openSUSE-SU-2018:2819-1

Опубликовано: 24 сент. 2018

Источник: suse-cvrf

Описание

Security update for liblouis

This update for liblouis fixes the following issues:

Security issues fixed:

CVE-2018-11440: Fixed a stack-based buffer overflow in the function parseChars() in compileTranslationTable.c (bsc#1095189)
CVE-2018-11577: Fixed a segmentation fault in lou_logPrint in logging.c (bsc#1095945)
CVE-2018-11683: Fixed a stack-based buffer overflow in the function parseChars() in compileTranslationTable.c (different vulnerability than CVE-2018-11440) (bsc#1095827)
CVE-2018-11684: Fixed stack-based buffer overflow in the function includeFile() in compileTranslationTable.c (bsc#1095826)
CVE-2018-11685: Fixed a stack-based buffer overflow in the function compileHyphenation() in compileTranslationTable.c (bsc#1095825)
CVE-2018-12085: Fixed a stack-based buffer overflow in the function parseChars() in compileTranslationTable.c (different vulnerability than CVE-2018-11440) (bsc#1097103)

This update was imported from the SUSE:SLE-12-SP2:Update update project.

Список пакетов

openSUSE Leap 42.3

liblouis-2.6.4-9.1

liblouis-data-2.6.4-9.1

liblouis-devel-2.6.4-9.1

liblouis-doc-2.6.4-9.1

liblouis-tools-2.6.4-9.1

liblouis9-2.6.4-9.1

python-louis-2.6.4-9.1

Ссылки

https://lists.opensuse.org/opensuse-security-announce/2018-09/msg00067.html
E-Mail link for openSUSE-SU-2018:2819-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

Liblouis 3.5.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c.

Затронутые продукты

openSUSE Leap 42.3:liblouis-2.6.4-9.1

openSUSE Leap 42.3:liblouis-data-2.6.4-9.1

openSUSE Leap 42.3:liblouis-devel-2.6.4-9.1

openSUSE Leap 42.3:liblouis-doc-2.6.4-9.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-11440.html
CVE-2018-11440
https://bugzilla.suse.com/1095189
SUSE Bug 1095189
https://bugzilla.suse.com/1095827
SUSE Bug 1095827
https://bugzilla.suse.com/1096665
SUSE Bug 1096665
https://bugzilla.suse.com/1097103
SUSE Bug 1097103

Описание

Liblouis 3.5.0 has a Segmentation fault in lou_logPrint in logging.c.

Затронутые продукты

openSUSE Leap 42.3:liblouis-2.6.4-9.1

openSUSE Leap 42.3:liblouis-data-2.6.4-9.1

openSUSE Leap 42.3:liblouis-devel-2.6.4-9.1

openSUSE Leap 42.3:liblouis-doc-2.6.4-9.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-11577.html
CVE-2018-11577
https://bugzilla.suse.com/1095945
SUSE Bug 1095945

Описание

Liblouis 3.5.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c, a different vulnerability than CVE-2018-11440.

Затронутые продукты

openSUSE Leap 42.3:liblouis-2.6.4-9.1

openSUSE Leap 42.3:liblouis-data-2.6.4-9.1

openSUSE Leap 42.3:liblouis-devel-2.6.4-9.1

openSUSE Leap 42.3:liblouis-doc-2.6.4-9.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-11683.html
CVE-2018-11683
https://bugzilla.suse.com/1095827
SUSE Bug 1095827
https://bugzilla.suse.com/1096665
SUSE Bug 1096665

Описание

Liblouis 3.5.0 has a stack-based Buffer Overflow in the function includeFile in compileTranslationTable.c.

Затронутые продукты

openSUSE Leap 42.3:liblouis-2.6.4-9.1

openSUSE Leap 42.3:liblouis-data-2.6.4-9.1

openSUSE Leap 42.3:liblouis-devel-2.6.4-9.1

openSUSE Leap 42.3:liblouis-doc-2.6.4-9.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-11684.html
CVE-2018-11684
https://bugzilla.suse.com/1095826
SUSE Bug 1095826

Описание

Liblouis 3.5.0 has a stack-based Buffer Overflow in the function compileHyphenation in compileTranslationTable.c.

Затронутые продукты

openSUSE Leap 42.3:liblouis-2.6.4-9.1

openSUSE Leap 42.3:liblouis-data-2.6.4-9.1

openSUSE Leap 42.3:liblouis-devel-2.6.4-9.1

openSUSE Leap 42.3:liblouis-doc-2.6.4-9.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-11685.html
CVE-2018-11685
https://bugzilla.suse.com/1095825
SUSE Bug 1095825

Описание

Liblouis 3.6.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c, a different vulnerability than CVE-2018-11440.

Затронутые продукты

openSUSE Leap 42.3:liblouis-2.6.4-9.1

openSUSE Leap 42.3:liblouis-data-2.6.4-9.1

openSUSE Leap 42.3:liblouis-devel-2.6.4-9.1

openSUSE Leap 42.3:liblouis-doc-2.6.4-9.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-12085.html
CVE-2018-12085
https://bugzilla.suse.com/1097103
SUSE Bug 1097103

openSUSE-SU-2018:2819-1

Описание

Список пакетов

openSUSE Leap 42.3

Ссылки

Уязвимость: CVE-2018-11440

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2018-11577

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2018-11683

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2018-11684

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2018-11685

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2018-12085

Описание

Затронутые продукты

Ссылки