Oval Definition:oval:org.opensuse.security:def:20141838
Revision Date:2022-06-30Version:1
Title:CVE-2014-1838
Description:

The (1) extract_keys_from_pdf and (2) fill_pdf functions in pdf_ext.py in logilab-commons before 0.61.0 allows local users to overwrite arbitrary files and possibly have other unspecified impact via a symlink attack on /tmp/toto.fdf.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2014-1838
Mitre CVE-2014-1838
SUSE CVE-2014-1838
openSUSE-SU-2014:0306-1
openSUSE-SU-2014:0306-1
SUSE-SU-2014:0301-1
SUSE-SU-2014:0301-1
Platform(s):openSUSE 12.3 Update
openSUSE 13.1
openSUSE Tumbleweed
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
Product(s):
Definition Synopsis
  • openSUSE 13.1 is installed
  • AND Package Information
  • python-logilab-common-0.58.0-7.4.1 is installed
  • OR python3-logilab-common-0.58.0-4.4.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
  • AND python-logilab-common-0.56.2-1.9.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
  • OR SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND python-logilab-common-0.56.2-1.9 is installed
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • python-logilab-common-1.0.2-1.4 is installed
  • OR python3-logilab-common-1.2.2-1.2 is installed
  • OR python36-logilab-common-1.8.1-1.5 is installed
  • OR python38-logilab-common-1.8.1-1.5 is installed
  • OR python39-logilab-common-1.8.1-1.5 is installed
    • BACK