exploitDog

openSUSE-SU-2022:1061-1

Опубликовано: 30 мар. 2022

Источник: suse-cvrf

Описание

Security update for zlib

This update for zlib fixes the following issues:

CVE-2018-25032: Fixed memory corruption on deflate (bsc#1197459).

Список пакетов

openSUSE Leap 15.3

libminizip1-1.2.11-150000.3.30.1

libminizip1-32bit-1.2.11-150000.3.30.1

libz1-1.2.11-150000.3.30.1

libz1-32bit-1.2.11-150000.3.30.1

minizip-devel-1.2.11-150000.3.30.1

zlib-devel-1.2.11-150000.3.30.1

zlib-devel-32bit-1.2.11-150000.3.30.1

zlib-devel-static-1.2.11-150000.3.30.1

zlib-devel-static-32bit-1.2.11-150000.3.30.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/Q3IAWI5KYTN2PXEFZY7OU7STBINLC3H6/
E-Mail link for openSUSE-SU-2022:1061-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1197459
SUSE Bug 1197459
https://www.suse.com/security/cve/CVE-2018-25032/
SUSE CVE CVE-2018-25032 page

Описание

zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.

Затронутые продукты

openSUSE Leap 15.3:libminizip1-1.2.11-150000.3.30.1

openSUSE Leap 15.3:libminizip1-32bit-1.2.11-150000.3.30.1

openSUSE Leap 15.3:libz1-1.2.11-150000.3.30.1

openSUSE Leap 15.3:libz1-32bit-1.2.11-150000.3.30.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-25032.html
CVE-2018-25032
https://bugzilla.suse.com/1197459
SUSE Bug 1197459
https://bugzilla.suse.com/1197893
SUSE Bug 1197893
https://bugzilla.suse.com/1198667
SUSE Bug 1198667
https://bugzilla.suse.com/1199104
SUSE Bug 1199104
https://bugzilla.suse.com/1200049
SUSE Bug 1200049
https://bugzilla.suse.com/1201732
SUSE Bug 1201732
https://bugzilla.suse.com/1202688
SUSE Bug 1202688
https://bugzilla.suse.com/1224427
SUSE Bug 1224427