Описание
Security update for udisks2
This update for udisks2 fixes the following issues:
Following security issues was fixed:
- CVE-2018-17336: A format string vulnerability in udisks_log (bsc#1109406)
Following non-security issues were fixed:
- strip trailing newline from sysfs raid level information (bsc#1091274)
- Fix watcher error for non-redundant raid devices. (bsc#1091274)
This update was imported from the SUSE:SLE-15:Update update project.
Список пакетов
openSUSE Leap 15.0
libudisks2-0-2.6.5-lp150.2.3.1
typelib-1_0-UDisks-2_0-2.6.5-lp150.2.3.1
udisks2-2.6.5-lp150.2.3.1
udisks2-devel-2.6.5-lp150.2.3.1
udisks2-lang-2.6.5-lp150.2.3.1
Ссылки
- E-Mail link for openSUSE-SU-2018:3372-1
- SUSE Security Ratings
Описание
UDisks 2.8.0 has a format string vulnerability in udisks_log in udiskslogging.c, allowing attackers to obtain sensitive information (stack contents), cause a denial of service (memory corruption), or possibly have unspecified other impact via a malformed filesystem label, as demonstrated by %d or %n substrings.
Затронутые продукты
openSUSE Leap 15.0:libudisks2-0-2.6.5-lp150.2.3.1
openSUSE Leap 15.0:typelib-1_0-UDisks-2_0-2.6.5-lp150.2.3.1
openSUSE Leap 15.0:udisks2-2.6.5-lp150.2.3.1
openSUSE Leap 15.0:udisks2-devel-2.6.5-lp150.2.3.1
Ссылки
- CVE-2018-17336
- SUSE Bug 1109406