Login
Newsletter
Werbung

Sicherheit: Ausführen beliebiger Kommandos in Mesa
Aktuelle Meldungen Distributionen
Name: Ausführen beliebiger Kommandos in Mesa
ID: openSUSE-SU-2013:1188-1
Distribution: SUSE
Plattformen: SUSE openSUSE 12.2, SUSE openSUSE 12.3
Datum: Fr, 12. Juli 2013, 22:52
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1872
Applikationen: Mesa

Originalnachricht

   openSUSE Security Update: Mesa: security fixes for Intel drivers
______________________________________________________________________________

Announcement ID: openSUSE-SU-2013:1188-1
Rating: important
References: #828007
Cross-References: CVE-2013-1872
Affected Products:
openSUSE 12.3
openSUSE 12.2
______________________________________________________________________________

An update that fixes one vulnerability is now available.

Description:


Mesa was updated to fix a security problem in the Intel
drivers, where potentially remote attackers via 3D models
could inject code.

(CVE-2013-1872 - i965: fix problem with constant out of
bounds access (bnc #828007).)


Patch Instructions:

To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:

- openSUSE 12.3:

zypper in -t patch openSUSE-2013-577

- openSUSE 12.2:

zypper in -t patch openSUSE-2013-577

To bring your system up-to-date, use "zypper patch".


Package List:

- openSUSE 12.3 (i586 x86_64):

Mesa-9.0.2-34.20.1
Mesa-debuginfo-9.0.2-34.20.1
Mesa-debugsource-9.0.2-34.20.1
Mesa-devel-9.0.2-34.20.1
Mesa-libEGL-devel-9.0.2-34.20.1
Mesa-libEGL1-9.0.2-34.20.1
Mesa-libEGL1-debuginfo-9.0.2-34.20.1
Mesa-libGL-devel-9.0.2-34.20.1
Mesa-libGL1-9.0.2-34.20.1
Mesa-libGL1-debuginfo-9.0.2-34.20.1
Mesa-libGLESv1_CM-devel-9.0.2-34.20.1
Mesa-libGLESv1_CM1-9.0.2-34.20.1
Mesa-libGLESv1_CM1-debuginfo-9.0.2-34.20.1
Mesa-libGLESv2-2-9.0.2-34.20.1
Mesa-libGLESv2-2-debuginfo-9.0.2-34.20.1
Mesa-libGLESv2-devel-9.0.2-34.20.1
Mesa-libIndirectGL-devel-9.0.2-34.20.1
Mesa-libIndirectGL1-9.0.2-34.20.1
Mesa-libIndirectGL1-debuginfo-9.0.2-34.20.1
Mesa-libglapi-devel-9.0.2-34.20.1
Mesa-libglapi0-9.0.2-34.20.1
Mesa-libglapi0-debuginfo-9.0.2-34.20.1
libOSMesa-devel-9.0.2-34.20.1
libOSMesa9-9.0.2-34.20.1
libOSMesa9-debuginfo-9.0.2-34.20.1
libXvMC_nouveau-9.0.2-34.20.1
libXvMC_nouveau-debuginfo-9.0.2-34.20.1
libXvMC_r300-9.0.2-34.20.1
libXvMC_r300-debuginfo-9.0.2-34.20.1
libXvMC_r600-9.0.2-34.20.1
libXvMC_r600-debuginfo-9.0.2-34.20.1
libXvMC_softpipe-9.0.2-34.20.1
libXvMC_softpipe-debuginfo-9.0.2-34.20.1
libgbm-devel-0.0.0-34.20.1
libgbm1-0.0.0-34.20.1
libgbm1-debuginfo-0.0.0-34.20.1
libvdpau_nouveau-9.0.2-34.20.1
libvdpau_nouveau-debuginfo-9.0.2-34.20.1
libvdpau_r300-9.0.2-34.20.1
libvdpau_r300-debuginfo-9.0.2-34.20.1
libvdpau_r600-9.0.2-34.20.1
libvdpau_r600-debuginfo-9.0.2-34.20.1
libvdpau_softpipe-9.0.2-34.20.1
libvdpau_softpipe-debuginfo-9.0.2-34.20.1
libxatracker-devel-1.0.0-34.20.1
libxatracker1-1.0.0-34.20.1
libxatracker1-debuginfo-1.0.0-34.20.1

- openSUSE 12.3 (x86_64):

