Oval Definition:	oval:org.opensuse.security:def:20140593
Revision Date: 2022-09-01 Version: 1 Title: CVE-2014-0593 Description: The set_version script as shipped with obs-service-set_version is a source validator for the Open Build Service (OBS). In versions prior to 0.5.3-1.1 this script did not properly sanitize the input provided by the user, allowing for code execution on the executing server. Family: unix Class: vulnerability Status: Reference(s): CVE-2014-0593 Mitre CVE-2014-0593 SUSE CVE-2014-0593 Platform(s): openSUSE 13.2 openSUSE Leap 42.1 openSUSE Leap 42.2 openSUSE Leap 42.3 openSUSE Tumbleweed SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Software Development Kit 12 SP5 Product(s): Definition Synopsis openSUSE 13.2 is installed AND obs-service-set_version-0.4.2-2.1 is installed Definition Synopsis openSUSE Leap 42.1 is installed AND Package Information obs-service-set_version-0.5.3-1.1 is installed AND obs-service-set_version is signed with openSUSE key Definition Synopsis openSUSE Leap 42.2 is installed AND Package Information obs-service-set_version-0.5.3-4.1 is installed AND obs-service-set_version is signed with openSUSE key Definition Synopsis openSUSE Leap 42.3 is installed AND Package Information obs-service-set_version-0.5.6-6 is installed AND obs-service-set_version is signed with openSUSE key Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND obs-service-set_version-0.5.11-1.3 is installed Definition Synopsis openSUSE Tumbleweed is installed AND obs-service-set_version-0.5.3-4.2 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND obs-service-set_version-0.5.11-1.3.1 is installed
BACK