7151 moderate openSUSE Leap 42.3 Update This update for libplist fixes the following issues: Security issues fixed: - CVE-2017-6439: Heap-based buffer overflow in the parse_string_node function. (bsc#1029638) - CVE-2017-6438: Heap-based buffer overflow in the parse_unicode_node function. (bsc#1029706) - CVE-2017-6437: The base64encode function in base64.c allows local users to cause denial of service (out-of-bounds read) via a crafted plist file. (bsc#1029707) - CVE-2017-6436: Integer overflow in parse_string_node. (bsc#1029751) - CVE-2017-6435: Crafted plist file could lead to Heap-buffer overflow. (bsc#1029639) This update was imported from the SUSE:SLE-12-SP2:Update update project. libplist++-devel-1.12-11.1.i586.rpm libplist++3-1.12-11.1.i586.rpm libplist++3-32bit-1.12-11.1.x86_64.rpm libplist++3-debuginfo-1.12-11.1.i586.rpm libplist++3-debuginfo-32bit-1.12-11.1.x86_64.rpm libplist-1.12-11.1.src.rpm libplist-debugsource-1.12-11.1.i586.rpm libplist-devel-1.12-11.1.i586.rpm libplist3-1.12-11.1.i586.rpm libplist3-32bit-1.12-11.1.x86_64.rpm libplist3-debuginfo-1.12-11.1.i586.rpm libplist3-debuginfo-32bit-1.12-11.1.x86_64.rpm plistutil-1.12-11.1.i586.rpm plistutil-debuginfo-1.12-11.1.i586.rpm python-plist-1.12-11.1.i586.rpm python-plist-debuginfo-1.12-11.1.i586.rpm libplist++-devel-1.12-11.1.x86_64.rpm libplist++3-1.12-11.1.x86_64.rpm libplist++3-debuginfo-1.12-11.1.x86_64.rpm libplist-debugsource-1.12-11.1.x86_64.rpm libplist-devel-1.12-11.1.x86_64.rpm libplist3-1.12-11.1.x86_64.rpm libplist3-debuginfo-1.12-11.1.x86_64.rpm plistutil-1.12-11.1.x86_64.rpm plistutil-debuginfo-1.12-11.1.x86_64.rpm python-plist-1.12-11.1.x86_64.rpm python-plist-debuginfo-1.12-11.1.x86_64.rpm