Security update for hylafax+ (critical)

2018-09-2209:29:24

lists.opensuse.org

0.068 Low

EPSS

Percentile

93.9%

JSON

This update for hylafax+ fixes the following issues:

Security issues fixed in 5.6.1:

CVE-2018-17141: multiple vulnerabilities affecting fax page reception in
JPEG format Specially crafted input may have allowed remote execution of
arbitrary code (boo#1109084)

Additionally, this update also contains all upstream corrections and
bugfixes in the 5.6.1 version, including:

fix RFC2047 encoding by notify
add jobcontrol PageSize feature
don’t wait forever after +FRH:3
fix faxmail transition between a message and external types
avoid pagehandling from introducing some unnecessary EOM signals
improve proxy connection error handling and logging
add initial ModemGroup limits feature
pass the user’s uid onto the session log file for sent faxes
improve job waits to minimize triggers
add ProxyTaglineFormat and ProxyTSI features

OSVersionArchitecturePackageVersionFilename
openSUSE Backports SLE15s390xhylafax+< 5.6.1-bp150.4.3.1hylafax+-5.6.1-bp150.4.3.1.s390x.rpm
openSUSE Backports SLE15aarch64hylafax+< 5.6.1-bp150.4.3.1hylafax+-5.6.1-bp150.4.3.1.aarch64.rpm
openSUSE Backports SLE15aarch64libfaxutil5_6_1< 5.6.1-bp150.4.3.1libfaxutil5_6_1-5.6.1-bp150.4.3.1.aarch64.rpm
openSUSE Backports SLE15aarch64hylafax+-client< 5.6.1-bp150.4.3.1hylafax+-client-5.6.1-bp150.4.3.1.aarch64.rpm
openSUSE Backports SLE15x86_64hylafax+-debugsource< 5.6.1-bp150.4.3.1hylafax+-debugsource-5.6.1-bp150.4.3.1.x86_64.rpm
openSUSE Backports SLE15s390xlibfaxutil5_6_1< 5.6.1-bp150.4.3.1libfaxutil5_6_1-5.6.1-bp150.4.3.1.s390x.rpm
openSUSE Backports SLE15ppc64lelibfaxutil5_6_1< 5.6.1-bp150.4.3.1libfaxutil5_6_1-5.6.1-bp150.4.3.1.ppc64le.rpm
openSUSE Backports SLE15ppc64lehylafax+-client< 5.6.1-bp150.4.3.1hylafax+-client-5.6.1-bp150.4.3.1.ppc64le.rpm
openSUSE Backports SLE15s390xhylafax+-debuginfo< 5.6.1-bp150.4.3.1hylafax+-debuginfo-5.6.1-bp150.4.3.1.s390x.rpm
openSUSE Backports SLE15ppc64lehylafax+-client-debuginfo< 5.6.1-bp150.4.3.1hylafax+-client-debuginfo-5.6.1-bp150.4.3.1.ppc64le.rpm

OS	Version	Architecture	Package	Version	Filename
openSUSE Backports SLE	15	s390x	hylafax+	< 5.6.1-bp150.4.3.1	hylafax+-5.6.1-bp150.4.3.1.s390x.rpm
openSUSE Backports SLE	15	aarch64	hylafax+	< 5.6.1-bp150.4.3.1	hylafax+-5.6.1-bp150.4.3.1.aarch64.rpm
openSUSE Backports SLE	15	aarch64	libfaxutil5_6_1	< 5.6.1-bp150.4.3.1	libfaxutil5_6_1-5.6.1-bp150.4.3.1.aarch64.rpm
openSUSE Backports SLE	15	aarch64	hylafax+-client	< 5.6.1-bp150.4.3.1	hylafax+-client-5.6.1-bp150.4.3.1.aarch64.rpm
openSUSE Backports SLE	15	x86_64	hylafax+-debugsource	< 5.6.1-bp150.4.3.1	hylafax+-debugsource-5.6.1-bp150.4.3.1.x86_64.rpm
openSUSE Backports SLE	15	s390x	libfaxutil5_6_1	< 5.6.1-bp150.4.3.1	libfaxutil5_6_1-5.6.1-bp150.4.3.1.s390x.rpm
openSUSE Backports SLE	15	ppc64le	libfaxutil5_6_1	< 5.6.1-bp150.4.3.1	libfaxutil5_6_1-5.6.1-bp150.4.3.1.ppc64le.rpm
openSUSE Backports SLE	15	ppc64le	hylafax+-client	< 5.6.1-bp150.4.3.1	hylafax+-client-5.6.1-bp150.4.3.1.ppc64le.rpm
openSUSE Backports SLE	15	s390x	hylafax+-debuginfo	< 5.6.1-bp150.4.3.1	hylafax+-debuginfo-5.6.1-bp150.4.3.1.s390x.rpm
openSUSE Backports SLE	15	ppc64le	hylafax+-client-debuginfo	< 5.6.1-bp150.4.3.1	hylafax+-client-debuginfo-5.6.1-bp150.4.3.1.ppc64le.rpm