漏洞类别:SUSE
漏洞等级: 
漏洞信息
SUSE has released security update for libraw to fix the vulnerabilities.
Affected Products:
SUSE Linux Enterprise Software Development Kit 12-SP3
SUSE Linux Enterprise Software Development Kit 12-SP2
SUSE Linux Enterprise Desktop 12-SP3
SUSE Linux Enterprise Desktop 12-SP2
漏洞危害
This vulnerability could be exploited to gain partial access to sensitive information. Additionally this vulnerability can also be used to cause a limited denial of service in the form of interruptions in resource availability.
解决方案
Upgrade to the latest packages which contain a patch. To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product.
To install packages using the command line interface, use the command "yum update".
Refer to Suse security advisory SUSE-SU-2017:3392-1 to address this issue and obtain further details.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0daybank
文章评论