Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -1 articles for you...
100
security advisorydenial of serviceimportantSUSE 2024:2180-1 Critical Update: vte Denial of Service Resolution
* bsc#1226134 Cross-References: * CVE-2024-37535 . # Security update for vte Announcement ID: SUSE-SU-2024:2180-1 Rating: important References: * bsc#1226134 Cross-References: * CVE-2024-37535 CVSS scores: * CVE-2024-37535 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP5 * Desktop Applications Module 15-SP5 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for vte fixes the following issues: * CVE-2024-37535: Fixed a bug that allowed an attacker to cause a denial of service (memory consumption) via a window resize escape. (bsc#1226134) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2180=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2180=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-2180=1 *SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-2180=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-2180=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2180=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2180=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-2180=1 * Desktop Applications Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP5-2024-2180=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2180=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2180=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2180=1 ## Package List: * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * vte-debugsource-0.66.2-150400.3.5.1 * libvte-2_91-0-0.66.2-150400.3.5.1 * vte-devel-0.66.2-150400.3.5.1 * vte-debuginfo-0.66.2-150400.3.5.1 * typelib-1_0-Vte-2.91-0.66.2-150400.3.5.1 * libvte-2_91-0-debuginfo-0.66.2-150400.3.5.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * vte-lang-0.66.2-150400.3.5.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * vte-debugsource-0.66.2-150400.3.5.1 * libvte-2_91-0-0.66.2-150400.3.5.1 * vte-devel-0.66.2-150400.3.5.1 * vte-debuginfo-0.66.2-150400.3.5.1 * typelib-1_0-Vte-2.91-0.66.2-150400.3.5.1 * libvte-2_91-0-debuginfo-0.66.2-150400.3.5.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * vte-lang-0.66.2-150400.3.5.1 * SUSE Manager Proxy 4.3 (x86_64) * vte-debugsource-0.66.2-150400.3.5.1 * libvte-2_91-0-0.66.2-150400.3.5.1 *vte-debuginfo-0.66.2-150400.3.5.1 * typelib-1_0-Vte-2.91-0.66.2-150400.3.5.1 * libvte-2_91-0-debuginfo-0.66.2-150400.3.5.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * vte-debugsource-0.66.2-150400.3.5.1 * libvte-2_91-0-0.66.2-150400.3.5.1 * vte-debuginfo-0.66.2-150400.3.5.1 * typelib-1_0-Vte-2.91-0.66.2-150400.3.5.1 * libvte-2_91-0-debuginfo-0.66.2-150400.3.5.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * vte-debugsource-0.66.2-150400.3.5.1 * libvte-2_91-0-0.66.2-150400.3.5.1 * vte-debuginfo-0.66.2-150400.3.5.1 * typelib-1_0-Vte-2.91-0.66.2-150400.3.5.1 * libvte-2_91-0-debuginfo-0.66.2-150400.3.5.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * vte-debugsource-0.66.2-150400.3.5.1 * vte-tools-0.66.2-150400.3.5.1 * libvte-2_91-0-0.66.2-150400.3.5.1 * vte-devel-0.66.2-150400.3.5.1 * glade-catalog-vte-0.66.2-150400.3.5.1 * vte-debuginfo-0.66.2-150400.3.5.1 * typelib-1_0-Vte-2.91-0.66.2-150400.3.5.1 * vte-tools-debuginfo-0.66.2-150400.3.5.1 * libvte-2_91-0-debuginfo-0.66.2-150400.3.5.1 * openSUSE Leap 15.4 (noarch) * vte-lang-0.66.2-150400.3.5.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * vte-debugsource-0.66.2-150400.3.5.1 * vte-tools-0.66.2-150400.3.5.1 * libvte-2_91-0-0.66.2-150400.3.5.1 * vte-devel-0.66.2-150400.3.5.1 * glade-catalog-vte-0.66.2-150400.3.5.1 * vte-debuginfo-0.66.2-150400.3.5.1 * typelib-1_0-Vte-2.91-0.66.2-150400.3.5.1 * vte-tools-debuginfo-0.66.2-150400.3.5.1 * libvte-2_91-0-debuginfo-0.66.2-150400.3.5.1 * openSUSE Leap 15.5 (noarch) * vte-lang-0.66.2-150400.3.5.