SUSE-SU-2018:0100-1 -- SLES openslpID: oval:org.secpod.oval:def:89043608 | Date: (C)2021-03-05 (M)2022-10-10 |
Class: PATCH | Family: unix |
This update for openslp fixes two security issues and two bugs. The following vulnerabilities were fixed: - CVE-2016-4912: A remote attacker could have crashed the server with a large number of packages - CVE-2016-7567: A remote attacker could cause a memory corruption having unspecified impact The following bugfix changes are included: - bsc#994989: Removed convenience code as changes bytes in the message buffer breaking the verification code - bsc#974655: Removed no longer needed slpd init file
Platform: |
SUSE Linux Enterprise Server 12 SP2 |