Oval Definition:	oval:org.opensuse.security:def:20176009
Revision Date: 2022-06-30 Version: 1 Title: CVE-2017-6009 Description: An issue was discovered in icoutils 0.31.1. A buffer overflow was observed in the "decode_ne_resource_id" function in the "restable.c" source file. This is happening because the "len" parameter for memcpy is not checked for size and thus becomes a negative integer in the process, resulting in a failed memcpy. This affects wrestool. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-6009 Mitre CVE-2017-6009 SUSE CVE-2017-6009 openSUSE-SU-2017:2053-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 42.2 openSUSE Leap 42.3 openSUSE Tumbleweed Product(s): Definition Synopsis openSUSE Leap 42.2 is installed AND Package Information icoutils-0.31.3-10.3.1 is installed AND icoutils is signed with openSUSE key Definition Synopsis openSUSE Leap 42.3 is installed AND Package Information icoutils-0.31.3-13 is installed AND icoutils is signed with openSUSE key Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information icoutils-0.31.3-lp150.1 is installed AND icoutils is signed with openSUSE key Definition Synopsis openSUSE Tumbleweed is installed AND icoutils-0.32.3-1.7 is installed
BACK