Описание
Security update for gtk3
This update for gtk3 fixes the following issues:
- CVE-2024-6655: Fixed library injection from current working directory (bsc#1228120).
Список пакетов
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production
gtk3-data-3.24.20-150200.3.9.1
gtk3-schema-3.24.20-150200.3.9.1
gtk3-tools-3.24.20-150200.3.9.1
libgtk-3-0-3.24.20-150200.3.9.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production
gtk3-data-3.24.20-150200.3.9.1
gtk3-schema-3.24.20-150200.3.9.1
gtk3-tools-3.24.20-150200.3.9.1
libgtk-3-0-3.24.20-150200.3.9.1
SUSE Enterprise Storage 7.1
gettext-its-gtk3-3.24.20-150200.3.9.1
gtk3-data-3.24.20-150200.3.9.1
gtk3-devel-3.24.20-150200.3.9.1
gtk3-devel-doc-3.24.20-150200.3.9.1
gtk3-lang-3.24.20-150200.3.9.1
gtk3-schema-3.24.20-150200.3.9.1
gtk3-tools-3.24.20-150200.3.9.1
libgtk-3-0-3.24.20-150200.3.9.1
typelib-1_0-Gtk-3_0-3.24.20-150200.3.9.1
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
gettext-its-gtk3-3.24.20-150200.3.9.1
gtk3-data-3.24.20-150200.3.9.1
gtk3-devel-3.24.20-150200.3.9.1
gtk3-devel-doc-3.24.20-150200.3.9.1
gtk3-lang-3.24.20-150200.3.9.1
gtk3-schema-3.24.20-150200.3.9.1
gtk3-tools-3.24.20-150200.3.9.1
libgtk-3-0-3.24.20-150200.3.9.1
typelib-1_0-Gtk-3_0-3.24.20-150200.3.9.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
gettext-its-gtk3-3.24.20-150200.3.9.1
gtk3-data-3.24.20-150200.3.9.1
gtk3-devel-3.24.20-150200.3.9.1
gtk3-devel-doc-3.24.20-150200.3.9.1
gtk3-lang-3.24.20-150200.3.9.1
gtk3-schema-3.24.20-150200.3.9.1
gtk3-tools-3.24.20-150200.3.9.1
libgtk-3-0-3.24.20-150200.3.9.1
typelib-1_0-Gtk-3_0-3.24.20-150200.3.9.1
SUSE Linux Enterprise Micro 5.2
gtk3-data-3.24.20-150200.3.9.1
gtk3-schema-3.24.20-150200.3.9.1
gtk3-tools-3.24.20-150200.3.9.1
libgtk-3-0-3.24.20-150200.3.9.1
typelib-1_0-Gtk-3_0-3.24.20-150200.3.9.1
SUSE Linux Enterprise Server 15 SP2-LTSS
gettext-its-gtk3-3.24.20-150200.3.9.1
gtk3-data-3.24.20-150200.3.9.1
gtk3-devel-3.24.20-150200.3.9.1
gtk3-devel-doc-3.24.20-150200.3.9.1
gtk3-lang-3.24.20-150200.3.9.1
gtk3-schema-3.24.20-150200.3.9.1
gtk3-tools-3.24.20-150200.3.9.1
libgtk-3-0-3.24.20-150200.3.9.1
typelib-1_0-Gtk-3_0-3.24.20-150200.3.9.1
SUSE Linux Enterprise Server 15 SP3-LTSS
gettext-its-gtk3-3.24.20-150200.3.9.1
gtk3-data-3.24.20-150200.3.9.1
gtk3-devel-3.24.20-150200.3.9.1
gtk3-devel-doc-3.24.20-150200.3.9.1
gtk3-lang-3.24.20-150200.3.9.1
gtk3-schema-3.24.20-150200.3.9.1
gtk3-tools-3.24.20-150200.3.9.1
libgtk-3-0-3.24.20-150200.3.9.1
typelib-1_0-Gtk-3_0-3.24.20-150200.3.9.1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
gettext-its-gtk3-3.24.20-150200.3.9.1
gtk3-data-3.24.20-150200.3.9.1
gtk3-devel-3.24.20-150200.3.9.1
gtk3-devel-doc-3.24.20-150200.3.9.1
gtk3-lang-3.24.20-150200.3.9.1
gtk3-schema-3.24.20-150200.3.9.1
gtk3-tools-3.24.20-150200.3.9.1
libgtk-3-0-3.24.20-150200.3.9.1
typelib-1_0-Gtk-3_0-3.24.20-150200.3.9.1
SUSE Linux Enterprise Server for SAP Applications 15 SP3
gettext-its-gtk3-3.24.20-150200.3.9.1
gtk3-data-3.24.20-150200.3.9.1
gtk3-devel-3.24.20-150200.3.9.1
gtk3-devel-doc-3.24.20-150200.3.9.1
gtk3-lang-3.24.20-150200.3.9.1
gtk3-schema-3.24.20-150200.3.9.1
gtk3-tools-3.24.20-150200.3.9.1
libgtk-3-0-3.24.20-150200.3.9.1
typelib-1_0-Gtk-3_0-3.24.20-150200.3.9.1
Ссылки
- Link for SUSE-SU-2024:2898-1
- E-Mail link for SUSE-SU-2024:2898-1
- SUSE Security Ratings
- SUSE Bug 1228120
- SUSE CVE CVE-2024-6655 page
Описание
A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current working directory.
Затронутые продукты
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:gtk3-data-3.24.20-150200.3.9.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:gtk3-schema-3.24.20-150200.3.9.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:gtk3-tools-3.24.20-150200.3.9.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:libgtk-3-0-3.24.20-150200.3.9.1
Ссылки
- CVE-2024-6655
- SUSE Bug 1228120