Oval Definition:	oval:org.opensuse.security:def:78138
Revision Date: 2015-04-23 Version: 1 Title: Security update for DirectFB (Important) Description: DirectFB was updated to fix two security issues. The following vulnerabilities were fixed: CVE-2014-2977: Multiple integer signedness errors could allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the Voodoo interface, which triggers a stack-based buffer overflow. * CVE-2014-2978: Remote attackers could cause a denial of service (crash) and possibly execute arbitrary code via the Voodoo interface, which triggers an out-of-bounds write. Family: unix Class: patch Status: Reference(s): 878345 878349 CVE-2014-2977 CVE-2014-2978 SUSE-SU-2015:0839-1 Platform(s): SUSE Linux Enterprise Desktop 12 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information DirectFB-1.7.1-4.1 is installed OR lib++dfb-1_7-1-1.7.1-4.1 is installed OR libdirectfb-1_7-1-1.7.1-4.1 is installed OR libdirectfb-1_7-1-32bit-1.7.1-4.1 is installed
BACK