Security update for uriparser SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2019:0165-1 Final 1 1 2019-03-23T10:56:57Z current 2019-03-23T10:56:57Z 2019-03-23T10:56:57Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for uriparser This update for uriparser fixes the following issues: Security issues fixed: - CVE-2018-20721: Fixed an out-of-bounds read for incomplete URIs with IPv6 addresses with embedded IPv4 address (bsc#1122193). - CVE-2018-19198: Fixed an out-of-bounds write that was possible via the uriComposeQuery* or uriComposeQueryEx* function (bsc#1115722). - CVE-2018-19199: Fixed an integer overflow caused by an unchecked multiplication via the uriComposeQuery* or uriComposeQueryEx* function (bsc#1115723). - CVE-2018-19200: Fixed a operation attempted on NULL input via a uriResetUri* function (bsc#1115724). This update was imported from the SUSE:SLE-15:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-2019-165 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/DKZ2NZQRNUAKKDGMLSBN4JO4TSGD4AQC/#DKZ2NZQRNUAKKDGMLSBN4JO4TSGD4AQC E-Mail link for openSUSE-SU-2019:0165-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1115722 SUSE Bug 1115722 https://bugzilla.suse.com/1115723 SUSE Bug 1115723 https://bugzilla.suse.com/1115724 SUSE Bug 1115724 https://bugzilla.suse.com/1122193 SUSE Bug 1122193 https://www.suse.com/security/cve/CVE-2018-19198/ SUSE CVE CVE-2018-19198 page https://www.suse.com/security/cve/CVE-2018-19199/ SUSE CVE CVE-2018-19199 page https://www.suse.com/security/cve/CVE-2018-19200/ SUSE CVE CVE-2018-19200 page https://www.suse.com/security/cve/CVE-2018-20721/ SUSE CVE CVE-2018-20721 page openSUSE Leap 15.0 liburiparser1-0.8.5-lp150.2.3.1 liburiparser1-32bit-0.8.5-lp150.2.3.1 uriparser-0.8.5-lp150.2.3.1 uriparser-devel-0.8.5-lp150.2.3.1 liburiparser1-0.8.5-lp150.2.3.1 as a component of openSUSE Leap 15.0 liburiparser1-32bit-0.8.5-lp150.2.3.1 as a component of openSUSE Leap 15.0 uriparser-0.8.5-lp150.2.3.1 as a component of openSUSE Leap 15.0 uriparser-devel-0.8.5-lp150.2.3.1 as a component of openSUSE Leap 15.0 An issue was discovered in uriparser before 0.9.0. UriQuery.c allows an out-of-bounds write via a uriComposeQuery* or uriComposeQueryEx* function because the '&' character is mishandled in certain contexts. CVE-2018-19198 openSUSE Leap 15.0:liburiparser1-0.8.5-lp150.2.3.1 openSUSE Leap 15.0:liburiparser1-32bit-0.8.5-lp150.2.3.1 openSUSE Leap 15.0:uriparser-0.8.5-lp150.2.3.1 openSUSE Leap 15.0:uriparser-devel-0.8.5-lp150.2.3.1 critical 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/DKZ2NZQRNUAKKDGMLSBN4JO4TSGD4AQC/#DKZ2NZQRNUAKKDGMLSBN4JO4TSGD4AQC https://www.suse.com/security/cve/CVE-2018-19198.html CVE-2018-19198 https://bugzilla.suse.com/1115722 SUSE Bug 1115722 An issue was discovered in uriparser before 0.9.0. UriQuery.c allows an integer overflow via a uriComposeQuery* or uriComposeQueryEx* function because of an unchecked multiplication. CVE-2018-19199 openSUSE Leap 15.0:liburiparser1-0.8.5-lp150.2.3.1 openSUSE Leap 15.0:liburiparser1-32bit-0.8.5-lp150.2.3.1 openSUSE Leap 15.0:uriparser-0.8.5-lp150.2.3.1 openSUSE Leap 15.0:uriparser-devel-0.8.5-lp150.2.3.1 critical 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/DKZ2NZQRNUAKKDGMLSBN4JO4TSGD4AQC/#DKZ2NZQRNUAKKDGMLSBN4JO4TSGD4AQC https://www.suse.com/security/cve/CVE-2018-19199.html CVE-2018-19199 https://bugzilla.suse.com/1115723 SUSE Bug 1115723 An issue was discovered in uriparser before 0.9.0. UriCommon.c allows attempted operations on NULL input via a uriResetUri* function. CVE-2018-19200 openSUSE Leap 15.0:liburiparser1-0.8.5-lp150.2.3.1 openSUSE Leap 15.0:liburiparser1-32bit-0.8.5-lp150.2.3.1 openSUSE Leap 15.0:uriparser-0.8.5-lp150.2.3.1 openSUSE Leap 15.0:uriparser-devel-0.8.5-lp150.2.3.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/DKZ2NZQRNUAKKDGMLSBN4JO4TSGD4AQC/#DKZ2NZQRNUAKKDGMLSBN4JO4TSGD4AQC https://www.suse.com/security/cve/CVE-2018-19200.html CVE-2018-19200 https://bugzilla.suse.com/1115724 SUSE Bug 1115724 URI_FUNC() in UriParse.c in uriparser before 0.9.1 has an out-of-bounds read (in uriParse*Ex* functions) for an incomplete URI with an IPv6 address containing an embedded IPv4 address, such as a "//[::44.1" address. CVE-2018-20721 openSUSE Leap 15.0:liburiparser1-0.8.5-lp150.2.3.1 openSUSE Leap 15.0:liburiparser1-32bit-0.8.5-lp150.2.3.1 openSUSE Leap 15.0:uriparser-0.8.5-lp150.2.3.1 openSUSE Leap 15.0:uriparser-devel-0.8.5-lp150.2.3.1 critical 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/DKZ2NZQRNUAKKDGMLSBN4JO4TSGD4AQC/#DKZ2NZQRNUAKKDGMLSBN4JO4TSGD4AQC https://www.suse.com/security/cve/CVE-2018-20721.html CVE-2018-20721 https://bugzilla.suse.com/1122193 SUSE Bug 1122193