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * vte-debugsource-0.66.2-150400.3.5.1 * libvte-2_91-0-0.66.2-150400.3.5.1 * vte-debuginfo-0.66.2-150400.3.5.1 * typelib-1_0-Vte-2.91-0.66.2-150400.3.5.1 * libvte-2_91-0-debuginfo-0.66.2-150400.3.5.1 * Desktop Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64) *vte-debugsource-0.66.2-150400.3.5.1 * vte-debuginfo-0.66.2-150400.3.5.1 * vte-devel-0.66.2-150400.3.5.1 * Desktop Applications Module 15-SP5 (noarch) * vte-lang-0.66.2-150400.3.5.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * vte-debugsource-0.66.2-150400.3.5.1 * libvte-2_91-0-0.66.2-150400.3.5.1 * vte-devel-0.66.2-150400.3.5.1 * vte-debuginfo-0.66.2-150400.3.5.1 * typelib-1_0-Vte-2.91-0.66.2-150400.3.5.1 * libvte-2_91-0-debuginfo-0.66.2-150400.3.5.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * vte-lang-0.66.2-150400.3.5.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * vte-debugsource-0.66.2-150400.3.5.1 * libvte-2_91-0-0.66.2-150400.3.5.1 * vte-devel-0.66.2-150400.3.5.1 * vte-debuginfo-0.66.2-150400.3.5.1 * typelib-1_0-Vte-2.91-0.66.2-150400.3.5.1 * libvte-2_91-0-debuginfo-0.66.2-150400.3.5.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * vte-lang-0.66.2-150400.3.5.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * vte-debugsource-0.66.2-150400.3.5.1 * libvte-2_91-0-0.66.2-150400.3.5.1 * vte-devel-0.66.2-150400.3.5.1 * vte-debuginfo-0.66.2-150400.3.5.1 * typelib-1_0-Vte-2.91-0.66.2-150400.3.5.1 * libvte-2_91-0-debuginfo-0.66.2-150400.3.5.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * vte-lang-0.66.2-150400.3.5.1 ## References: * https://www.suse.com/security/cve/CVE-2024-37535.html * https://bugzilla.suse.com/show_bug.cgi?id=1226134 . The recent SUSE-SU-2024:2180-1 update addresses a denial of service vulnerability in vte related to excessive memory usage.. SUSE Security Advisory,vte update,denial of service,SUSE Linux Enterprise,openSUSE update. . Severity: Important. LinuxSecurity.com Team
Jun 24, 2024
•Important
SuSE
100
security advisorydenial of serviceimportantSUSE: 2024:2151-1 Critical Update: vte Denial of Service Resolution
* bsc#1226134 Cross-References: * CVE-2024-37535 . # Security update for vte Announcement ID: SUSE-SU-2024:2151-1 Rating: important References: * bsc#1226134 Cross-References: * CVE-2024-37535 CVSS scores: * CVE-2024-37535 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for vte fixes the following issues: * CVE-2024-37535: Fixed a bug that allowed an attacker to cause a denial of service (memory consumption) via a window resize escape. (bsc#1226134) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-2151=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2151=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2151=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2151=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * vte-debugsource-0.44.2-9.6.1 * vte-devel-0.44.2-9.6.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * typelib-1_0-Vte-2.91-0.44.2-9.6.1 * vte-debugsource-0.44.2-9.6.1 * libvte-2_91-0-0.44.2-9.6.1 * libvte-2_91-0-debuginfo-0.44.2-9.6.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (noarch) * vte-lang-0.44.2-9.6.1 * SUSE Linux Enterprise Server 12SP5 (aarch64 ppc64le s390x x86_64) * typelib-1_0-Vte-2.91-0.44.2-9.6.1 * vte-debugsource-0.44.2-9.6.1 * libvte-2_91-0-0.44.2-9.6.1 * libvte-2_91-0-debuginfo-0.44.2-9.6.1 * SUSE Linux Enterprise Server 12 SP5 (noarch) * vte-lang-0.44.2-9.6.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * typelib-1_0-Vte-2.91-0.44.2-9.6.1 * vte-debugsource-0.44.2-9.6.1 * libvte-2_91-0-0.44.2-9.6.1 * libvte-2_91-0-debuginfo-0.44.2-9.6.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (noarch) * vte-lang-0.44.2-9.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-37535.html * https://bugzilla.suse.com/show_bug.cgi?id=1226134 . SUSE has released a security patch for vte that resolves critical vulnerabilities and corrects a denial of service flaw. Discover further details here.. SUSE Security Advisory,vte Update,Denial of Service Fix,Security Update Announcement. . Severity: Important. LinuxSecurity.com Team
