SUSE-SU-2023:2314-1

Опубликовано: 30 мая 2023

Источник: suse-cvrf

Описание

Security update for libaom

This update for libaom fixes the following issues:

CVE-2020-0470: Fixed heap buffer overflow in extend_frame_highbd() (bsc#1180033).

Список пакетов

SUSE Linux Enterprise Real Time 15 SP3

libaom0-1.0.0-150200.3.15.1

openSUSE Leap 15.4

libaom0-1.0.0-150200.3.15.1

libaom0-32bit-1.0.0-150200.3.15.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20232314-1/
Link for SUSE-SU-2023:2314-1
https://lists.suse.com/pipermail/sle-updates/2023-May/029585.html
E-Mail link for SUSE-SU-2023:2314-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1180033
SUSE Bug 1180033
https://www.suse.com/security/cve/CVE-2020-0470/
SUSE CVE CVE-2020-0470 page

Описание

In extend_frame_highbd of restoration.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11 Android-10Android ID: A-166268541

Затронутые продукты

SUSE Linux Enterprise Real Time 15 SP3:libaom0-1.0.0-150200.3.15.1

openSUSE Leap 15.4:libaom0-1.0.0-150200.3.15.1

openSUSE Leap 15.4:libaom0-32bit-1.0.0-150200.3.15.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-0470.html
CVE-2020-0470
https://bugzilla.suse.com/1180033
SUSE Bug 1180033

SUSE-SU-2023:2314-1

Описание

Список пакетов

SUSE Linux Enterprise Real Time 15 SP3

openSUSE Leap 15.4

Ссылки

Уязвимость: CVE-2020-0470

Описание

Затронутые продукты

Ссылки