Overview
Request 953226 accepted
- security update
- added patches
fix CVE-2021-40985 [bsc#1192357], buffer overflow may lead to DoS via a crafted BMP image
+ htmldoc.openSUSE_Backports_SLE-12-SP1-CVE-2021-40985.patch
fix CVE-2021-43579 [bsc#1194487], stack-based buffer overflow in image_load_bmp() results in remote code execution if the victim converts an HTML document linking to a crafted BMP file
+ htmldoc.openSUSE_Backports_SLE-12-SP1-CVE-2021-43579.patch
fix CVE-2022-0534 [bsc#1195758], stack out-of-bounds read in gif_get_code() when opening a malicious GIF file results in a segmentation fault
+ htmldoc.openSUSE_Backports_SLE-12-SP1-CVE-2022-0534.patch
- Created by pgajdos
- In state accepted
-
Open review for
licensedigger
-
Open review for
factory-source
- Open review for Publishing
Request History
pgajdos created request
- security update
- added patches
fix CVE-2021-40985 [bsc#1192357], buffer overflow may lead to DoS via a crafted BMP image
+ htmldoc.openSUSE_Backports_SLE-12-SP1-CVE-2021-40985.patch
fix CVE-2021-43579 [bsc#1194487], stack-based buffer overflow in image_load_bmp() results in remote code execution if the victim converts an HTML document linking to a crafted BMP file
+ htmldoc.openSUSE_Backports_SLE-12-SP1-CVE-2021-43579.patch
fix CVE-2022-0534 [bsc#1195758], stack out-of-bounds read in gif_get_code() when opening a malicious GIF file results in a segmentation fault
+ htmldoc.openSUSE_Backports_SLE-12-SP1-CVE-2022-0534.patch
maintbot added factory-source as a reviewer
maintbot added Publishing as a reviewer
Submission for None by someone who is not maintainer in the devel project (Publishing). Please review
maintbot accepted review
ok
factory-auto accepted review
Check script succeeded
msmeissn accepted request
ok
