Описание
Security update for libcroco
This update for libcroco fixes the following issues:
- CVE-2020-12825: Fixed recursion issue in block and any productions (bsc#1171685).
Список пакетов
Image SLES15-SP2-BYOS-Azure
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-BYOS-EC2-HVM
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-BYOS-GCE
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-CHOST-BYOS-Aliyun
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-CHOST-BYOS-Azure
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-CHOST-BYOS-EC2
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-CHOST-BYOS-GCE
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-HPC-BYOS-Azure
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-HPC-BYOS-EC2-HVM
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-Manager-4-1-Proxy-BYOS-Azure
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-Manager-4-1-Proxy-BYOS-EC2-HVM
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-Manager-4-1-Proxy-BYOS-GCE
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-Manager-4-1-Server-BYOS-Azure
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-Manager-4-1-Server-BYOS-EC2-HVM
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-Manager-4-1-Server-BYOS-GCE
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-SAP-Azure
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-SAP-BYOS-Azure
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-SAP-BYOS-EC2-HVM
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-SAP-BYOS-GCE
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-SAP-EC2-HVM
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-SAP-GCE
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production
libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production
libcroco-0_6-3-0.6.13-3.3.1
SUSE Linux Enterprise Micro 5.0
libcroco-0_6-3-0.6.13-3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP2
libcroco-0.6.13-3.3.1
libcroco-0_6-3-0.6.13-3.3.1
libcroco-0_6-3-32bit-0.6.13-3.3.1
libcroco-devel-0.6.13-3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP3
libcroco-0.6.13-3.3.1
libcroco-0_6-3-0.6.13-3.3.1
libcroco-devel-0.6.13-3.3.1
Ссылки
- Link for SUSE-SU-2021:3123-1
- E-Mail link for SUSE-SU-2021:3123-1
- SUSE Security Ratings
- SUSE Bug 1171685
- SUSE CVE CVE-2020-12825 page
Описание
libcroco through 0.6.13 has excessive recursion in cr_parser_parse_any_core in cr-parser.c, leading to stack consumption.
Затронутые продукты
Image SLES15-SP2-BYOS-Azure:libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-BYOS-EC2-HVM:libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-BYOS-GCE:libcroco-0_6-3-0.6.13-3.3.1
Image SLES15-SP2-CHOST-BYOS-Aliyun:libcroco-0_6-3-0.6.13-3.3.1
Ссылки
- CVE-2020-12825
- SUSE Bug 1171685
- SUSE Bug 1203730
- SUSE Bug 1208647