openSUSE-SU-2018:0153-1

Опубликовано: 20 янв. 2018

Источник: suse-cvrf

Описание

Security update for perl-XML-LibXML

This update for perl-XML-LibXML fixes the following issues:

Security issue fixed:

CVE-2017-10672: Fix use-after-free that allows remote attackers to execute arbitrary code by controlling the arguments to a replaceChild call (bsc#1046848).

This update was imported from the SUSE:SLE-12:Update update project.

Список пакетов

openSUSE Leap 42.2

perl-XML-LibXML-2.0019-10.1

openSUSE Leap 42.3

perl-XML-LibXML-2.0019-10.1

Ссылки

https://lists.opensuse.org/opensuse-updates/2018-01/msg00056.html
E-Mail link for openSUSE-SU-2018:0153-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

Use-after-free in the XML-LibXML module through 2.0129 for Perl allows remote attackers to execute arbitrary code by controlling the arguments to a replaceChild call.

Затронутые продукты

openSUSE Leap 42.2:perl-XML-LibXML-2.0019-10.1

openSUSE Leap 42.3:perl-XML-LibXML-2.0019-10.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-10672.html
CVE-2017-10672
https://bugzilla.suse.com/1046848
SUSE Bug 1046848
https://bugzilla.suse.com/1069732
SUSE Bug 1069732

openSUSE-SU-2018:0153-1

Описание

Список пакетов

openSUSE Leap 42.2

openSUSE Leap 42.3

Ссылки

Уязвимость: CVE-2017-10672

Описание

Затронутые продукты

Ссылки