Описание
Security update for graphviz
This update for graphviz fixes the following issues:
- CVE-2023-46045: Fixed out-of-bounds read via a crafted config6a file (bsc#1219491)
Список пакетов
Image SLES15-SP4-SAP-Azure-LI-BYOS
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Azure-LI-BYOS-Production
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-BYOS
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-BYOS-Azure
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-BYOS-EC2
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-BYOS-GCE
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-Azure
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-BYOS
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-BYOS-Azure
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-BYOS-EC2
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-BYOS-GCE
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-GCE
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-Azure-3P
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-Azure-LI-BYOS
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-Azure-LI-BYOS-Production
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-BYOS-Azure
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-BYOS-EC2
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-BYOS-GCE
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-Hardened-Azure
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-Hardened-BYOS-Azure
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-Hardened-BYOS-EC2
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-Hardened-BYOS-GCE
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP5-SAP-Hardened-GCE
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Azure-LI-BYOS
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Azure-LI-BYOS-Production
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Azure-VLI-BYOS
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Azure-VLI-BYOS-Production
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-BYOS
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-BYOS-Azure
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-BYOS-EC2
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-BYOS-GCE
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Hardened
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Hardened-Azure
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Hardened-BYOS
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Hardened-BYOS-Azure
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Hardened-BYOS-EC2
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Hardened-BYOS-GCE
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Hardened-EC2
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
Image SLES15-SP6-SAP-Hardened-GCE
graphviz-2.48.0-150400.3.3.1
graphviz-gd-2.48.0-150400.3.3.1
graphviz-plugins-core-2.48.0-150400.3.3.1
libgraphviz6-2.48.0-150400.3.3.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP5
graphviz-gd-2.48.0-150400.3.3.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP6
graphviz-gd-2.48.0-150400.3.3.1
Ссылки
- Link for SUSE-SU-2024:1351-2
- E-Mail link for SUSE-SU-2024:1351-2
- SUSE Security Ratings
- SUSE Bug 1219491
- SUSE CVE CVE-2023-46045 page
Описание
Graphviz 2.36.0 through 9.x before 10.0.1 has an out-of-bounds read via a crafted config6a file. NOTE: exploitability may be uncommon because this file is typically owned by root.
Затронутые продукты
Image SLES15-SP4-SAP-Azure-LI-BYOS-Production:graphviz-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Azure-LI-BYOS-Production:graphviz-gd-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Azure-LI-BYOS-Production:graphviz-plugins-core-2.48.0-150400.3.3.1
Image SLES15-SP4-SAP-Azure-LI-BYOS-Production:libgraphviz6-2.48.0-150400.3.3.1
Ссылки
- CVE-2023-46045
- SUSE Bug 1219491