ELSA-2018-1700

ELSA-2018-1700 - procps-ng security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2018-05-23

Description


[3.3.10-17.el7_5.2]
- check for truncation after calling snprintf()
- Related: CVE-2018-1124

[3.3.10-17.el7_5.1]
- fix integer overflows leading to heap overflow in file2strvec()
- Resolves: CVE-2018-1124


Related CVEs


CVE-2018-1124
CVE-2018-1126

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (x86_64) procps-ng-3.3.10-17.el7_5.2.src.rpmc051cdc58c11884b6852a56e48307914-
procps-ng-3.3.10-17.el7_5.2.i686.rpm030a82c467ff07b3214e1237ef67f3a0-
procps-ng-3.3.10-17.el7_5.2.x86_64.rpm05ca1500cbacc1dc885db63b6d75ee5f-
procps-ng-devel-3.3.10-17.el7_5.2.i686.rpmbd68ce22632c3ac93e1a4d6f55bb7fc1-
procps-ng-devel-3.3.10-17.el7_5.2.x86_64.rpm0914327e262b6ad9a5bc637bf95dbc64-
procps-ng-i18n-3.3.10-17.el7_5.2.x86_64.rpm4471ddb9b90f9fef137666cdc040326a-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete