Oval Definition:oval:org.opensuse.security:def:67412
Revision Date:2020-12-01Version:1
Title:Security update for zeromq (Moderate)
Description:

This update for zeromq fixes the following issues:

- CVE-2020-15166: Fixed the possibility of unauthenticated clients causing a denial-of-service (bsc#1176116). - Fixed a heap overflow when receiving malformed ZMTP v1 packets (bsc#1176256) - Fixed a memory leak in client induced by malicious server(s) without CURVE/ZAP (bsc#1176257) - Fixed memory leak when processing PUB messages with metadata (bsc#1176259) - Fixed a stack overflow in PUB/XPUB subscription store (bsc#1176258)
Family:unixClass:patch
Status:Reference(s):1173477
1173691
1173694
1173700
1173701
1173743
1173874
1173875
1173876
1173880
1176116
1176256
1176257
1176258
1176259
CVE-2017-18922
CVE-2018-21247
CVE-2019-20839
CVE-2019-20840
CVE-2020-14397
CVE-2020-14398
CVE-2020-14399
CVE-2020-14400
CVE-2020-14401
CVE-2020-14402
CVE-2020-15166
SUSE-SU-2020:1922-1
SUSE-SU-2020:3264-1
Platform(s):SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2
SUSE Linux Enterprise Workstation Extension 15 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed
  • AND Package Information
  • libunwind-1.2.1-4.2 is installed
  • OR libunwind-32bit-1.2.1-4.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
  • AND Package Information
  • LibVNCServer-0.9.10-4.22 is installed
  • OR libvncclient0-0.9.10-4.22 is installed
  • OR libvncserver0-0.9.10-4.22 is installed
    • BACK