Oval Definition:	oval:org.opensuse.security:def:20164007
Revision Date: 2021-08-15 Version: 1 Title: CVE-2016-4007 Description: Multiple unspecified vulnerabilities in the obs-service-extract_file package before 0.3-5.1 in openSUSE Leap 42.1 and before 0.3-3.1 in openSUSE 13.2 allow attackers to execute arbitrary commands via a service definition, related to executing unzip with "illegal options." Family: unix Class: vulnerability Status: Reference(s): CVE-2016-4007 Mitre CVE-2016-4007 SUSE CVE-2016-4007 openSUSE-SU-2016:1659-1 openSUSE-SU-2016:1659-1 openSUSE-SU-2016:1660-1 openSUSE-SU-2016:1660-1 SUSE-SU-2016:1839-1 SUSE-SU-2016:1839-1 SUSE-SU-2018:0065-1 SUSE-SU-2018:0065-1 Platform(s): openSUSE 13.2 openSUSE Leap 42.1 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP1 Product(s): Definition Synopsis openSUSE 13.2 is installed AND obs-service-source_validator-0.6+git20160531.fbfe336-9.1 is installed Definition Synopsis openSUSE Leap 42.1 is installed AND Package Information obs-service-source_validator-0.6+git20160531.fbfe336-11.1 is installed AND obs-service-source_validator is signed with openSUSE key Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND obs-service-source_validator-0.6+git20160531.fbfe336-5 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information build-20171128-8.3 is installed OR osc-0.162.1-7.4 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information build-20171128-8.3.3 is installed OR osc-0.162.1-7.4.1 is installed
BACK