openSUSE-SU-2020:2177-1

Опубликовано: 06 дек. 2020

Источник: suse-cvrf

Описание

Security update for pngcheck

This update for pngcheck fixes the following issues:

CVE-2020-27818: Fixed a global buffer overflow in check_chunk_name function via crafted pngfile (boo#1179528).

Список пакетов

openSUSE Leap 15.2

pngcheck-2.3.0-lp152.4.3.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/6X67BQ55SUAPPGYOKAMOSKREWWBB3IML/
E-Mail link for openSUSE-SU-2020:2177-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1179528
SUSE Bug 1179528
https://www.suse.com/security/cve/CVE-2020-27818/
SUSE CVE CVE-2020-27818 page

Описание

A flaw was found in the check_chunk_name() function of pngcheck-2.4.0. An attacker able to pass a malicious file to be processed by pngcheck could cause a temporary denial of service, posing a low risk to application availability.

Затронутые продукты

openSUSE Leap 15.2:pngcheck-2.3.0-lp152.4.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-27818.html
CVE-2020-27818
https://bugzilla.suse.com/1179528
SUSE Bug 1179528

openSUSE-SU-2020:2177-1

Описание

Список пакетов

openSUSE Leap 15.2

Ссылки

Уязвимость: CVE-2020-27818

Описание

Затронутые продукты

Ссылки