Stay Vigilant with Timely Linux Security Advisories

Loading...

security advisorymoderateCRLF injection

SUSE: 2024:4146-1 moderate: php7 buffer overread and heap leak

* bsc#1233651 * bsc#1233702 * bsc#1233703 Cross-References: . # Security update for php7 Announcement ID: SUSE-SU-2024:4146-1 Release Date: 2024-12-03T09:08:38Z Rating: moderate References: * bsc#1233651 * bsc#1233702 * bsc#1233703 Cross-References: * CVE-2024-11233 * CVE-2024-11234 * CVE-2024-8929 CVSS scores: * CVE-2024-11233 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-11233 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2024-11233 ( NVD ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2024-11233 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2024-11234 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2024-11234 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2024-11234 ( NVD ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2024-11234 ( NVD ): 7.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N * CVE-2024-8929 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2024-8929 ( NVD ): 5.8 CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N Affected Products: * Legacy Module 15-SP5 * Legacy Module 15-SP6 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Package Hub 15 15-SP5 * SUSE Package Hub 15 15-SP6 An update that solves three vulnerabilities can now be installed. ## Description: This update for php7 fixes the following issues: * CVE-2024-11233: Single byte overread withconvert.quoted-printable-decode filter (bsc#1233702). * CVE-2024-11234: Configuring a proxy in a stream context might allow for CRLF injection in URIs (bsc#1233703). * CVE-2024-8929: Leak partial content of the heap through heap buffer over- read (bsc#1233651). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-4146=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-4146=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-4146=1 * Legacy Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP5-2024-4146=1 * Legacy Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP6-2024-4146=1 * SUSE Package Hub 15 15-SP5 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-4146=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-4146=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * php7-tokenizer-7.4.33-150400.4.43.1 * php7-snmp-7.4.33-150400.4.43.1 * php7-zlib-debuginfo-7.4.33-150400.4.43.1 * php7-sysvmsg-debuginfo-7.4.33-150400.4.43.1 * php7-sysvsem-debuginfo-7.4.33-150400.4.43.1 * php7-intl-7.4.33-150400.4.43.1 * php7-enchant-debuginfo-7.4.33-150400.4.43.1 * php7-xmlreader-debuginfo-7.4.33-150400.4.43.1 * php7-sysvshm-7.4.33-150400.4.43.1 * php7-iconv-debuginfo-7.4.33-150400.4.43.1 * php7-sqlite-debuginfo-7.4.33-150400.4.43.1 * php7-embed-7.4.33-150400.4.43.1 * php7-pdo-debuginfo-7.4.33-150400.4.43.1 * php7-readline-debuginfo-7.4.33-150400.4.43.1 * php7-fastcgi-debugsource-7.4.33-150400.4.43.1 * php7-mbstring-7.4.33-150400.4.43.1 * php7-zip-7.4.33-150400.4.43.1 * apache2-mod_php7-debugsource-7.4.33-150400.4.43.1 *php7-opcache-debuginfo-7.4.33-150400.4.43.1 * php7-xmlrpc-7.4.33-150400.4.43.1 * php7-tidy-debuginfo-7.4.33-150400.4.43.1 * php7-cli-7.4.33-150400.4.43.1 * php7-fastcgi-debuginfo-7.4.33-150400.4.43.1 * php7-pgsql-7.4.33-150400.4.43.1 * php7-fileinfo-7.4.33-150400.4.43.1 * php7-ftp-7.4.33-150400.4.43.1 * php7-calendar-7.4.33-150400.4.43.1 * php7-phar-7.4.33-150400.4.43.1 * php7-gd-debuginfo-7.4.33-150400.4.43.1 * php7-sqlite-7.4.33-150400.4.43.1 * php7-fpm-7.4.33-150400.4.43.1 * php7-embed-debugsource-7.4.33-150400.4.43.1 * php7-gettext-7.4.33-150400.4.43.1 * php7-sysvmsg-7.4.33-150400.4.43.1 * php7-curl-debuginfo-7.4.33-150400.4.43.1 * php7-dom-7.4.33-150400.4.43.1 * php7-intl-debuginfo-7.4.33-150400.4.43.1 * php7-json-debuginfo-7.4.33-150400.4.43.1 * php7-gmp-7.4.33-150400.4.43.1 * php7-tidy-7.4.33-150400.4.43.1 * php7-sockets-7.4.33-150400.4.43.1 * php7-enchant-7.4.33-150400.4.43.1 * php7-dba-7.4.33-150400.4.43.1 * php7-ctype-debuginfo-7.4.33-150400.4.43.1 * php7-shmop-7.4.33-150400.4.43.1 * php7-exif-7.4.33-150400.4.43.1 * php7-xsl-debuginfo-7.4.33-150400.4.43.1 * php7-posix-7.4.33-150400.4.43.1 * php7-odbc-7.4.33-150400.4.43.1 * php7-xmlwriter-7.4.33-150400.4.43.1 * php7-sysvsem-7.4.33-150400.4.43.1 * php7-ctype-7.4.33-150400.4.43.1 * php7-sysvshm-debuginfo-7.4.33-150400.4.43.1 * php7-iconv-7.4.33-150400.4.43.1 * php7-debuginfo-7.4.33-150400.4.43.1 * php7-exif-debuginfo-7.4.33-150400.4.43.1 * php7-cli-debuginfo-7.4.33-150400.4.43.1 * php7-calendar-debuginfo-7.4.33-150400.4.43.1 * php7-posix-debuginfo-7.4.33-150400.4.43.1 * php7-snmp-debuginfo-7.4.33-150400.4.43.1 * php7-bcmath-debuginfo-7.4.33-150400.4.43.1 * apache2-mod_php7-7.4.33-150400.4.43.1 * php7-devel-7.4.33-150400.4.43.1 * php7-bcmath-7.4.33-150400.4.43.1 * php7-xmlrpc-debuginfo-7.4.33-150400.4.43.1 * php7-gmp-debuginfo-7.4.33-150400.4.43.1 *php7-json-7.4.33-150400.4.43.1 * php7-xsl-7.4.33-150400.4.43.1 * php7-7.4.33-150400.4.43.1 * php7-pcntl-7.4.33-150400.4.43.1 * php7-openssl-7.4.33-150400.4.43.1 * php7-fpm-debuginfo-7.4.33-150400.4.43.1 * php7-pgsql-debuginfo-7.4.33-150400.4.43.1 * php7-zlib-7.4.33-150400.4.43.1 * php7-gettext-debuginfo-7.4.33-150400.4.43.1 * php7-embed-debuginfo-7.4.33-150400.4.43.1 * php7-phar-debuginfo-7.4.33-150400.4.43.1 * php7-pdo-7.4.33-150400.4.43.1 * apache2-mod_php7-debuginfo-7.4.33-150400.4.43.1 * php7-soap-7.4.33-150400.4.43.1 * php7-fpm-debugsource-7.4.33-150400.4.43.1 * php7-openssl-debuginfo-7.4.33-150400.4.43.1 * php7-bz2-debuginfo-7.4.33-150400.4.43.1 * php7-pcntl-debuginfo-7.4.33-150400.4.43.1 * php7-gd-7.4.33-150400.4.43.1 * php7-ldap-7.4.33-150400.4.43.1 * php7-dom-debuginfo-7.4.33-150400.4.43.1 * php7-sodium-debuginfo-7.4.33-150400.4.43.1 * php7-mysql-debuginfo-7.4.33-150400.4.43.1 * php7-shmop-debuginfo-7.4.33-150400.4.43.1 * php7-xmlreader-7.4.33-150400.4.43.1 * php7-zip-debuginfo-7.4.33-150400.4.43.1 * php7-opcache-7.4.33-150400.4.43.1 * php7-soap-debuginfo-7.4.33-150400.4.43.1 * php7-ldap-debuginfo-7.4.33-150400.4.43.1 * php7-debugsource-7.4.33-150400.4.43.1 * php7-mbstring-debuginfo-7.4.33-150400.4.43.1 * php7-sodium-7.4.33-150400.4.43.1 * php7-mysql-7.4.33-150400.4.43.1 * php7-ftp-debuginfo-7.4.33-150400.4.43.1 * php7-bz2-7.4.33-150400.4.43.1 * php7-tokenizer-debuginfo-7.4.33-150400.4.43.1 * php7-xmlwriter-debuginfo-7.4.33-150400.4.43.1 * php7-test-7.4.33-150400.4.43.1 * php7-dba-debuginfo-7.4.33-150400.4.43.1 * php7-curl-7.4.33-150400.4.43.1 * php7-odbc-debuginfo-7.4.33-150400.4.43.1 * php7-fastcgi-7.4.33-150400.4.43.1 * php7-sockets-debuginfo-7.4.33-150400.4.43.1 * php7-readline-7.4.33-150400.4.43.1 * php7-fileinfo-debuginfo-7.4.33-150400.4.43.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) *php7-tokenizer-7.4.33-150400.4.43.1 * php7-snmp-7.4.33-150400.4.43.1 * php7-zlib-debuginfo-7.4.33-150400.4.43.1 * php7-sysvmsg-debuginfo-7.4.33-150400.4.43.1 * php7-sysvsem-debuginfo-7.4.33-150400.4.43.1 * php7-intl-7.4.33-150400.4.43.1 * php7-enchant-debuginfo-7.4.33-150400.4.43.1 * php7-xmlreader-debuginfo-7.4.33-150400.4.43.1 * php7-sysvshm-7.4.33-150400.4.43.1 * php7-iconv-debuginfo-7.4.33-150400.4.43.1 * php7-sqlite-debuginfo-7.4.33-150400.4.43.1 * php7-embed-7.4.33-150400.4.43.1 * php7-pdo-debuginfo-7.4.33-150400.4.43.1 * php7-readline-debuginfo-7.4.33-150400.4.43.1 * php7-fastcgi-debugsource-7.4.33-150400.4.43.1 * php7-mbstring-7.4.33-150400.4.43.1 * apache2-mod_php7-debugsource-7.4.33-150400.4.43.1 * php7-zip-7.4.33-150400.4.43.1 * php7-opcache-debuginfo-7.4.33-150400.4.43.1 * php7-xmlrpc-7.4.33-150400.4.43.1 * php7-tidy-debuginfo-7.4.33-150400.4.43.1 * php7-cli-7.4.33-150400.4.43.1 * php7-fastcgi-debuginfo-7.4.33-150400.4.43.1 * php7-pgsql-7.4.33-150400.4.43.1 * php7-fileinfo-7.4.33-150400.4.43.1 * php7-ftp-7.4.33-150400.4.43.1 * php7-calendar-7.4.33-150400.4.43.1 * php7-fpm-7.4.33-150400.4.43.1 * php7-gd-debuginfo-7.4.33-150400.4.43.1 * php7-phar-7.4.33-150400.4.43.1 * php7-sqlite-7.4.33-150400.4.43.1 * php7-embed-debugsource-7.4.33-150400.4.43.1 * php7-gettext-7.4.33-150400.4.43.1 * php7-sysvmsg-7.4.33-150400.4.43.1 * php7-curl-debuginfo-7.4.33-150400.4.43.1 * php7-dom-7.4.33-150400.4.43.1 * php7-intl-debuginfo-7.4.33-150400.4.43.1 * php7-json-debuginfo-7.4.33-150400.4.43.1 * php7-gmp-7.4.33-150400.4.43.1 * php7-tidy-7.4.33-150400.4.43.1 * php7-sockets-7.4.33-150400.4.43.1 * php7-enchant-7.4.33-150400.4.43.1 * php7-dba-7.4.33-150400.4.43.1 * php7-ctype-debuginfo-7.4.33-150400.4.43.1 * php7-shmop-7.4.33-150400.4.43.1 * php7-exif-7.4.33-150400.4.43.1 * php7-xsl-debuginfo-7.4.33-150400.4.43.1 *php7-posix-7.4.33-150400.4.43.1 * php7-odbc-7.4.33-150400.4.43.1 * php7-xmlwriter-7.4.33-150400.4.43.1 * php7-ctype-7.4.33-150400.4.43.1 * php7-sysvsem-7.4.33-150400.4.43.1 * php7-sysvshm-debuginfo-7.4.33-150400.4.43.1 * php7-iconv-7.4.33-150400.4.43.1 * php7-debuginfo-7.4.33-150400.4.43.1 * php7-exif-debuginfo-7.4.33-150400.4.43.1 * php7-cli-debuginfo-7.4.33-150400.4.43.1 * php7-calendar-debuginfo-7.4.33-150400.4.43.1 * php7-posix-debuginfo-7.4.33-150400.4.43.1 * php7-snmp-debuginfo-7.4.33-150400.4.43.1 * php7-bcmath-debuginfo-7.4.33-150400.4.43.1 * apache2-mod_php7-7.4.33-150400.4.43.1 * php7-devel-7.4.33-150400.4.43.1 * php7-bcmath-7.4.33-150400.4.43.1 * php7-xmlrpc-debuginfo-7.4.33-150400.4.43.1 * php7-gmp-debuginfo-7.4.33-150400.4.43.1 * php7-json-7.4.33-150400.4.43.1 * php7-xsl-7.4.33-150400.4.43.1 * php7-7.4.33-150400.4.43.1 * php7-pcntl-7.4.33-150400.4.43.1 * php7-openssl-7.4.33-150400.4.43.1 * php7-fpm-debuginfo-7.4.33-150400.4.43.1 * php7-pgsql-debuginfo-7.4.33-150400.4.43.1 * php7-zlib-7.4.33-150400.4.43.1 * php7-gettext-debuginfo-7.4.33-150400.4.43.1 * php7-embed-debuginfo-7.4.33-150400.4.43.1 * php7-phar-debuginfo-7.4.33-150400.4.43.1 * php7-pdo-7.4.33-150400.4.43.1 * apache2-mod_php7-debuginfo-7.4.33-150400.4.43.1 * php7-soap-7.4.33-150400.4.43.1 * php7-fpm-debugsource-7.4.33-150400.4.43.1 * php7-openssl-debuginfo-7.4.33-150400.4.43.1 * php7-bz2-debuginfo-7.4.33-150400.4.43.1 * php7-pcntl-debuginfo-7.4.33-150400.4.43.1 * php7-gd-7.4.33-150400.4.43.1 * php7-ldap-7.4.33-150400.4.43.1 * php7-dom-debuginfo-7.4.33-150400.4.43.1 * php7-sodium-debuginfo-7.4.33-150400.4.43.1 * php7-mysql-debuginfo-7.4.33-150400.4.43.1 * php7-shmop-debuginfo-7.4.33-150400.4.43.1 * php7-xmlreader-7.4.33-150400.4.43.1 * php7-zip-debuginfo-7.4.33-150400.4.43.1 * php7-opcache-7.4.33-150400.4.43.1 * php7-soap-debuginfo-7.4.33-150400.4.43.1 *php7-ldap-debuginfo-7.4.33-150400.4.43.1 * php7-debugsource-7.4.33-150400.4.43.1 * php7-mbstring-debuginfo-7.4.33-150400.4.43.1 * php7-sodium-7.4.33-150400.4.43.1 * php7-mysql-7.4.33-150400.4.43.1 * php7-ftp-debuginfo-7.4.33-150400.4.43.1 * php7-bz2-7.4.33-150400.4.43.1 * php7-test-7.4.33-150400.4.43.1 * php7-tokenizer-debuginfo-7.4.33-150400.4.43.1 * php7-xmlwriter-debuginfo-7.4.33-150400.4.43.1 * php7-dba-debuginfo-7.4.33-150400.4.43.1 * php7-curl-7.4.33-150400.4.43.1 * php7-odbc-debuginfo-7.4.33-150400.4.43.1 * php7-fastcgi-7.4.33-150400.4.43.1 * php7-sockets-debuginfo-7.4.33-150400.4.43.1 * php7-readline-7.4.33-150400.4.43.1 * php7-fileinfo-debuginfo-7.4.33-150400.4.43.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * php7-tokenizer-7.4.33-150400.4.43.1 * php7-snmp-7.4.33-150400.4.43.1 * php7-zlib-debuginfo-7.4.33-150400.4.43.1 * php7-sysvmsg-debuginfo-7.4.33-150400.4.43.1 * php7-sysvsem-debuginfo-7.4.33-150400.4.43.1 * php7-intl-7.4.33-150400.4.43.1 * php7-enchant-debuginfo-7.4.33-150400.4.43.1 * php7-xmlreader-debuginfo-7.4.33-150400.4.43.1 * php7-sysvshm-7.4.33-150400.4.43.1 * php7-iconv-debuginfo-7.4.33-150400.4.43.1 * php7-sqlite-debuginfo-7.4.33-150400.4.43.1 * php7-embed-7.4.33-150400.4.43.1 * php7-pdo-debuginfo-7.4.33-150400.4.43.1 * php7-readline-debuginfo-7.4.33-150400.4.43.1 * php7-fastcgi-debugsource-7.4.33-150400.4.43.1 * php7-mbstring-7.4.33-150400.4.43.1 * apache2-mod_php7-debugsource-7.4.33-150400.4.43.1 * php7-zip-7.4.33-150400.4.43.1 * php7-opcache-debuginfo-7.4.33-150400.4.43.1 * php7-xmlrpc-7.4.33-150400.4.43.1 * php7-tidy-debuginfo-7.4.33-150400.4.43.1 * php7-cli-7.4.33-150400.4.43.1 * php7-fastcgi-debuginfo-7.4.33-150400.4.43.1 * php7-pgsql-7.4.33-150400.4.43.1 * php7-fileinfo-7.4.33-150400.4.43.1 * php7-ftp-7.4.33-150400.4.43.1 * php7-calendar-7.4.33-150400.4.43.1 * php7-fpm-7.4.33-150400.4.43.1 *php7-gd-debuginfo-7.4.33-150400.4.43.1 * php7-phar-7.4.33-150400.4.43.1 * php7-sqlite-7.4.33-150400.4.43.1 * php7-embed-debugsource-7.4.33-150400.4.43.1 * php7-gettext-7.4.33-150400.4.43.1 * php7-sysvmsg-7.4.33-150400.4.43.1 * php7-curl-debuginfo-7.4.33-150400.4.43.1 * php7-dom-7.4.33-150400.4.43.1 * php7-intl-debuginfo-7.4.33-150400.4.43.1 * php7-json-debuginfo-7.4.33-150400.4.43.1 * php7-gmp-7.4.33-150400.4.43.1 * php7-tidy-7.4.33-150400.4.43.1 * php7-sockets-7.4.33-150400.4.43.1 * php7-enchant-7.4.33-150400.4.43.1 * php7-dba-7.4.33-150400.4.43.1 * php7-ctype-debuginfo-7.4.33-150400.4.43.1 * php7-shmop-7.4.33-150400.4.43.1 * php7-exif-7.4.33-150400.4.43.1 * php7-xsl-debuginfo-7.4.33-150400.4.43.1 * php7-posix-7.4.33-150400.4.43.1 * php7-odbc-7.4.33-150400.4.43.1 * php7-xmlwriter-7.4.33-150400.4.43.1 * php7-ctype-7.4.33-150400.4.43.1 * php7-sysvsem-7.4.33-150400.4.43.1 * php7-sysvshm-debuginfo-7.4.33-150400.4.43.1 * php7-iconv-7.4.33-150400.4.43.1 * php7-debuginfo-7.4.33-150400.4.43.1 * php7-exif-debuginfo-7.4.33-150400.4.43.1 * php7-cli-debuginfo-7.4.33-150400.4.43.1 * php7-calendar-debuginfo-7.4.33-150400.4.43.1 * php7-posix-debuginfo-7.4.33-150400.4.43.1 * php7-snmp-debuginfo-7.4.33-150400.4.43.1 * php7-bcmath-debuginfo-7.4.33-150400.4.43.1 * apache2-mod_php7-7.4.33-150400.4.43.1 * php7-devel-7.4.33-150400.4.43.1 * php7-bcmath-7.4.33-150400.4.43.1 * php7-xmlrpc-debuginfo-7.4.33-150400.4.43.1 * php7-gmp-debuginfo-7.4.33-150400.4.43.1 * php7-json-7.4.33-150400.4.43.1 * php7-xsl-7.4.33-150400.4.43.1 * php7-7.4.33-150400.4.43.1 * php7-pcntl-7.4.33-150400.4.43.1 * php7-openssl-7.4.33-150400.4.43.1 * php7-fpm-debuginfo-7.4.33-150400.4.43.1 * php7-pgsql-debuginfo-7.4.33-150400.4.43.1 * php7-zlib-7.4.33-150400.4.43.1 * php7-gettext-debuginfo-7.4.33-150400.4.43.1 * php7-embed-debuginfo-7.4.33-150400.4.43.1 *php7-phar-debuginfo-7.4.33-150400.4.43.1 * php7-pdo-7.4.33-150400.4.43.1 * apache2-mod_php7-debuginfo-7.4.33-150400.4.43.1 * php7-soap-7.4.33-150400.4.43.1 * php7-fpm-debugsource-7.4.33-150400.4.43.1 * php7-openssl-debuginfo-7.4.33-150400.4.43.1 * php7-bz2-debuginfo-7.4.33-150400.4.43.1 * php7-pcntl-debuginfo-7.4.33-150400.4.43.1 * php7-gd-7.4.33-150400.4.43.1 * php7-ldap-7.4.33-150400.4.43.1 * php7-dom-debuginfo-7.4.33-150400.4.43.1 * php7-sodium-debuginfo-7.4.33-150400.4.43.1 * php7-mysql-debuginfo-7.4.33-150400.4.43.1 * php7-shmop-debuginfo-7.4.33-150400.4.43.1 * php7-xmlreader-7.4.33-150400.4.43.1 * php7-zip-debuginfo-7.4.33-150400.4.43.1 * php7-opcache-7.4.33-150400.4.43.1 * php7-soap-debuginfo-7.4.33-150400.4.43.1 * php7-ldap-debuginfo-7.4.33-150400.4.43.1 * php7-debugsource-7.4.33-150400.4.43.1 * php7-mbstring-debuginfo-7.4.33-150400.4.43.1 * php7-sodium-7.4.33-150400.4.43.1 * php7-mysql-7.4.33-150400.4.43.1 * php7-ftp-debuginfo-7.4.33-150400.4.43.1 * php7-bz2-7.4.33-150400.4.43.1 * php7-test-7.4.33-150400.4.43.1 * php7-tokenizer-debuginfo-7.4.33-150400.4.43.1 * php7-xmlwriter-debuginfo-7.4.33-150400.4.43.1 * php7-dba-debuginfo-7.4.33-150400.4.43.1 * php7-curl-7.4.33-150400.4.43.1 * php7-odbc-debuginfo-7.4.33-150400.4.43.1 * php7-fastcgi-7.4.33-150400.4.43.1 * php7-sockets-debuginfo-7.4.33-150400.4.43.1 * php7-readline-7.4.33-150400.4.43.1 * php7-fileinfo-debuginfo-7.4.33-150400.4.43.1 * Legacy Module 15-SP5 (aarch64 ppc64le s390x x86_64) * php7-tokenizer-7.4.33-150400.4.43.1 * php7-snmp-7.4.33-150400.4.43.1 * php7-zlib-debuginfo-7.4.33-150400.4.43.1 * php7-sysvmsg-debuginfo-7.4.33-150400.4.43.1 * php7-sysvsem-debuginfo-7.4.33-150400.4.43.1 * php7-intl-7.4.33-150400.4.43.1 * php7-enchant-debuginfo-7.4.33-150400.4.43.1 * php7-xmlreader-debuginfo-7.4.33-150400.4.43.1 * php7-sysvshm-7.4.33-150400.4.43.1 *php7-iconv-debuginfo-7.4.33-150400.4.43.1 * php7-sqlite-debuginfo-7.4.33-150400.4.43.1 * php7-pdo-debuginfo-7.4.33-150400.4.43.1 * php7-readline-debuginfo-7.4.33-150400.4.43.1 * php7-fastcgi-debugsource-7.4.33-150400.4.43.1 * php7-mbstring-7.4.33-150400.4.43.1 * apache2-mod_php7-debugsource-7.4.33-150400.4.43.1 * php7-zip-7.4.33-150400.4.43.1 * php7-opcache-debuginfo-7.4.33-150400.4.43.1 * php7-xmlrpc-7.4.33-150400.4.43.1 * php7-tidy-debuginfo-7.4.33-150400.4.43.1 * php7-cli-7.4.33-150400.4.43.1 * php7-fastcgi-debuginfo-7.4.33-150400.4.43.1 * php7-pgsql-7.4.33-150400.4.43.1 * php7-fileinfo-7.4.33-150400.4.43.1 * php7-ftp-7.4.33-150400.4.43.1 * php7-calendar-7.4.33-150400.4.43.1 * php7-fpm-7.4.33-150400.4.43.1 * php7-gd-debuginfo-7.4.33-150400.4.43.1 * php7-phar-7.4.33-150400.4.43.1 * php7-sqlite-7.4.33-150400.4.43.1 * php7-gettext-7.4.33-150400.4.43.1 * php7-sysvmsg-7.4.33-150400.4.43.1 * php7-curl-debuginfo-7.4.33-150400.4.43.1 * php7-dom-7.4.33-150400.4.43.1 * php7-intl-debuginfo-7.4.33-150400.4.43.1 * php7-json-debuginfo-7.4.33-150400.4.43.1 * php7-gmp-7.4.33-150400.4.43.1 * php7-tidy-7.4.33-150400.4.43.1 * php7-sockets-7.4.33-150400.4.43.1 * php7-enchant-7.4.33-150400.4.43.1 * php7-dba-7.4.33-150400.4.43.1 * php7-ctype-debuginfo-7.4.33-150400.4.43.1 * php7-shmop-7.4.33-150400.4.43.1 * php7-exif-7.4.33-150400.4.43.1 * php7-xsl-debuginfo-7.4.33-150400.4.43.1 * php7-posix-7.4.33-150400.4.43.1 * php7-odbc-7.4.33-150400.4.43.1 * php7-xmlwriter-7.4.33-150400.4.43.1 * php7-ctype-7.4.33-150400.4.43.1 * php7-sysvsem-7.4.33-150400.4.43.1 * php7-sysvshm-debuginfo-7.4.33-150400.4.43.1 * php7-iconv-7.4.33-150400.4.43.1 * php7-debuginfo-7.4.33-150400.4.43.1 * php7-exif-debuginfo-7.4.33-150400.4.43.1 * php7-cli-debuginfo-7.4.33-150400.4.43.1 * php7-calendar-debuginfo-7.4.33-150400.4.43.1 * php7-posix-debuginfo-7.4.33-150400.4.43.1 *php7-snmp-debuginfo-7.4.33-150400.4.43.1 * php7-bcmath-debuginfo-7.4.33-150400.4.43.1 * apache2-mod_php7-7.4.33-150400.4.43.1 * php7-devel-7.4.33-150400.4.43.1 * php7-bcmath-7.4.33-150400.4.43.1 * php7-xmlrpc-debuginfo-7.4.33-150400.4.43.1 * php7-gmp-debuginfo-7.4.33-150400.4.43.1 * php7-json-7.4.33-150400.4.43.1 * php7-xsl-7.4.33-150400.4.43.1 * php7-7.4.33-150400.4.43.1 * php7-pcntl-7.4.33-150400.4.43.1 * php7-openssl-7.4.33-150400.4.43.1 * php7-fpm-debuginfo-7.4.33-150400.4.43.1 * php7-pgsql-debuginfo-7.4.33-150400.4.43.1 * php7-zlib-7.4.33-150400.4.43.1 * php7-gettext-debuginfo-7.4.33-150400.4.43.1 * php7-phar-debuginfo-7.4.33-150400.4.43.1 * php7-pdo-7.4.33-150400.4.43.1 * apache2-mod_php7-debuginfo-7.4.33-150400.4.43.1 * php7-soap-7.4.33-150400.4.43.1 * php7-fpm-debugsource-7.4.33-150400.4.43.1 * php7-openssl-debuginfo-7.4.33-150400.4.43.1 * php7-bz2-debuginfo-7.4.33-150400.4.43.1 * php7-pcntl-debuginfo-7.4.33-150400.4.43.1 * php7-gd-7.4.33-150400.4.43.1 * php7-ldap-7.4.33-150400.4.43.1 * php7-dom-debuginfo-7.4.33-150400.4.43.1 * php7-sodium-debuginfo-7.4.33-150400.4.43.1 * php7-mysql-debuginfo-7.4.33-150400.4.43.1 * php7-shmop-debuginfo-7.4.33-150400.4.43.1 * php7-xmlreader-7.4.33-150400.4.43.1 * php7-zip-debuginfo-7.4.33-150400.4.43.1 * php7-opcache-7.4.33-150400.4.43.1 * php7-soap-debuginfo-7.4.33-150400.4.43.1 * php7-ldap-debuginfo-7.4.33-150400.4.43.1 * php7-debugsource-7.4.33-150400.4.43.1 * php7-mbstring-debuginfo-7.4.33-150400.4.43.1 * php7-sodium-7.4.33-150400.4.43.1 * php7-mysql-7.4.33-150400.4.43.1 * php7-ftp-debuginfo-7.4.33-150400.4.43.1 * php7-bz2-7.4.33-150400.4.43.1 * php7-tokenizer-debuginfo-7.4.33-150400.4.43.1 * php7-xmlwriter-debuginfo-7.4.33-150400.4.43.1 * php7-dba-debuginfo-7.4.33-150400.4.43.1 * php7-curl-7.4.33-150400.4.43.1 * php7-odbc-debuginfo-7.4.33-150400.4.43.1 *php7-fastcgi-7.4.33-150400.4.43.1 * php7-sockets-debuginfo-7.4.33-150400.4.43.1 * php7-readline-7.4.33-150400.4.43.1 * php7-fileinfo-debuginfo-7.4.33-150400.4.43.1 * Legacy Module 15-SP6 (aarch64 ppc64le s390x x86_64) * php7-tokenizer-7.4.33-150400.4.43.1 * php7-snmp-7.4.33-150400.4.43.1 * php7-zlib-debuginfo-7.4.33-150400.4.43.1 * php7-sysvmsg-debuginfo-7.4.33-150400.4.43.1 * php7-sysvsem-debuginfo-7.4.33-150400.4.43.1 * php7-intl-7.4.33-150400.4.43.1 * php7-enchant-debuginfo-7.4.33-150400.4.43.1 * php7-xmlreader-debuginfo-7.4.33-150400.4.43.1 * php7-sysvshm-7.4.33-150400.4.43.1 * php7-iconv-debuginfo-7.4.33-150400.4.43.1 * php7-sqlite-debuginfo-7.4.33-150400.4.43.1 * php7-pdo-debuginfo-7.4.33-150400.4.43.1 * php7-readline-debuginfo-7.4.33-150400.4.43.1 * php7-fastcgi-debugsource-7.4.33-150400.4.43.1 * php7-mbstring-7.4.33-150400.4.43.1 * apache2-mod_php7-debugsource-7.4.33-150400.4.43.1 * php7-zip-7.4.33-150400.4.43.1 * php7-opcache-debuginfo-7.4.33-150400.4.43.1 * php7-xmlrpc-7.4.33-150400.4.43.1 * php7-tidy-debuginfo-7.4.33-150400.4.43.1 * php7-cli-7.4.33-150400.4.43.1 * php7-fastcgi-debuginfo-7.4.33-150400.4.43.1 * php7-pgsql-7.4.33-150400.4.43.1 * php7-fileinfo-7.4.33-150400.4.43.1 * php7-ftp-7.4.33-150400.4.43.1 * php7-calendar-7.4.33-150400.4.43.1 * php7-fpm-7.4.33-150400.4.43.1 * php7-gd-debuginfo-7.4.33-150400.4.43.1 * php7-phar-7.4.33-150400.4.43.1 * php7-sqlite-7.4.33-150400.4.43.1 * php7-gettext-7.4.33-150400.4.43.1 * php7-sysvmsg-7.4.33-150400.4.43.1 * php7-curl-debuginfo-7.4.33-150400.4.43.1 * php7-dom-7.4.33-150400.4.43.1 * php7-intl-debuginfo-7.4.33-150400.4.43.1 * php7-json-debuginfo-7.4.33-150400.4.43.1 * php7-gmp-7.4.33-150400.4.43.1 * php7-tidy-7.4.33-150400.4.43.1 * php7-sockets-7.4.33-150400.4.43.1 * php7-enchant-7.4.33-150400.4.43.1 * php7-dba-7.4.33-150400.4.43.1 * php7-ctype-debuginfo-7.4.33-150400.4.43.1 * php7-shmop-7.4.33-150400.4.43.1 * php7-exif-7.4.33-150400.4.43.1 * php7-xsl-debuginfo-7.4.33-150400.4.43.1 * php7-posix-7.4.33-150400.4.43.1 * php7-odbc-7.4.33-150400.4.43.1 * php7-xmlwriter-7.4.33-150400.4.43.1 * php7-ctype-7.4.33-150400.4.43.1 * php7-sysvsem-7.4.33-150400.4.43.1 * php7-sysvshm-debuginfo-7.4.33-150400.4.43.1 * php7-iconv-7.4.33-150400.4.43.1 * php7-debuginfo-7.4.33-150400.4.43.1 * php7-exif-debuginfo-7.4.33-150400.4.43.1 * php7-cli-debuginfo-7.4.33-150400.4.43.1 * php7-calendar-debuginfo-7.4.33-150400.4.43.1 * php7-posix-debuginfo-7.4.33-150400.4.43.1 * php7-snmp-debuginfo-7.4.33-150400.4.43.1 * php7-bcmath-debuginfo-7.4.33-150400.4.43.1 * apache2-mod_php7-7.4.33-150400.4.43.1 * php7-devel-7.4.33-150400.4.43.1 * php7-bcmath-7.4.33-150400.4.43.1 * php7-xmlrpc-debuginfo-7.4.33-150400.4.43.1 * php7-gmp-debuginfo-7.4.33-150400.4.43.1 * php7-json-7.4.33-150400.4.43.1 * php7-xsl-7.4.33-150400.4.43.1 * php7-7.4.33-150400.4.43.1 * php7-pcntl-7.4.33-150400.4.43.1 * php7-openssl-7.4.33-150400.4.43.1 * php7-fpm-debuginfo-7.4.33-150400.4.43.1 * php7-pgsql-debuginfo-7.4.33-150400.4.43.1 * php7-zlib-7.4.33-150400.4.43.1 * php7-gettext-debuginfo-7.4.33-150400.4.43.1 * php7-phar-debuginfo-7.4.33-150400.4.43.1 * php7-pdo-7.4.33-150400.4.43.1 * apache2-mod_php7-debuginfo-7.4.33-150400.4.43.1 * php7-soap-7.4.33-150400.4.43.1 * php7-fpm-debugsource-7.4.33-150400.4.43.1 * php7-openssl-debuginfo-7.4.33-150400.4.43.1 * php7-bz2-debuginfo-7.4.33-150400.4.43.1 * php7-pcntl-debuginfo-7.4.33-150400.4.43.1 * php7-gd-7.4.33-150400.4.43.1 * php7-ldap-7.4.33-150400.4.43.1 * php7-dom-debuginfo-7.4.33-150400.4.43.1 * php7-sodium-debuginfo-7.4.33-150400.4.43.1 * php7-mysql-debuginfo-7.4.33-150400.4.43.1 * php7-shmop-debuginfo-7.4.33-150400.4.43.1 * php7-xmlreader-7.4.33-150400.4.43.1 * php7-zip-debuginfo-7.4.33-150400.4.43.1 *php7-opcache-7.4.33-150400.4.43.1 * php7-soap-debuginfo-7.4.33-150400.4.43.1 * php7-ldap-debuginfo-7.4.33-150400.4.43.1 * php7-debugsource-7.4.33-150400.4.43.1 * php7-mbstring-debuginfo-7.4.33-150400.4.43.1 * php7-sodium-7.4.33-150400.4.43.1 * php7-mysql-7.4.33-150400.4.43.1 * php7-ftp-debuginfo-7.4.33-150400.4.43.1 * php7-bz2-7.4.33-150400.4.43.1 * php7-tokenizer-debuginfo-7.4.33-150400.4.43.1 * php7-xmlwriter-debuginfo-7.4.33-150400.4.43.1 * php7-dba-debuginfo-7.4.33-150400.4.43.1 * php7-curl-7.4.33-150400.4.43.1 * php7-odbc-debuginfo-7.4.33-150400.4.43.1 * php7-fastcgi-7.4.33-150400.4.43.1 * php7-sockets-debuginfo-7.4.33-150400.4.43.1 * php7-readline-7.4.33-150400.4.43.1 * php7-fileinfo-debuginfo-7.4.33-150400.4.43.1 * SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x x86_64) * php7-embed-7.4.33-150400.4.43.1 * php7-embed-debuginfo-7.4.33-150400.4.43.1 * php7-embed-debugsource-7.4.33-150400.4.43.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * php7-embed-7.4.33-150400.4.43.1 * php7-embed-debuginfo-7.4.33-150400.4.43.1 * php7-embed-debugsource-7.4.33-150400.4.43.1 ## References: * https://www.suse.com/security/cve/CVE-2024-11233.html * https://www.suse.com/security/cve/CVE-2024-11234.html * https://www.suse.com/security/cve/CVE-2024-8929.html * https://bugzilla.suse.com/show_bug.cgi?id=1233651 * https://bugzilla.suse.com/show_bug.cgi?id=1233702 * https://bugzilla.suse.com/show_bug.cgi?id=1233703 . The latest php8 patch from SUSE resolves several security flaws, boosting protection across many platforms. Safeguard your environment today!. php7 security, SUSE security updates, openSUSE vulnerabilities. . LinuxSecurity.com Team

