libksba-devel-1.6.2-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:12418-1 Final 1 1 2024-06-15T00:00:00Z current 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z libksba-devel-1.6.2-1.1 on GA media These are all security issues fixed in the libksba-devel-1.6.2-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-12418 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2022-3515/ SUSE CVE CVE-2022-3515 page openSUSE Tumbleweed libksba-devel-1.6.2-1.1 libksba8-1.6.2-1.1 libksba-devel-1.6.2-1.1 as a component of openSUSE Tumbleweed libksba8-1.6.2-1.1 as a component of openSUSE Tumbleweed A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser. The vulnerability can be exploited remotely for code execution on the target system by passing specially crafted data to the application, for example, a malicious S/MIME attachment. CVE-2022-3515 openSUSE Tumbleweed:libksba-devel-1.6.2-1.1 openSUSE Tumbleweed:libksba8-1.6.2-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-3515.html CVE-2022-3515 https://bugzilla.suse.com/1204357 SUSE Bug 1204357 https://bugzilla.suse.com/1204806 SUSE Bug 1204806 https://bugzilla.suse.com/1205080 SUSE Bug 1205080 https://bugzilla.suse.com/1205592 SUSE Bug 1205592 https://bugzilla.suse.com/1205627 SUSE Bug 1205627 https://bugzilla.suse.com/1206244 SUSE Bug 1206244