Описание
Security update for dosbox
This update for dosbox fixes the following issues:
Security issues fixed:
- CVE-2019-7165: Fixed that a very long line inside a bat file would overflow the parsing buffer (bnc#1140254).
- CVE-2019-12594: Added a basic permission system so that a program running inside DOSBox can't access the contents of /proc (e.g. /proc/self/mem) when / or /proc were (to be) mounted (bnc#1140254).
- Several other fixes for out of bounds access and buffer overflows.
Список пакетов
SUSE Package Hub 15
dosbox-0.74.3-bp150.3.3.1
openSUSE Leap 15.0
dosbox-0.74.3-bp150.3.3.1
openSUSE Leap 15.1
dosbox-0.74.3-bp150.3.3.1
Ссылки
- E-Mail link for openSUSE-SU-2019:1905-1
- SUSE Security Ratings
- SUSE Bug 1140254
- SUSE CVE CVE-2019-12594 page
- SUSE CVE CVE-2019-7165 page
Описание
DOSBox 0.74-2 has Incorrect Access Control.
Затронутые продукты
SUSE Package Hub 15:dosbox-0.74.3-bp150.3.3.1
openSUSE Leap 15.0:dosbox-0.74.3-bp150.3.3.1
openSUSE Leap 15.1:dosbox-0.74.3-bp150.3.3.1
Ссылки
- CVE-2019-12594
- SUSE Bug 1140254
Описание
A buffer overflow in DOSBox 0.74-2 allows attackers to execute arbitrary code.
Затронутые продукты
SUSE Package Hub 15:dosbox-0.74.3-bp150.3.3.1
openSUSE Leap 15.0:dosbox-0.74.3-bp150.3.3.1
openSUSE Leap 15.1:dosbox-0.74.3-bp150.3.3.1
Ссылки
- CVE-2019-7165
- SUSE Bug 1140254