Описание
Security update for giflib
This update for giflib fixes the following issues:
- CVE-2022-28506: Fixed heap buffer overflow in function DumpScreen2RGB() (bsc#1198880)
- CVE-2023-39742: Fixed segmentation fault via the component getarg.c (bsc#1214678)
Список пакетов
SUSE Linux Enterprise Server 12 SP5
giflib-progs-5.0.5-13.6.1
libgif6-5.0.5-13.6.1
libgif6-32bit-5.0.5-13.6.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
giflib-progs-5.0.5-13.6.1
libgif6-5.0.5-13.6.1
libgif6-32bit-5.0.5-13.6.1
SUSE Linux Enterprise Software Development Kit 12 SP5
giflib-devel-5.0.5-13.6.1
Ссылки
- Link for SUSE-SU-2024:2607-1
- E-Mail link for SUSE-SU-2024:2607-1
- SUSE Security Ratings
- SUSE Bug 1198880
- SUSE Bug 1214678
- SUSE CVE CVE-2022-28506 page
- SUSE CVE CVE-2023-39742 page
Описание
There is a heap-buffer-overflow in GIFLIB 5.2.1 function DumpScreen2RGB() in gif2rgb.c:298:45.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP5:giflib-progs-5.0.5-13.6.1
SUSE Linux Enterprise Server 12 SP5:libgif6-32bit-5.0.5-13.6.1
SUSE Linux Enterprise Server 12 SP5:libgif6-5.0.5-13.6.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5:giflib-progs-5.0.5-13.6.1
Ссылки
- CVE-2022-28506
- SUSE Bug 1198880
Описание
giflib v5.2.1 was discovered to contain a segmentation fault via the component getarg.c.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP5:giflib-progs-5.0.5-13.6.1
SUSE Linux Enterprise Server 12 SP5:libgif6-32bit-5.0.5-13.6.1
SUSE Linux Enterprise Server 12 SP5:libgif6-5.0.5-13.6.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5:giflib-progs-5.0.5-13.6.1
Ссылки
- CVE-2023-39742
- SUSE Bug 1214678