Oval Definition:oval:org.opensuse.security:def:68411
Revision Date:2020-12-01Version:1
Title:Security update for zeromq (Moderate)
Description:

This update for zeromq fixes the following issues:

- CVE-2020-15166: Fixed the possibility of unauthenticated clients causing a denial-of-service (bsc#1176116). - Fixed a heap overflow when receiving malformed ZMTP v1 packets (bsc#1176256) - Fixed a memory leak in client induced by malicious server(s) without CURVE/ZAP (bsc#1176257) - Fixed memory leak when processing PUB messages with metadata (bsc#1176259) - Fixed a stack overflow in PUB/XPUB subscription store (bsc#1176258)
Family:unixClass:patch
Status:Reference(s):1040109
1040113
1040115
1176116
1176256
1176257
1176258
1176259
CVE-2017-9111
CVE-2017-9113
CVE-2017-9115
CVE-2020-15166
SUSE-SU-2019:1963-1
SUSE-SU-2020:3264-1
Platform(s):SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • libunwind-1.2.1-4.2 is installed
  • OR libunwind-32bit-1.2.1-4.2 is installed
  • OR libunwind-devel-1.2.1-4.2 is installed
  • OR libzmq5-4.2.3-3.15 is installed
  • OR libzmq5-32bit-4.2.3-3.15 is installed
  • OR zeromq-4.2.3-3.15 is installed
  • OR zeromq-devel-4.2.3-3.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • libIlmImf-2_2-23-2.2.1-3.6 is installed
  • OR libIlmImfUtil-2_2-23-2.2.1-3.6 is installed
  • OR openexr-2.2.1-3.6 is installed
  • OR openexr-devel-2.2.1-3.6 is installed
    • BACK