openSUSE-SU-2019:1485-1

Опубликовано: 02 июн. 2019

Источник: suse-cvrf

Описание

Security update for screen

This update for screen fixes the following issues:

Security issue fixed:

CVE-2015-6806: Fixed a stack overflow due to deep recursion (bsc#944458).

Non-security issue fixed:

Fixed segmentation faults related to altscreen and resizing screen (bsc#1130831).

This update was imported from the SUSE:SLE-12-SP2:Update update project.

Список пакетов

openSUSE Leap 42.3

screen-4.0.4-10.3.1

Ссылки

https://lists.opensuse.org/opensuse-security-announce/2019-06/msg00001.html
E-Mail link for openSUSE-SU-2019:1485-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

The MScrollV function in ansi.c in GNU screen 4.3.1 and earlier does not properly limit recursion, which allows remote attackers to cause a denial of service (stack consumption) via an escape sequence with a large repeat count value.

Затронутые продукты

openSUSE Leap 42.3:screen-4.0.4-10.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2015-6806.html
CVE-2015-6806
https://bugzilla.suse.com/944458
SUSE Bug 944458

openSUSE-SU-2019:1485-1

Описание

Список пакетов

openSUSE Leap 42.3

Ссылки

Уязвимость: CVE-2015-6806

Описание

Затронутые продукты

Ссылки