SUSE-SU-2024:3007-1

Опубликовано: 23 авг. 2024

Источник: suse-cvrf

Описание

Security update for libofx

This update for libofx fixes the following issues:

CVE-2019-9656: Fixed null pointer dereference in function OFXApplication:startElement in lib/ofx_sgml.cpp (bsc#1129596)

Список пакетов

SUSE Linux Enterprise Software Development Kit 12 SP5

libofx-0.9.9-3.10.1

libofx-devel-0.9.9-3.10.1

SUSE Linux Enterprise Workstation Extension 12 SP5

libofx-0.9.9-3.10.1

libofx6-0.9.9-3.10.1

Ссылки

https://www.suse.com/support/update/announcement/2024/suse-su-20243007-1/
Link for SUSE-SU-2024:3007-1
https://lists.suse.com/pipermail/sle-security-updates/2024-August/019306.html
E-Mail link for SUSE-SU-2024:3007-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1129596
SUSE Bug 1129596
https://www.suse.com/security/cve/CVE-2019-9656/
SUSE CVE CVE-2019-9656 page

Описание

An issue was discovered in LibOFX 0.9.14. There is a NULL pointer dereference in the function OFXApplication::startElement in the file lib/ofx_sgml.cpp, as demonstrated by ofxdump.

Затронутые продукты

SUSE Linux Enterprise Software Development Kit 12 SP5:libofx-0.9.9-3.10.1

SUSE Linux Enterprise Software Development Kit 12 SP5:libofx-devel-0.9.9-3.10.1

SUSE Linux Enterprise Workstation Extension 12 SP5:libofx-0.9.9-3.10.1

SUSE Linux Enterprise Workstation Extension 12 SP5:libofx6-0.9.9-3.10.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-9656.html
CVE-2019-9656
https://bugzilla.suse.com/1129596
SUSE Bug 1129596

SUSE-SU-2024:3007-1

Описание

Список пакетов

SUSE Linux Enterprise Software Development Kit 12 SP5

SUSE Linux Enterprise Workstation Extension 12 SP5

Ссылки

Уязвимость: CVE-2019-9656

Описание

Затронутые продукты

Ссылки