openSUSE-SU-2020:0831-1

Опубликовано: 17 июн. 2020

Источник: suse-cvrf

Описание

Security update for libEMF

This update for libEMF fixes the following issues:

CVE-2020-11863: Fixed an issue which could have led to denial of service (bsc#1171496).
CVE-2020-11864: Fixed an issue which could have led to denial of service (bsc#1171499).
CVE-2020-11865: Fixed an out of bounds memory access (bsc#1171497).
CVE-2020-11866: Fixed a use after free (bsc#1171498).

This update was imported from the SUSE:SLE-15:Update update project.

Список пакетов

openSUSE Leap 15.1

libEMF-devel-1.0.7-lp151.3.3.1

libEMF-utils-1.0.7-lp151.3.3.1

libEMF1-1.0.7-lp151.3.3.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/YMYS2Z57RKG3XW5OLLSDZ6PQIQQG7DAI/
E-Mail link for openSUSE-SU-2020:0831-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1171496
SUSE Bug 1171496
https://bugzilla.suse.com/1171497
SUSE Bug 1171497
https://bugzilla.suse.com/1171498
SUSE Bug 1171498
https://bugzilla.suse.com/1171499
SUSE Bug 1171499
https://www.suse.com/security/cve/CVE-2020-11863/
SUSE CVE CVE-2020-11863 page
https://www.suse.com/security/cve/CVE-2020-11864/
SUSE CVE CVE-2020-11864 page
https://www.suse.com/security/cve/CVE-2020-11865/
SUSE CVE CVE-2020-11865 page
https://www.suse.com/security/cve/CVE-2020-11866/
SUSE CVE CVE-2020-11866 page

Описание

libEMF (aka ECMA-234 Metafile Library) through 1.0.11 allows denial of service (issue 1 of 2).

Затронутые продукты

openSUSE Leap 15.1:libEMF-devel-1.0.7-lp151.3.3.1

openSUSE Leap 15.1:libEMF-utils-1.0.7-lp151.3.3.1

openSUSE Leap 15.1:libEMF1-1.0.7-lp151.3.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-11863.html
CVE-2020-11863
https://bugzilla.suse.com/1171496
SUSE Bug 1171496

Описание

libEMF (aka ECMA-234 Metafile Library) through 1.0.11 allows denial of service (issue 2 of 2).

Затронутые продукты

openSUSE Leap 15.1:libEMF-devel-1.0.7-lp151.3.3.1

openSUSE Leap 15.1:libEMF-utils-1.0.7-lp151.3.3.1

openSUSE Leap 15.1:libEMF1-1.0.7-lp151.3.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-11864.html
CVE-2020-11864
https://bugzilla.suse.com/1171499
SUSE Bug 1171499

Описание

libEMF (aka ECMA-234 Metafile Library) through 1.0.11 allows out-of-bounds memory access.

Затронутые продукты

openSUSE Leap 15.1:libEMF-devel-1.0.7-lp151.3.3.1

openSUSE Leap 15.1:libEMF-utils-1.0.7-lp151.3.3.1

openSUSE Leap 15.1:libEMF1-1.0.7-lp151.3.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-11865.html
CVE-2020-11865
https://bugzilla.suse.com/1171497
SUSE Bug 1171497

Описание

libEMF (aka ECMA-234 Metafile Library) through 1.0.11 allows a use-after-free.

Затронутые продукты

openSUSE Leap 15.1:libEMF-devel-1.0.7-lp151.3.3.1

openSUSE Leap 15.1:libEMF-utils-1.0.7-lp151.3.3.1

openSUSE Leap 15.1:libEMF1-1.0.7-lp151.3.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-11866.html
CVE-2020-11866
https://bugzilla.suse.com/1171498
SUSE Bug 1171498

openSUSE-SU-2020:0831-1

Описание

Список пакетов

openSUSE Leap 15.1

Ссылки

Уязвимость: CVE-2020-11863

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2020-11864

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2020-11865

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2020-11866

Описание

Затронутые продукты

Ссылки