drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Ausführen beliebiger Kommandos in Mesa
Name: |
Ausführen beliebiger Kommandos in Mesa |
|
ID: |
SUSE-SU-2020:0132-1 |
|
Distribution: |
SUSE |
|
Plattformen: |
SUSE Linux Enterprise Module for Basesystem 15, SUSE Linux Enterprise Workstation Extension 15, SUSE Linux Enterprise Module for Open Buildservice Development Tools 15, SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 |
|
Datum: |
Mo, 20. Januar 2020, 20:19 |
|
Referenzen: |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5068 |
|
Applikationen: |
Mesa |
|
Originalnachricht |
SUSE Security Update: Security update for Mesa ______________________________________________________________________________
Announcement ID: SUSE-SU-2020:0132-1 Rating: moderate References: #1156015 Cross-References: CVE-2019-5068 Affected Products: SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Basesystem 15 ______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
This update for Mesa fixes the following issues:
Security issue fixed:
- CVE-2019-5068: Fixed exploitable shared memory permissions vulnerability (bsc#1156015).
Patch Instructions:
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- SUSE Linux Enterprise Workstation Extension 15:
zypper in -t patch SUSE-SLE-Product-WE-15-2020-132=1
- SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1:
zypper in -t patch SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2020-132=1
- SUSE Linux Enterprise Module for Open Buildservice Development Tools 15:
zypper in -t patch SUSE-SLE-Module-Development-Tools-OBS-15-2020-132=1
- SUSE Linux Enterprise Module for Basesystem 15:
zypper in -t patch SUSE-SLE-Module-Basesystem-15-2020-132=1
Package List:
- SUSE Linux Enterprise Workstation Extension 15 (x86_64):
Mesa-dri-nouveau-18.0.2-27.6.1 Mesa-dri-nouveau-debuginfo-18.0.2-27.6.1 Mesa-drivers-debugsource-18.0.2-27.6.1 libXvMC_nouveau-18.0.2-27.6.1 libXvMC_nouveau-debuginfo-18.0.2-27.6.1 libvdpau_nouveau-18.0.2-27.6.1 libvdpau_nouveau-debuginfo-18.0.2-27.6.1
- SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 (aarch64 ppc64le s390x x86_64):
libwayland-egl-devel-18.0.2-27.6.1
- SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 (aarch64 ppc64le s390x):
Mesa-debugsource-18.0.2-27.6.1
- SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 (x86_64):
libwayland-egl-devel-32bit-18.0.2-27.6.1
- SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 (aarch64 ppc64le s390x x86_64):
Mesa-drivers-debugsource-18.0.2-27.6.1 Mesa-libOpenCL-18.0.2-27.6.1 Mesa-libOpenCL-debuginfo-18.0.2-27.6.1
- SUSE Linux Enterprise Module for Basesystem 15 (aarch64 ppc64le s390x x86_64):
Mesa-18.0.2-27.6.1 Mesa-debugsource-18.0.2-27.6.1 Mesa-devel-18.0.2-27.6.1 Mesa-dri-18.0.2-27.6.1 Mesa-dri-debuginfo-18.0.2-27.6.1 Mesa-dri-devel-18.0.2-27.6.1 Mesa-drivers-debugsource-18.0.2-27.6.1 Mesa-gallium-18.0.2-27.6.1 Mesa-gallium-debuginfo-18.0.2-27.6.1 Mesa-libEGL-devel-18.0.2-27.6.1 Mesa-libEGL1-18.0.2-27.6.1 Mesa-libEGL1-debuginfo-18.0.2-27.6.1 Mesa-libGL-devel-18.0.2-27.6.1 Mesa-libGL1-18.0.2-27.6.1 Mesa-libGL1-debuginfo-18.0.2-27.6.1 Mesa-libGLESv1_CM-devel-18.0.2-27.6.1 Mesa-libGLESv1_CM1-18.0.2-27.6.1 Mesa-libGLESv2-2-18.0.2-27.6.1 Mesa-libGLESv2-devel-18.0.2-27.6.1 Mesa-libGLESv3-devel-18.0.2-27.6.1 Mesa-libglapi-devel-18.0.2-27.6.1 Mesa-libglapi0-18.0.2-27.6.1 Mesa-libglapi0-debuginfo-18.0.2-27.6.1 libOSMesa-devel-18.0.2-27.6.1 libOSMesa8-18.0.2-27.6.1 libOSMesa8-debuginfo-18.0.2-27.6.1 libgbm-devel-18.0.2-27.6.1 libgbm1-18.0.2-27.6.1 libgbm1-debuginfo-18.0.2-27.6.1 libwayland-egl-devel-18.0.2-27.6.1 libwayland-egl1-18.0.2-27.6.1 libwayland-egl1-debuginfo-18.0.2-27.6.1
- SUSE Linux Enterprise Module for Basesystem 15 (aarch64 ppc64le x86_64):
Mesa-libva-18.0.2-27.6.1 Mesa-libva-debuginfo-18.0.2-27.6.1 libvdpau_r300-18.0.2-27.6.1 libvdpau_r300-debuginfo-18.0.2-27.6.1 libvdpau_r600-18.0.2-27.6.1 libvdpau_r600-debuginfo-18.0.2-27.6.1 libxatracker-devel-1.0.0-27.6.1 libxatracker2-1.0.0-27.6.1 libxatracker2-debuginfo-1.0.0-27.6.1
- SUSE Linux Enterprise Module for Basesystem 15 (x86_64):
Mesa-32bit-18.0.2-27.6.1 Mesa-dri-32bit-18.0.2-27.6.1 Mesa-dri-32bit-debuginfo-18.0.2-27.6.1 Mesa-gallium-32bit-18.0.2-27.6.1 Mesa-gallium-32bit-debuginfo-18.0.2-27.6.1 Mesa-libEGL1-32bit-18.0.2-27.6.1 Mesa-libEGL1-32bit-debuginfo-18.0.2-27.6.1 Mesa-libGL1-32bit-18.0.2-27.6.1 Mesa-libGL1-32bit-debuginfo-18.0.2-27.6.1 Mesa-libVulkan-devel-18.0.2-27.6.1 Mesa-libd3d-18.0.2-27.6.1 Mesa-libd3d-debuginfo-18.0.2-27.6.1 Mesa-libd3d-devel-18.0.2-27.6.1 Mesa-libglapi0-32bit-18.0.2-27.6.1 Mesa-libglapi0-32bit-debuginfo-18.0.2-27.6.1 libgbm1-32bit-18.0.2-27.6.1 libgbm1-32bit-debuginfo-18.0.2-27.6.1 libvdpau_radeonsi-18.0.2-27.6.1 libvdpau_radeonsi-debuginfo-18.0.2-27.6.1 libvulkan_intel-18.0.2-27.6.1 libvulkan_intel-debuginfo-18.0.2-27.6.1 libvulkan_radeon-18.0.2-27.6.1 libvulkan_radeon-debuginfo-18.0.2-27.6.1
References:
https://www.suse.com/security/cve/CVE-2019-5068.html https://bugzilla.suse.com/1156015
_______________________________________________ sle-security-updates mailing list sle-security-updates@lists.suse.com http://lists.suse.com/mailman/listinfo/sle-security-updates
|
|
|
|