Security update for libidn SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2016:2079-1 Final 1 1 2016-08-16T07:29:11Z current 2016-08-16T07:29:11Z 2016-08-16T07:29:11Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for libidn This update for libidn fixes the following issues: - CVE-2016-6262 and CVE-2015-8948: Out-of-bounds-read when reading one zero byte as input (bsc#990189) - CVE-2016-6261: Out-of-bounds stack read in idna_to_ascii_4i (bsc#990190) - CVE-2016-6263: stringprep_utf8_nfkc_normalize reject invalid UTF-8 (bsc#990191) - CVE-2015-2059: out-of-bounds read with stringprep on invalid UTF-8 (bsc#923241) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-SLE-DESKTOP-12-SP1-2016-1228,SUSE-SLE-SDK-12-SP1-2016-1228,SUSE-SLE-SERVER-12-SP1-2016-1228 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2016/suse-su-20162079-1/ Link for SUSE-SU-2016:2079-1 https://lists.suse.com/pipermail/sle-security-updates/2016-August/002210.html E-Mail link for SUSE-SU-2016:2079-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/923241 SUSE Bug 923241 https://bugzilla.suse.com/990189 SUSE Bug 990189 https://bugzilla.suse.com/990190 SUSE Bug 990190 https://bugzilla.suse.com/990191 SUSE Bug 990191 https://www.suse.com/security/cve/CVE-2015-2059/ SUSE CVE CVE-2015-2059 page https://www.suse.com/security/cve/CVE-2015-8948/ SUSE CVE CVE-2015-8948 page https://www.suse.com/security/cve/CVE-2016-6261/ SUSE CVE CVE-2016-6261 page https://www.suse.com/security/cve/CVE-2016-6262/ SUSE CVE CVE-2016-6262 page https://www.suse.com/security/cve/CVE-2016-6263/ SUSE CVE CVE-2016-6263 page SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP1 libidn11-1.28-4.1 libidn11-32bit-1.28-4.1 libidn-devel-1.28-4.1 libidn-tools-1.28-4.1 libidn11-1.28-4.1 as a component of SUSE Linux Enterprise Desktop 12 SP1 libidn11-32bit-1.28-4.1 as a component of SUSE Linux Enterprise Desktop 12 SP1 libidn-tools-1.28-4.1 as a component of SUSE Linux Enterprise Server 12 SP1 libidn11-1.28-4.1 as a component of SUSE Linux Enterprise Server 12 SP1 libidn11-32bit-1.28-4.1 as a component of SUSE Linux Enterprise Server 12 SP1 libidn-tools-1.28-4.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libidn11-1.28-4.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libidn11-32bit-1.28-4.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libidn-devel-1.28-4.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 The stringprep_utf8_to_ucs4 function in libin before 1.31, as used in jabberd2, allows context-dependent attackers to read system memory and possibly have other unspecified impact via invalid UTF-8 characters in a string, which triggers an out-of-bounds read. CVE-2015-2059 SUSE Linux Enterprise Desktop 12 SP1:libidn11-1.28-4.1 SUSE Linux Enterprise Desktop 12 SP1:libidn11-32bit-1.28-4.1 SUSE Linux Enterprise Server 12 SP1:libidn-tools-1.28-4.1 SUSE Linux Enterprise Server 12 SP1:libidn11-1.28-4.1 SUSE Linux Enterprise Server 12 SP1:libidn11-32bit-1.28-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libidn-tools-1.28-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libidn11-1.28-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libidn11-32bit-1.28-4.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libidn-devel-1.28-4.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162079-1/ https://www.suse.com/security/cve/CVE-2015-2059.html CVE-2015-2059 https://bugzilla.suse.com/1173590 SUSE Bug 1173590 https://bugzilla.suse.com/919214 SUSE Bug 919214 https://bugzilla.suse.com/923241 SUSE Bug 923241 https://bugzilla.suse.com/937096 SUSE Bug 937096 https://bugzilla.suse.com/937097 SUSE Bug 937097 idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read. CVE-2015-8948 SUSE Linux Enterprise Desktop 12 SP1:libidn11-1.28-4.1 SUSE Linux Enterprise Desktop 12 SP1:libidn11-32bit-1.28-4.1 SUSE Linux Enterprise Server 12 SP1:libidn-tools-1.28-4.1 SUSE Linux Enterprise Server 12 SP1:libidn11-1.28-4.1 SUSE Linux Enterprise Server 12 SP1:libidn11-32bit-1.28-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libidn-tools-1.28-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libidn11-1.28-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libidn11-32bit-1.28-4.