Oval Definition:oval:org.opensuse.security:def:201715535
Revision Date:2022-05-20Version:1
Title:CVE-2017-15535
Description:

MongoDB 3.4.x before 3.4.10, and 3.5.x-development, has a disabled-by-default configuration setting, networkMessageCompressors (aka wire protocol compression), which exposes a vulnerability when enabled that could be exploited by a malicious attacker to deny service or modify memory.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2017-15535
openSUSE-SU-2017:3018-1
openSUSE-SU-2017:3022-1
Mitre CVE-2017-15535
SUSE CVE-2017-15535
openSUSE-SU-2017:3018-1
openSUSE-SU-2017:3022-1
Platform(s):openSUSE Leap 42.3
SUSE Linux Enterprise High Performance Computing 12 SP2
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server for SAP Applications 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE OpenStack Cloud 7
SUSE Package Hub for SUSE Linux Enterprise 12 SP2
Product(s):
Definition Synopsis
  • openSUSE Leap 42.3 is installed
  • AND Package Information
  • mongodb-3.4.10-3 is installed
  • AND mongodb is signed with openSUSE key
  • OR
  • mongodb-mongoperf-3.4.10-3 is installed
  • AND mongodb-mongoperf is signed with openSUSE key
  • OR
  • mongodb-mongos-3.4.10-3 is installed
  • AND mongodb-mongos is signed with openSUSE key
  • OR
  • mongodb-server-3.4.10-3 is installed
  • AND mongodb-server is signed with openSUSE key
  • OR
  • mongodb-shell-3.4.10-3 is installed
  • AND mongodb-shell is signed with openSUSE key
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 SP2 is installed
  • AND Package Information
  • mongodb-3.4.10-5 is installed
  • OR mongodb-mongoperf-3.4.10-5 is installed
  • OR mongodb-mongos-3.4.10-5 is installed
  • OR mongodb-server-3.4.10-5 is installed
  • OR mongodb-shell-3.4.10-5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND mongodb is not affected
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 SP2 is installed
  • AND Package Information
  • mongodb-3.4.10-5.1 is installed
  • OR mongodb-mongoperf-3.4.10-5.1 is installed
  • OR mongodb-mongos-3.4.10-5.1 is installed
  • OR mongodb-server-3.4.10-5.1 is installed
  • OR mongodb-shell-3.4.10-5.1 is installed
    • BACK