Oval Definition:	oval:org.opensuse.security:def:201715698
Revision Date: 2023-06-22 Version: 1 Title: CVE-2017-15698 Description: When parsing the AIA-Extension field of a client certificate, Apache Tomcat Native Connector 1.2.0 to 1.2.14 and 1.1.23 to 1.1.34 did not correctly handle fields longer than 127 bytes. The result of the parsing error was to skip the OCSP check. It was therefore possible for client certificates that should have been rejected (if the OCSP check had been made) to be accepted. Users not using OCSP checks are not affected by this vulnerability. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-15698 SUSE-SU-2019:14014-1 Mitre CVE-2017-15698 SUSE CVE-2017-15698 SUSE-SU-2019:14014-1 Platform(s): SUSE Enterprise Storage 7 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Desktop 15 SP3 SUSE Linux Enterprise Desktop 15 SP4 SUSE Linux Enterprise Desktop 15 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise High Performance Computing 15 SP4 SUSE Linux Enterprise High Performance Computing 15 SP5 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP5 SUSE Linux Enterprise Module for Web and Scripting 15 SP5 SUSE Linux Enterprise Point of Sale 11 SP3 SUSE Linux Enterprise Real Time 15 SP2 SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Server 11 SP3-TERADATA SUSE Linux Enterprise Server 11 SP4-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server 15 SP4 SUSE Linux Enterprise Server 15 SP5 SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA SUSE Linux Enterprise Server for SAP Applications 11 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 11 SP4-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SP5 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Software Development Kit 12 SP5 SUSE Linux Enterprise Storage 7.1 SUSE Manager Proxy 4.1 SUSE Manager Proxy 4.2 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.1 SUSE Manager Retail Branch Server 4.2 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.1 SUSE Manager Server 4.2 SUSE Manager Server 4.3 Product(s): Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND libtcnative-1-0 is affected Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND libtcnative-1-0-1.2.17-1.12 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND libtcnative-1-0-1.2.17-1 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND libtcnative-1-0-devel-1.2.17-1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP4-LTSS is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP4-LTSS is installed AND libtcnative-1-0-1.3.4-12.5.5 is installed Definition Synopsis Release Information SUSE Linux Enterprise Point of Sale 11 SP3 is installed OR SUSE Linux Enterprise Server 11 SP4-LTSS is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP4-LTSS is installed AND libtcnative-1-0-1.3.4-12.5.5 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3-TERADATA is installed AND libtcnative-1-0-1.3.4-12.5.5 is installed Definition Synopsis Release Information SUSE Linux Enterprise Point of Sale 11 SP3 is installed OR SUSE Linux Enterprise Server 11 SP1-TERADATA is installed OR SUSE Linux Enterprise Server 11 SP3-TERADATA is installed OR SUSE Linux Enterprise Server 11 SP4-LTSS is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP3-TERADATA is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP4-LTSS is installed AND libtcnative-1-0-1.3.4-12.5.5 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP1-TERADATA is installed OR SUSE Linux Enterprise Server 11 SP3-TERADATA is installed OR SUSE Linux Enterprise Server 11 SP4-LTSS is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP3-TERADATA is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP4-LTSS is installed AND libtcnative-1-0-1.3.4-12.5.5 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND libtcnative-1-0-1.2.17-1 is installed OR Package Information SUSE Linux Enterprise Server 12 SP5 is installed AND libtcnative-1-0-1.2.23-3.3 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND libtcnative-1-0-1.2.17-1 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND libtcnative-1-0-devel-1.2.17-1 is installed OR Package Information SUSE Linux Enterprise Server 12 SP5 is installed AND libtcnative-1-0-1.2.23-3.3 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND libtcnative-1-0-1.2.17-1 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND libtcnative-1-0-devel-1.2.17-1 is installed OR Package Information SUSE Linux Enterprise High Performance Computing 12 SP5 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed AND libtcnative-1-0-1.2.23-3.3 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND libtcnative-1-0-devel-1.2.23-3.3 is installed Definition Synopsis Release Information SUSE Linux Enterprise