openSUSE-SU-2018:2813-1

Опубликовано: 24 сент. 2018

Источник: suse-cvrf

Описание

Security update for openslp

This update for openslp fixes the following issues:

CVE-2017-17833: Prevent heap-related memory corruption issue which may have manifested itself as a denial-of-service or a remote code-execution vulnerability (bsc#1090638)
Prevent out of bounds reads in message parsing

This update was imported from the SUSE:SLE-12:Update update project.

Список пакетов

openSUSE Leap 42.3

openslp-2.0.0-18.7.1

openslp-32bit-2.0.0-18.7.1

openslp-devel-2.0.0-18.7.1

openslp-server-2.0.0-18.7.1

Ссылки

https://lists.opensuse.org/opensuse-security-announce/2018-09/msg00063.html
E-Mail link for openSUSE-SU-2018:2813-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

OpenSLP releases in the 1.0.2 and 1.1.0 code streams have a heap-related memory corruption issue which may manifest itself as a denial-of-service or a remote code-execution vulnerability.

Затронутые продукты

openSUSE Leap 42.3:openslp-2.0.0-18.7.1

openSUSE Leap 42.3:openslp-32bit-2.0.0-18.7.1

openSUSE Leap 42.3:openslp-devel-2.0.0-18.7.1

openSUSE Leap 42.3:openslp-server-2.0.0-18.7.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-17833.html
CVE-2017-17833
https://bugzilla.suse.com/1090638
SUSE Bug 1090638
https://bugzilla.suse.com/1099519
SUSE Bug 1099519
https://bugzilla.suse.com/1126909
SUSE Bug 1126909

openSUSE-SU-2018:2813-1

Описание

Список пакетов

openSUSE Leap 42.3

Ссылки

Уязвимость: CVE-2017-17833

Описание

Затронутые продукты

Ссылки