[security-announce] SUSE-SU-2012:0902-1: important: Security update for libexif
SUSE Security Update: Security update for libexif ______________________________________________________________________________ Announcement ID: SUSE-SU-2012:0902-1 Rating: important References: #771229 Cross-References: CVE-2012-2812 CVE-2012-2814 CVE-2012-2836 CVE-2012-2837 CVE-2012-2841 Affected Products: SUSE Linux Enterprise Server 10 SP4 SUSE Linux Enterprise Desktop 10 SP4 ______________________________________________________________________________ An update that fixes 5 vulnerabilities is now available. Description: Various overflows and other security related bugs in libexif were found by the Google Security team and fixed by the libexif developers. Security Issue references: * CVE-2012-2812 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2812
* CVE-2012-2814 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2814
* CVE-2012-2836 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2836
* CVE-2012-2837 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2837
* CVE-2012-2841 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2841
Package List: - SUSE Linux Enterprise Server 10 SP4 (i586 ia64 ppc s390x x86_64): libexif-0.6.13-20.14.1 - SUSE Linux Enterprise Server 10 SP4 (s390x x86_64): libexif-32bit-0.6.13-20.14.1 - SUSE Linux Enterprise Server 10 SP4 (ia64): libexif-x86-0.6.13-20.14.1 - SUSE Linux Enterprise Server 10 SP4 (ppc): libexif-64bit-0.6.13-20.14.1 - SUSE Linux Enterprise Desktop 10 SP4 (i586 x86_64): libexif-0.6.13-20.14.1 - SUSE Linux Enterprise Desktop 10 SP4 (x86_64): libexif-32bit-0.6.13-20.14.1 References: http://support.novell.com/security/cve/CVE-2012-2812.html http://support.novell.com/security/cve/CVE-2012-2814.html http://support.novell.com/security/cve/CVE-2012-2836.html http://support.novell.com/security/cve/CVE-2012-2837.html http://support.novell.com/security/cve/CVE-2012-2841.html https://bugzilla.novell.com/771229 http://download.novell.com/patch/finder/?keywords=9eed174e86533459e960c872be... -- To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security-announce+help@opensuse.org
participants (1)
-
opensuse-security@opensuse.org