Описание
Security update for mozjs78
This update for mozjs78 fixes the following issues:
- CVE-2024-50602: Fixed DoS via XML_ResumeParser (bsc#1232599)
Список пакетов
SUSE Linux Enterprise Module for Desktop Applications 15 SP5
libmozjs-78-0-78.15.0-150400.3.11.1
mozjs78-devel-78.15.0-150400.3.11.1
SUSE Linux Enterprise Module for Package Hub 15 SP5
libmozjs-78-0-78.15.0-150400.3.11.1
SUSE Linux Enterprise Module for Package Hub 15 SP6
libmozjs-78-0-78.15.0-150400.3.11.1
openSUSE Leap 15.5
libmozjs-78-0-78.15.0-150400.3.11.1
mozjs78-78.15.0-150400.3.11.1
mozjs78-devel-78.15.0-150400.3.11.1
openSUSE Leap 15.6
libmozjs-78-0-78.15.0-150400.3.11.1
mozjs78-78.15.0-150400.3.11.1
mozjs78-devel-78.15.0-150400.3.11.1
Ссылки
- Link for SUSE-SU-2024:4412-1
- E-Mail link for SUSE-SU-2024:4412-1
- SUSE Security Ratings
- SUSE Bug 1232599
- SUSE CVE CVE-2024-50602 page
Описание
An issue was discovered in libexpat before 2.6.4. There is a crash within the XML_ResumeParser function because XML_StopParser can stop/suspend an unstarted parser.
Затронутые продукты
SUSE Linux Enterprise Module for Desktop Applications 15 SP5:libmozjs-78-0-78.15.0-150400.3.11.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP5:mozjs78-devel-78.15.0-150400.3.11.1
SUSE Linux Enterprise Module for Package Hub 15 SP5:libmozjs-78-0-78.15.0-150400.3.11.1
SUSE Linux Enterprise Module for Package Hub 15 SP6:libmozjs-78-0-78.15.0-150400.3.11.1
Ссылки
- CVE-2024-50602
- SUSE Bug 1232579