SUSE-SU-2019:1785-1

Details

This update for zeromq fixes the following issues:

CVE-2019-13132: An unauthenticated remote attacker could have exploited a stack overflow vulnerability on a server that is supposed to be protected by encryption and authentication to potentially gain a remote code execution. (bsc#1140255)

Affected Packages

libzmq3

SUSE Enterprise Storage 4SUSE Enterprise Storage 5SUSE Linux Enterprise Desktop 12 SP4SUSE Linux Enterprise Module for Advanced Systems Management 12SUSE Linux Enterprise Point of Sale 12 SP2

Fixed in:

4.0.4-15.3.1

zeromq

SUSE Enterprise Storage 4SUSE Enterprise Storage 5SUSE Linux Enterprise Desktop 12 SP4SUSE Linux Enterprise Module for Advanced Systems Management 12SUSE Linux Enterprise Point of Sale 12 SP2

Fixed in:

4.0.4-15.3.1

zeromq-devel

SUSE Linux Enterprise Software Development Kit 12 SP4

Fixed in:

4.0.4-15.3.1

References

REPORThttps://bugzilla.suse.com/1140255 WEBhttps://www.suse.com/security/cve/CVE-2019-13132 ADVISORYhttps://www.suse.com/support/update/announcement/2019/suse-su-20191785-1/

SUSE-SU-2019:1785-1

Details

Affected Packages

References

Upstream

Related

Ecosystems(10)

Timeline