Oval Definition:oval:org.opensuse.security:def:20175078
Revision Date:2022-06-30Version:1
Title:CVE-2017-5078
Description:

Insufficient validation of untrusted input in Blink's mailto: handling in Google Chrome prior to 59.0.3071.86 for Linux, Windows, and Mac allowed a remote attacker to perform command injection via a crafted HTML page, a similar issue to CVE-2004-0121. For example, characters such as * have an incorrect interaction with xdg-email in xdg-utils, and a space character can be used in front of a command-line argument.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2017-5078
openSUSE-SU-2017:1501-1
openSUSE-SU-2017:1502-1
Mitre CVE-2017-5078
SUSE CVE-2017-5078
openSUSE-SU-2017:1501-1
openSUSE-SU-2017:1502-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.3
openSUSE Leap 15.4
openSUSE Leap 42.2
openSUSE Tumbleweed
SUSE Linux Enterprise High Performance Computing 12 SP2
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server for SAP Applications 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Package Hub for SUSE Linux Enterprise 12 SP2
Product(s):
Definition Synopsis
  • openSUSE Leap 42.2 is installed
  • AND Package Information
  • chromedriver-59.0.3071.86-104.15.1 is installed
  • AND chromedriver is signed with openSUSE key
  • OR
  • chromium-59.0.3071.86-104.15.1 is installed
  • AND chromium is signed with openSUSE key
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 SP2 is installed
  • AND Package Information
  • chromedriver-59.0.3071.86-20 is installed
  • OR chromium-59.0.3071.86-20 is installed
    • Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • chromium-66.0.3359.170-lp150.1 is installed
  • AND chromium is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • chromedriver-93.0.4577.82-1.1 is installed
  • OR chromium-93.0.4577.82-1.1 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 SP2 is installed
  • AND Package Information
  • chromedriver-59.0.3071.86-20.1 is installed
  • OR chromium-59.0.3071.86-20.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.3 is installed
  • AND Package Information
  • chromium-90.0.4430.212-bp153.1.1 is installed
  • AND chromium is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 15.4 is installed
  • AND Package Information
  • chromium-101.0.4951.64-bp154.1.2 is installed
  • AND chromium is signed with openSUSE key
    • BACK