Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
Производитель ПО
Наименование ПО
libzypp
(any)
libzypp-debuginfo
(any)
libzypp-debugsource
(any)
libzypp-devel
(any)
libzypp-devel-doc
(any)
zypper
(any)
zypper-debuginfo
(any)
zypper-debugsource
(any)
zypper-log
(any)
Описание
Уведомление безопасности об уязвимостях SUSE Linux Enterprise Server 12-SP2, SUSE Linux Enterprise Software Development Kit 12-SP2, OpenStack Cloud Magnum Orchestration 7, SUSE Linux Enterprise Desktop 12-SP2, SUSE Linux Enterprise Server for Raspberry Pi 12-SP2
Как исправить
Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:
SUSE Linux Enterprise Server 12-SP2:
aarch64, ppc64le, s390x, x86_64:
zypper - 1.13.30-18.13.3
libzypp-debuginfo - 16.15.2-27.21.1
zypper-debuginfo - 1.13.30-18.13.3
zypper-debugsource - 1.13.30-18.13.3
libzypp-debugsource - 16.15.2-27.21.1
libzypp - 16.15.2-27.21.1
SUSE Linux Enterprise Server 12-SP2:
noarch:
zypper-log - 1.13.30-18.13.3
SUSE Linux Enterprise Software Development Kit 12-SP2:
aarch64, ppc64le, s390x, x86_64:
libzypp-devel - 16.15.2-27.21.1
libzypp-debuginfo - 16.15.2-27.21.1
libzypp-devel-doc - 16.15.2-27.21.1
libzypp-debugsource - 16.15.2-27.21.1
OpenStack Cloud Magnum Orchestration 7:
x86_64:
zypper - 1.13.30-18.13.3
libzypp-debuginfo - 16.15.2-27.21.1
zypper-debuginfo - 1.13.30-18.13.3
zypper-debugsource - 1.13.30-18.13.3
libzypp-debugsource - 16.15.2-27.21.1
libzypp - 16.15.2-27.21.1
SUSE Linux Enterprise Desktop 12-SP2:
x86_64:
zypper - 1.13.30-18.13.3
libzypp-debuginfo - 16.15.2-27.21.1
zypper-debuginfo - 1.13.30-18.13.3
zypper-debugsource - 1.13.30-18.13.3
libzypp-debugsource - 16.15.2-27.21.1
libzypp - 16.15.2-27.21.1
SUSE Linux Enterprise Desktop 12-SP2:
noarch:
zypper-log - 1.13.30-18.13.3
SUSE Linux Enterprise Server for Raspberry Pi 12-SP2:
aarch64:
zypper - 1.13.30-18.13.3
libzypp-debuginfo - 16.15.2-27.21.1
zypper-debuginfo - 1.13.30-18.13.3
zypper-debugsource - 1.13.30-18.13.3
libzypp-debugsource - 16.15.2-27.21.1
libzypp - 16.15.2-27.21.1
SUSE Linux Enterprise Server for Raspberry Pi 12-SP2:
noarch:
zypper-log - 1.13.30-18.13.3
SUSE Linux Enterprise Server 12-SP2:
aarch64, ppc64le, s390x, x86_64:
zypper - 1.13.30-18.13.3
libzypp-debuginfo - 16.15.2-27.21.1
zypper-debuginfo - 1.13.30-18.13.3
zypper-debugsource - 1.13.30-18.13.3
libzypp-debugsource - 16.15.2-27.21.1
libzypp - 16.15.2-27.21.1
SUSE Linux Enterprise Server 12-SP2:
noarch:
zypper-log - 1.13.30-18.13.3
SUSE Linux Enterprise Software Development Kit 12-SP2:
aarch64, ppc64le, s390x, x86_64:
libzypp-devel - 16.15.2-27.21.1
libzypp-debuginfo - 16.15.2-27.21.1
libzypp-devel-doc - 16.15.2-27.21.1
libzypp-debugsource - 16.15.2-27.21.1
OpenStack Cloud Magnum Orchestration 7:
x86_64:
zypper - 1.13.30-18.13.3
libzypp-debuginfo - 16.15.2-27.21.1
zypper-debuginfo - 1.13.30-18.13.3
zypper-debugsource - 1.13.30-18.13.3
libzypp-debugsource - 16.15.2-27.21.1
libzypp - 16.15.2-27.21.1
SUSE Linux Enterprise Desktop 12-SP2:
x86_64:
zypper - 1.13.30-18.13.3
libzypp-debuginfo - 16.15.2-27.21.1
zypper-debuginfo - 1.13.30-18.13.3
zypper-debugsource - 1.13.30-18.13.3
libzypp-debugsource - 16.15.2-27.21.1
libzypp - 16.15.2-27.21.1
SUSE Linux Enterprise Desktop 12-SP2:
noarch:
zypper-log - 1.13.30-18.13.3
SUSE Linux Enterprise Server for Raspberry Pi 12-SP2:
aarch64:
zypper - 1.13.30-18.13.3
libzypp-debuginfo - 16.15.2-27.21.1
zypper-debuginfo - 1.13.30-18.13.3
zypper-debugsource - 1.13.30-18.13.3
libzypp-debugsource - 16.15.2-27.21.1
libzypp - 16.15.2-27.21.1
SUSE Linux Enterprise Server for Raspberry Pi 12-SP2:
noarch:
zypper-log - 1.13.30-18.13.3
Ссылки
http://lists.opensuse.org/opensuse-security-announce/2017-08/msg00002.html
https://bugzilla.suse.com/1009745
https://bugzilla.suse.com/1031756
https://bugzilla.suse.com/1033236
https://bugzilla.suse.com/1038132
https://bugzilla.suse.com/1038984
https://bugzilla.suse.com/1043218
https://bugzilla.suse.com/1045735
https://bugzilla.suse.com/1047785
https://bugzilla.suse.com/1048315
Источник: CVE
Наименование: CVE-2017-9269
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9269
Источник: CVE
Наименование: CVE-2017-7435
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7435
Источник: CVE
Наименование: CVE-2017-7436
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7436
https://bugzilla.suse.com/1009745
https://bugzilla.suse.com/1031756
https://bugzilla.suse.com/1033236
https://bugzilla.suse.com/1038132
https://bugzilla.suse.com/1038984
https://bugzilla.suse.com/1043218
https://bugzilla.suse.com/1045735
https://bugzilla.suse.com/1047785
https://bugzilla.suse.com/1048315
Источник: CVE
Наименование: CVE-2017-9269
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9269
Источник: CVE
Наименование: CVE-2017-7435
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7435
Источник: CVE
Наименование: CVE-2017-7436
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7436