Mesa-32bit-9.0.2-34.20.1
Mesa-debuginfo-32bit-9.0.2-34.20.1
Mesa-devel-32bit-9.0.2-34.20.1
Mesa-libEGL-devel-32bit-9.0.2-34.20.1
Mesa-libEGL1-32bit-9.0.2-34.20.1
Mesa-libEGL1-debuginfo-32bit-9.0.2-34.20.1
Mesa-libGL-devel-32bit-9.0.2-34.20.1
Mesa-libGL1-32bit-9.0.2-34.20.1
Mesa-libGL1-debuginfo-32bit-9.0.2-34.20.1
Mesa-libGLESv1_CM-devel-32bit-9.0.2-34.20.1
Mesa-libGLESv1_CM1-32bit-9.0.2-34.20.1
Mesa-libGLESv1_CM1-debuginfo-32bit-9.0.2-34.20.1
Mesa-libGLESv2-2-32bit-9.0.2-34.20.1
Mesa-libGLESv2-2-debuginfo-32bit-9.0.2-34.20.1
Mesa-libGLESv2-devel-32bit-9.0.2-34.20.1
Mesa-libIndirectGL-devel-32bit-9.0.2-34.20.1
Mesa-libIndirectGL1-32bit-9.0.2-34.20.1
Mesa-libIndirectGL1-debuginfo-32bit-9.0.2-34.20.1
Mesa-libglapi-devel-32bit-9.0.2-34.20.1
Mesa-libglapi0-32bit-9.0.2-34.20.1
Mesa-libglapi0-debuginfo-32bit-9.0.2-34.20.1
libOSMesa-devel-32bit-9.0.2-34.20.1
libOSMesa9-32bit-9.0.2-34.20.1
libOSMesa9-debuginfo-32bit-9.0.2-34.20.1
libXvMC_nouveau-32bit-9.0.2-34.20.1
libXvMC_nouveau-debuginfo-32bit-9.0.2-34.20.1
libXvMC_r300-32bit-9.0.2-34.20.1
libXvMC_r300-debuginfo-32bit-9.0.2-34.20.1
libXvMC_r600-32bit-9.0.2-34.20.1
libXvMC_r600-debuginfo-32bit-9.0.2-34.20.1
libXvMC_softpipe-32bit-9.0.2-34.20.1
libXvMC_softpipe-debuginfo-32bit-9.0.2-34.20.1
libgbm-devel-32bit-0.0.0-34.20.1
libgbm1-32bit-0.0.0-34.20.1
libgbm1-debuginfo-32bit-0.0.0-34.20.1
libvdpau_nouveau-32bit-9.0.2-34.20.1
libvdpau_nouveau-debuginfo-32bit-9.0.2-34.20.1
libvdpau_r300-32bit-9.0.2-34.20.1
libvdpau_r300-debuginfo-32bit-9.0.2-34.20.1
libvdpau_r600-32bit-9.0.2-34.20.1
libvdpau_r600-debuginfo-32bit-9.0.2-34.20.1
libvdpau_softpipe-32bit-9.0.2-34.20.1
libvdpau_softpipe-debuginfo-32bit-9.0.2-34.20.1

- openSUSE 12.2 (i586 x86_64):

Mesa-8.0.4-20.27.1
Mesa-debuginfo-8.0.4-20.27.1
Mesa-debugsource-8.0.4-20.27.1
Mesa-devel-8.0.4-20.27.1
Mesa-libEGL-devel-8.0.4-20.27.1
Mesa-libEGL1-8.0.4-20.27.1
Mesa-libEGL1-debuginfo-8.0.4-20.27.1
Mesa-libGL-devel-8.0.4-20.27.1
Mesa-libGL1-8.0.4-20.27.1
Mesa-libGL1-debuginfo-8.0.4-20.27.1
Mesa-libGLESv1_CM-devel-8.0.4-20.27.1
Mesa-libGLESv1_CM1-8.0.4-20.27.1
Mesa-libGLESv1_CM1-debuginfo-8.0.4-20.27.1
Mesa-libGLESv2-2-8.0.4-20.27.1
Mesa-libGLESv2-2-debuginfo-8.0.4-20.27.1
Mesa-libGLESv2-devel-8.0.4-20.27.1
Mesa-libGLU-devel-8.0.4-20.27.1
Mesa-libGLU1-8.0.4-20.27.1
Mesa-libGLU1-debuginfo-8.0.4-20.27.1
Mesa-libIndirectGL1-8.0.4-20.27.1
Mesa-libIndirectGL1-debuginfo-8.0.4-20.27.1
Mesa-libglapi0-8.0.4-20.27.1
Mesa-libglapi0-debuginfo-8.0.4-20.27.1
libOSMesa8-8.0.4-20.27.1
libOSMesa8-debuginfo-8.0.4-20.27.1
libXvMC_nouveau-8.0.4-20.27.1
libXvMC_nouveau-debuginfo-8.0.4-20.27.1
libXvMC_r300-8.0.4-20.27.1
libXvMC_r300-debuginfo-8.0.4-20.27.1
libXvMC_r600-8.0.4-20.27.1
libXvMC_r600-debuginfo-8.0.4-20.27.1
libXvMC_softpipe-8.0.4-20.27.1
libXvMC_softpipe-debuginfo-8.0.4-20.27.1
libgbm-devel-0.0.0-20.27.1
libgbm1-0.0.0-20.27.1
libgbm1-debuginfo-0.0.0-20.27.1
libvdpau_nouveau-8.0.4-20.27.1
libvdpau_nouveau-debuginfo-8.0.4-20.27.1
libvdpau_r300-8.0.4-20.27.1
libvdpau_r300-debuginfo-8.0.4-20.27.1
libvdpau_r600-8.0.4-20.27.1
libvdpau_r600-debuginfo-8.0.4-20.27.1
libvdpau_softpipe-8.0.4-20.27.1
libvdpau_softpipe-debuginfo-8.0.4-20.27.1
libxatracker-devel-1.0.0-20.27.1
libxatracker1-1.0.0-20.27.1
libxatracker1-debuginfo-1.0.0-20.27.1

