OVAL Reference oval:org.opensuse.security:def:201610173

Oval Definition:

oval:org.opensuse.security:def:201610173

Revision Date:	2022-06-30	Version:	1
Title:	CVE-2016-10173
Description:	Directory traversal vulnerability in the minitar before 0.6 and archive-tar-minitar 0.5.2 gems for Ruby allows remote attackers to write to arbitrary files via a .. (dot dot) in a TAR archive entry.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2016-10173 Mitre CVE-2016-10173 SUSE CVE-2016-10173 SUSE-SU-2021:0115-1 openSUSE-SU-2017:0429-1
Platform(s):	openSUSE Leap 42.2 openSUSE Tumbleweed SUSE Linux Enterprise High Performance Computing 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5	Product(s):
Definition Synopsis
openSUSE Leap 42.2 is installed AND Package Information ruby2.1-rubygem-minitar-0.5.4-3.1 is installed AND ruby2.1-rubygem-minitar is signed with openSUSE key OR ruby2.1-rubygem-minitar-doc-0.5.4-3.1 is installed AND ruby2.1-rubygem-minitar-doc is signed with openSUSE key OR rubygem-minitar-0.5.4-3.1 is installed AND rubygem-minitar is signed with openSUSE key
Definition Synopsis
openSUSE Tumbleweed is installed AND Package Information ruby2.7-rubygem-archive-tar-minitar-0.5.2-9.23 is installed OR ruby2.7-rubygem-minitar-0.9-1.4 is installed OR ruby3.0-rubygem-archive-tar-minitar-0.5.2-9.23 is installed OR ruby3.0-rubygem-minitar-0.9-1.4 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 12 is installed OR SUSE Linux Enterprise Module for Containers 12 is installed OR SUSE Linux Enterprise Server 12 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND ruby2.1-rubygem-archive-tar-minitar-0.5.2-7.3.65 is installed

BACK