openSUSE-SU-2017:0669-1

Опубликовано: 11 мар. 2017

Источник: suse-cvrf

Описание

Security update for bitlbee

This update for bitlbee fixes the following security issues:

A file transfer request from a contact not in the contact list could have resulted in a null pointer dereference, causing remote DoS by malicious remote clients (CVE-2016-10189, bnc#1022498).

Список пакетов

openSUSE Leap 42.1

bitlbee-3.4.2-3.1

bitlbee-devel-3.4.2-3.1

bitlbee-doc-3.4.2-3.1

openSUSE Leap 42.2

bitlbee-3.4.2-3.1

bitlbee-devel-3.4.2-3.1

bitlbee-doc-3.4.2-3.1

Ссылки

https://lists.opensuse.org/opensuse-updates/2017-03/msg00026.html
E-Mail link for openSUSE-SU-2017:0669-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

BitlBee before 3.5 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) and possibly execute arbitrary code via a file transfer request for a contact that is not in the contact list.

Затронутые продукты

openSUSE Leap 42.1:bitlbee-3.4.2-3.1

openSUSE Leap 42.1:bitlbee-devel-3.4.2-3.1

openSUSE Leap 42.1:bitlbee-doc-3.4.2-3.1

openSUSE Leap 42.2:bitlbee-3.4.2-3.1

Ссылки

https://www.suse.com/security/cve/CVE-2016-10189.html
CVE-2016-10189
https://bugzilla.suse.com/1022498
SUSE Bug 1022498

openSUSE-SU-2017:0669-1

Описание

Список пакетов

openSUSE Leap 42.1

openSUSE Leap 42.2

Ссылки

Уязвимость: CVE-2016-10189

Описание

Затронутые продукты

Ссылки