openSUSE-SU-2018:3819-1

Опубликовано: 20 нояб. 2018

Источник: suse-cvrf

Описание

Security update for libmatroska, mkvtoolnix

This update for libmatroska, mkvtoolnix fixes the following issues:

Security issue fixed:

CVE-2018-4022: Fixed use-after-free vulnerability that existed in the way MKV (matroska) file format was handled (bsc#1113709).

Список пакетов

SUSE Package Hub for SUSE Linux Enterprise 15

mkvtoolnix-28.2.0-bp150.2.3.1

mkvtoolnix-gui-28.2.0-bp150.2.3.1

Ссылки

http://lists.opensuse.org/opensuse-security-announce/2018-11/msg00030.html
E-Mail link for openSUSE-SU-2018:3819-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

A use-after-free vulnerability exists in the way MKVToolNix MKVINFO v25.0.0 handles the MKV (matroska) file format. A specially crafted MKV file can cause arbitrary code execution in the context of the current user.

Затронутые продукты

SUSE Package Hub for SUSE Linux Enterprise 15:mkvtoolnix-28.2.0-bp150.2.3.1

SUSE Package Hub for SUSE Linux Enterprise 15:mkvtoolnix-gui-28.2.0-bp150.2.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-4022.html
CVE-2018-4022
https://bugzilla.suse.com/1113709
SUSE Bug 1113709

openSUSE-SU-2018:3819-1

Описание

Список пакетов

SUSE Package Hub for SUSE Linux Enterprise 15

Ссылки

Уязвимость: CVE-2018-4022

Описание

Затронутые продукты

Ссылки