SUSE-SU-2024:1296-1

Опубликовано: 15 апр. 2024

Источник: suse-cvrf

Описание

Security update for texlive

This update for texlive fixes the following issues:

CVE-2023-46048: Fixed null pointer dereference in texk/web2c/pdftexdir/writet1.c (bsc#1222126)

Список пакетов

SUSE Linux Enterprise Server 12 SP5

libkpathsea6-6.2.0dev-22.11.1

SUSE Linux Enterprise Server for SAP Applications 12 SP5

libkpathsea6-6.2.0dev-22.11.1

SUSE Linux Enterprise Software Development Kit 12 SP5

libptexenc1-1.3.2dev-22.11.1

texlive-2013.20130620-22.11.1

texlive-bibtex-bin-2013.20130620.svn30088-22.11.1

texlive-bin-devel-2013.20130620-22.11.1

texlive-checkcites-bin-2013.20130620.svn25623-22.11.1

texlive-context-bin-2013.20130620.svn29741-22.11.1

texlive-cweb-bin-2013.20130620.svn30088-22.11.1

texlive-dviasm-bin-2013.20130620.svn8329-22.11.1

texlive-dvidvi-bin-2013.20130620.svn30088-22.11.1

texlive-dviljk-bin-2013.20130620.svn30088-22.11.1

texlive-dvipdfmx-bin-2013.20130620.svn30845-22.11.1

texlive-dvipng-bin-2013.20130620.svn30845-22.11.1

texlive-dvips-bin-2013.20130620.svn30088-22.11.1

texlive-dvisvgm-bin-2013.20130620.svn30613-22.11.1

texlive-gsftopk-bin-2013.20130620.svn30088-22.11.1

texlive-jadetex-bin-2013.20130620.svn3006-22.11.1

texlive-kpathsea-bin-2013.20130620.svn30088-22.11.1

texlive-kpathsea-devel-6.2.0dev-22.11.1

texlive-lacheck-bin-2013.20130620.svn30088-22.11.1

texlive-latex-bin-bin-2013.20130620.svn14050-22.11.1

texlive-lua2dox-bin-2013.20130620.svn29053-22.11.1

texlive-luaotfload-bin-2013.20130620.svn30313-22.11.1

texlive-luatex-bin-2013.20130620.svn30845-22.11.1

texlive-makeindex-bin-2013.20130620.svn30088-22.11.1

texlive-metafont-bin-2013.20130620.svn30088-22.11.1

texlive-metapost-bin-2013.20130620.svn30845-22.11.1

texlive-mfware-bin-2013.20130620.svn30088-22.11.1

texlive-mptopdf-bin-2013.20130620.svn18674-22.11.1

texlive-pdftex-bin-2013.20130620.svn30845-22.11.1

texlive-pstools-bin-2013.20130620.svn30088-22.11.1

texlive-ptexenc-devel-1.3.2dev-22.11.1

texlive-seetexk-bin-2013.20130620.svn30088-22.11.1

texlive-splitindex-bin-2013.20130620.svn29688-22.11.1

texlive-tetex-bin-2013.20130620.svn29741-22.11.1

texlive-tex-bin-2013.20130620.svn30088-22.11.1

texlive-tex4ht-bin-2013.20130620.svn30088-22.11.1

texlive-texconfig-bin-2013.20130620.svn29741-22.11.1

texlive-thumbpdf-bin-2013.20130620.svn6898-22.11.1

texlive-vlna-bin-2013.20130620.svn30088-22.11.1

texlive-web-bin-2013.20130620.svn30088-22.11.1

texlive-xdvi-bin-2013.20130620.svn30088-22.11.1

texlive-xetex-bin-2013.20130620.svn30845-22.11.1

texlive-xmltex-bin-2013.20130620.svn3006-22.11.1

Ссылки

https://www.suse.com/support/update/announcement/2024/suse-su-20241296-1/
Link for SUSE-SU-2024:1296-1
https://lists.suse.com/pipermail/sle-updates/2024-April/034982.html
E-Mail link for SUSE-SU-2024:1296-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1222126
SUSE Bug 1222126
https://www.suse.com/security/cve/CVE-2023-46048/
SUSE CVE CVE-2023-46048 page

Описание

** DISPUTED ** Tex Live 944e257 has a NULL pointer dereference in texk/web2c/pdftexdir/writet1.c. NOTE: this is disputed because it should be categorized as a usability problem.

Затронутые продукты

SUSE Linux Enterprise Server 12 SP5:libkpathsea6-6.2.0dev-22.11.1

SUSE Linux Enterprise Server for SAP Applications 12 SP5:libkpathsea6-6.2.0dev-22.11.1

SUSE Linux Enterprise Software Development Kit 12 SP5:libptexenc1-1.3.2dev-22.11.1

SUSE Linux Enterprise Software Development Kit 12 SP5:texlive-2013.20130620-22.11.1

Ссылки

https://www.suse.com/security/cve/CVE-2023-46048.html
CVE-2023-46048
https://bugzilla.suse.com/1222126
SUSE Bug 1222126

SUSE-SU-2024:1296-1

Описание

Список пакетов

SUSE Linux Enterprise Server 12 SP5

SUSE Linux Enterprise Server for SAP Applications 12 SP5

SUSE Linux Enterprise Software Development Kit 12 SP5

Ссылки

Уязвимость: CVE-2023-46048

Описание

Затронутые продукты

Ссылки