openSUSE-SU-2019:0021-1

Опубликовано: 11 янв. 2019

Источник: suse-cvrf

Описание

Security update for libgit2

This update for libgit2 fixes the following issues:

Security issues fixed:

CVE-2018-19456: Fixed a code execution by malicious .gitmodules file (bsc#1110949)
various string-to-integer and buffer handling fixes (bsc#1114729).

This update was imported from the SUSE:SLE-12-SP2:Update update project.

Список пакетов

openSUSE Leap 42.3

libgit2-0.24.1-10.6.1

libgit2-24-0.24.1-10.6.1

libgit2-24-32bit-0.24.1-10.6.1

libgit2-devel-0.24.1-10.6.1

Ссылки

https://lists.opensuse.org/opensuse-security-announce/2019-01/msg00006.html
E-Mail link for openSUSE-SU-2019:0021-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

The WP Backup+ (aka WPbackupplus) plugin through 2018-11-22 for WordPress allows remote attackers to obtain sensitive information from server folders and files, as demonstrated by download.sql.

Затронутые продукты

openSUSE Leap 42.3:libgit2-0.24.1-10.6.1

openSUSE Leap 42.3:libgit2-24-0.24.1-10.6.1

openSUSE Leap 42.3:libgit2-24-32bit-0.24.1-10.6.1

openSUSE Leap 42.3:libgit2-devel-0.24.1-10.6.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-19456.html
CVE-2018-19456

openSUSE-SU-2019:0021-1

Описание

Список пакетов

openSUSE Leap 42.3

Ссылки

Уязвимость: CVE-2018-19456

Описание

Затронутые продукты

Ссылки