Security update for gettext-runtime
Announcement ID: | SUSE-SU-2020:2296-1 |
---|---|
Rating: | moderate |
References: | |
Cross-References: | |
CVSS scores: |
|
Affected Products: |
|
An update that solves one vulnerability and has two security fixes can now be installed.
Description:
This update for gettext-runtime fixes the following issues:
- Fix boo941629-unnessary-rpath-on-standard-path.patch (bsc#941629)
- Added msgfmt-double-free.patch to fix a double free error (CVE-2018-18751 bsc#1113719)
- Add patch msgfmt-reset-msg-length-after-remove.patch which does reset the length of message string after a line has been removed (bsc#1106843)
Patch Instructions:
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
-
Basesystem Module 15-SP1
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP1-2020-2296=1
-
Basesystem Module 15-SP2
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP2-2020-2296=1
Package List:
-
Basesystem Module 15-SP1 (aarch64 ppc64le s390x x86_64)
- gettext-runtime-debuginfo-0.19.8.1-4.8.1
- gettext-runtime-debugsource-0.19.8.1-4.8.1
- gettext-runtime-0.19.8.1-4.8.1
- gettext-tools-debuginfo-0.19.8.1-4.8.1
- gettext-tools-0.19.8.1-4.8.1
-
Basesystem Module 15-SP1 (x86_64)
- gettext-runtime-32bit-0.19.8.1-4.8.1
- gettext-runtime-32bit-debuginfo-0.19.8.1-4.8.1
-
Basesystem Module 15-SP2 (aarch64 ppc64le s390x x86_64)
- gettext-runtime-debuginfo-0.19.8.1-4.8.1
- gettext-runtime-debugsource-0.19.8.1-4.8.1
- gettext-runtime-0.19.8.1-4.8.1
- gettext-tools-debuginfo-0.19.8.1-4.8.1
- gettext-tools-0.19.8.1-4.8.1
-
Basesystem Module 15-SP2 (x86_64)
- gettext-runtime-32bit-0.19.8.1-4.8.1
- gettext-runtime-32bit-debuginfo-0.19.8.1-4.8.1