Описание
Security update for vte
This update for vte fixes the following issues:
- CVE-2024-37535: Fixed a bug that allowed an attacker to cause a denial of service (memory consumption) via a window resize escape. (bsc#1226134)
Список пакетов
SUSE Linux Enterprise Module for Basesystem 15 SP6
libvte-2_91-0-0.74.2-150600.3.3.1
typelib-1_0-Vte-2_91-0.74.2-150600.3.3.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP6
typelib-1_0-Vte-3_91-0.74.2-150600.3.3.1
vte-devel-0.74.2-150600.3.3.1
vte-lang-0.74.2-150600.3.3.1
openSUSE Leap 15.6
libvte-2_91-0-0.74.2-150600.3.3.1
typelib-1_0-Vte-2_91-0.74.2-150600.3.3.1
typelib-1_0-Vte-3_91-0.74.2-150600.3.3.1
vte-devel-0.74.2-150600.3.3.1
vte-lang-0.74.2-150600.3.3.1
vte-tools-0.74.2-150600.3.3.1
vte-tools-gtk4-0.74.2-150600.3.3.1
Ссылки
- Link for SUSE-SU-2024:2153-1
- E-Mail link for SUSE-SU-2024:2153-1
- SUSE Security Ratings
- SUSE Bug 1226134
- SUSE CVE CVE-2024-37535 page
Описание
GNOME VTE before 0.76.3 allows an attacker to cause a denial of service (memory consumption) via a window resize escape sequence, a related issue to CVE-2000-0476.
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15 SP6:libvte-2_91-0-0.74.2-150600.3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP6:typelib-1_0-Vte-2_91-0.74.2-150600.3.3.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP6:typelib-1_0-Vte-3_91-0.74.2-150600.3.3.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP6:vte-devel-0.74.2-150600.3.3.1
Ссылки
- CVE-2024-37535
- SUSE Bug 1226134