Описание
Security update for iniparser
This update for iniparser fixes the following issues:
- CVE-2023-33461: Fixed NULL pointer dereference in iniparser_getboolean() (bsc#1211889).
Список пакетов
SUSE Linux Enterprise Server 12 SP5
libiniparser0-3.1.0.git20140619_c5beb80a-3.3.1
libiniparser0-32bit-3.1.0.git20140619_c5beb80a-3.3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libiniparser0-3.1.0.git20140619_c5beb80a-3.3.1
libiniparser0-32bit-3.1.0.git20140619_c5beb80a-3.3.1
SUSE Linux Enterprise Software Development Kit 12 SP5
libiniparser-devel-3.1.0.git20140619_c5beb80a-3.3.1
Ссылки
- Link for SUSE-SU-2023:2692-1
- E-Mail link for SUSE-SU-2023:2692-1
- SUSE Security Ratings
- SUSE Bug 1211889
- SUSE CVE CVE-2023-33461 page
Описание
iniparser v4.1 is vulnerable to NULL Pointer Dereference in function iniparser_getlongint which misses check NULL for function iniparser_getstring's return.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP5:libiniparser0-3.1.0.git20140619_c5beb80a-3.3.1
SUSE Linux Enterprise Server 12 SP5:libiniparser0-32bit-3.1.0.git20140619_c5beb80a-3.3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5:libiniparser0-3.1.0.git20140619_c5beb80a-3.3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5:libiniparser0-32bit-3.1.0.git20140619_c5beb80a-3.3.1
Ссылки
- CVE-2023-33461
- SUSE Bug 1211889