SUSE-SU-2024:2083-1

Опубликовано: 19 июн. 2024

Источник: suse-cvrf

Описание

Security update for libarchive

This update for libarchive fixes the following issues:

CVE-2024-20697: Fixed Out of bounds Remote Code Execution Vulnerability (bsc#1225972).
CVE-2024-20696: Fixed heap based out-of-bounds write (bsc#1225971).

Список пакетов

Container bci/spack:0.23

libarchive13-3.7.2-150600.3.3.1

Container bci/spack:latest

libarchive13-3.7.2-150600.3.3.1

Container containers/pytorch:2-nvidia

libarchive13-3.7.2-150600.3.3.1

Container containers/pytorch:2.5.0

libarchive13-3.7.2-150600.3.3.1

Container suse/manager/5.0/x86_64/server:latest

libarchive13-3.7.2-150600.3.3.1

Image SLES15-SP6-SAP

libarchive13-3.7.2-150600.3.3.1

Image SLES15-SP6-SAP-Azure

libarchive13-3.7.2-150600.3.3.1

Image SLES15-SP6-SAP-EC2

libarchive13-3.7.2-150600.3.3.1

Image SLES15-SP6-SAP-GCE

libarchive13-3.7.2-150600.3.3.1

Image SLES15-SP6-SAPCAL

libarchive13-3.7.2-150600.3.3.1

Image SLES15-SP6-SAPCAL-Azure

libarchive13-3.7.2-150600.3.3.1

Image SLES15-SP6-SAPCAL-EC2

libarchive13-3.7.2-150600.3.3.1

Image SLES15-SP6-SAPCAL-GCE

libarchive13-3.7.2-150600.3.3.1

Image ai_15_6

libarchive13-3.7.2-150600.3.3.1

Image server-image

libarchive13-3.7.2-150600.3.3.1

SUSE Linux Enterprise Module for Basesystem 15 SP6

libarchive-devel-3.7.2-150600.3.3.1

libarchive13-3.7.2-150600.3.3.1

SUSE Linux Enterprise Module for Development Tools 15 SP6

bsdtar-3.7.2-150600.3.3.1

openSUSE Leap 15.6

bsdtar-3.7.2-150600.3.3.1

libarchive-devel-3.7.2-150600.3.3.1

libarchive13-3.7.2-150600.3.3.1

libarchive13-32bit-3.7.2-150600.3.3.1

Ссылки

https://www.suse.com/support/update/announcement/2024/suse-su-20242083-1/
Link for SUSE-SU-2024:2083-1
https://lists.suse.com/pipermail/sle-updates/2024-June/035637.html
E-Mail link for SUSE-SU-2024:2083-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1225971
SUSE Bug 1225971
https://bugzilla.suse.com/1225972
SUSE Bug 1225972
https://www.suse.com/security/cve/CVE-2024-20696/
SUSE CVE CVE-2024-20696 page
https://www.suse.com/security/cve/CVE-2024-20697/
SUSE CVE CVE-2024-20697 page

Описание

Windows libarchive Remote Code Execution Vulnerability

Затронутые продукты

Container bci/spack:0.23:libarchive13-3.7.2-150600.3.3.1

Container bci/spack:latest:libarchive13-3.7.2-150600.3.3.1

Container containers/pytorch:2-nvidia:libarchive13-3.7.2-150600.3.3.1

Container containers/pytorch:2.5.0:libarchive13-3.7.2-150600.3.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2024-20696.html
CVE-2024-20696
https://bugzilla.suse.com/1225971
SUSE Bug 1225971
https://bugzilla.suse.com/1225972
SUSE Bug 1225972

Описание

Windows libarchive Remote Code Execution Vulnerability

Затронутые продукты

Container bci/spack:0.23:libarchive13-3.7.2-150600.3.3.1

Container bci/spack:latest:libarchive13-3.7.2-150600.3.3.1

Container containers/pytorch:2-nvidia:libarchive13-3.7.2-150600.3.3.1

Container containers/pytorch:2.5.0:libarchive13-3.7.2-150600.3.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2024-20697.html
CVE-2024-20697
https://bugzilla.suse.com/1225972
SUSE Bug 1225972

SUSE-SU-2024:2083-1

Описание

Список пакетов

Container bci/spack:0.23

Container bci/spack:latest

Container containers/pytorch:2-nvidia

Container containers/pytorch:2.5.0

Container suse/manager/5.0/x86_64/server:latest

Image SLES15-SP6-SAP

Image SLES15-SP6-SAP-Azure

Image SLES15-SP6-SAP-EC2

Image SLES15-SP6-SAP-GCE

Image SLES15-SP6-SAPCAL

Image SLES15-SP6-SAPCAL-Azure

Image SLES15-SP6-SAPCAL-EC2

Image SLES15-SP6-SAPCAL-GCE

Image ai_15_6

Image server-image

SUSE Linux Enterprise Module for Basesystem 15 SP6

SUSE Linux Enterprise Module for Development Tools 15 SP6

openSUSE Leap 15.6

Ссылки

Уязвимость: CVE-2024-20696

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2024-20697

Описание

Затронутые продукты

Ссылки