SUSE-SU-2022:3190-1

Опубликовано: 08 сент. 2022

Источник: suse-cvrf

Описание

Security update for libEMF

This update for libEMF fixes the following issues:

CVE-2020-13999: Fixed an integer overflow that could lead to denial of service via a crafted file (bsc#1173070).

Список пакетов

SUSE Linux Enterprise Software Development Kit 12 SP5

libEMF-devel-1.0.7-11.6.1

libEMF1-1.0.7-11.6.1

SUSE Linux Enterprise Workstation Extension 12 SP5

libEMF1-1.0.7-11.6.1

Ссылки

https://www.suse.com/support/update/announcement/2022/suse-su-20223190-1/
Link for SUSE-SU-2022:3190-1
https://lists.suse.com/pipermail/sle-security-updates/2022-September/012191.html
E-Mail link for SUSE-SU-2022:3190-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1173070
SUSE Bug 1173070
https://www.suse.com/security/cve/CVE-2020-13999/
SUSE CVE CVE-2020-13999 page

Описание

ScaleViewPortExtEx in libemf.cpp in libEMF (aka ECMA-234 Metafile Library) 1.0.12 allows an integer overflow and denial of service via a crafted EMF file.

Затронутые продукты

SUSE Linux Enterprise Software Development Kit 12 SP5:libEMF-devel-1.0.7-11.6.1

SUSE Linux Enterprise Software Development Kit 12 SP5:libEMF1-1.0.7-11.6.1

SUSE Linux Enterprise Workstation Extension 12 SP5:libEMF1-1.0.7-11.6.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-13999.html
CVE-2020-13999
https://bugzilla.suse.com/1173070
SUSE Bug 1173070

SUSE-SU-2022:3190-1

Описание

Список пакетов

SUSE Linux Enterprise Software Development Kit 12 SP5

SUSE Linux Enterprise Workstation Extension 12 SP5

Ссылки

Уязвимость: CVE-2020-13999

Описание

Затронутые продукты

Ссылки