Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2018:1119-1

Опубликовано: 02 мая 2018
Источник: suse-cvrf

Описание

Security update for quassel

This update for quassel fixes the following issues:

Security fixes (boo#1090495):

  • CVE-2018-1000178: A heap metadata corruption in qdatastream could have been exploited to launch an unauthenticated remote code execution

  • CVE-2018-1000179: A remote attacker could have caused a Denial of Service attack by initiating login attempts before the core got initialized

The following tracked packaging change is included:

  • boo#1069468: no longer use /var/adm/fillup-templates

This update also includes various small bug fixes in the upstream 0.12.4 release.

Список пакетов

openSUSE Leap 42.3
quassel-0.12.5-5.3.1
quassel-base-0.12.5-5.3.1
quassel-client-0.12.5-5.3.1
quassel-client-qt5-0.12.5-5.3.1
quassel-core-0.12.5-5.3.1
quassel-mono-0.12.5-5.3.1

Ссылки

Описание

A heap corruption of type CWE-120 exists in quassel version 0.12.4 in quasselcore in void DataStreamPeer::processMessage(const QByteArray &msg) datastreampeer.cpp line 62 that allows an attacker to execute code remotely.

Затронутые продукты
openSUSE Leap 42.3:quassel-0.12.5-5.3.1
openSUSE Leap 42.3:quassel-base-0.12.5-5.3.1
openSUSE Leap 42.3:quassel-client-0.12.5-5.3.1
openSUSE Leap 42.3:quassel-client-qt5-0.12.5-5.3.1
Ссылки

Описание

A NULL Pointer Dereference of CWE-476 exists in quassel version 0.12.4 in the quasselcore void CoreAuthHandler::handle(const Login &msg) coreauthhandler.cpp line 235 that allows an attacker to cause a denial of service.

Затронутые продукты
openSUSE Leap 42.3:quassel-0.12.5-5.3.1
openSUSE Leap 42.3:quassel-base-0.12.5-5.3.1
openSUSE Leap 42.3:quassel-client-0.12.5-5.3.1
openSUSE Leap 42.3:quassel-client-qt5-0.12.5-5.3.1
Ссылки