exploitDog

openSUSE-SU-2020:1771-1

Опубликовано: 29 окт. 2020

Источник: suse-cvrf

Описание

Security update for lout

This update for lout fixes the following issues:

CVE-2019-19918: Fixed buffer overflow in srcnext() (boo#1159713).
CVE-2019-19917: Fixed buffer overflow in StringQuotedWord() (boo#1159714).

Список пакетов

openSUSE Leap 15.2

lout-3.40-lp152.3.3.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5KIQ7BTUI6UATZOJGZFHRX36QES3G7OP/
E-Mail link for openSUSE-SU-2020:1771-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1159713
SUSE Bug 1159713
https://bugzilla.suse.com/1159714
SUSE Bug 1159714
https://www.suse.com/security/cve/CVE-2019-19917/
SUSE CVE CVE-2019-19917 page
https://www.suse.com/security/cve/CVE-2019-19918/
SUSE CVE CVE-2019-19918 page

Описание

Lout 3.40 has a buffer overflow in the StringQuotedWord() function in z39.c.

Затронутые продукты

openSUSE Leap 15.2:lout-3.40-lp152.3.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-19917.html
CVE-2019-19917
https://bugzilla.suse.com/1159714
SUSE Bug 1159714

Описание

Lout 3.40 has a heap-based buffer overflow in the srcnext() function in z02.c.

Затронутые продукты

openSUSE Leap 15.2:lout-3.40-lp152.3.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-19918.html
CVE-2019-19918
https://bugzilla.suse.com/1159713
SUSE Bug 1159713