Oval Definition:oval:org.opensuse.security:def:20143004
Revision Date:2022-06-30Version:1
Title:CVE-2014-3004
Description:

The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XML document.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2014-3004
Mitre CVE-2014-3004
SUSE CVE-2014-3004
openSUSE-SU-2014:0822-1
Platform(s):openSUSE 12.3 Update
openSUSE 13.1
openSUSE Tumbleweed
Product(s):
Definition Synopsis
  • openSUSE 13.1 is installed
  • AND Package Information
  • castor-0.9.5-320.4.1 is installed
  • OR castor-demo-0.9.5-320.4.1 is installed
  • OR castor-doc-0.9.5-320.4.1 is installed
  • OR castor-javadoc-0.9.5-317.4.1 is installed
  • OR castor-test-0.9.5-320.4.1 is installed
  • OR castor-xml-0.9.5-320.4.1 is installed
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • castor-0.9.5-326.4 is installed
  • OR castor-demo-0.9.5-326.4 is installed
  • OR castor-doc-0.9.5-326.4 is installed
  • OR castor-test-0.9.5-326.4 is installed
  • OR castor-xml-0.9.5-326.4 is installed
    • BACK