Описание
Security update for libconfuse0
This update for libconfuse0 fixes the following issues:
- CVE-2022-40320: Fixed a heap-based buffer over-read in cfg_tilde_expand in confuse.c (bsc#1203326).
Список пакетов
SUSE Linux Enterprise Module for HPC 12
libconfuse-devel-2.8-3.6.1
libconfuse0-2.8-3.6.1
libconfuse0-lang-2.8-3.6.1
Ссылки
- Link for SUSE-SU-2022:3331-1
- E-Mail link for SUSE-SU-2022:3331-1
- SUSE Security Ratings
- SUSE Bug 1203326
- SUSE CVE CVE-2022-40320 page
Описание
cfg_tilde_expand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read.
Затронутые продукты
SUSE Linux Enterprise Module for HPC 12:libconfuse-devel-2.8-3.6.1
SUSE Linux Enterprise Module for HPC 12:libconfuse0-2.8-3.6.1
SUSE Linux Enterprise Module for HPC 12:libconfuse0-lang-2.8-3.6.1
Ссылки
- CVE-2022-40320
- SUSE Bug 1203326