Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
suseSuseOPENSUSE-SU-2019:2077-1
HistorySep 06, 2019 - 12:00 a.m.

Security update for libmirage (moderate)

2019-09-0600:00:00
lists.opensuse.org
80

0.001 Low

EPSS

Percentile

44.1%

JSON

An update that fixes one vulnerability is now available.

Description:

This update for libmirage fixes the following issues:

CVE-2019-15540: The CSO filter in libMirage in CDemu did not validate the
part size, triggering a heap-based buffer overflow that could lead to root
access by a local user. [boo#1148087]

  • Update to new upstream release 3.2.2
    • ISO parser: fixed ISO9660/UDF pattern search for sector sizes 2332 and
      2336.
    • ISO parser: added support for Nintendo GameCube and Wii ISO images.
    • Extended medium type guess to distinguish between DVD and BluRay
      images based on length.
    • Removed fabrication of disc structures from the library (moved to
      CDEmu daemon).
    • MDS parser: cleanup of disc structure parsing, fixed the incorrectly
      set structure sizes.

This update was imported from the openSUSE:Leap:15.0:Update update project.

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.

Alternatively you can run the command listed for your product:

  • openSUSE Backports SLE-15-SP1:

    zypper in -t patch openSUSE-2019-2077=1

  • openSUSE Backports SLE-15:

    zypper in -t patch openSUSE-2019-2077=1

OSVersionArchitecturePackageVersionFilename
openSUSE Backports SLE15-SP1aarch64- opensuse backports sle< 15-SP1 (aarch64 ppc64le s390x x86_64):- openSUSE Backports SLE-15-SP1 (aarch64 ppc64le s390x x86_64):.aarch64.rpm
openSUSE Backports SLE15-SP1ppc64le- opensuse backports sle< 15-SP1 (aarch64 ppc64le s390x x86_64):- openSUSE Backports SLE-15-SP1 (aarch64 ppc64le s390x x86_64):.ppc64le.rpm
openSUSE Backports SLE15-SP1s390x- opensuse backports sle< 15-SP1 (aarch64 ppc64le s390x x86_64):- openSUSE Backports SLE-15-SP1 (aarch64 ppc64le s390x x86_64):.s390x.rpm
openSUSE Backports SLE15-SP1x86_64- opensuse backports sle< 15-SP1 (aarch64 ppc64le s390x x86_64):- openSUSE Backports SLE-15-SP1 (aarch64 ppc64le s390x x86_64):.x86_64.rpm
openSUSE Backports SLE15-SP1noarch- opensuse backports sle< 15-SP1 (noarch):- openSUSE Backports SLE-15-SP1 (noarch):.noarch.rpm
openSUSE Backports SLE15aarch64<  openSUSE Backports SLE-15 (aarch64 ppc64le s390x x86_64):- openSUSE Backports SLE-15 (aarch64 ppc64le s390x x86_64):.aarch64.rpm
openSUSE Backports SLE15ppc64le<  openSUSE Backports SLE-15 (aarch64 ppc64le s390x x86_64):- openSUSE Backports SLE-15 (aarch64 ppc64le s390x x86_64):.ppc64le.rpm
openSUSE Backports SLE15s390x<  openSUSE Backports SLE-15 (aarch64 ppc64le s390x x86_64):- openSUSE Backports SLE-15 (aarch64 ppc64le s390x x86_64):.s390x.rpm
openSUSE Backports SLE15x86_64<  openSUSE Backports SLE-15 (aarch64 ppc64le s390x x86_64):- openSUSE Backports SLE-15 (aarch64 ppc64le s390x x86_64):.x86_64.rpm
openSUSE Backports SLE15noarch<  openSUSE Backports SLE-15 (noarch):- openSUSE Backports SLE-15 (noarch):.noarch.rpm

Related

cve 1
suse 2
openvas 5
prion 1
nessus 4
nvd 1
cvelist 1
mageia 1
cve
cve
CVE-2019-15540
2019-08-25 17:15:10
suse
suse
Security update for libmirage (moderate)
2019-08-31 00:00:00
Security update for libmirage (moderate)
2019-08-31 00:00:00
openvas
openvas
openSUSE: Security Advisory for libmirage (openSUSE-SU-2019:2033-1)
2020-01-09 00:00:00
openSUSE: Security Advisory for libmirage (openSUSE-SU-2019:2040-1)
2019-09-01 00:00:00
Mageia: Security Advisory (MGASA-2019-0404)
2022-01-28 00:00:00
prion
prion
Heap overflow
2019-08-25 17:15:00
nessus
nessus
openSUSE Security Update : libmirage (openSUSE-2019-2033)
2019-09-03 00:00:00
openSUSE Security Update : libmirage (openSUSE-2019-2040)
2019-09-03 00:00:00
EulerOS Virtualization for ARM 64 3.0.5.0 : libmirage (EulerOS-SA-2020-1090)
2020-01-13 00:00:00
nvd
nvd
CVE-2019-15540
2019-08-25 17:15:10
cvelist
cvelist
CVE-2019-15540
2019-08-25 16:43:54
mageia
mageia
Updated libmirage packages fix security vulnerabilities
2019-12-24 15:24:34

0.001 Low

EPSS

Percentile

44.1%

JSON
Related for OPENSUSE-SU-2019:2077-1
cve1suse2openvas5prion1nessus4nvd1cvelist1mageia1