Описание
Security update for libksba
This update for libksba fixes the following issues:
- CVE-2022-3515: Fixed a possible overflow in the TLV parser (bsc#1204357).
Список пакетов
Container suse/ltss/sle12.5/sles12sp5:latest
libksba8-1.3.0-24.3.1
Container suse/sles12sp4:latest
libksba8-1.3.0-24.3.1
Container suse/sles12sp5:latest
libksba8-1.3.0-24.3.1
Image SLES12-SP4-SAP-Azure-LI-BYOS-Production
libksba8-1.3.0-24.3.1
Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production
libksba8-1.3.0-24.3.1
Image SLES12-SP5-Azure-BYOS
libksba8-1.3.0-24.3.1
Image SLES12-SP5-Azure-Basic-On-Demand
libksba8-1.3.0-24.3.1
Image SLES12-SP5-Azure-HPC-BYOS
libksba8-1.3.0-24.3.1
Image SLES12-SP5-Azure-HPC-On-Demand
libksba8-1.3.0-24.3.1
Image SLES12-SP5-Azure-SAP-BYOS
libksba8-1.3.0-24.3.1
Image SLES12-SP5-Azure-SAP-On-Demand
libksba8-1.3.0-24.3.1
Image SLES12-SP5-Azure-Standard-On-Demand
libksba8-1.3.0-24.3.1
Image SLES12-SP5-EC2-BYOS
libksba8-1.3.0-24.3.1
Image SLES12-SP5-EC2-ECS-On-Demand
libksba8-1.3.0-24.3.1
Image SLES12-SP5-EC2-On-Demand
libksba8-1.3.0-24.3.1
Image SLES12-SP5-EC2-SAP-BYOS
libksba8-1.3.0-24.3.1
Image SLES12-SP5-EC2-SAP-On-Demand
libksba8-1.3.0-24.3.1
Image SLES12-SP5-GCE-BYOS
libksba8-1.3.0-24.3.1
Image SLES12-SP5-GCE-On-Demand
libksba8-1.3.0-24.3.1
Image SLES12-SP5-GCE-SAP-BYOS
libksba8-1.3.0-24.3.1
Image SLES12-SP5-GCE-SAP-On-Demand
libksba8-1.3.0-24.3.1
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
libksba8-1.3.0-24.3.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
libksba8-1.3.0-24.3.1
SUSE Linux Enterprise Server 12 SP2-BCL
libksba8-1.3.0-24.3.1
SUSE Linux Enterprise Server 12 SP3-BCL
libksba8-1.3.0-24.3.1
SUSE Linux Enterprise Server 12 SP4-LTSS
libksba8-1.3.0-24.3.1
SUSE Linux Enterprise Server 12 SP5
libksba8-1.3.0-24.3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP4
libksba8-1.3.0-24.3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libksba8-1.3.0-24.3.1
SUSE Linux Enterprise Software Development Kit 12 SP5
libksba-devel-1.3.0-24.3.1
SUSE OpenStack Cloud 9
libksba8-1.3.0-24.3.1
SUSE OpenStack Cloud Crowbar 9
libksba8-1.3.0-24.3.1
Ссылки
- Link for SUSE-SU-2022:3681-1
- E-Mail link for SUSE-SU-2022:3681-1
- SUSE Security Ratings
- SUSE Bug 1204357
- SUSE CVE CVE-2022-3515 page
Описание
A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser. The vulnerability can be exploited remotely for code execution on the target system by passing specially crafted data to the application, for example, a malicious S/MIME attachment.
Затронутые продукты
Container suse/ltss/sle12.5/sles12sp5:latest:libksba8-1.3.0-24.3.1
Container suse/sles12sp4:latest:libksba8-1.3.0-24.3.1
Container suse/sles12sp5:latest:libksba8-1.3.0-24.3.1
Image SLES12-SP4-SAP-Azure-LI-BYOS-Production:libksba8-1.3.0-24.3.1
Ссылки
- CVE-2022-3515
- SUSE Bug 1204357
- SUSE Bug 1204806
- SUSE Bug 1205080
- SUSE Bug 1205592
- SUSE Bug 1205627
- SUSE Bug 1206244