openSUSE-SU-2020:0741-1
See a problem?- Import Source
- https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2020:0741-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/openSUSE-SU-2020:0741-1
- Related
- Published
- 2020-05-29T18:16:10Z
- Modified
- 2020-05-29T18:16:10Z
- Summary
- Security update for freetds
- Details
-
This update for freetds to 1.1.36 fixes the following issues:
Security issue fixed:
- CVE-2019-13508: Fixed a heap overflow that could have been caused by malicious servers sending UDT types over protocol version 5.0 (bsc#1141132).
Non-security issues fixed:
- Enabled Kerberos support
- Version update to 1.1.36:
- Default TDS protocol version is now 'auto'
- Improved UTF-8 performances
- TDS Pool Server is enabled
- MARS support is enabled
- NTLMv2 is enabled
- See NEWS and ChangeLog for a complete list of changes
This update was imported from the SUSE:SLE-15:Update update project.
- References
Affected packages
openSUSE:Leap 15.1 / freetds
Package
- Name
- freetds
- Purl
- pkg:rpm/opensuse/freetds&distro=openSUSE%20Leap%2015.1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.1.36-lp151.3.3.1
Ecosystem specific
{
"binaries": [
{
"freetds-tools": "1.1.36-lp151.3.3.1",
"libsybdb5": "1.1.36-lp151.3.3.1",
"freetds-config": "1.1.36-lp151.3.3.1",
"freetds-doc": "1.1.36-lp151.3.3.1",
"freetds-devel": "1.1.36-lp151.3.3.1",
"libtdsodbc0": "1.1.36-lp151.3.3.1",
"libct4": "1.1.36-lp151.3.3.1"
}
]
}