openSUSE-SU-2017:0082-1

Опубликовано: 07 янв. 2017

Источник: suse-cvrf

Описание

Security update for libcares2

This update for libcares2 fixes the following issues:

Add patch to fix single byte out of buffer write (CVE-2016-5180, bsc#1007728)

This update was imported from the SUSE:SLE-12:Update update project.

Список пакетов

openSUSE Leap 42.1

libcares-devel-1.9.1-6.1

libcares2-1.9.1-6.1

libcares2-32bit-1.9.1-6.1

openSUSE Leap 42.2

libcares-devel-1.9.1-6.1

libcares2-1.9.1-6.1

libcares2-32bit-1.9.1-6.1

Ссылки

https://lists.opensuse.org/opensuse-updates/2017-01/msg00055.html
E-Mail link for openSUSE-SU-2017:0082-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

Heap-based buffer overflow in the ares_create_query function in c-ares 1.x before 1.12.0 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly execute arbitrary code via a hostname with an escaped trailing dot.

Затронутые продукты

openSUSE Leap 42.1:libcares-devel-1.9.1-6.1

openSUSE Leap 42.1:libcares2-1.9.1-6.1

openSUSE Leap 42.1:libcares2-32bit-1.9.1-6.1

openSUSE Leap 42.2:libcares-devel-1.9.1-6.1

Ссылки

https://www.suse.com/security/cve/CVE-2016-5180.html
CVE-2016-5180
https://bugzilla.suse.com/1007728
SUSE Bug 1007728

openSUSE-SU-2017:0082-1

Описание

Список пакетов

openSUSE Leap 42.1

openSUSE Leap 42.2

Ссылки

Уязвимость: CVE-2016-5180

Описание

Затронутые продукты

Ссылки