SUSE-SU-2023:3290-1

Опубликовано: 11 авг. 2023

Источник: suse-cvrf

Описание

Security update for qatengine

This update for qatengine fixes the following issues:

CVE-2022-43507: Fixed a buffer overflow issue with SHA3. (bsc#1211296)

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP4

qatengine-0.6.10-150400.3.3.1

openSUSE Leap 15.4

qatengine-0.6.10-150400.3.3.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20233290-1/
Link for SUSE-SU-2023:3290-1
https://lists.suse.com/pipermail/sle-security-updates/2023-August/015878.html
E-Mail link for SUSE-SU-2023:3290-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1211296
SUSE Bug 1211296
https://www.suse.com/security/cve/CVE-2022-43507/
SUSE CVE CVE-2022-43507 page

Описание

Improper buffer restrictions in the Intel(R) QAT Engine for OpenSSL before version 0.6.16 may allow a privileged user to potentially enable escalation of privilege via network access.

Затронутые продукты

SUSE Linux Enterprise Module for Basesystem 15 SP4:qatengine-0.6.10-150400.3.3.1

openSUSE Leap 15.4:qatengine-0.6.10-150400.3.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2022-43507.html
CVE-2022-43507
https://bugzilla.suse.com/1211296
SUSE Bug 1211296

SUSE-SU-2023:3290-1

Описание

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP4

openSUSE Leap 15.4

Ссылки

Уязвимость: CVE-2022-43507

Описание

Затронутые продукты

Ссылки