SUSE-SU-2025:1367-1

Опубликовано: 24 апр. 2025

Источник: suse-cvrf

Описание

Security update for glib2

This update for glib2 fixes the following issues:

CVE-2025-3360: Fixed integer overflow and buffer underread when parsing a very long and invalid ISO 8601 timestamp with g_date_time_new_from_iso8601() (bsc#1240897)

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP6

glib2-devel-2.78.6-150600.4.11.1

glib2-lang-2.78.6-150600.4.11.1

glib2-tools-2.78.6-150600.4.11.1

libgio-2_0-0-2.78.6-150600.4.11.1

libgio-2_0-0-32bit-2.78.6-150600.4.11.1

libglib-2_0-0-2.78.6-150600.4.11.1

libglib-2_0-0-32bit-2.78.6-150600.4.11.1

libgmodule-2_0-0-2.78.6-150600.4.11.1

libgmodule-2_0-0-32bit-2.78.6-150600.4.11.1

libgobject-2_0-0-2.78.6-150600.4.11.1

libgobject-2_0-0-32bit-2.78.6-150600.4.11.1

libgthread-2_0-0-2.78.6-150600.4.11.1

openSUSE Leap 15.6

gio-branding-upstream-2.78.6-150600.4.11.1

glib2-devel-2.78.6-150600.4.11.1

glib2-devel-32bit-2.78.6-150600.4.11.1

glib2-devel-static-2.78.6-150600.4.11.1

glib2-doc-2.78.6-150600.4.11.1

glib2-lang-2.78.6-150600.4.11.1

glib2-tests-devel-2.78.6-150600.4.11.1

glib2-tools-2.78.6-150600.4.11.1

glib2-tools-32bit-2.78.6-150600.4.11.1

libgio-2_0-0-2.78.6-150600.4.11.1

libgio-2_0-0-32bit-2.78.6-150600.4.11.1

libglib-2_0-0-2.78.6-150600.4.11.1

libglib-2_0-0-32bit-2.78.6-150600.4.11.1

libgmodule-2_0-0-2.78.6-150600.4.11.1

libgmodule-2_0-0-32bit-2.78.6-150600.4.11.1

libgobject-2_0-0-2.78.6-150600.4.11.1

libgobject-2_0-0-32bit-2.78.6-150600.4.11.1

libgthread-2_0-0-2.78.6-150600.4.11.1

libgthread-2_0-0-32bit-2.78.6-150600.4.11.1

Ссылки

https://www.suse.com/support/update/announcement/2025/suse-su-20251367-1/
Link for SUSE-SU-2025:1367-1
https://lists.suse.com/pipermail/sle-security-updates/2025-April/020739.html
E-Mail link for SUSE-SU-2025:1367-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1240897
SUSE Bug 1240897
https://www.suse.com/security/cve/CVE-2025-3360/
SUSE CVE CVE-2025-3360 page

Описание

A flaw was found in GLib. An integer overflow and buffer under-read occur when parsing a long invalid ISO 8601 timestamp with the g_date_time_new_from_iso8601() function.

Затронутые продукты

SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-devel-2.78.6-150600.4.11.1

SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-lang-2.78.6-150600.4.11.1

SUSE Linux Enterprise Module for Basesystem 15 SP6:glib2-tools-2.78.6-150600.4.11.1

SUSE Linux Enterprise Module for Basesystem 15 SP6:libgio-2_0-0-2.78.6-150600.4.11.1

Ссылки

https://www.suse.com/security/cve/CVE-2025-3360.html
CVE-2025-3360
https://bugzilla.suse.com/1240897
SUSE Bug 1240897

SUSE-SU-2025:1367-1

Описание

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP6

openSUSE Leap 15.6

Ссылки

Уязвимость: CVE-2025-3360

Описание

Затронутые продукты

Ссылки