Jun 21, 2024
•Important
SuSE
100
security advisorydenial of serviceupdateSUSE: 2024:2152-1 Important: Vte Denial Of Service Advisory
* bsc#1226134 Cross-References: * CVE-2024-37535 . # Security update for vte Announcement ID: SUSE-SU-2024:2152-1 Rating: important References: * bsc#1226134 Cross-References: * CVE-2024-37535 CVSS scores: * CVE-2024-37535 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability can now be installed. ## Description: This update for vte fixes the following issues: * CVE-2024-37535: Fixed a bug that allowed an attacker to cause a denial of service (memory consumption) via a window resize escape. (bsc#1226134) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2152=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2152=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2152=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2152=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patchSUSE-SLE-Product-SLES_SAP-15-SP2-2024-2152=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2152=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2152=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * typelib-1_0-Vte-2.91-0.58.3-150200.3.3.1 * vte-devel-0.58.3-150200.3.3.1 * libvte-2_91-0-0.58.3-150200.3.3.1 * vte-debuginfo-0.58.3-150200.3.3.1 * vte-debugsource-0.58.3-150200.3.3.1 * libvte-2_91-0-debuginfo-0.58.3-150200.3.3.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * vte-lang-0.58.3-150200.3.3.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * typelib-1_0-Vte-2.91-0.58.3-150200.3.3.1 * vte-devel-0.58.3-150200.3.3.1 * libvte-2_91-0-0.58.3-150200.3.3.1 * vte-debuginfo-0.58.3-150200.3.3.1 * vte-debugsource-0.58.3-150200.3.3.1 * libvte-2_91-0-debuginfo-0.58.3-150200.3.3.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * vte-lang-0.58.3-150200.3.3.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * typelib-1_0-Vte-2.91-0.58.3-150200.3.3.1 * vte-devel-0.58.3-150200.3.3.1 * libvte-2_91-0-0.58.3-150200.3.3.1 * vte-debuginfo-0.58.3-150200.3.3.1 * vte-debugsource-0.58.3-150200.3.3.1 * libvte-2_91-0-debuginfo-0.58.3-150200.3.3.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * vte-lang-0.58.3-150200.3.3.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * typelib-1_0-Vte-2.91-0.58.3-150200.3.3.1 * vte-devel-0.58.3-150200.3.3.1 * libvte-2_91-0-0.58.3-150200.3.3.1 * vte-debuginfo-0.58.3-150200.3.3.1 * vte-debugsource-0.58.3-150200.3.3.1 * libvte-2_91-0-debuginfo-0.58.3-150200.3.3.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) *vte-lang-0.58.3-150200.3.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * typelib-1_0-Vte-2.91-0.58.3-150200.3.3.1 * vte-devel-0.58.3-150200.3.3.1 * libvte-2_91-0-0.58.3-150200.3.3.1 * vte-debuginfo-0.58.3-150200.3.3.1 * vte-debugsource-0.58.3-150200.3.3.1 * libvte-2_91-0-debuginfo-0.58.3-150200.3.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * vte-lang-0.58.3-150200.3.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * typelib-1_0-Vte-2.91-0.58.3-150200.3.3.1 * vte-devel-0.58.3-150200.3.3.1 * libvte-2_91-0-0.58.3-150200.3.3.1 * vte-debuginfo-0.58.3-150200.3.3.1 * vte-debugsource-0.58.3-150200.3.3.1 * libvte-2_91-0-debuginfo-0.58.3-150200.3.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * vte-lang-0.58.3-150200.3.3.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * typelib-1_0-Vte-2.91-0.58.3-150200.3.3.1 * vte-devel-0.58.3-150200.3.3.1 * libvte-2_91-0-0.58.3-150200.3.3.1 * vte-debuginfo-0.58.3-150200.3.3.1 * vte-debugsource-0.58.3-150200.3.3.1 * libvte-2_91-0-debuginfo-0.58.3-150200.3.3.1 * SUSE Enterprise Storage 7.1 (noarch) * vte-lang-0.58.3-150200.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-37535.html * https://bugzilla.suse.com/show_bug.cgi?id=1226134 . SUSE released a crucial patch for vte to address CVE-2024-37535, which resulted in a denial of service vulnerability. Update immediately.. SUSE Linux Updates,vte Security Advisory,SUSE Linux Counseling,CVE-2024-37535,Denial of Service. . Severity: Important. LinuxSecurity.com Team
