OVAL Reference oval:org.opensuse.security:def:201714176

Oval Definition:

oval:org.opensuse.security:def:201714176

Revision Date:	2022-05-20	Version:	1
Title:	CVE-2017-14176
Description:	Bazaar through 2.7.0, when Subprocess SSH is used, allows remote attackers to execute arbitrary commands via a bzr+ssh URL with an initial dash character in the hostname, a related issue to CVE-2017-9800, CVE-2017-12836, CVE-2017-12976, CVE-2017-16228, CVE-2017-1000116, and CVE-2017-1000117.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2017-14176 SUSE-SU-2018:1489-1 Mitre CVE-2017-14176 SUSE CVE-2017-14176 SUSE-SU-2018:1489-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Software Development Kit 11 SP4	Product(s):
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND bzr-1.8-3.5 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND bzr-1.8-3.5.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 15 is installed OR SUSE Linux Enterprise High Performance Computing 15 is installed OR SUSE Linux Enterprise Module for Development Tools 15 is installed OR SUSE Linux Enterprise Server 15 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 is installed AND bzr is affected

BACK