Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:Leap:15.1:Update
patchinfo.11655
_patchinfo
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File _patchinfo of Package patchinfo.11655
<patchinfo incident="11655"> <issue tracker="bnc" id="1158365">VUL-0: CVE-2019-5164: code execution vulnerability in the ss-manager binary of Shadowsocks-libev 3.3.2</issue> <issue tracker="bnc" id="1158251">VUL-1: CVE-2019-5163: shadowsocks-lib: exploitable denial-of-service vulnerability exists in the UDPRelay functionality</issue> <issue tracker="cve" id="2019-5163"/> <issue tracker="cve" id="2019-5164"/> <packager>hillwood</packager> <rating>moderate</rating> <category>security</category> <summary>Security update for shadowsocks-libev</summary> <description>This update for shadowsocks-libev fixes the following issues: - Update version to 3.3.3 * Refine the handling of suspicious connections. * Fix exploitable denial-of-service vulnerability exists in the UDPRelay functionality (boo#1158251, CVE-2019-5163) * Fix code execution vulnerability in the ss-manager binary (boo#1158365, CVE-2019-5164) * Refine the handling of fragment request. * Fix a high CPU bug introduced in 3.3.0. (#2449) * Enlarge the socket buffer size to 16KB. * Fix the empty list bug in ss-manager. * Fix the IPv6 address parser. * Fix a bug of port parser. * Fix a crash with MinGW. * Refine SIP003 plugin interface. * Remove connection timeout from all clients. * Fix the alignment bug again. * Fix a bug on 32-bit arch. * Add TCP fast open support to ss-tunnel by @PantherJohn. </description> </patchinfo>
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor