vulnerability
SUSE: CVE-2022-37434: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 10 | (AV:N/AC:L/Au:N/C:C/I:C/A:C) | 2022-08-05 | 2022-10-26 | 2025-01-28 |
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
2022-08-05
Added
2022-10-26
Modified
2025-01-28
Description
zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference).
Solution(s)
suse-upgrade-libminizip1suse-upgrade-libminizip1-32bitsuse-upgrade-libqt5-qtbase-common-develsuse-upgrade-libqt5-qtbase-develsuse-upgrade-libqt5-qtbase-platformtheme-gtk3suse-upgrade-libqt5-qtbase-private-headers-develsuse-upgrade-libqt5concurrent-develsuse-upgrade-libqt5concurrent5suse-upgrade-libqt5core-develsuse-upgrade-libqt5core-private-headers-develsuse-upgrade-libqt5core5suse-upgrade-libqt5dbus-develsuse-upgrade-libqt5dbus-private-headers-develsuse-upgrade-libqt5dbus5suse-upgrade-libqt5gui-develsuse-upgrade-libqt5gui-private-headers-develsuse-upgrade-libqt5gui5suse-upgrade-libqt5kmssupport-devel-staticsuse-upgrade-libqt5kmssupport-private-headers-develsuse-upgrade-libqt5network-develsuse-upgrade-libqt5network-private-headers-develsuse-upgrade-libqt5network5suse-upgrade-libqt5opengl-develsuse-upgrade-libqt5opengl-private-headers-develsuse-upgrade-libqt5opengl5suse-upgrade-libqt5openglextensions-devel-staticsuse-upgrade-libqt5platformheaders-develsuse-upgrade-libqt5platformsupport-devel-staticsuse-upgrade-libqt5platformsupport-private-headers-develsuse-upgrade-libqt5printsupport-develsuse-upgrade-libqt5printsupport-private-headers-develsuse-upgrade-libqt5printsupport5suse-upgrade-libqt5sql-develsuse-upgrade-libqt5sql-private-headers-develsuse-upgrade-libqt5sql5suse-upgrade-libqt5sql5-mysqlsuse-upgrade-libqt5sql5-postgresqlsuse-upgrade-libqt5sql5-sqlitesuse-upgrade-libqt5sql5-unixodbcsuse-upgrade-libqt5test-develsuse-upgrade-libqt5test-private-headers-develsuse-upgrade-libqt5test5suse-upgrade-libqt5widgets-develsuse-upgrade-libqt5widgets-private-headers-develsuse-upgrade-libqt5widgets5suse-upgrade-libqt5xml-develsuse-upgrade-libqt5xml5suse-upgrade-libvlc5suse-upgrade-libvlccore9suse-upgrade-libz1suse-upgrade-libz1-32bitsuse-upgrade-minizip-develsuse-upgrade-vlcsuse-upgrade-vlc-codec-gstreamersuse-upgrade-vlc-develsuse-upgrade-vlc-jacksuse-upgrade-vlc-langsuse-upgrade-vlc-noxsuse-upgrade-vlc-opencvsuse-upgrade-vlc-qtsuse-upgrade-vlc-vdpaususe-upgrade-zlib-develsuse-upgrade-zlib-devel-32bitsuse-upgrade-zlib-devel-staticsuse-upgrade-zlib-devel-static-32bit
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.