Описание
Security update for libcroco
This update for libcroco fixes the following issues:
- CVE-2020-12825: Fixed recursion issue in block and any productions (bsc#1171685).
Список пакетов
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production
libcroco-0_6-3-0.6.12-150000.4.6.2
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production
libcroco-0_6-3-0.6.12-150000.4.6.2
Image SLES15-SP1-SAPCAL-Azure
libcroco-0_6-3-0.6.12-150000.4.6.2
Image SLES15-SP1-SAPCAL-EC2-HVM
libcroco-0_6-3-0.6.12-150000.4.6.2
Image SLES15-SP1-SAPCAL-GCE
libcroco-0_6-3-0.6.12-150000.4.6.2
SUSE Enterprise Storage 6
libcroco-0.6.12-150000.4.6.2
libcroco-0_6-3-0.6.12-150000.4.6.2
libcroco-0_6-3-32bit-0.6.12-150000.4.6.2
libcroco-devel-0.6.12-150000.4.6.2
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS
libcroco-0.6.12-150000.4.6.2
libcroco-0_6-3-0.6.12-150000.4.6.2
libcroco-0_6-3-32bit-0.6.12-150000.4.6.2
libcroco-devel-0.6.12-150000.4.6.2
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
libcroco-0.6.12-150000.4.6.2
libcroco-0_6-3-0.6.12-150000.4.6.2
libcroco-0_6-3-32bit-0.6.12-150000.4.6.2
libcroco-devel-0.6.12-150000.4.6.2
SUSE Linux Enterprise High Performance Computing 15-ESPOS
libcroco-0.6.12-150000.4.6.2
libcroco-0_6-3-0.6.12-150000.4.6.2
libcroco-0_6-3-32bit-0.6.12-150000.4.6.2
libcroco-devel-0.6.12-150000.4.6.2
SUSE Linux Enterprise High Performance Computing 15-LTSS
libcroco-0.6.12-150000.4.6.2
libcroco-0_6-3-0.6.12-150000.4.6.2
libcroco-0_6-3-32bit-0.6.12-150000.4.6.2
libcroco-devel-0.6.12-150000.4.6.2
SUSE Linux Enterprise Server 15 SP1-BCL
libcroco-0.6.12-150000.4.6.2
libcroco-0_6-3-0.6.12-150000.4.6.2
libcroco-0_6-3-32bit-0.6.12-150000.4.6.2
libcroco-devel-0.6.12-150000.4.6.2
SUSE Linux Enterprise Server 15 SP1-LTSS
libcroco-0.6.12-150000.4.6.2
libcroco-0_6-3-0.6.12-150000.4.6.2
libcroco-0_6-3-32bit-0.6.12-150000.4.6.2
libcroco-devel-0.6.12-150000.4.6.2
SUSE Linux Enterprise Server 15-LTSS
libcroco-0.6.12-150000.4.6.2
libcroco-0_6-3-0.6.12-150000.4.6.2
libcroco-0_6-3-32bit-0.6.12-150000.4.6.2
libcroco-devel-0.6.12-150000.4.6.2
SUSE Linux Enterprise Server for SAP Applications 15
libcroco-0.6.12-150000.4.6.2
libcroco-0_6-3-0.6.12-150000.4.6.2
libcroco-0_6-3-32bit-0.6.12-150000.4.6.2
libcroco-devel-0.6.12-150000.4.6.2
SUSE Linux Enterprise Server for SAP Applications 15 SP1
libcroco-0.6.12-150000.4.6.2
libcroco-0_6-3-0.6.12-150000.4.6.2
libcroco-0_6-3-32bit-0.6.12-150000.4.6.2
libcroco-devel-0.6.12-150000.4.6.2
Ссылки
- Link for SUSE-SU-2022:3493-1
- E-Mail link for SUSE-SU-2022:3493-1
- SUSE Security Ratings
- SUSE Bug 1171685
- SUSE CVE CVE-2020-12825 page
Описание
libcroco through 0.6.13 has excessive recursion in cr_parser_parse_any_core in cr-parser.c, leading to stack consumption.
Затронутые продукты
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:libcroco-0_6-3-0.6.12-150000.4.6.2
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production:libcroco-0_6-3-0.6.12-150000.4.6.2
Image SLES15-SP1-SAPCAL-Azure:libcroco-0_6-3-0.6.12-150000.4.6.2
Image SLES15-SP1-SAPCAL-EC2-HVM:libcroco-0_6-3-0.6.12-150000.4.6.2
Ссылки
- CVE-2020-12825
- SUSE Bug 1171685
- SUSE Bug 1203730
- SUSE Bug 1208647