Описание
Security update for vorbis-tools
This update for vorbis-tools fixes the following issues:
- CVE-2023-43361: Fixed a buffer overflow vulnerability during the conversion of wav files to ogg files. (bsc#1215942)
Список пакетов
SUSE Linux Enterprise Server 12 SP5
vorbis-tools-1.4.0-27.3.1
vorbis-tools-lang-1.4.0-27.3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
vorbis-tools-1.4.0-27.3.1
vorbis-tools-lang-1.4.0-27.3.1
Ссылки
- Link for SUSE-SU-2023:4218-1
- E-Mail link for SUSE-SU-2023:4218-1
- SUSE Security Ratings
- SUSE Bug 1215942
- SUSE CVE CVE-2023-43361 page
Описание
Buffer Overflow vulnerability in Vorbis-tools v.1.4.2 allows a local attacker to execute arbitrary code and cause a denial of service during the conversion of wav files to ogg files.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP5:vorbis-tools-1.4.0-27.3.1
SUSE Linux Enterprise Server 12 SP5:vorbis-tools-lang-1.4.0-27.3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5:vorbis-tools-1.4.0-27.3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5:vorbis-tools-lang-1.4.0-27.3.1
Ссылки
- CVE-2023-43361
- SUSE Bug 1215942
- SUSE Bug 1217526
- SUSE Bug 1217567
- SUSE Bug 1219472
- SUSE Bug 1219714