Описание
Security update for coreutils
This update for coreutils fixes the following issues:
Security fixes:
- CVE-2025-5278: Fixed heap buffer under-read may lead to a crash or leak sensitive data (bsc#1243767)
Other fixes:
- ls: avoid triggering automounts (bsc#1221632)
- tail: fix tailing sysfs files where PAGE_SIZE > BUFSIZ (bsc#1219321)
Список пакетов
Container suse/ltss/sle15.3/bci-base-fips:latest
coreutils-8.32-150300.3.11.1
Container suse/ltss/sle15.3/bci-base:latest
coreutils-8.32-150300.3.11.1
Container suse/sle-micro-rancher/5.2:latest
coreutils-8.32-150300.3.11.1
Container suse/sle-micro/5.1/toolbox:latest
coreutils-8.32-150300.3.11.1
Container suse/sle-micro/5.2/toolbox:latest
coreutils-8.32-150300.3.11.1
SUSE Enterprise Storage 7.1
coreutils-8.32-150300.3.11.1
coreutils-doc-8.32-150300.3.11.1
coreutils-lang-8.32-150300.3.11.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
coreutils-8.32-150300.3.11.1
coreutils-doc-8.32-150300.3.11.1
coreutils-lang-8.32-150300.3.11.1
SUSE Linux Enterprise Micro 5.1
coreutils-8.32-150300.3.11.1
coreutils-doc-8.32-150300.3.11.1
SUSE Linux Enterprise Micro 5.2
coreutils-8.32-150300.3.11.1
SUSE Linux Enterprise Server 15 SP3-LTSS
coreutils-8.32-150300.3.11.1
coreutils-doc-8.32-150300.3.11.1
coreutils-lang-8.32-150300.3.11.1
SUSE Linux Enterprise Server for SAP Applications 15 SP3
coreutils-8.32-150300.3.11.1
coreutils-doc-8.32-150300.3.11.1
coreutils-lang-8.32-150300.3.11.1
Ссылки
- Link for SUSE-SU-2025:02354-1
- E-Mail link for SUSE-SU-2025:02354-1
- SUSE Security Ratings
- SUSE Bug 1219321
- SUSE Bug 1221632
- SUSE Bug 1243767
- SUSE CVE CVE-2025-5278 page
Описание
A flaw was found in GNU Coreutils. The sort utility's begfield() function is vulnerable to a heap buffer under-read. The program may access memory outside the allocated buffer if a user runs a crafted command using the traditional key format. A malicious input could lead to a crash or leak sensitive data.
Затронутые продукты
Container suse/ltss/sle15.3/bci-base-fips:latest:coreutils-8.32-150300.3.11.1
Container suse/ltss/sle15.3/bci-base:latest:coreutils-8.32-150300.3.11.1
Container suse/sle-micro-rancher/5.2:latest:coreutils-8.32-150300.3.11.1
Container suse/sle-micro/5.1/toolbox:latest:coreutils-8.32-150300.3.11.1
Ссылки
- CVE-2025-5278
- SUSE Bug 1243767