Early Access — Mondoo Vulnerability Intelligence is currently in preview.

SUSE-SU-2023:3535-1 | Mondoo Vulnerability Intelligence

SUSE-SU-2023:3535-1

UNKNOWN

Security update for glib2

Published Sep 5, 2023

Modified 2 years ago

Fix available

Details

This update for glib2 fixes the following issues:

CVE-2021-28153: Fixed an issue where symlink targets would be incorrectly created as empty files. (bsc#1183533)
CVE-2023-32665: Fixed GVariant deserialisation which does not match spec for non-normal data. (bsc#1211945)
CVE-2023-32643: Fixed a heap-buffer-overflow in g_variant_serialised_get_child(). (bsc#1211946)
CVE-2023-29499: Fixed GVariant offset table entry size which is not checked in is_normal(). (bsc#1211947)
CVE-2023-32636: Fixed a wrong timeout in fuzz_variant_text(). (bsc#1211948)
CVE-2023-32611: Fixed an issue where g_variant_byteswap() can take a long time with some non-normal inputs. (bsc#1211951)

Affected Packages

SUSE:Enterprise Storage 6glib2

Fixed in:

2.54.3-150000.4.29.1

SUSE:Enterprise Storage 6glib2-devel

Fixed in:

2.54.3-150000.4.29.1

SUSE:Enterprise Storage 6glib2-lang

Fixed in:

2.54.3-150000.4.29.1

SUSE:Enterprise Storage 6glib2-tools

Fixed in:

2.54.3-150000.4.29.1

SUSE:Enterprise Storage 6libgio-2_0-0

Fixed in:

2.54.3-150000.4.29.1

SUSE:Enterprise Storage 6libgio-2_0-0-32bit

Fixed in:

2.54.3-150000.4.29.1

SUSE:Enterprise Storage 6libglib-2_0-0

Fixed in:

2.54.3-150000.4.29.1

SUSE:Enterprise Storage 6libglib-2_0-0-32bit

Fixed in:

2.54.3-150000.4.29.1

SUSE:Enterprise Storage 6libgmodule-2_0-0

Fixed in:

2.54.3-150000.4.29.1

SUSE:Enterprise Storage 6libgmodule-2_0-0-32bit

Fixed in:

2.54.3-150000.4.29.1

SUSE:Enterprise Storage 6libgobject-2_0-0

Fixed in:

2.54.3-150000.4.29.1

SUSE:Enterprise Storage 6libgobject-2_0-0-32bit

Fixed in:

2.54.3-150000.4.29.1

SUSE:Enterprise Storage 6libgthread-2_0-0

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise High Performance Computing 15 SP1-LTSSglib2

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise High Performance Computing 15 SP1-LTSSglib2-devel

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise High Performance Computing 15 SP1-LTSSglib2-lang

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise High Performance Computing 15 SP1-LTSSglib2-tools

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise High Performance Computing 15 SP1-LTSSlibgio-2_0-0

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise High Performance Computing 15 SP1-LTSSlibgio-2_0-0-32bit

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise High Performance Computing 15 SP1-LTSSlibglib-2_0-0

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise High Performance Computing 15 SP1-LTSSlibglib-2_0-0-32bit

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise High Performance Computing 15 SP1-LTSSlibgmodule-2_0-0

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise High Performance Computing 15 SP1-LTSSlibgmodule-2_0-0-32bit

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise High Performance Computing 15 SP1-LTSSlibgobject-2_0-0

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise High Performance Computing 15 SP1-LTSSlibgobject-2_0-0-32bit

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise High Performance Computing 15 SP1-LTSSlibgthread-2_0-0

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server 15 SP1-LTSSglib2

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server 15 SP1-LTSSglib2-devel

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server 15 SP1-LTSSglib2-lang

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server 15 SP1-LTSSglib2-tools

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server 15 SP1-LTSSlibgio-2_0-0

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server 15 SP1-LTSSlibgio-2_0-0-32bit

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server 15 SP1-LTSSlibglib-2_0-0

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server 15 SP1-LTSSlibglib-2_0-0-32bit

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server 15 SP1-LTSSlibgmodule-2_0-0

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server 15 SP1-LTSSlibgmodule-2_0-0-32bit

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server 15 SP1-LTSSlibgobject-2_0-0

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server 15 SP1-LTSSlibgobject-2_0-0-32bit

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server 15 SP1-LTSSlibgthread-2_0-0

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP1glib2

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP1glib2-devel

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP1glib2-lang

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP1glib2-tools

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP1libgio-2_0-0

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP1libgio-2_0-0-32bit

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP1libglib-2_0-0

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP1libglib-2_0-0-32bit

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP1libgmodule-2_0-0

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP1libgmodule-2_0-0-32bit

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP1libgobject-2_0-0

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP1libgobject-2_0-0-32bit

Fixed in:

2.54.3-150000.4.29.1

SUSE:Linux Enterprise Server for SAP Applications 15 SP1libgthread-2_0-0

Fixed in:

2.54.3-150000.4.29.1

Timeline

PublishedSep 5, 2023

ModifiedSep 5, 2023

SUSE-SU-2023:3535-1

Details

Affected Packages

References

Upstream

Related

Ecosystems

Timeline