VLI-BYOS-Production
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SAP-EC2-HVM
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SAP-EC2-HVM-BYOS
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SAP-GCE
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SAP-GCE-BYOS
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP1-SAP-Azure
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP1-SAP-Azure-BYOS
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP1-SAP-EC2-HVM
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP1-SAP-EC2-HVM-BYOS
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP1-SAP-GCE
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP1-SAP-GCE-BYOS
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP1-SAPCAL-Azure
libjpeg8-8.1.2-5.18.1
Image SLES15-SP1-SAPCAL-EC2-HVM
libjpeg8-8.1.2-5.18.1
Image SLES15-SP1-SAPCAL-GCE
libjpeg8-8.1.2-5.18.1
Image SLES15-SP2-Manager-4-1-Server-BYOS-Azure
libjpeg8-8.1.2-5.18.1
Image SLES15-SP2-Manager-4-1-Server-BYOS-EC2-HVM
libjpeg8-8.1.2-5.18.1
Image SLES15-SP2-Manager-4-1-Server-BYOS-GCE
libjpeg8-8.1.2-5.18.1
Image SLES15-SP2-SAP-Azure
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP2-SAP-BYOS-Azure
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP2-SAP-BYOS-EC2-HVM
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP2-SAP-BYOS-GCE
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP2-SAP-EC2-HVM
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP2-SAP-GCE
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP3-EC2-HVM
libjpeg8-8.1.2-5.18.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure
libjpeg8-8.1.2-5.18.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM
libjpeg8-8.1.2-5.18.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE
libjpeg8-8.1.2-5.18.1
Image SLES15-SP3-SAP-Azure
libjpeg8-8.1.2-5.18.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP3-SAP-BYOS-Azure
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP3-SAP-BYOS-EC2-HVM
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP3-SAP-BYOS-GCE
libjpeg62-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
Image SLES15-SP3-SAP-EC2-HVM
libjpeg8-8.1.2-5.18.1
Image SLES15-SP3-SAP-GCE
libjpeg8-8.1.2-5.18.1
Image SLES15-SP3-SAPCAL-Azure
libjpeg8-8.1.2-5.18.1
Image SLES15-SP3-SAPCAL-EC2-HVM
libjpeg8-8.1.2-5.18.1
Image SLES15-SP3-SAPCAL-GCE
libjpeg8-8.1.2-5.18.1
SUSE Linux Enterprise Micro 5.0
libjpeg8-8.1.2-5.18.1
SUSE Linux Enterprise Module for Basesystem 15 SP2
libjpeg62-62.2.0-5.18.1
libjpeg62-devel-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
libjpeg8-devel-8.1.2-5.18.1
libturbojpeg0-8.1.2-5.18.1
SUSE Linux Enterprise Module for Basesystem 15 SP3
libjpeg62-62.2.0-5.18.1
libjpeg62-devel-62.2.0-5.18.1
libjpeg8-8.1.2-5.18.1
libjpeg8-devel-8.1.2-5.18.1
libturbojpeg0-8.1.2-5.18.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP2
libjpeg8-32bit-8.1.2-5.18.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP3
libjpeg8-32bit-8.1.2-5.18.1
SUSE Linux Enterprise Module for Package Hub 15 SP2
libjpeg-turbo-1.5.3-5.18.1
SUSE Linux Enterprise Module for Package Hub 15 SP3
libjpeg-turbo-1.5.3-5.18.1
Ссылки
- Link for SUSE-SU-2021:1958-1
- E-Mail link for SUSE-SU-2021:1958-1
- SUSE Security Ratings
- SUSE Bug 1186764
- SUSE CVE CVE-2020-17541 page
Описание
Libjpeg-turbo all version have a stack-based buffer overflow in the "transform" component. A remote attacker can send a malformed jpeg file to the service and cause arbitrary code execution or denial of service of the target service.
Затронутые продукты
Container bci/openjdk-devel:11:libjpeg8-8.1.2-5.18.1
Container bci/openjdk:latest:libjpeg8-8.1.2-5.18.1
Container suse/rmt-nginx:latest:libjpeg8-8.1.2-5.18.1
Container suse/sles/15.3/libguestfs-tools:0.45.0:libjpeg8-8.1.2-5.18.1
Ссылки
- CVE-2020-17541
- SUSE Bug 1186764