Lucene search
SuseOPENSUSE-SU-2018:3108-1HistoryOct 12, 2018 - 12:10 p.m.
Security update for mgetty (moderate)
2018-10-1212:10:55
lists.opensuse.org
37
0.001 Low
EPSS
Percentile
40.3%
This update for mgetty fixes the following issues:
-
CVE-2018-16741: Fixed a command injection in fax/faxq-helper.c
(boo#1108752) -
CVE-2018-16742: Stack-based buffer overflow in contrib/scrts.c triggered
via command line parameter (boo#1108762) -
CVE-2018-16743: Stack-based buffer overflow with long username in
contrib/next-login/login.c (boo#1108761) -
CVE-2018-16744: Command injection in faxrec.c (boo#1108757)
-
CVE-2018-16745: Stack-based buffer overflow in fax_notify_mail() in
faxrec.c (boo#1108756) -
sets maximum length of a string to prevent buffer overflow and thus
possible command injection -
The obsolete contrib/scrts.c tool was deleted, which contained a buffer
overflow.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 42.3 | i586 | g3utils-debuginfo | < 1.1.36-65.3.1 | g3utils-debuginfo-1.1.36-65.3.1.i586.rpm |
| openSUSE Leap | 42.3 | i586 | mgetty | < 1.1.36-65.3.1 | mgetty-1.1.36-65.3.1.i586.rpm |
| openSUSE Leap | 42.3 | i586 | mgetty-debuginfo | < 1.1.36-65.3.1 | mgetty-debuginfo-1.1.36-65.3.1.i586.rpm |
| openSUSE Leap | 42.3 | i586 | sendfax | < 1.1.36-65.3.1 | sendfax-1.1.36-65.3.1.i586.rpm |
| openSUSE Leap | 42.3 | x86_64 | mgetty | < 1.1.36-65.3.1 | mgetty-1.1.36-65.3.1.x86_64.rpm |
| openSUSE Leap | 42.3 | i586 | sendfax-debuginfo | < 1.1.36-65.3.1 | sendfax-debuginfo-1.1.36-65.3.1.i586.rpm |
| openSUSE Leap | 42.3 | x86_64 | sendfax | < 1.1.36-65.3.1 | sendfax-1.1.36-65.3.1.x86_64.rpm |
| openSUSE Leap | 42.3 | x86_64 | g3utils | < 1.1.36-65.3.1 | g3utils-1.1.36-65.3.1.x86_64.rpm |
| openSUSE Leap | 42.3 | i586 | g3utils | < 1.1.36-65.3.1 | g3utils-1.1.36-65.3.1.i586.rpm |
| openSUSE Leap | 42.3 | i586 | mgetty-debugsource | < 1.1.36-65.3.1 | mgetty-debugsource-1.1.36-65.3.1.i586.rpm |
Related
suse
suse
Security update for mgetty (important)
2018-09-28 21:08:15
openvas
openvas
openSUSE: Security Advisory for mgetty (openSUSE-SU-2018:2942-1)
2018-10-26 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:2979-1)
2021-04-19 00:00:00
openSUSE: Security Advisory for mgetty (openSUSE-SU-2018:3108-1)
2018-10-13 00:00:00
nessus
nessus
SUSE SLES11 Security Update : mgetty (SUSE-SU-2018:2850-1)
2018-09-27 00:00:00
SUSE SLED15 / SLES15 Security Update : mgetty (SUSE-SU-2018:2894-1)
2019-01-02 00:00:00
openSUSE Security Update : mgetty (openSUSE-2018-1080)
2018-10-01 00:00:00
zdt
zdt
mgetty 1.2.0 Buffer Overflow / Privilege Escalation Vulnerabilities
2018-09-21 00:00:00
mageia
mageia
Updated mgetty packages fix security vulnerabilities
2018-10-19 21:00:37
rosalinux
rosalinux
Advisory ROSA-SA-2021-1919
2021-07-02 17:29:39
fedora
fedora
[SECURITY] Fedora 28 Update: mgetty-1.1.37-10.fc28
2019-02-27 01:16:25
[SECURITY] Fedora 29 Update: mgetty-1.1.37-11.fc29
2019-02-27 03:29:09
cve
cve
cvelist
cvelist
redhatcve
redhatcve
debiancve
debiancve
prion
prion
Stack overflow
2018-09-13 16:29:00
Stack overflow
2018-09-13 16:29:00
Command injection
2018-09-13 16:29:00
nvd
nvd
ubuntucve
ubuntucve
osv
osv
mgetty - security update
2018-09-11 00:00:00
mgetty - security update
2018-09-12 00:00:00
debian
debian
[SECURITY] [DLA 1502-1] mgetty security update
2018-09-12 06:31:55
[SECURITY] [DSA 4291-1] mgetty security update
2018-09-11 20:03:31
ibm
ibm
Security Bulletin: Vyatta 5600 vRouter Software Patches - Release 1801r
2018-10-26 21:10:01