openSUSE-SU-2018:1564-1

Опубликовано: 07 июн. 2018

Источник: suse-cvrf

Описание

Security update for zziplib

This update for zziplib fixes the following issues:

Security issue fixed:

CVE-2018-6542: Reject file if the size of the central directory is too big and display an error message (bsc#1079094).

This update was imported from the SUSE:SLE-12:Update update project.

Список пакетов

openSUSE Leap 42.3

libzzip-0-13-0.13.67-13.9.1

libzzip-0-13-32bit-0.13.67-13.9.1

zziplib-0.13.67-13.9.1

zziplib-devel-0.13.67-13.9.1

zziplib-devel-32bit-0.13.67-13.9.1

Ссылки

https://lists.opensuse.org/opensuse-security-announce/2018-06/msg00007.html
E-Mail link for openSUSE-SU-2018:1564-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

In ZZIPlib 0.13.67, there is a bus error (when handling a disk64_trailer seek value) caused by loading of a misaligned address in the zzip_disk_findfirst function of zzip/mmapped.c.

Затронутые продукты

openSUSE Leap 42.3:libzzip-0-13-0.13.67-13.9.1

openSUSE Leap 42.3:libzzip-0-13-32bit-0.13.67-13.9.1

openSUSE Leap 42.3:zziplib-0.13.67-13.9.1

openSUSE Leap 42.3:zziplib-devel-0.13.67-13.9.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-6542.html
CVE-2018-6542
https://bugzilla.suse.com/1079094
SUSE Bug 1079094

openSUSE-SU-2018:1564-1

Описание

Список пакетов

openSUSE Leap 42.3

Ссылки

Уязвимость: CVE-2018-6542

Описание

Затронутые продукты

Ссылки