openSUSE-SU-2020:0438-1

Опубликовано: 31 мар. 2020

Источник: suse-cvrf

Описание

Security update for ldns

This update for ldns fixes the following issues:

CVE-2017-1000231: Fixed a buffer overflow during token parsing (bsc#1068711).
CVE-2017-1000232: Fixed a double-free vulnerability in str2host.c (bsc#1068709).

This update was imported from the SUSE:SLE-15:Update update project.

ldns-1.7.0-lp151.4.3.1

ldns-devel-1.7.0-lp151.4.3.1

libldns2-1.7.0-lp151.4.3.1

perl-DNS-LDNS-1.7.0-lp151.4.3.1

python3-ldns-1.7.0-lp151.4.3.1

A double-free vulnerability in parse.c in ldns 1.7.0 have unspecified impact and attack vectors.

openSUSE Leap 15.1:ldns-1.7.0-lp151.4.3.1

openSUSE Leap 15.1:ldns-devel-1.7.0-lp151.4.3.1

openSUSE Leap 15.1:libldns2-1.7.0-lp151.4.3.1

openSUSE Leap 15.1:perl-DNS-LDNS-1.7.0-lp151.4.3.1

A double-free vulnerability in str2host.c in ldns 1.7.0 have unspecified impact and attack vectors.

openSUSE Leap 15.1:ldns-1.7.0-lp151.4.3.1

openSUSE Leap 15.1:ldns-devel-1.7.0-lp151.4.3.1

openSUSE Leap 15.1:libldns2-1.7.0-lp151.4.3.1

openSUSE Leap 15.1:perl-DNS-LDNS-1.7.0-lp151.4.3.1