Oval Definition:	oval:org.opensuse.security:def:100599
Revision Date: 2021-04-20 Version: 1 Title: (Moderate) Description: This update for apache-commons-io fixes the following issues: - CVE-2021-29425: Limited path traversal when invoking the method FileNameUtils.normalize with an improper input string (bsc#1184755) Family: unix Class: patch Status: Reference(s): 1184755 CVE-2017-7435 CVE-2017-7436 CVE-2017-9269 CVE-2018-7685 CVE-2019-18900 CVE-2021-29425 Platform(s): Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Storage 7 SUSE Manager Proxy 4.1 SUSE Manager Server 4.1 Product(s): Definition Synopsis Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE is installed AND apache-commons-io-2.6-3.3.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information libzypp-17.23.6-1.2 is installed OR libzypp-devel-17.23.6-1.2 is installed
BACK