openSUSE-SU-2018:0853-1

Опубликовано: 30 мар. 2018

Источник: suse-cvrf

Описание

Security update for links

This update for links to version 2.15 fixes the following issues:

CVE-2017-11114: Buffer over-read vulnerability in case of corrupted UTF-8 data (boo#1051448)

This update also contains a number of upstream improvements:

Rewrite google docs URLs to the download link, so that the file can be viewed in external viewer
Improved handling of compressed connections and content
various other bug fixes and improvements

Список пакетов

openSUSE Leap 42.3

links-2.15-7.3.1

Ссылки

https://lists.opensuse.org/opensuse-updates/2018-03/msg00115.html
E-Mail link for openSUSE-SU-2018:0853-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

The put_chars function in html_r.c in Twibright Links 2.14 allows remote attackers to cause a denial of service (buffer over-read) via a crafted HTML file.

Затронутые продукты

openSUSE Leap 42.3:links-2.15-7.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-11114.html
CVE-2017-11114
https://bugzilla.suse.com/1051448
SUSE Bug 1051448

openSUSE-SU-2018:0853-1

Описание

Список пакетов

openSUSE Leap 42.3

Ссылки

Уязвимость: CVE-2017-11114

Описание

Затронутые продукты

Ссылки