Описание
Security update for exempi
This update for exempi fixes the following issues:
- CVE-2020-18652: Fixed buffer overflow vulnerability in WEBP_Support.cpp (bsc#1214488).
Список пакетов
SUSE Linux Enterprise Module for Desktop Applications 15 SP4
libexempi-devel-2.4.5-150000.3.6.1
libexempi3-2.4.5-150000.3.6.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP5
libexempi-devel-2.4.5-150000.3.6.1
libexempi3-2.4.5-150000.3.6.1
openSUSE Leap 15.4
exempi-tools-2.4.5-150000.3.6.1
libexempi-devel-2.4.5-150000.3.6.1
libexempi3-2.4.5-150000.3.6.1
libexempi3-32bit-2.4.5-150000.3.6.1
openSUSE Leap 15.5
exempi-tools-2.4.5-150000.3.6.1
libexempi-devel-2.4.5-150000.3.6.1
libexempi3-2.4.5-150000.3.6.1
libexempi3-32bit-2.4.5-150000.3.6.1
Ссылки
- Link for SUSE-SU-2023:3518-1
- E-Mail link for SUSE-SU-2023:3518-1
- SUSE Security Ratings
- SUSE Bug 1214488
- SUSE CVE CVE-2020-18652 page
Описание
Buffer Overflow vulnerability in WEBP_Support.cpp in exempi 2.5.0 and earlier allows remote attackers to cause a denial of service via opening of crafted webp file.
Затронутые продукты
SUSE Linux Enterprise Module for Desktop Applications 15 SP4:libexempi-devel-2.4.5-150000.3.6.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP4:libexempi3-2.4.5-150000.3.6.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP5:libexempi-devel-2.4.5-150000.3.6.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP5:libexempi3-2.4.5-150000.3.6.1
Ссылки
- CVE-2020-18652
- SUSE Bug 1214488