Описание
Security update for graphviz
This update for graphviz fixes the following issues:
- CVE-2023-46045: Fixed out-of-bounds read via a crafted config6a file (bsc#1219491)
Список пакетов
Image SLES15-SP4-SAP-Azure-LI-BYOS
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Azure-LI-BYOS-Production
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-BYOS
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-BYOS-Azure
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-BYOS-EC2
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-BYOS-GCE
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-Azure
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-BYOS
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-BYOS-Azure
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-BYOS-EC2
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-BYOS-GCE
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-GCE
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-Azure-3P
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-Azure-LI-BYOS
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-Azure-LI-BYOS-Production
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-BYOS-Azure
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-BYOS-EC2
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-BYOS-GCE
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-Hardened-Azure
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-Hardened-BYOS-Azure
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-Hardened-BYOS-EC2
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-Hardened-BYOS-GCE
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-Hardened-GCE
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Azure-LI-BYOS
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Azure-LI-BYOS-Production
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Azure-VLI-BYOS
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Azure-VLI-BYOS-Production
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-BYOS
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-BYOS-Azure
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-BYOS-EC2
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-BYOS-GCE
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Hardened
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Hardened-Azure
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Hardened-BYOS
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Hardened-BYOS-Azure
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Hardened-BYOS-EC2
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Hardened-BYOS-GCE
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Hardened-EC2
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Hardened-GCE
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
SUSE Linux Enterprise High Availability Extension 15 SP4
graphviz-gd-2.48.0-150400.3.3.1
python3-gv-2.48.0-150400.3.3.1
SUSE Linux Enterprise High Availability Extension 15 SP5
graphviz-gd-2.48.0-150400.3.3.1
python3-gv-2.48.0-150400.3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP5
graphviz-2.48.0-150400.3.3.1
graphviz-devel-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
SUSE Linux Enterprise Module for Development Tools 15 SP5
graphviz-perl-2.48.0-150400.3.3.1
SUSE Linux Enterprise Module for Package Hub 15 SP5
graphviz-gnome-2.48.0-150400.3.3.1
SUSE Linux Enterprise Module for Server Applications 15 SP5
graphviz-tcl-2.48.0-150400.3.3.1
openSUSE Leap 15.5
graphviz-2.48.0-150400.3.3.1
graphviz-devel-2.48.0-150400.3.3.1
graphviz-doc-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-gnome-2.48.0-150400.3.3.1
graphviz-guile-2.48.0-150400.3.3.1
graphviz-gvedit-2.48.0-150400.3.3.1
graphviz-java-2.48.0-150400.3.3.1
graphviz-lua-2.48.0-150400.3.3.1
graphviz-perl-2.48.0-150400.3.3.1
graphviz-php-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
graphviz-ruby-2.48.0-150400.3.3.1
graphviz-smyrna-2.48.0-150400.3.3.1
graphviz-tcl-2.48.0-150400.3.3.1
graphviz-webp-2.48.0-150400.3.3.1
graphviz-x11-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
python3-gv-2.48.0-150400.3.3.1
Ссылки
- Link for SUSE-SU-2024:1351-1
- E-Mail link for SUSE-SU-2024:1351-1
- SUSE Security Ratings
- SUSE Bug 1219491
- SUSE CVE CVE-2023-46045 page
Описание
Graphviz 2.36.0 through 9.x before 10.0.1 has an out-of-bounds read via a crafted config6a file. NOTE: exploitability may be uncommon because this file is typically owned by root.
Затронутые продукты
Image SLES15-SP4-SAP-Azure-LI-BYOS-Production:graphviz-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Azure-LI-BYOS-Production:graphviz-gd-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Azure-LI-BYOS-Production:graphviz-plugins-core-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Azure-LI-BYOS-Production:libgraphviz6-2.48.0-150400.3.3.1
Ссылки
- CVE-2023-46045
- SUSE Bug 1219491