Описание
Security update for freetds
This update for freetds to 1.1.36 fixes the following issues:
Security issue fixed:
- CVE-2019-13508: Fixed a heap overflow that could have been caused by malicious servers sending UDT types over protocol version 5.0 (bsc#1141132).
Non-security issues fixed:
- Enabled Kerberos support
- Version update to 1.1.36:
- Default TDS protocol version is now 'auto'
- Improved UTF-8 performances
- TDS Pool Server is enabled
- MARS support is enabled
- NTLMv2 is enabled
- See NEWS and ChangeLog for a complete list of changes
This update was imported from the SUSE:SLE-15:Update update project.
Список пакетов
openSUSE Leap 15.1
freetds-config-1.1.36-lp151.3.3.1
freetds-devel-1.1.36-lp151.3.3.1
freetds-doc-1.1.36-lp151.3.3.1
freetds-tools-1.1.36-lp151.3.3.1
libct4-1.1.36-lp151.3.3.1
libsybdb5-1.1.36-lp151.3.3.1
libtdsodbc0-1.1.36-lp151.3.3.1
Ссылки
- E-Mail link for openSUSE-SU-2020:0741-1
- SUSE Security Ratings
- SUSE Bug 1141132
- SUSE CVE CVE-2019-13508 page
Описание
FreeTDS through 1.1.11 has a Buffer Overflow.
Затронутые продукты
openSUSE Leap 15.1:freetds-config-1.1.36-lp151.3.3.1
openSUSE Leap 15.1:freetds-devel-1.1.36-lp151.3.3.1
openSUSE Leap 15.1:freetds-doc-1.1.36-lp151.3.3.1
openSUSE Leap 15.1:freetds-tools-1.1.36-lp151.3.3.1
Ссылки
- CVE-2019-13508
- SUSE Bug 1141132