Jun 21, 2024
•Important
SuSE
100
security advisorydenial of servicesoftware updateSUSE: 2024:2153-1 Important: vte Denial Of Service Update
* bsc#1226134 Cross-References: * CVE-2024-37535 . # Security update for vte Announcement ID: SUSE-SU-2024:2153-1 Rating: important References: * bsc#1226134 Cross-References: * CVE-2024-37535 CVSS scores: * CVE-2024-37535 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP6 * Desktop Applications Module 15-SP6 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability can now be installed. ## Description: This update for vte fixes the following issues: * CVE-2024-37535: Fixed a bug that allowed an attacker to cause a denial of service (memory consumption) via a window resize escape. (bsc#1226134) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2153=1 SUSE-2024-2153=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-2153=1 * Desktop Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP6-2024-2153=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * typelib-1_0-Vte-3_91-0.74.2-150600.3.3.1 * typelib-1_0-Vte-2_91-0.74.2-150600.3.3.1 * libvte-2_91-0-0.74.2-150600.3.3.1 * vte-tools-gtk4-0.74.2-150600.3.3.1 * vte-devel-0.74.2-150600.3.3.1 * vte-tools-0.74.2-150600.3.3.1 * libvte-2_91-0-debuginfo-0.74.2-150600.3.3.1 * vte-debuginfo-0.74.2-150600.3.3.1 * vte-tools-debuginfo-0.74.2-150600.3.3.1 * vte-tools-gtk4-debuginfo-0.74.2-150600.3.3.1 * vte-debugsource-0.74.2-150600.3.3.1 * openSUSE Leap 15.6 (noarch) * vte-lang-0.74.2-150600.3.3.1 *Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * typelib-1_0-Vte-2_91-0.74.2-150600.3.3.1 * libvte-2_91-0-0.74.2-150600.3.3.1 * libvte-2_91-0-debuginfo-0.74.2-150600.3.3.1 * vte-debuginfo-0.74.2-150600.3.3.1 * vte-debugsource-0.74.2-150600.3.3.1 * Desktop Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * vte-debuginfo-0.74.2-150600.3.3.1 * vte-devel-0.74.2-150600.3.3.1 * typelib-1_0-Vte-3_91-0.74.2-150600.3.3.1 * vte-debugsource-0.74.2-150600.3.3.1 * Desktop Applications Module 15-SP6 (noarch) * vte-lang-0.74.2-150600.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-37535.html * https://bugzilla.suse.com/show_bug.cgi?id=1226134 . Revision for vte addresses a DDoS vulnerability enabling excessive memory usage via window resizing loophole. Key patch information enclosed.. SUSE Security Advisory,vte Update,Denial Of Service Patch,SUSE Linux Enterprise. . Severity: Important. LinuxSecurity.com Team
Jun 21, 2024
•Important
SuSE
172
security advisorydenial of serviceupdate instructionsUbuntu 24.04 LTS USN-6833-1 Moderate: VTE Resource Crash
VTE could be made to consume resources and crash if it displayed specially crafted data.. ========================================================================== Ubuntu Security Notice USN-6833-1 June 13, 2024 vte2.91 vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 24.04 LTS - Ubuntu 23.10 - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS Summary: VTE could be made to consume resources and crash if it displayed specially crafted data. Software Description: - vte2.91: Terminal emulator widget for GTK Details: Siddharth Dushantha discovered that VTE incorrectly handled large window resize escape sequences. An attacker could possibly use this issue to consume resources, leading to a denial of service. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 24.04 LTS libvte-2.91-0 0.76.0-1ubuntu0.1 libvte-2.91-gtk4-0 0.76.0-1ubuntu0.1 Ubuntu 23.10 libvte-2.91-0 0.74.0-2ubuntu0.1 libvte-2.91-gtk4-0 0.74.0-2ubuntu0.1 Ubuntu 22.04 LTS libvte-2.91-0 0.68.0-1ubuntu0.1 Ubuntu 20.04 LTS libvte-2.91-0 0.60.3-0ubuntu1~20.5 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-6833-1 CVE-2024-37535 Package Information: https://launchpad.net/ubuntu/+source/vte2.91/0.76.0-1ubuntu0.1 https://launchpad.net/ubuntu/+source/vte2.91/0.74.0-2ubuntu0.1 https://launchpad.net/ubuntu/+source/vte2.91/0.68.0-1ubuntu0.1 https://launchpad.net/ubuntu/+source/vte2.91/0.60.3-0ubuntu1~20.5 . A critical vulnerability impacting various Ubuntu versions leads to excessive resource utilization and system instability. Apply updates immediately.. Ubuntu Security,VTE Updates,Denial Of Service,ResourceCrash. . LinuxSecurity.com Team
