SUSE-SU-2022:4306-1

Details

Description of the patch:

This update for bcel fixes the following issues:

CVE-2022-42920: Fixed producing arbitrary bytecode via out-of-bounds writing (bsc#1205125).

Affected Packages

bcel

SUSE Enterprise Storage 7.1SUSE Linux Enterprise Desktop 15 SP3SUSE Linux Enterprise Desktop 15 SP4SUSE Linux Enterprise High Performance Computing 15 SP3SUSE Linux Enterprise High Performance Computing 15 SP4

Fixed in:

5.2-150200.11.3.1

References

ADVISORY

https://bugzilla.suse.com/1205125

ADVISORY

https://lists.suse.com/pipermail/sle-security-updates/2022-December/013183.html

ADVISORY

https://www.suse.com/security/cve/CVE-2022-42920/

WEB

https://www.suse.com/support/security/rating/

ADVISORY

https://www.suse.com/support/update/announcement/2022/suse-su-20224306-1/