Point of Sale 11 SP3 is installed AND libtcnative-1-0-1.3.4-12.5.5.2 is installed OR Package Information SUSE Linux Enterprise Server 11 SP1-TERADATA is installed OR SUSE Linux Enterprise Server 11 SP3-TERADATA is installed AND libtcnative-1-0-1.3.4-12.5.5.2 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4-LTSS is installed AND libtcnative-1-0-1.3.4-12.5.5.2 is installed Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP3 is installed OR SUSE Linux Enterprise Desktop 15 SP4 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP4 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP4 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed OR SUSE Linux Enterprise Storage 7.1 is installed OR SUSE Manager Proxy 4.2 is installed OR SUSE Manager Proxy 4.3 is installed OR SUSE Manager Retail Branch Server 4.2 is installed OR SUSE Manager Retail Branch Server 4.3 is installed OR SUSE Manager Server 4.2 is installed OR SUSE Manager Server 4.3 is installed AND libtcnative-1-0 is affected Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP1-TERADATA is installed OR SUSE Linux Enterprise Server 11 SP3-TERADATA is installed AND libtcnative-1-0-1.3.4-12.5.5.2 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4-LTSS is installed AND libtcnative-1-0-1.3.4-12.5.5.2 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP2 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND libtcnative-1-0 is affected OR Package Information SUSE Linux Enterprise Server 12 SP5 is installed AND libtcnative-1-0-1.2.23-3.3.3 is installed OR Package Information SUSE Linux Enterprise Server 12 SP4 is installed AND libtcnative-1-0-1.2.17-1.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND libtcnative-1-0 is affected Definition Synopsis Release Information SUSE Linux Enterprise Real Time 15 SP2 is installed AND libtcnative-1-0 is affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed OR SUSE Manager Proxy 4.1 is installed OR SUSE Manager Retail Branch Server 4.1 is installed OR SUSE Manager Server 4.1 is installed AND libtcnative-1-0 is affected OR libtcnative-1-0-devel is affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP3 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Linux Enterprise Storage 7.1 is installed OR SUSE Manager Proxy 4.2 is installed OR SUSE Manager Retail Branch Server 4.2 is installed OR SUSE Manager Server 4.2 is installed AND libtcnative-1-0 is affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP3 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed OR SUSE Linux Enterprise Real Time 15 SP2 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Linux Enterprise Storage 7.1 is installed OR SUSE Manager Proxy 4.2 is installed OR SUSE Manager Retail Branch Server 4.2 is installed OR SUSE Manager Server 4.2 is installed AND libtcnative-1-0 is affected OR Package Information SUSE Enterprise Storage 7 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed AND libtcnative-1-0 is affected OR libtcnative-1-0-devel is affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP4 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP4 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP4 is installed OR SUSE Linux Enterprise Server 15 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed OR SUSE Manager Proxy 4.3 is installed OR SUSE Manager Retail Branch Server 4.3 is installed OR SUSE Manager Server 4.3 is installed AND libtcnative-1-0 is affected Definition Synopsis Release Information SUSE Linux Enterprise High Performance Computing 12 SP5 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed AND libtcnative-1-0-1.2.23-3.3.3 is installed OR Package Information SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND libtcnative-1-0-devel-1.2.23-3.3.3 is installed Definition Synopsis Release Information SUSE Linux Enterprise Real Time 15 SP2 is installed AND libtcnative-1-0 is affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed AND libtcnative-1-0 is affected OR libtcnative-1-0-devel is affected Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND libtcnative-1-0-1.2.17-1.12 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND libtcnative-1-0-devel-1.2.17-1.12 is installed Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP5 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP5 is installed OR SUSE Linux Enterprise Server 15 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed AND libtcnative-1-0 is affected OR Package Information SUSE Linux Enterprise High Performance Computing 15 SP5 is installed OR SUSE Linux Enterprise Module for Web and Scripting 15 SP5 is installed OR SUSE Linux Enterprise Server 15 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed AND libtcnative-1-0-devel is affected
BACK