OVAL Reference oval:org.opensuse.security:def:201712424

Oval Definition:

oval:org.opensuse.security:def:201712424

Revision Date:	2022-09-02	Version:	1
Title:	CVE-2017-12424
Description:	In shadow before 4.5, the newusers tool could be made to manipulate internal data structures in ways unintended by the authors. Malformed input may lead to crashes (with a buffer overflow or other memory corruption) or other unspecified behaviors. This crosses a privilege boundary in, for example, certain web-hosting environments in which a Control Panel allows an unprivileged user account to create subaccounts.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2017-12424 SUSE-CU-2019:695-1 SUSE-CU-2019:706-1 SUSE-CU-2019:708-1 SUSE-CU-2019:710-1 SUSE-CU-2019:712-1 SUSE-CU-2019:714-1 SUSE-CU-2019:716-1 SUSE-CU-2019:719-1 SUSE-CU-2019:721-1 SUSE-CU-2019:723-1 SUSE-CU-2019:725-1 SUSE-CU-2019:727-1 SUSE-CU-2019:729-1 SUSE-CU-2019:731-1 SUSE-CU-2019:733-1 SUSE-CU-2019:738-1 SUSE-SU-2017:2947-1 openSUSE-SU-2017:2979-1 Mitre CVE-2017-12424 SUSE CVE-2017-12424 SUSE-CU-2019:695-1 SUSE-CU-2019:706-1 SUSE-CU-2019:708-1 SUSE-CU-2019:710-1 SUSE-CU-2019:712-1 SUSE-CU-2019:714-1 SUSE-CU-2019:716-1 SUSE-CU-2019:719-1 SUSE-CU-2019:721-1 SUSE-CU-2019:723-1 SUSE-CU-2019:725-1 SUSE-CU-2019:727-1 SUSE-CU-2019:729-1 SUSE-CU-2019:731-1 SUSE-CU-2019:733-1 SUSE-CU-2019:738-1 SUSE-SU-2017:2947-1 openSUSE-SU-2017:2979-1
Platform(s):	openSUSE Leap 42.2 openSUSE Leap 42.3 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3	Product(s):
Definition Synopsis
openSUSE Leap 42.2 is installed AND Package Information shadow-4.2.1-6.6.1 is installed AND shadow is signed with openSUSE key
Definition Synopsis
openSUSE Leap 42.3 is installed AND Package Information shadow-4.2.1-10 is installed AND shadow is signed with openSUSE key
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP2 is installed AND shadow-4.2.1-27.3 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed AND shadow-4.2.1-27.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND shadow-4.2.1-27.3.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP2 is installed AND shadow-4.2.1-27.3 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed AND shadow-4.2.1-27.3 is installed OR Package Information SUSE Linux Enterprise Server 12 SP2 is installed AND shadow-4.2.1-27.3 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3 is installed AND shadow-4.2.1-27.3 is installed OR Package Information SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND shadow-4.2.1-27.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP2 is installed AND shadow-4.2.1-27.3 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3 is installed AND shadow-4.2.1-27.3 is installed OR Package Information SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND shadow-4.2.1-27.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND shadow-4.2.1-27.3.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP2 is installed AND shadow-4.2.1-27.3 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed AND shadow-4.2.1-27.3 is installed OR Package Information SUSE Linux Enterprise Server 12 SP2 is installed AND shadow-4.2.1-27.3 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3 is installed AND shadow-4.2.1-27.3 is installed OR Package Information SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND shadow-4.2.1-27.3 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND shadow-4.2.1-27.3 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND shadow-4.2.1-27.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP2 is installed AND shadow-4.2.1-27.3 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3 is installed AND shadow-4.2.1-27.3 is installed OR Package Information SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND shadow-4.2.1-27.3 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND shadow-4.2.1-27.3 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND shadow-4.2.1-27.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP2 is installed OR SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP2 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND shadow-4.2.1-27.3 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed AND shadow-4.2.1-27.19 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed AND shadow-4.2.1-27.19.1 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP2 is installed OR SUSE Linux Enterprise Desktop 12 SP3 is installed AND shadow-4.2.1-27.3.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP2 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND shadow-4.2.1-27.3 is installed OR Package Information SUSE Linux Enterprise Server 12 SP4 is installed AND shadow-4.2.1-27.19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND shadow-4.2.1-27.19.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP2 is installed OR SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP2 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND shadow-4.2.1-27.3 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed AND shadow-4.2.1-27.19 is installed OR Package Information SUSE Linux Enterprise Server 12 SP5 is installed AND shadow-4.2.1-34 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND shadow-4.2.1-27.19.1 is installed OR Package Information SUSE Linux Enterprise Server 12 SP5 is installed AND shadow-4.2.1-34.20 is installed OR Package Information SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND shadow-4.2.1-27.3.3 is installed OR Package Information SUSE Linux Enterprise Server 12 SP2 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND shadow-4.2.1-27.3.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed AND shadow-4.2.1-27.19.1 is installed OR Package Information SUSE Linux Enterprise High Performance Computing 12 SP5 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed AND shadow-4.2.1-34.20 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP2 is installed OR SUSE Linux Enterprise Desktop 12 SP3 is installed AND shadow-4.2.1-27.3.3 is installed OR Package Information SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND shadow-4.2.1-27.3.3 is installed OR Package Information SUSE Linux Enterprise Server 12 SP2 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND shadow-4.2.1-27.3.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 12 SP5 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed AND shadow-4.2.1-34.20 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed AND shadow-4.2.1-27.19.1 is installed

BACK