openSUSE-SU-2015:2345-1

Опубликовано: 23 дек. 2015

Источник: suse-cvrf

Описание

Security update for quassel

Quassel was updated to fix a remote DoS security issue.

The following vulnerability was fixed:

CVE-2015-8547: Remote DoS in Quassel core

Список пакетов

openSUSE Leap 42.1

quassel-0.12.2-7.1

quassel-base-0.12.2-7.1

quassel-client-0.12.2-7.1

quassel-core-0.12.2-7.1

quassel-mono-0.12.2-7.1

Ссылки

https://lists.opensuse.org/opensuse-updates/2015-12/msg00099.html
E-Mail link for openSUSE-SU-2015:2345-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

The CoreUserInputHandler::doMode function in core/coreuserinputhandler.cpp in Quassel 0.10.0 allows remote attackers to cause a denial of service (application crash) via the "/op *" command in a query.

Затронутые продукты

openSUSE Leap 42.1:quassel-0.12.2-7.1

openSUSE Leap 42.1:quassel-base-0.12.2-7.1

openSUSE Leap 42.1:quassel-client-0.12.2-7.1

openSUSE Leap 42.1:quassel-core-0.12.2-7.1

Ссылки

https://www.suse.com/security/cve/CVE-2015-8547.html
CVE-2015-8547
https://bugzilla.suse.com/958928
SUSE Bug 958928

openSUSE-SU-2015:2345-1

Описание

Список пакетов

openSUSE Leap 42.1

Ссылки

Уязвимость: CVE-2015-8547

Описание

Затронутые продукты

Ссылки