openSUSE-SU-2017:0510-1

Опубликовано: 18 фев. 2017

Источник: suse-cvrf

Описание

Security update for opus

This update for opus fixes the following issues:

CVE-2017-0381: Fixed a remote code execution vulnerability in silk/NLSF_stabilize.c when playing certain media files (bsc#1020102)

This update was imported from the SUSE:SLE-12:Update update project.

Список пакетов

openSUSE Leap 42.1

libopus-devel-1.1-6.1

libopus-devel-static-1.1-6.1

libopus0-1.1-6.1

libopus0-32bit-1.1-6.1

opus-1.1-6.1

openSUSE Leap 42.2

libopus-devel-1.1-6.1

libopus-devel-static-1.1-6.1

libopus0-1.1-6.1

libopus0-32bit-1.1-6.1

opus-1.1-6.1

Ссылки

https://lists.opensuse.org/opensuse-security-announce/2017-02/msg00031.html
E-Mail link for openSUSE-SU-2017:0510-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

An information disclosure vulnerability in silk/NLSF_stabilize.c in libopus in Mediaserver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used to access sensitive data without permission. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1. Android ID: A-31607432.

Затронутые продукты

openSUSE Leap 42.1:libopus-devel-1.1-6.1

openSUSE Leap 42.1:libopus-devel-static-1.1-6.1

openSUSE Leap 42.1:libopus0-1.1-6.1

openSUSE Leap 42.1:libopus0-32bit-1.1-6.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-0381.html
CVE-2017-0381
https://bugzilla.suse.com/1020102
SUSE Bug 1020102

openSUSE-SU-2017:0510-1

Описание

Список пакетов

openSUSE Leap 42.1

openSUSE Leap 42.2

Ссылки

Уязвимость: CVE-2017-0381

Описание

Затронутые продукты

Ссылки