SUSE-SU-2016:0707-1

Apply 'libotr-CVE-2016-2851.patch' to fix integer overflows that used to occur on 64-bit architectures when receiving 4GB messages. This flaw could potentially have been exploited by an attacker to remotely execute arbitrary code on the user's machine
- (CVE-2016-2851, bsc#969785)

References

Affected packages

SUSE:Linux Enterprise Desktop 12 / libotr

Package

Name: libotr
Purl: pkg:rpm/suse/libotr&distro=SUSE%20Linux%20Enterprise%20Desktop%2012

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.0.0-9.1

Ecosystem specific

{
    "binaries": [
        {
            "libotr5": "4.0.0-9.1"
        }
    ]
}

SUSE:Linux Enterprise Desktop 12 SP1 / libotr

Package

Name: libotr
Purl: pkg:rpm/suse/libotr&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.0.0-9.1

Ecosystem specific

{
    "binaries": [
        {
            "libotr5": "4.0.0-9.1"
        }
    ]
}

SUSE:Linux Enterprise Software Development Kit 12 / libotr

Package

Name: libotr
Purl: pkg:rpm/suse/libotr&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.0.0-9.1

Ecosystem specific

{
    "binaries": [
        {
            "libotr-devel": "4.0.0-9.1"
        }
    ]
}

SUSE:Linux Enterprise Software Development Kit 12 SP1 / libotr

Package

Name: libotr
Purl: pkg:rpm/suse/libotr&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.0.0-9.1

Ecosystem specific

{
    "binaries": [
        {
            "libotr-devel": "4.0.0-9.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 / libotr

Package

Name: libotr
Purl: pkg:rpm/suse/libotr&distro=SUSE%20Linux%20Enterprise%20Server%2012

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.0.0-9.1

Ecosystem specific

{
    "binaries": [
        {
            "libotr5": "4.0.0-9.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 / libotr

Package

Name: libotr
Purl: pkg:rpm/suse/libotr&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.0.0-9.1

Ecosystem specific

{
    "binaries": [
        {
            "libotr5": "4.0.0-9.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP1 / libotr

Package

Name: libotr
Purl: pkg:rpm/suse/libotr&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.0.0-9.1

Ecosystem specific

{
    "binaries": [
        {
            "libotr5": "4.0.0-9.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP1 / libotr

Package

Name: libotr
Purl: pkg:rpm/suse/libotr&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.0.0-9.1

Ecosystem specific

{
    "binaries": [
        {
            "libotr5": "4.0.0-9.1"
        }
    ]
}