SUSE-SU-2023:0511-1

Опубликовано: 24 фев. 2023

Источник: suse-cvrf

Описание

Security update for libraw

This update for libraw fixes the following issues:

CVE-2021-32142: Fixed buffer overflow in the LibRaw_buffer_datastream:gets function (bsc#1208470).

Список пакетов

SUSE Linux Enterprise Workstation Extension 15 SP4

libraw16-0.18.9-150000.3.17.1

openSUSE Leap 15.4

libraw16-0.18.9-150000.3.17.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20230511-1/
Link for SUSE-SU-2023:0511-1
https://lists.suse.com/pipermail/sle-security-updates/2023-February/013887.html
E-Mail link for SUSE-SU-2023:0511-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1208470
SUSE Bug 1208470
https://www.suse.com/security/cve/CVE-2021-32142/
SUSE CVE CVE-2021-32142 page

Описание

Buffer Overflow vulnerability in LibRaw linux/unix v0.20.0 allows attacker to escalate privileges via the LibRaw_buffer_datastream::gets(char*, int) in /src/libraw/src/libraw_datastream.cpp.

Затронутые продукты

SUSE Linux Enterprise Workstation Extension 15 SP4:libraw16-0.18.9-150000.3.17.1

openSUSE Leap 15.4:libraw16-0.18.9-150000.3.17.1

Ссылки

https://www.suse.com/security/cve/CVE-2021-32142.html
CVE-2021-32142
https://bugzilla.suse.com/1208470
SUSE Bug 1208470

SUSE-SU-2023:0511-1

Описание

Список пакетов

SUSE Linux Enterprise Workstation Extension 15 SP4

openSUSE Leap 15.4

Ссылки

Уязвимость: CVE-2021-32142

Описание

Затронутые продукты

Ссылки