Oval Definition:oval:org.opensuse.security:def:201711696
Revision Date:2022-09-02Version:1
Title:CVE-2017-11696
Description:

Heap-based buffer overflow in the __hash_open function in lib/dbm/src/hash.c in Mozilla Network Security Services (NSS) allows context-dependent attackers to have unspecified impact using a crafted cert8.db file.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2017-11696
SUSE CVE-2017-11696
Platform(s):SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Desktop 15
SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise High Performance Computing 15
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Micro 5.0
SUSE Linux Enterprise Micro 5.1
SUSE Linux Enterprise Module for Basesystem 15
SUSE Linux Enterprise Module for Basesystem 15 SP3
SUSE Linux Enterprise Module for Server Applications 15 SP3
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Software Development Kit 12 SP4
SUSE Linux Enterprise Storage 7.1
SUSE Manager Proxy 4.2
SUSE Manager Retail Branch Server 4.2
SUSE Manager Server 4.2
Product(s):
Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • OR SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND mozilla-nss is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • OR SUSE Linux Enterprise Desktop 12 SP4 is installed
  • OR SUSE Linux Enterprise Server 12 SP3 is installed
  • OR SUSE Linux Enterprise Server 12 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
  • AND mozilla-nss is not affected
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • AND
  • libfreebl3 is not affected
  • OR libfreebl3-32bit is not affected
  • OR libfreebl3-hmac is not affected
  • OR libfreebl3-hmac-32bit is not affected
  • OR libsoftokn3 is not affected
  • OR libsoftokn3-32bit is not affected
  • OR libsoftokn3-hmac is not affected
  • OR libsoftokn3-hmac-32bit is not affected
  • OR mozilla-nss is not affected
  • OR mozilla-nss-32bit is not affected
  • OR mozilla-nss-certs is not affected
  • OR mozilla-nss-certs-32bit is not affected
  • OR mozilla-nss-devel is not affected
  • OR mozilla-nss-sysinit is not affected
  • OR mozilla-nss-sysinit-32bit is not affected
  • OR mozilla-nss-tools is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Module for Basesystem 15 is installed
  • AND mozilla-nss is not affected
  • OR Package Information
  • SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed
  • AND
  • libfreebl3 is not affected
  • OR libfreebl3-32bit is not affected
  • OR libfreebl3-hmac is not affected
  • OR libfreebl3-hmac-32bit is not affected
  • OR libsoftokn3 is not affected
  • OR libsoftokn3-32bit is not affected
  • OR libsoftokn3-hmac is not affected
  • OR libsoftokn3-hmac-32bit is not affected
  • OR mozilla-nss is not affected
  • OR mozilla-nss-32bit is not affected
  • OR mozilla-nss-certs is not affected
  • OR mozilla-nss-certs-32bit is not affected
  • OR mozilla-nss-devel is not affected
  • OR mozilla-nss-sysinit is not affected
  • OR mozilla-nss-tools is not affected
  • OR Package Information
  • SUSE Linux Enterprise Module for Server Applications 15 SP3 is installed
  • AND
  • libfreebl3-hmac is not affected
  • OR libsoftokn3-hmac is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Module for Basesystem 15 is installed
  • AND mozilla-nss is not affected
  • OR Package Information
  • SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed
  • AND
  • libfreebl3 is not affected
  • OR libfreebl3-32bit is not affected
  • OR libfreebl3-hmac is not affected
  • OR libfreebl3-hmac-32bit is not affected
  • OR libsoftokn3 is not affected
  • OR libsoftokn3-32bit is not affected
  • OR libsoftokn3-hmac is not affected
  • OR libsoftokn3-hmac-32bit is not affected
  • OR mozilla-nss is not affected
  • OR mozilla-nss-32bit is not affected
  • OR mozilla-nss-certs is not affected
  • OR mozilla-nss-certs-32bit is not affected
  • OR mozilla-nss-devel is not affected
  • OR mozilla-nss-sysinit is not affected
  • OR mozilla-nss-tools is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP3 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Server 4.2 is installed
  • AND
  • libfreebl3 is not affected
  • OR libfreebl3-32bit is not affected
  • OR libfreebl3-hmac is not affected
  • OR libfreebl3-hmac-32bit is not affected
  • OR libsoftokn3 is not affected
  • OR libsoftokn3-32bit is not affected
  • OR libsoftokn3-hmac is not affected
  • OR libsoftokn3-hmac-32bit is not affected
  • OR mozilla-nss is not affected
  • OR mozilla-nss-32bit is not affected
  • OR mozilla-nss-certs is not affected
  • OR mozilla-nss-certs-32bit is not affected
  • OR mozilla-nss-devel is not affected
  • OR mozilla-nss-sysinit is not affected
  • OR mozilla-nss-tools is not affected
  • OR Package Information
  • SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Server Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Server 4.2 is installed
  • AND
  • libfreebl3-hmac is not affected
  • OR libsoftokn3-hmac is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • OR SUSE Linux Enterprise Server 12 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed
  • AND mozilla-nss is not affected
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • AND
  • libfreebl3 is not affected
  • OR libfreebl3-32bit is not affected
  • OR libfreebl3-hmac is not affected
  • OR libfreebl3-hmac-32bit is not affected
  • OR libsoftokn3 is not affected
  • OR libsoftokn3-32bit is not affected
  • OR libsoftokn3-hmac is not affected
  • OR libsoftokn3-hmac-32bit is not affected
  • OR mozilla-nss is not affected
  • OR mozilla-nss-32bit is not affected
  • OR mozilla-nss-certs is not affected
  • OR mozilla-nss-certs-32bit is not affected
  • OR mozilla-nss-devel is not affected
  • OR mozilla-nss-sysinit is not affected
  • OR mozilla-nss-sysinit-32bit is not affected
  • OR mozilla-nss-tools is not affected
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND mozilla-nss is not affected
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND mozilla-nss is not affected
    • Definition Synopsis
  • SUSE Linux Enterprise Micro 5.0 is installed
  • AND mozilla-nss is not affected
    • Definition Synopsis
  • SUSE Linux Enterprise Micro 5.1 is installed
  • AND Package Information
  • libfreebl3 is not affected
  • OR libfreebl3-hmac is not affected
  • OR libsoftokn3 is not affected
  • OR libsoftokn3-hmac is not affected
  • OR mozilla-nss is not affected
  • OR mozilla-nss-certs is not affected
  • OR mozilla-nss-tools is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • OR SUSE Linux Enterprise Server 12 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
  • AND mozilla-nss is not affected
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • AND
  • libfreebl3 is not affected
  • OR libfreebl3-32bit is not affected
  • OR libfreebl3-hmac is not affected
  • OR libfreebl3-hmac-32bit is not affected
  • OR libsoftokn3 is not affected
  • OR libsoftokn3-32bit is not affected
  • OR libsoftokn3-hmac is not affected
  • OR libsoftokn3-hmac-32bit is not affected
  • OR mozilla-nss is not affected
  • OR mozilla-nss-32bit is not affected
  • OR mozilla-nss-certs is not affected
  • OR mozilla-nss-certs-32bit is not affected
  • OR mozilla-nss-devel is not affected
  • OR mozilla-nss-sysinit is not affected
  • OR mozilla-nss-sysinit-32bit is not affected
  • OR mozilla-nss-tools is not affected
    • BACK