SUSE-SU-2024:2180-1

Опубликовано: 24 июн. 2024

Источник: suse-cvrf

Описание

Security update for vte

This update for vte fixes the following issues:

CVE-2024-37535: Fixed a bug that allowed an attacker to cause a denial of service (memory consumption) via a window resize escape. (bsc#1226134)

Список пакетов

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS

libvte-2_91-0-0.66.2-150400.3.5.1

typelib-1_0-Vte-2.91-0.66.2-150400.3.5.1

vte-devel-0.66.2-150400.3.5.1

vte-lang-0.66.2-150400.3.5.1

SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS

libvte-2_91-0-0.66.2-150400.3.5.1

typelib-1_0-Vte-2.91-0.66.2-150400.3.5.1

vte-devel-0.66.2-150400.3.5.1

vte-lang-0.66.2-150400.3.5.1

SUSE Linux Enterprise Module for Basesystem 15 SP5

libvte-2_91-0-0.66.2-150400.3.5.1

typelib-1_0-Vte-2.91-0.66.2-150400.3.5.1

SUSE Linux Enterprise Module for Desktop Applications 15 SP5

vte-devel-0.66.2-150400.3.5.1

vte-lang-0.66.2-150400.3.5.1

SUSE Linux Enterprise Server 15 SP4-LTSS

libvte-2_91-0-0.66.2-150400.3.5.1

typelib-1_0-Vte-2.91-0.66.2-150400.3.5.1

vte-devel-0.66.2-150400.3.5.1

vte-lang-0.66.2-150400.3.5.1

SUSE Linux Enterprise Server for SAP Applications 15 SP4

libvte-2_91-0-0.66.2-150400.3.5.1

typelib-1_0-Vte-2.91-0.66.2-150400.3.5.1

vte-devel-0.66.2-150400.3.5.1

vte-lang-0.66.2-150400.3.5.1

SUSE Manager Proxy 4.3

libvte-2_91-0-0.66.2-150400.3.5.1

typelib-1_0-Vte-2.91-0.66.2-150400.3.5.1

SUSE Manager Server 4.3

libvte-2_91-0-0.66.2-150400.3.5.1

typelib-1_0-Vte-2.91-0.66.2-150400.3.5.1

openSUSE Leap 15.5

glade-catalog-vte-0.66.2-150400.3.5.1

libvte-2_91-0-0.66.2-150400.3.5.1

typelib-1_0-Vte-2.91-0.66.2-150400.3.5.1

vte-devel-0.66.2-150400.3.5.1

vte-lang-0.66.2-150400.3.5.1

vte-tools-0.66.2-150400.3.5.1

Ссылки

https://www.suse.com/support/update/announcement/2024/suse-su-20242180-1/
Link for SUSE-SU-2024:2180-1
https://lists.suse.com/pipermail/sle-security-updates/2024-June/018805.html
E-Mail link for SUSE-SU-2024:2180-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1226134
SUSE Bug 1226134
https://www.suse.com/security/cve/CVE-2024-37535/
SUSE CVE CVE-2024-37535 page

Описание

GNOME VTE before 0.76.3 allows an attacker to cause a denial of service (memory consumption) via a window resize escape sequence, a related issue to CVE-2000-0476.

Затронутые продукты

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libvte-2_91-0-0.66.2-150400.3.5.1

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:typelib-1_0-Vte-2.91-0.66.2-150400.3.5.1

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:vte-devel-0.66.2-150400.3.5.1

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:vte-lang-0.66.2-150400.3.5.1

Ссылки

https://www.suse.com/security/cve/CVE-2024-37535.html
CVE-2024-37535
https://bugzilla.suse.com/1226134
SUSE Bug 1226134

SUSE-SU-2024:2180-1

Описание

Список пакетов

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS

SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS

SUSE Linux Enterprise Module for Basesystem 15 SP5

SUSE Linux Enterprise Module for Desktop Applications 15 SP5

SUSE Linux Enterprise Server 15 SP4-LTSS

SUSE Linux Enterprise Server for SAP Applications 15 SP4

SUSE Manager Proxy 4.3

SUSE Manager Server 4.3

openSUSE Leap 15.5

Ссылки

Уязвимость: CVE-2024-37535

Описание

Затронутые продукты

Ссылки