Jun 13, 2024
Ubuntu
89
security advisorymoderatefedoraFedora Core 4 vte-0.11.14-3 Moderate Update: Terminal Emulator Improvement
Please report regressions to GNOME Bugzilla.. ---------------------------------------------------------------------Fedora Update Notification FEDORA-2005-767 2005-09-10 ---------------------------------------------------------------------Product : Fedora Core 4 Name : vte Version : 0.11.14 Release : 3.fc4 Summary : An experimental terminal emulator. Description : VTE is an experimental terminal emulator widget for use with GTK+ 2.0. ---------------------------------------------------------------------Update Information: Please report regressions to GNOME Bugzilla. ---------------------------------------------------------------------* Tue Aug 16 2005 Warren Togami 0.11.14-3 - make python version automatic * Tue Aug 16 2005 Warren Togami 0.11.14-2 - remove huge and rarely needed devel docs - remove .a because nobody should be using this * Thu Aug 4 2005 Matthias Clasen 0.11.14-1 - New upstream version ---------------------------------------------------------------------This update can be downloaded from: da6b5f0abf0b1c0b7b0167bcf8cfb607 SRPMS/vte-0.11.14-3.fc4.src.rpm 0a3684c21f5779799f3e5fd006d84ec7 ppc/vte-0.11.14-3.fc4.ppc.rpm 5b442c82f1c2120124715b0f3bf44518 ppc/vte-devel-0.11.14-3.fc4.ppc.rpm 8414e69adc6956c12cf64ed93ff85a40 ppc/debug/vte-debuginfo-0.11.14-3.fc4.ppc.rpm 5f86c3e3d500175b6b659f16d1a679fa ppc/vte-0.11.14-3.fc4.ppc64.rpm 7d05f2cd6fbbcad5690173e8fc3a47ec x86_64/vte-0.11.14-3.fc4.x86_64.rpm 31b158f0e8a7fbcecd1b30c827b2434f x86_64/vte-devel-0.11.14-3.fc4.x86_64.rpm 129a27ba1de413544bbf9f779dddf737 x86_64/debug/vte-debuginfo-0.11.14-3.fc4.x86_64.rpm 8faaa1954599b3967d239210ec653e9e x86_64/vte-0.11.14-3.fc4.i386.rpm 8faaa1954599b3967d239210ec653e9e i386/vte-0.11.14-3.fc4.i386.rpm cf0dce53362777aa6081f26f66fa054b i386/vte-devel-0.11.14-3.fc4.i386.rpm 903668324d3acaeb8fc338a6a0698827 i386/debug/vte-debuginfo-0.11.14-3.fc4.i386.rpm This update can also be installed withthe Update Agent; you can launch the Update Agent with the 'up2date' command. ----------------------------------------------------------------------- fedora-announce-list mailing list
Sep 12, 2005
•Important
Fedora
89
security advisorymoderatesoftware updateFedora Core 3: FEDORA-2005-766 Moderate: Terminal Emulator Update
Please report regressions to GNOME Bugzilla.. ---------------------------------------------------------------------Fedora Update Notification FEDORA-2005-766 2005-09-10 ---------------------------------------------------------------------Product : Fedora Core 3 Name : vte Version : 0.11.14 Release : 3.fc3 Summary : An experimental terminal emulator. Description : VTE is an experimental terminal emulator widget for use with GTK+ 2.0. ---------------------------------------------------------------------Update Information: Please report regressions to GNOME Bugzilla. ---------------------------------------------------------------------* Tue Aug 16 2005 Warren Togami 0.11.14-3 - make python version automatic * Tue Aug 16 2005 Warren Togami 0.11.14-2 - remove huge and rarely needed devel docs - remove .a because nobody should be using this * Thu Aug 4 2005 Matthias Clasen 0.11.14-1 - New upstream version * Mon May 23 2005 Bill Nottingham 0.11.13-2.fc4 - fix removal of static libs from python bindings ---------------------------------------------------------------------This update can be downloaded from: 9a0c924a5dafb0e9fbe5389b722f6224 SRPMS/vte-0.11.14-3.fc3.src.rpm 17de294843623315e1a265aad243bd41 x86_64/vte-0.11.14-3.fc3.x86_64.rpm 28299b78340b94765669274f0c6c7675 x86_64/vte-devel-0.11.14-3.fc3.x86_64.rpm 8a2c99947aca6200496adf6fa7d8f96e x86_64/debug/vte-debuginfo-0.11.14-3.fc3.x86_64.rpm 47a9c683057fa0ead990ce9e8e87bcd1 x86_64/vte-0.11.14-3.fc3.i386.rpm 47a9c683057fa0ead990ce9e8e87bcd1 i386/vte-0.11.14-3.fc3.i386.rpm 1ad8011688ae762014c8caaddc65d097 i386/vte-devel-0.11.14-3.fc3.i386.rpm e38e6d1d39732d10bc9f034193df082b i386/debug/vte-debuginfo-0.11.14-3.fc3.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. ----------------------------------------------------------------------- fedora-announce-listmailing list