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libidn-devel-1.28-4.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162079-1/ https://www.suse.com/security/cve/CVE-2015-8948.html CVE-2015-8948 https://bugzilla.suse.com/1014473 SUSE Bug 1014473 https://bugzilla.suse.com/1173590 SUSE Bug 1173590 https://bugzilla.suse.com/1190777 SUSE Bug 1190777 https://bugzilla.suse.com/990189 SUSE Bug 990189 The idna_to_ascii_4i function in lib/idna.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via 64 bytes of input. CVE-2016-6261 SUSE Linux Enterprise Desktop 12 SP1:libidn11-1.28-4.1 SUSE Linux Enterprise Desktop 12 SP1:libidn11-32bit-1.28-4.1 SUSE Linux Enterprise Server 12 SP1:libidn-tools-1.28-4.1 SUSE Linux Enterprise Server 12 SP1:libidn11-1.28-4.1 SUSE Linux Enterprise Server 12 SP1:libidn11-32bit-1.28-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libidn-tools-1.28-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libidn11-1.28-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libidn11-32bit-1.28-4.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libidn-devel-1.28-4.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162079-1/ https://www.suse.com/security/cve/CVE-2016-6261.html CVE-2016-6261 https://bugzilla.suse.com/1118435 SUSE Bug 1118435 https://bugzilla.suse.com/1173590 SUSE Bug 1173590 https://bugzilla.suse.com/990190 SUSE Bug 990190 idn in libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read, a different vulnerability than CVE-2015-8948. CVE-2016-6262 SUSE Linux Enterprise Desktop 12 SP1:libidn11-1.28-4.1 SUSE Linux Enterprise Desktop 12 SP1:libidn11-32bit-1.28-4.1 SUSE Linux Enterprise Server 12 SP1:libidn-tools-1.28-4.1 SUSE Linux Enterprise Server 12 SP1:libidn11-1.28-4.1 SUSE Linux Enterprise Server 12 SP1:libidn11-32bit-1.28-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libidn-tools-1.28-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libidn11-1.28-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libidn11-32bit-1.28-4.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libidn-devel-1.28-4.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162079-1/ https://www.suse.com/security/cve/CVE-2016-6262.html CVE-2016-6262 https://bugzilla.suse.com/1014473 SUSE Bug 1014473 https://bugzilla.suse.com/1173590 SUSE Bug 1173590 https://bugzilla.suse.com/1190777 SUSE Bug 1190777 https://bugzilla.suse.com/990189 SUSE Bug 990189 The stringprep_utf8_nfkc_normalize function in lib/nfkc.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted UTF-8 data. CVE-2016-6263 SUSE Linux Enterprise Desktop 12 SP1:libidn11-1.28-4.1 SUSE Linux Enterprise Desktop 12 SP1:libidn11-32bit-1.28-4.1 SUSE Linux Enterprise Server 12 SP1:libidn-tools-1.28-4.1 SUSE Linux Enterprise Server 12 SP1:libidn11-1.28-4.1 SUSE Linux Enterprise Server 12 SP1:libidn11-32bit-1.28-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libidn-tools-1.28-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libidn11-1.28-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libidn11-32bit-1.28-4.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libidn-devel-1.28-4.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162079-1/ https://www.suse.com/security/cve/CVE-2016-6263.html CVE-2016-6263 https://bugzilla.suse.com/1118435 SUSE Bug 1118435 https://bugzilla.suse.com/990191 SUSE Bug 990191