Dec 03, 2024 SuSE

security advisorymoderateghostscript

SUSE: 2024:2547-1 Moderate: Ghostscript Heap Leak Security Update

* bsc#1227380 Cross-References: * CVE-2024-29508 . # Security update for ghostscript Announcement ID: SUSE-SU-2024:2547-1 Rating: moderate References: * bsc#1227380 Cross-References: * CVE-2024-29508 CVSS scores: * CVE-2024-29508 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for ghostscript fixes the following issues: * CVE-2024-29508: Fixed heap pointer leak in pdf_base_font_alloc (bsc#1227380) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-2547=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2547=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2547=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2547=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * ghostscript-devel-9.52-23.83.1 * ghostscript-debuginfo-9.52-23.83.1 * ghostscript-debugsource-9.52-23.83.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * ghostscript-x11-debuginfo-9.52-23.83.1 * ghostscript-devel-9.52-23.83.1 * ghostscript-9.52-23.83.1 * ghostscript-debuginfo-9.52-23.83.1 * ghostscript-debugsource-9.52-23.83.1 * ghostscript-x11-9.52-23.83.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64ppc64le s390x x86_64) * ghostscript-x11-debuginfo-9.52-23.83.1 * ghostscript-devel-9.52-23.83.1 * ghostscript-9.52-23.83.1 * ghostscript-debuginfo-9.52-23.83.1 * ghostscript-debugsource-9.52-23.83.1 * ghostscript-x11-9.52-23.83.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * ghostscript-x11-debuginfo-9.52-23.83.1 * ghostscript-devel-9.52-23.83.1 * ghostscript-9.52-23.83.1 * ghostscript-debuginfo-9.52-23.83.1 * ghostscript-debugsource-9.52-23.83.1 * ghostscript-x11-9.52-23.83.1 ## References: * https://www.suse.com/security/cve/CVE-2024-29508.html * https://bugzilla.suse.com/show_bug.cgi?id=1227380 . Patches for ghostscript address heap pointer leak vulnerability (SUSE-SU-2024:2547-1) to enhance the security across all platforms.. Ghostscript Updates, SUSE Advisory, Software Security, Linux Patching. . LinuxSecurity.com Team

Jul 17, 2024 SuSE

security advisoryupdateFedora

Fedora 29: 2019-f812c9fb22 Critical: Kernel Heap Leak Fix

The v4.19.15 stable update contains important fixes across the tree. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-f812c9fb22 2019-01-17 02:15:58.740866 --------------------------------------------------------------------------------Name : kernel Product : Fedora 29 Version : 4.19.15 Release : 300.fc29 URL : https://www.kernel.org/ Summary : The Linux kernel Description : The kernel meta package --------------------------------------------------------------------------------Update Information: The v4.19.15 stable update contains important fixes across the tree --------------------------------------------------------------------------------ChangeLog: * Mon Jan 14 2019 Jeremy Cline - 4.19.15-300 - Linux v4.19.15 - Fix CVE-2019-3459 and CVE-2019-3460 (rbhz 1663176 1663179 1665925) * Wed Jan 9 2019 Jeremy Cline - 4.19.14-300 - Linux v4.19.14 * Wed Jan 9 2019 Justin M. Forbes - Fix CVE-2019-3701 (rhbz 1663729 1663730) * Mon Jan 7 2019 Hans de Goede - Add patch to fix bluetooth on RPI 3B+ registering twice (rhbz#1661961) * Sat Dec 29 2018 Jeremy Cline - 4.19.13-300 - Linux v4.19.13 * Thu Dec 27 2018 Hans de Goede - Set CONFIG_REALTEK_PHY=y to workaround realtek ethernet issues (rhbz 1650984) * Mon Dec 24 2018 Peter Robinson 4.19.12-301 - Another fix for issue affecting Raspberry Pi 3-series WiFi (rhbz 1652093) * Sat Dec 22 2018 Peter Robinson 4.19.12-300 - Linux v4.19.12 * Thu Dec 20 2018 Jeremy Cline - 4.19.11-300 - Linux v4.19.11 * Mon Dec 17 2018 Jeremy Cline - 4.19.10-300 - Linux v4.19.10 * Fri Dec 14 2018 Peter Robinson 4.19.9-301 - Fix Raspberry Pi issues affecting WiFi (rhbz 1652093) * Thu Dec 13 2018 Jeremy Cline - 4.19.9-300 - Linux v4.19.9 * Tue Dec 11 2018 Hans de Goede - Really fix non functional hotkeys on Asus FX503VD (#1645070) * Mon Dec 10 2018 Jeremy Cline - 4.19.8-300 - Linux v4.19.8 * Thu Dec 6 2018 Peter Robinson - Fix for ethernet LEDs on Raspberry Pi 3B+ * Wed Dec 5 2018 Jeremy Cline - 4.19.7-300 - Linux v4.19.7 * Wed Dec 5 2018 Jeremy Cline - Fix corruption bug in direct dispatch for blk-mq * Tue Dec 4 2018 Justin M. Forbes - Fix CVE-2018-19824 (rhbz 1655816 1655817) * Mon Dec 3 2018 Jeremy Cline - Fix very quiet speakers on the Thinkpad T570 (rhbz 1554304) * Mon Dec 3 2018 Hans de Goede - Fix non functional hotkeys on Asus FX503VD (#1645070) * Sun Dec 2 2018 Jeremy Cline - 4.19.6-300 - Linux v4.19.6 * Thu Nov 29 2018 Jeremy Cline - Fix a problem with some rtl8168 chips (rhbz 1650984) - Fix slowdowns and crashes for AMD GPUs in pre-PCIe-v3 slots * Tue Nov 27 2018 Jeremy Cline - 4.19.5-300 - Linux v4.19.5 - Fix CVE-2018-16862 (rhbz 1649017 1653122) - Fix CVE-2018-19407 (rhbz 1652656 1652658) * Mon Nov 26 2018 Jeremy Cline - Fixes a null pointer dereference with Nvidia and vmwgfx drivers (rhbz 1650224) * Fri Nov 23 2018 Peter Robinson - 4.19.4-300 - Linux v4.19.4 * Thu Nov 22 2018 Peter Robinson - Fixes for Rockchips 3399 devices * Wed Nov 21 2018 Jeremy Cline - 4.19.3-300 - Linux v4.19.3 * Tue Nov 20 2018 Hans de Goede - Turn on CONFIG_PINCTRL_GEMINILAKE on x86_64 (rhbz#1639155) - Add a patch fixing touchscreens on HP AMD based laptops (rhbz#1644013) - Add a patch fixing KIOX010A accelerometers (rhbz#1526312) * Sat Nov 17 2018 Peter Robinson 4.19.2-301 - Fix WiFi on Raspberry Pi 3 on aarch64 (rhbz 1649344) - Fixes for Raspberry Pi hwmon driver and firmware interface * Fri Nov 16 2018 Hans de Goede - Add patches from 4.20 fixing black screen on CHT devices with i915.fastboot=1 * Thu Nov 15 2018 Hans de Goede - Add patch fixing touchpads on some Apollo Lake devices not working (#1526312) * Wed Nov 14 2018 Jeremy Cline - 4.19.2-300 - Linux v4.19.2 - Fix CVE-2018-18710 (rhbz 1645140 1648485) * Mon Nov 12 2018 Laura Abbott - 4.18.18-300 - Linux v4.18.18 * Mon Nov 5 2018 Laura Abbott - 4.18.17-300 - Linux v4.18.17 * Tue Oct 23 2018Laura Abbott - Add i915 eDP fixes --------------------------------------------------------------------------------References: [ 1 ] Bug #1663179 - CVE-2019-3460 kernel: Heap address information leak while using L2CAP_PARSE_CONF_RSP https://bugzilla.redhat.com/show_bug.cgi?id=1663179 [ 2 ] Bug #1663176 - CVE-2019-3459 kernel: Heap address information leak while using L2CAP_GET_CONF_OPT https://bugzilla.redhat.com/show_bug.cgi?id=1663176 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-f812c9fb22' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. . A vital kernel patch has been released for Fedora 29 that addresses severe heap leak vulnerabilities. Ensure you install this update promptly to enhance your system's security.. Fedora Kernel Update, 2019 Security Advisory, Critical Fixes. . Severity: Critical. LinuxSecurity.com Team

