openSUSE-SU-2022:10042-1

Опубликовано: 06 июл. 2022

Источник: suse-cvrf

Описание

Security update for librttopo

This update for librttopo fixes the following issues:

CVE-2017-18359: Fixed a denial of service in rtgeom_to_x3d3() (boo#1201215)

Список пакетов

SUSE Package Hub 15 SP4

librttopo-devel-1.1.0-bp154.2.3.1

librttopo1-1.1.0-bp154.2.3.1

openSUSE Leap 15.4

librttopo-devel-1.1.0-bp154.2.3.1

librttopo1-1.1.0-bp154.2.3.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/53LIXE3IZS3MCDAMEDMHBM75CSSFKC7N/
E-Mail link for openSUSE-SU-2022:10042-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1201215
SUSE Bug 1201215
https://www.suse.com/security/cve/CVE-2017-18359/
SUSE CVE CVE-2017-18359 page

Описание

PostGIS 2.x before 2.3.3, as used with PostgreSQL, allows remote attackers to cause a denial of service via crafted ST_AsX3D function input, as demonstrated by an abnormal server termination for "SELECT ST_AsX3D('LINESTRING EMPTY');" because empty geometries are mishandled.

Затронутые продукты

SUSE Package Hub 15 SP4:librttopo-devel-1.1.0-bp154.2.3.1

SUSE Package Hub 15 SP4:librttopo1-1.1.0-bp154.2.3.1

openSUSE Leap 15.4:librttopo-devel-1.1.0-bp154.2.3.1

openSUSE Leap 15.4:librttopo1-1.1.0-bp154.2.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-18359.html
CVE-2017-18359
https://bugzilla.suse.com/1201215
SUSE Bug 1201215

openSUSE-SU-2022:10042-1

Описание

Список пакетов

SUSE Package Hub 15 SP4

openSUSE Leap 15.4

Ссылки

Уязвимость: CVE-2017-18359

Описание

Затронутые продукты

Ссылки