SUSE-SU-2024:2152-1

Опубликовано: 21 июн. 2024

Источник: suse-cvrf

Описание

Security update for vte

This update for vte fixes the following issues:

CVE-2024-37535: Fixed a bug that allowed an attacker to cause a denial of service (memory consumption) via a window resize escape. (bsc#1226134)

Список пакетов

SUSE Enterprise Storage 7.1

libvte-2_91-0-0.58.3-150200.3.3.1

typelib-1_0-Vte-2.91-0.58.3-150200.3.3.1

vte-devel-0.58.3-150200.3.3.1

vte-lang-0.58.3-150200.3.3.1

SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS

libvte-2_91-0-0.58.3-150200.3.3.1

typelib-1_0-Vte-2.91-0.58.3-150200.3.3.1

vte-devel-0.58.3-150200.3.3.1

vte-lang-0.58.3-150200.3.3.1

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

libvte-2_91-0-0.58.3-150200.3.3.1

typelib-1_0-Vte-2.91-0.58.3-150200.3.3.1

vte-devel-0.58.3-150200.3.3.1

vte-lang-0.58.3-150200.3.3.1

SUSE Linux Enterprise Server 15 SP2-LTSS

libvte-2_91-0-0.58.3-150200.3.3.1

typelib-1_0-Vte-2.91-0.58.3-150200.3.3.1

vte-devel-0.58.3-150200.3.3.1

vte-lang-0.58.3-150200.3.3.1

SUSE Linux Enterprise Server 15 SP3-LTSS

libvte-2_91-0-0.58.3-150200.3.3.1

typelib-1_0-Vte-2.91-0.58.3-150200.3.3.1

vte-devel-0.58.3-150200.3.3.1

vte-lang-0.58.3-150200.3.3.1

SUSE Linux Enterprise Server for SAP Applications 15 SP2

libvte-2_91-0-0.58.3-150200.3.3.1

typelib-1_0-Vte-2.91-0.58.3-150200.3.3.1

vte-devel-0.58.3-150200.3.3.1

vte-lang-0.58.3-150200.3.3.1

SUSE Linux Enterprise Server for SAP Applications 15 SP3

libvte-2_91-0-0.58.3-150200.3.3.1

typelib-1_0-Vte-2.91-0.58.3-150200.3.3.1

vte-devel-0.58.3-150200.3.3.1

vte-lang-0.58.3-150200.3.3.1

Ссылки

https://www.suse.com/support/update/announcement/2024/suse-su-20242152-1/
Link for SUSE-SU-2024:2152-1
https://lists.suse.com/pipermail/sle-updates/2024-June/035693.html
E-Mail link for SUSE-SU-2024:2152-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1226134
SUSE Bug 1226134
https://www.suse.com/security/cve/CVE-2024-37535/
SUSE CVE CVE-2024-37535 page

Описание

GNOME VTE before 0.76.3 allows an attacker to cause a denial of service (memory consumption) via a window resize escape sequence, a related issue to CVE-2000-0476.

Затронутые продукты

SUSE Enterprise Storage 7.1:libvte-2_91-0-0.58.3-150200.3.3.1

SUSE Enterprise Storage 7.1:typelib-1_0-Vte-2.91-0.58.3-150200.3.3.1

SUSE Enterprise Storage 7.1:vte-devel-0.58.3-150200.3.3.1

SUSE Enterprise Storage 7.1:vte-lang-0.58.3-150200.3.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2024-37535.html
CVE-2024-37535
https://bugzilla.suse.com/1226134
SUSE Bug 1226134

SUSE-SU-2024:2152-1

Описание

Список пакетов

SUSE Enterprise Storage 7.1

SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

SUSE Linux Enterprise Server 15 SP2-LTSS

SUSE Linux Enterprise Server 15 SP3-LTSS

SUSE Linux Enterprise Server for SAP Applications 15 SP2

SUSE Linux Enterprise Server for SAP Applications 15 SP3

Ссылки

Уязвимость: CVE-2024-37535

Описание

Затронутые продукты

Ссылки