- openSUSE 12.2 (x86_64):

Mesa-32bit-8.0.4-20.27.1
Mesa-debuginfo-32bit-8.0.4-20.27.1
Mesa-devel-32bit-8.0.4-20.27.1
Mesa-libEGL-devel-32bit-8.0.4-20.27.1
Mesa-libEGL1-32bit-8.0.4-20.27.1
Mesa-libEGL1-debuginfo-32bit-8.0.4-20.27.1
Mesa-libGL-devel-32bit-8.0.4-20.27.1
Mesa-libGL1-32bit-8.0.4-20.27.1
Mesa-libGL1-debuginfo-32bit-8.0.4-20.27.1
Mesa-libGLESv1_CM-devel-32bit-8.0.4-20.27.1
Mesa-libGLESv1_CM1-32bit-8.0.4-20.27.1
Mesa-libGLESv1_CM1-debuginfo-32bit-8.0.4-20.27.1
Mesa-libGLESv2-2-32bit-8.0.4-20.27.1
Mesa-libGLESv2-2-debuginfo-32bit-8.0.4-20.27.1
Mesa-libGLESv2-devel-32bit-8.0.4-20.27.1
Mesa-libGLU-devel-32bit-8.0.4-20.27.1
Mesa-libGLU1-32bit-8.0.4-20.27.1
Mesa-libGLU1-debuginfo-32bit-8.0.4-20.27.1
Mesa-libIndirectGL1-32bit-8.0.4-20.27.1
Mesa-libIndirectGL1-debuginfo-32bit-8.0.4-20.27.1
Mesa-libglapi0-32bit-8.0.4-20.27.1
Mesa-libglapi0-debuginfo-32bit-8.0.4-20.27.1
libOSMesa8-32bit-8.0.4-20.27.1
libOSMesa8-debuginfo-32bit-8.0.4-20.27.1
libXvMC_nouveau-32bit-8.0.4-20.27.1
libXvMC_nouveau-debuginfo-32bit-8.0.4-20.27.1
libXvMC_r300-32bit-8.0.4-20.27.1
libXvMC_r300-debuginfo-32bit-8.0.4-20.27.1
libXvMC_r600-32bit-8.0.4-20.27.1
libXvMC_r600-debuginfo-32bit-8.0.4-20.27.1
libXvMC_softpipe-32bit-8.0.4-20.27.1
libXvMC_softpipe-debuginfo-32bit-8.0.4-20.27.1
libgbm-devel-32bit-0.0.0-20.27.1
libgbm1-32bit-0.0.0-20.27.1
libgbm1-debuginfo-32bit-0.0.0-20.27.1
libvdpau_nouveau-32bit-8.0.4-20.27.1
libvdpau_nouveau-debuginfo-32bit-8.0.4-20.27.1
libvdpau_r300-32bit-8.0.4-20.27.1
libvdpau_r300-debuginfo-32bit-8.0.4-20.27.1
libvdpau_r600-32bit-8.0.4-20.27.1
libvdpau_r600-debuginfo-32bit-8.0.4-20.27.1
libvdpau_softpipe-32bit-8.0.4-20.27.1
libvdpau_softpipe-debuginfo-32bit-8.0.4-20.27.1


References:

http://support.novell.com/security/cve/CVE-2013-1872.html
https://bugzilla.novell.com/828007

--
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@opensuse.org
For additional commands, e-mail: opensuse-security-announce+help@opensuse.org
Pro-Linux
Gewinnspiel
Neue Nachrichten
Werbung