openSUSE-SU-2019:0061-1

Опубликовано: 17 янв. 2019

Источник: suse-cvrf

Описание

Security update for libunwind

This update for libunwind fixes one minor security issue and one bug.

The following security issue was fixed:

CVE-2015-3239: off-by-one error that could be triggered when reading untrusted binaries (boo#936786)

The following packaging bug was fixed:

boo#1122012: The 32 bit were not generated on Leap 42.3

Список пакетов

openSUSE Leap 42.3

libunwind-1.1-15.3.1

libunwind-32bit-1.1-15.3.1

libunwind-devel-1.1-15.3.1

Ссылки

https://lists.opensuse.org/opensuse-security-announce/2019-01/msg00022.html
E-Mail link for openSUSE-SU-2019:0061-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

Off-by-one error in the dwarf_to_unw_regnum function in include/dwarf_i.h in libunwind 1.1 allows local users to have unspecified impact via invalid dwarf opcodes.

Затронутые продукты

openSUSE Leap 42.3:libunwind-1.1-15.3.1

openSUSE Leap 42.3:libunwind-32bit-1.1-15.3.1

openSUSE Leap 42.3:libunwind-devel-1.1-15.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2015-3239.html
CVE-2015-3239
https://bugzilla.suse.com/1122012
SUSE Bug 1122012
https://bugzilla.suse.com/936786
SUSE Bug 936786

openSUSE-SU-2019:0061-1

Описание

Список пакетов

openSUSE Leap 42.3

Ссылки

Уязвимость: CVE-2015-3239

Описание

Затронутые продукты

Ссылки