Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2022:3807-1

Опубликовано: 28 окт. 2022
Источник: suse-cvrf

Описание

Security update for libconfuse0

This update for libconfuse0 fixes the following issues:

  • CVE-2022-40320: Fixed a heap-based buffer over-read in cfg_tilde_expand in confuse.c (bsc#1203326).

Список пакетов

SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS
libconfuse-devel-2.8-150000.3.3.1
libconfuse0-2.8-150000.3.3.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
libconfuse-devel-2.8-150000.3.3.1
libconfuse0-2.8-150000.3.3.1
SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS
libconfuse-devel-2.8-150000.3.3.1
libconfuse0-2.8-150000.3.3.1
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
libconfuse-devel-2.8-150000.3.3.1
libconfuse0-2.8-150000.3.3.1
SUSE Linux Enterprise High Performance Computing 15-ESPOS
libconfuse-devel-2.8-150000.3.3.1
libconfuse0-2.8-150000.3.3.1
SUSE Linux Enterprise High Performance Computing 15-LTSS
libconfuse-devel-2.8-150000.3.3.1
libconfuse0-2.8-150000.3.3.1
SUSE Linux Enterprise Module for HPC 15 SP3
libconfuse-devel-2.8-150000.3.3.1
libconfuse0-2.8-150000.3.3.1
SUSE Linux Enterprise Module for Package Hub 15 SP3
libconfuse-devel-2.8-150000.3.3.1
libconfuse0-2.8-150000.3.3.1
libconfuse0-lang-2.8-150000.3.3.1
SUSE Linux Enterprise Module for Package Hub 15 SP4
libconfuse-devel-2.8-150000.3.3.1
libconfuse0-2.8-150000.3.3.1
libconfuse0-lang-2.8-150000.3.3.1
openSUSE Leap 15.3
libconfuse-devel-2.8-150000.3.3.1
libconfuse0-2.8-150000.3.3.1
libconfuse0-lang-2.8-150000.3.3.1
openSUSE Leap 15.4
libconfuse-devel-2.8-150000.3.3.1
libconfuse0-2.8-150000.3.3.1
libconfuse0-lang-2.8-150000.3.3.1

Ссылки

Описание

cfg_tilde_expand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read.

Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libconfuse-devel-2.8-150000.3.3.1
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libconfuse0-2.8-150000.3.3.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libconfuse-devel-2.8-150000.3.3.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libconfuse0-2.8-150000.3.3.1
Ссылки