Jan 17, 2019 •Critical Fedora

security advisorydenial of servicedebian

Debian DSA-3774-1 Major: lcms2 Heap Leak Denial of Service Vulnerability

Ibrahim M. El-Sayed discovered an out-of-bounds heap read vulnerability in the function Type_MLU_Read in lcms2, the Little CMS 2 color management library, which can be triggered by an image with a specially crafted ICC profile and leading to a heap memory leak or . - ------------------------------------------------------------------------- Debian Security Advisory DSA-3774-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Salvatore Bonaccorso January 29, 2017 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : lcms2 CVE ID : CVE-2016-10165 Debian Bug : 852627 Ibrahim M. El-Sayed discovered an out-of-bounds heap read vulnerability in the function Type_MLU_Read in lcms2, the Little CMS 2 color management library, which can be triggered by an image with a specially crafted ICC profile and leading to a heap memory leak or denial-of-service for applications using the lcms2 library. For the stable distribution (jessie), this problem has been fixed in version 2.6-3+deb8u1. For the testing distribution (stretch) and the unstable distribution (sid), this problem has been fixed in version 2.8-4. We recommend that you upgrade your lcms2 packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Debian DSA-3780-1 highlights a potential memory leak in libpng; an upgrade is advised for safety.. Debian Security Update, lcms2 Heap Fix, Heap Memory Leak Issue. . Severity: Critical. LinuxSecurity.com Team

Jan 29, 2017 •Critical Debian

security advisoryFedoracritical fix

Fedora 21: XSA-139, XSA-140 Critical Fixes for QEMU and Xen

libxl fails to honour readonly flag on disks with qemu-xen [XSA-142 (possible fix)] ---- update to xen-4.4.3, including Use after free in QEMU/Xen block unplug protocol [XSA-139, CVE-2015-5166], QEMU leak of uninitialized heap memory in rtl8139 device model [XSA-140, CVE-2015-5165]. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-15946 2015-09-26 17:32:07.294109 -------------------------------------------------------------------------------- Name : xen Product : Fedora 21 Version : 4.4.3 Release : 3.fc21 URL : https://xenproject.org/ Summary : Xen is a virtual machine monitor Description : This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor -------------------------------------------------------------------------------- Update Information: libxl fails to honour readonly flag on disks with qemu-xen [XSA-142 (possible fix)] ---- update to xen-4.4.3, including Use after free in QEMU/Xen block unplug protocol [XSA-139, CVE-2015-5166], QEMU leak of uninitialized heap memory in rtl8139 device model [XSA-140, CVE-2015-5165] -------------------------------------------------------------------------------- References: [ 1 ] Bug #1248997 - CVE-2015-5166 Qemu: BlockBackend object use after free issue (XSA-139) https://bugzilla.redhat.com/show_bug.cgi?id=1248997 [ 2 ] Bug #1248760 - CVE-2015-5165 Qemu: rtl8139 uninitialized heap memory information leakage to guest (XSA-140) https://bugzilla.redhat.com/show_bug.cgi?id=1248760 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update xen' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/admin/lists/package-announce.lists.fedoraproject.org/ . Keep informed about new security patches for Xen in Fedora 21 that tackle urgent vulnerabilities.. Xen Security Update,Fedora 21 Update,Heap Memory Leak,QEMU Block Protocol. . Severity: Critical. LinuxSecurity.com Team

Sep 26, 2015 •Critical Fedora

Stay Secure with the Latest Linux Advisories

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

SUSE: 2024:4146-1 moderate: php7 buffer overread and heap leak

SUSE: 2024:2547-1 Moderate: Ghostscript Heap Leak Security Update

Fedora 29: 2019-f812c9fb22 Critical: Kernel Heap Leak Fix

Debian DSA-3774-1 Major: lcms2 Heap Leak Denial of Service Vulnerability

Fedora 21: XSA-139, XSA-140 Critical Fixes for QEMU and Xen

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!