Oval Definition:oval:org.opensuse.security:def:201714120
Revision Date:2022-05-22Version:1
Title:CVE-2017-14120
Description:

unrar 0.0.1 (aka unrar-free or unrar-gpl) suffers from a directory traversal vulnerability for RAR v2 archives: pathnames of the form ../[filename] are unpacked into the upper directory.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2017-14120
SUSE CVE-2017-14120
Platform(s):SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 15
SUSE Linux Enterprise Desktop 15 SP1
SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise Desktop 15 SP4
SUSE Linux Enterprise High Performance Computing 15
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise High Performance Computing 15 SP4
SUSE Linux Enterprise Module for Basesystem 15
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Basesystem 15 SP3
SUSE Linux Enterprise Module for Basesystem 15 SP4
SUSE Linux Enterprise Module for Development Tools 15 SP1
SUSE Linux Enterprise Module for Development Tools 15 SP4
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server 15
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server 15 SP4
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP4
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Storage 6
SUSE Linux Enterprise Storage 7.1
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Manager Proxy 4.0
SUSE Manager Proxy 4.2
SUSE Manager Proxy 4.3
SUSE Manager Retail Branch Server 4.0
SUSE Manager Retail Branch Server 4.2
SUSE Manager Retail Branch Server 4.3
SUSE Manager Server 4.0
SUSE Manager Server 4.2
SUSE Manager Server 4.3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND unrar is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND unrar is not affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND
  • pcre is affected
  • OR strongswan is affected
  • OR util-linux is affected
  • OR vpnc is affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND
  • binutils is affected
  • OR kernel-default is affected
  • OR kernel-source is affected
  • OR libqt4 is affected
  • OR libxml2 is affected
  • OR qemu is not affected
  • OR util-linux is affected
  • OR vpnc is affected
  • OR xen is not affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND
  • hexchat is affected
  • OR icu is affected
  • OR kernel-default is affected
  • OR kernel-source is affected
  • OR libqt4 is affected
  • OR libqt5-qtbase is affected
  • OR openssl is affected
  • OR systemd is not affected
  • OR unrar is affected
  • OR xen is affected
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND unrar is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • OR SUSE Linux Enterprise Server 12 SP3 is installed
  • AND unrar is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • OR SUSE Linux Enterprise Server 12 SP2 is installed
  • OR SUSE Linux Enterprise Server 12 SP3 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • AND unrar is not affected
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND unrar is not affected
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • kernel-default is affected
  • OR kernel-source is affected
  • OR libqt5-qtbase is affected
  • OR openssl is not affected
  • OR systemd is not affected
  • OR unrar is not affected
  • OR xen is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed
  • AND pcre is affected
  • OR Package Information
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed
  • AND systemd is not affected
  • OR Package Information
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND unrar is not affected
  • OR Package Information
  • SUSE Linux Enterprise Server 12 is installed
  • AND
  • pcre is affected
  • OR strongswan is affected
  • OR util-linux is affected
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • AND
  • compat-openssl098 is affected
  • OR kernel-source-azure is not affected
  • OR pcre2 is affected
  • OR strongswan is affected
  • OR systemd is not affected
  • OR wget is affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • OR SUSE Linux Enterprise Server 12 SP1 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND
  • libqt4 is affected
  • OR util-linux is affected
  • OR vpnc is affected
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • AND
  • binutils is affected
  • OR binutils-devel is affected
  • OR libctf-nobfd0 is affected
  • OR libctf0 is affected
  • OR libopenssl0_9_8 is affected
  • OR kernel-source-azure is not affected
  • OR libqt4 is affected
  • OR libqt4-32bit is affected
  • OR libqt4-qt3support is affected
  • OR libqt4-qt3support-32bit is affected
  • OR libqt4-sql is affected
  • OR libqt4-sql-32bit is affected
  • OR libqt4-sql-sqlite is affected
  • OR libqt4-x11 is affected
  • OR libqt4-x11-32bit is affected
  • OR libpcre2-16-0 is affected
  • OR libpcre2-32-0 is affected
  • OR libpcre2-8-0 is affected
  • OR libpcre2-posix2 is affected
  • OR squidGuard is affected
  • OR squidGuard-doc is affected
  • OR strongswan is affected
  • OR strongswan-doc is affected
  • OR strongswan-hmac is affected
  • OR strongswan-ipsec is affected
  • OR strongswan-libs0 is affected
  • OR libsystemd0 is not affected
  • OR libsystemd0-32bit is not affected
  • OR libudev-devel is not affected
  • OR libudev1 is not affected
  • OR libudev1-32bit is not affected
  • OR systemd is not affected
  • OR systemd-32bit is not affected
  • OR systemd-bash-completion is not affected
  • OR systemd-devel is not affected
  • OR systemd-sysvinit is not affected
  • OR udev is not affected
  • OR wget is affected
  • OR Package Information
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND
  • binutils is affected
  • OR kernel-default is affected
  • OR kernel-source is affected
  • OR libqt4 is affected
  • OR libxml2 is affected
  • OR qemu is not affected
  • OR util-linux is affected
  • OR xen is not affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 is installed
  • OR SUSE Linux Enterprise Server 12 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND
  • util-linux is affected
  • OR vpnc is affected
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed
  • AND
