openSUSE-SU-2018:2591-1

Опубликовано: 03 сент. 2018

Источник: suse-cvrf

Описание

Security update for zutils

This update for zutils to version 1.7 fixes one security issue:

CVE-2018-1000637: buffer overrun in zcat utility (boo#1103878)

Please note that the zutils zcat utility is distinct from the default gzip zcat utility.

Список пакетов

openSUSE Leap 42.3

zutils-1.7-4.3.1

Ссылки

http://lists.opensuse.org/opensuse-security-announce/2018-09/msg00002.html
E-Mail link for openSUSE-SU-2018:2591-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

zutils version prior to version 1.8-pre2 contains a Buffer Overflow vulnerability in zcat that can result in Potential denial of service or arbitrary code execution. This attack appear to be exploitable via the victim openning a crafted compressed file. This vulnerability appears to have been fixed in 1.8-pre2.

Затронутые продукты

openSUSE Leap 42.3:zutils-1.7-4.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-1000637.html
CVE-2018-1000637
https://bugzilla.suse.com/1103878
SUSE Bug 1103878

openSUSE-SU-2018:2591-1

Описание

Список пакетов

openSUSE Leap 42.3

Ссылки

Уязвимость: CVE-2018-1000637

Описание

Затронутые продукты

Ссылки