OVAL Reference oval:org.opensuse.security:def:201712613

Oval Definition:

oval:org.opensuse.security:def:201712613

Revision Date:	2022-05-22	Version:	1
Title:	CVE-2017-12613
Description:	When apr_time_exp() or apr_os_exp_time() functions are invoked with an invalid month field value in Apache Portable Runtime APR 1.6.2 and prior, out of bounds memory may be accessed in converting this value to an apr_time_exp_t value, potentially revealing the contents of a different static heap value or resulting in program termination, and may represent an information disclosure or denial of service vulnerability to applications which call these APR functions with unvalidated external input.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2017-12613 SUSE-CU-2019:727-1 SUSE-SU-2018:1196-1 SUSE-SU-2018:1322-1 openSUSE-SU-2018:1214-1 Mitre CVE-2017-12613 SUSE CVE-2017-12613 SUSE-CU-2019:727-1 SUSE-SU-2018:1196-1 SUSE-SU-2018:1322-1 openSUSE-SU-2018:1214-1
Platform(s):	openSUSE Leap 42.3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Desktop 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Server 11 SP3-TERADATA SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA SUSE Linux Enterprise Server for SAP Applications 11 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Software Development Kit 12 SP5 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND libapr1 is affected
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information libapr1-1.3.3-11.18.19.13 is installed OR libapr1-32bit-1.3.3-11.18.19.13 is installed
Definition Synopsis
openSUSE Leap 42.3 is installed AND Package Information libapr1-1.5.1-9.3 is installed AND libapr1 is signed with openSUSE key OR libapr1-devel-1.5.1-9.3 is installed AND libapr1-devel is signed with openSUSE key
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND libapr1-1.5.1-4.3.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND libapr1-1.5.1-4.3 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND libapr1-1.5.1-4.3 is installed OR libapr1-devel-1.5.1-4.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP4 is installed AND libapr1-1.3.3-11.18.19.13 is installed OR libapr1-32bit-1.3.3-11.18.19.13 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND libapr1-1.3.3-11.18.19.13 is installed OR libapr1-devel-1.3.3-11.18.19.13 is installed OR libapr1-devel-32bit-1.3.3-11.18.19.13 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND libapr1-1.3.3-11.18.19.13 is installed OR libapr1-devel-1.3.3-11.18.19.13 is installed OR libapr1-devel-32bit-1.3.3-11.18.19.13 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP4 is installed AND libapr1-1.3.3-11.18.19.13 is installed OR libapr1-32bit-1.3.3-11.18.19.13 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND libapr1-1.5.1-4.3 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND libapr1-1.5.1-4.3 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND libapr1-1.5.1-4.3 is installed OR libapr1-devel-1.5.1-4.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP4 is installed AND Package Information libapr1-1.3.3-11.18.19.13 is installed OR libapr1-32bit-1.3.3-11.18.19.13 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND libapr1-1.5.1-4.3 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND libapr1-1.5.1-4.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND libapr1-1.5.1-4.3 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP3 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND libapr1-1.5.1-4.3 is installed OR libapr1-devel-1.5.1-4.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND libapr1-1.5.1-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3-TERADATA is installed AND libapr1-1.3.3-11.18.19.13 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP1-TERADATA is installed OR SUSE Linux Enterprise Server 11 SP3-TERADATA is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP3-TERADATA is installed AND libapr1-1.3.3-11.18.19.13 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND libapr1-1.3.3-11.18.19.13 is installed OR libapr1-devel-1.3.3-11.18.19.13 is installed OR libapr1-devel-32bit-1.3.3-11.18.19.13 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP4 is installed AND libapr1-1.3.3-11.18.19.13 is installed OR libapr1-32bit-1.3.3-11.18.19.13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND libapr1-1.5.1-4.3.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND libapr1-1.5.1-4.3 is installed OR Package Information SUSE Linux Enterprise Server 12 SP5 is installed AND libapr1-1.5.1-4.5 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP3 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND libapr1-1.5.1-4.3 is installed OR libapr1-devel-1.5.1-4.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND libapr1-1.5.1-4.3.1 is installed OR Package Information SUSE Linux Enterprise Server 12 SP5 is installed AND libapr1-1.5.1-4.5.1 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND libapr1-1.5.1-4.3.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND libapr1-1.5.1-4.3 is installed OR Package Information SUSE Linux Enterprise High Performance Computing 12 SP5 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed AND libapr1-1.5.1-4.5 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP3 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND libapr1-1.5.1-4.3 is installed OR libapr1-devel-1.5.1-4.3 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND libapr1-1.5.1-4.5 is installed OR libapr1-devel-1.5.1-4.5 is installed
Definition Synopsis
Release Information SUSE OpenStack Cloud 8 is installed OR SUSE OpenStack Cloud Crowbar 8 is installed AND libapr1 is affected OR Package Information SUSE Linux Enterprise Server 12 SP3 is installed AND libapr1-1.5.1-4.3.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP1-TERADATA is installed OR SUSE Linux Enterprise Server 11 SP3-TERADATA is installed AND libapr1-1.3.3-11.18.19.13.2 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND libapr1-1.3.3-11.18.19.13.2 is installed OR libapr1-devel-1.3.3-11.18.19.13.2 is installed OR libapr1-devel-32bit-1.3.3-11.18.19.13.2 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP4 is installed AND libapr1-1.3.3-11.18.19.13.2 is installed OR libapr1-32bit-1.3.3-11.18.19.13.2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND libapr1-1.5.1-4.3.1 is installed OR Package Information SUSE Linux Enterprise High Performance Computing 12 SP5 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed AND libapr1-1.5.1-4.5.1 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND libapr1-1.5.1-4.3.1 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND libapr1-1.5.1-4.3.1 is installed OR libapr1-devel-1.5.1-4.3.1 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND libapr1-1.5.1-4.5.1 is installed OR libapr1-devel-1.5.1-4.5.1 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND libapr1-1.5.1-4.3.1 is installed OR libapr1-devel-1.5.1-4.3.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP1-TERADATA is installed OR SUSE Linux Enterprise Server 11 SP3-TERADATA is installed AND libapr1-1.3.3-11.18.19.13.2 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP4 is installed AND libapr1-1.3.3-11.18.19.13.2 is installed OR libapr1-32bit-1.3.3-11.18.19.13.2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND libapr1-1.5.1-4.3.1 is installed OR Package Information SUSE Linux Enterprise Server 12 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND libapr1 is affected OR Package Information SUSE Linux Enterprise Server 12 SP5 is installed AND libapr1-1.5.1-4.5.1 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND libapr1-1.5.1-4.3.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND libapr1-1.5.1-4.3.1 is installed OR Package Information SUSE OpenStack Cloud 9 is installed OR SUSE OpenStack Cloud Crowbar 9 is installed AND libapr1 is affected

BACK