  • libopenssl0_9_8 is affected
  • OR kernel-source-azure is not affected
  • OR libqt4 is affected
  • OR libqt4-32bit is affected
  • OR libqt4-qt3support is affected
  • OR libqt4-qt3support-32bit is affected
  • OR libqt4-sql is affected
  • OR libqt4-sql-32bit is affected
  • OR libqt4-sql-sqlite is affected
  • OR libqt4-x11 is affected
  • OR libqt4-x11-32bit is affected
  • OR libmysqlclient18 is affected
  • OR libmysqlclient18-32bit is affected
  • OR mariadb is affected
  • OR mariadb-client is affected
  • OR mariadb-errormessages is affected
  • OR mariadb-tools is affected
  • OR libpcre2-16-0 is affected
  • OR libpcre2-32-0 is affected
  • OR libpcre2-8-0 is affected
  • OR libpcre2-posix2 is affected
  • OR squidGuard is affected
  • OR squidGuard-doc is affected
  • OR libsystemd0 is not affected
  • OR libsystemd0-32bit is not affected
  • OR libudev-devel is not affected
  • OR libudev1 is not affected
  • OR libudev1-32bit is not affected
  • OR systemd is not affected
  • OR systemd-32bit is not affected
  • OR systemd-bash-completion is not affected
  • OR systemd-devel is not affected
  • OR systemd-sysvinit is not affected
  • OR udev is not affected
  • OR wget is affected
  • OR Package Information
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND
  • kernel-default is affected
  • OR kernel-source is affected
  • OR libqt5-qtbase is affected
  • OR openssl is not affected
  • OR systemd is not affected
  • OR unrar is not affected
  • OR xen is not affected
  • OR Package Information
  • SUSE Linux Enterprise Server 12 SP5 is installed
  • AND
  • kernel-devel-azure is not affected
  • OR kernel-source-azure is not affected
  • OR libpcre2-16-0 is affected
  • OR libpcre2-32-0 is affected
  • OR libpcre2-8-0 is affected
  • OR libpcre2-posix2 is affected
  • OR strongswan is affected
  • OR strongswan-doc is affected
  • OR strongswan-hmac is affected
  • OR strongswan-ipsec is affected
  • OR strongswan-libs0 is affected
  • OR libsystemd0 is not affected
  • OR libsystemd0-32bit is not affected
  • OR libudev-devel is not affected
  • OR libudev1 is not affected
  • OR libudev1-32bit is not affected
  • OR systemd is not affected
  • OR systemd-32bit is not affected
  • OR systemd-bash-completion is not affected
  • OR systemd-devel is not affected
  • OR systemd-sysvinit is not affected
  • OR udev is not affected
  • OR wget is affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 is installed
  • OR SUSE Linux Enterprise Server 15 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND systemd is not affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 15 SP1 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP1 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • OR SUSE Linux Enterprise Server 15 SP1 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • OR SUSE Linux Enterprise Storage 6 is installed
  • OR SUSE Manager Proxy 4.0 is installed
  • OR SUSE Manager Retail Branch Server 4.0 is installed
  • OR SUSE Manager Server 4.0 is installed
  • AND
  • kernel-default is not affected
  • OR kernel-source is not affected
  • OR systemd is not affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 15 SP1 is installed
  • OR SUSE Linux Enterprise Desktop 15 SP4 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP1 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP4 is installed
  • OR SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed
  • OR SUSE Linux Enterprise Module for Development Tools 15 SP4 is installed
  • OR SUSE Linux Enterprise Server 15 SP1 is installed
  • OR SUSE Linux Enterprise Server 15 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed
  • OR SUSE Linux Enterprise Storage 6 is installed
  • OR SUSE Manager Proxy 4.0 is installed
  • OR SUSE Manager Proxy 4.3 is installed
  • OR SUSE Manager Retail Branch Server 4.0 is installed
  • OR SUSE Manager Retail Branch Server 4.3 is installed
  • OR SUSE Manager Server 4.0 is installed
  • OR SUSE Manager Server 4.3 is installed
  • AND
  • kernel-default is not affected
  • OR kernel-source is not affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 15 SP4 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP4 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP4 is installed
  • OR SUSE Linux Enterprise Server 15 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed
  • OR SUSE Manager Proxy 4.3 is installed
  • OR SUSE Manager Retail Branch Server 4.3 is installed
  • OR SUSE Manager Server 4.3 is installed
  • AND
  • kernel-default is not affected
  • OR kernel-default-devel is not affected
  • OR kernel-devel is not affected
  • OR kernel-macros is not affected
  • OR libcryptopp-devel is not affected
  • OR libcryptopp8_6_0 is not affected
  • OR libpcre1 is not affected
  • OR libpcre1-32bit is not affected
  • OR libpcre16-0 is not affected
  • OR libpcrecpp0 is not affected
  • OR libpcrecpp0-32bit is not affected
  • OR libpcreposix0 is not affected
  • OR pcre-devel is not affected
  • OR pcre-tools is not affected
  • OR libpcre2-16-0 is not affected
  • OR libpcre2-32-0 is not affected
  • OR libpcre2-8-0 is not affected
  • OR libpcre2-posix2 is not affected
  • OR pcre2-devel is not affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 15 SP3 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Server 4.2 is installed
  • AND
  • libcryptopp-devel is not affected
  • OR libcryptopp5_6_5 is not affected
  • OR libpcre1 is not affected
  • OR libpcre1-32bit is not affected
  • OR libpcre16-0 is not affected
  • OR libpcrecpp0 is not affected
  • OR libpcrecpp0-32bit is not affected
  • OR libpcreposix0 is not affected
  • OR pcre-devel is not affected
  • OR pcre-tools is not affected
  • OR libpcre2-16-0 is not affected
  • OR libpcre2-32-0 is not affected
  • OR libpcre2-8-0 is not affected
  • OR libpcre2-posix2 is not affected
  • OR pcre2-devel is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND pcre is affected
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • pcre is affected
  • OR php53 is affected
  • OR util-linux is affected
  • OR wget is affected
    • BACK