Sep 12, 2005
Fedora
89
security advisoryupdateFedoraFedora Core 3 vte Update 0.11.13-1 Critical: Performance And Memory Fix
A whole bunch of upstream fixes for speed, rendering glitches and memory use reduction.. ---------------------------------------------------------------------Fedora Update Notification FEDORA-2005-352 2005-05-02 ---------------------------------------------------------------------Product : Fedora Core 3 Name : vte Version : 0.11.13 Release : 1.fc3 Summary : An experimental terminal emulator. Description : VTE is an experimental terminal emulator widget for use with GTK+ 2.0. ---------------------------------------------------------------------Update Information: A whole bunch of upstream fixes for speed, rendering glitches and memory use reduction. ---------------------------------------------------------------------* Thu Apr 28 2005 Warren Togami 0.11.13-1 - 0.11.13, all patches are now upstream * Fri Apr 22 2005 Warren Togami 0.11.12-2 - fix vte python module import (#151348) * Mon Mar 7 2005 Warren Togami 0.11.12-1 - upgrade to 0.11.12 - remove upstreamed patches (0-2, 5-9) - remove patch3, clashes and probably not needed anymore - reverse patch4, because upstream merged this broken patch - test Novell's excessive malloc for new terminals patch v3 (GNOME #160993) * Wed Nov 17 2004 Ray Strode 0.11.11-15 - Remove workaround for bug 134300 and add better patch from Nalin. * Thu Nov 11 2004 Ray Strode 0.11.11-14 - Workaround bug 134300 by removing the initiate-hilite-mouse-tracking capability from vte. * Tue Nov 9 2004 Ray Strode 0.11.11-13 - Don't copy blocks; use pointers to block array directly. (based on the debugging efforts of Egmont Koblinger , bug 135537). * Mon Nov 8 2004 Jeremy Katz - 0.11.11-12 - rebuild against python 2.4 * Mon Nov 8 2004 Ray Strode 0.11.11-11 - Fix keypad keys when numlock is on in application mode (Patch from , bug 126110). * Sun Oct 31 2004 Dan Williams 0.11.11-10 - Redraw background when unobscured visiblity event is received (workaround,patch from Jon Nettleton) #rh100420# - Mad speed zoom zoom (patch from Soren Sandmann) #rh132770# * Sun Oct 31 2004 Ray Strode 0.11.11-9 - Stop using patch previous patch for now until certain unaddressed issues with it are resolved. * Fri Oct 29 2004 Ray Strode 0.11.11-8 - Commit patch from Owen to avoid scrolling invalid regions. * Thu Oct 28 2004 Ray Strode 0.11.11-7 - Add support for "scroll-up" and "scroll-down" control sequences to make vte more xterm compatible (Patch from Nalin, #128375) ---------------------------------------------------------------------This update can be downloaded from: 8b1f9bee083526a3cfb3730776e1311b SRPMS/vte-0.11.13-1.fc3.src.rpm 98eecde776b2f3d5722b9f44adc9481a x86_64/vte-0.11.13-1.fc3.x86_64.rpm 4d576491661fbfc37fcb348b6534e07a x86_64/vte-devel-0.11.13-1.fc3.x86_64.rpm d472f0fc2b37e24d5438e55fb6839532 x86_64/debug/vte-debuginfo-0.11.13-1.fc3.x86_64.rpm 4a7687012342b9e210908a5c09fb9211 x86_64/vte-0.11.13-1.fc3.i386.rpm 4a7687012342b9e210908a5c09fb9211 i386/vte-0.11.13-1.fc3.i386.rpm 54ae7f326017ea1d14885dbebe7a47be i386/vte-devel-0.11.13-1.fc3.i386.rpm 5da7fd57bd3671ab7b8ea33cfbc7a6aa i386/debug/vte-debuginfo-0.11.13-1.fc3.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. -----------------------------------------------------------------------fedora-announce-list mailing list
May 02, 2005
•Critical
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!