SUSE-SU-2018:0135-1

UNKNOWN

Security update for gd

Published Jan 18, 2018

Modified 8 years ago

Fix available

Details

This update for gd fixes one issues.

This security issue was fixed:

CVE-2017-6362: Prevent double-free in gdImagePngPtr() that potentially allowed for DoS or remote code execution (bsc#1056993).

Affected Packages

SUSE Linux Enterprise Desktop 12 SP2SUSE Linux Enterprise Desktop 12 SP3SUSE Linux Enterprise Server 12 SP2SUSE Linux Enterprise Server 12 SP3SUSE Linux Enterprise Server for Raspberry Pi 12 SP2

Fixed in:

2.1.0-24.3.4

gd-32bit

SUSE Linux Enterprise Desktop 12 SP2SUSE Linux Enterprise Desktop 12 SP3SUSE Linux Enterprise Workstation Extension 12 SP2SUSE Linux Enterprise Workstation Extension 12 SP3

Fixed in:

2.1.0-24.3.4

gd-devel

SUSE Linux Enterprise Software Development Kit 12 SP2SUSE Linux Enterprise Software Development Kit 12 SP3

Fixed in:

2.1.0-24.3.4

References

REPORT

https://bugzilla.suse.com/1056993

WEB

https://www.suse.com/security/cve/CVE-2017-6362

ADVISORY