Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

SUSE Linux 15-SP1: 2020:1294-1 Moderate: File Buffer Overflow

suse
Calendar Grey May 18, 2020
Dist Suse Esm H88
SUSE Linux Security Update for file 2020:1294-1 resolves a critical buffer overflow vulnerability. Access patch details and installation guidelines.
An update that solves one vulnerability and has one errata is now available

Summary

This update for file fixes the following issues: Security issues fixed: - CVE-2019-18218: Fixed a heap-based buffer overflow in cdf_read_property_info() (bsc#1154661). Non-security issue fixed: - Fixed broken '--help' output (bsc#1169512). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Module for Python2 15-SP1: zypper in -t patch SUSE-SLE-Module-Python2-15-SP1-2020-1294=1 - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1: zypper in -t patch SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2020-1294=1 - SUSE Linux Enterprise Module for Development Tools 15-SP1:

References

#1154661 #1169512

Cross- CVE-2019-18218

Affected Products:

SUSE Linux Enterprise Module for Python2 15-SP1

SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1

SUSE Linux Enterprise Module for Development Tools 15-SP1

SUSE Linux Enterprise Module for Basesystem 15-SP1

https://www.suse.com/security/cve/CVE-2019-18218.html

https://bugzilla.suse.com/1154661

https://bugzilla.suse.com/1169512

Announcement ID: SUSE-SU-2020:1294-1
Rating: moderate

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here