Oval Definition:oval:org.opensuse.security:def:20176410
Revision Date:2021-10-24Version:1
Title:CVE-2017-6410
Description:

kpac/script.cpp in KDE kio before 5.32 and kdelibs before 4.14.30 calls the PAC FindProxyForURL function with a full https URL (potentially including Basic Authentication credentials, a query string, or PATH_INFO), which allows remote attackers to obtain sensitive information via a crafted PAC file.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2017-6410
openSUSE-SU-2017:0677-1
openSUSE-SU-2017:0680-1
Mitre CVE-2017-6410
SUSE CVE-2017-6410
openSUSE-SU-2017:0677-1
openSUSE-SU-2017:0680-1
Platform(s):openSUSE Leap 42.1
openSUSE Leap 42.2
SUSE Linux Enterprise High Performance Computing 12 SP1
SUSE Linux Enterprise High Performance Computing 12 SP2
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Package Hub for SUSE Linux Enterprise 12 SP1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2
Product(s):
Definition Synopsis
  • openSUSE Leap 42.2 is installed
  • AND Package Information
  • kdelibs4-4.14.25-5.2 is installed
  • AND kdelibs4 is signed with openSUSE key
  • OR
  • kdelibs4-apidocs-4.14.25-5.2 is installed
  • AND kdelibs4-apidocs is signed with openSUSE key
  • OR
  • kdelibs4-branding-upstream-4.14.25-5.2 is installed
  • AND kdelibs4-branding-upstream is signed with openSUSE key
  • OR
  • kdelibs4-core-4.14.25-5.2 is installed
  • AND kdelibs4-core is signed with openSUSE key
  • OR
  • kdelibs4-doc-4.14.25-5.2 is installed
  • AND kdelibs4-doc is signed with openSUSE key
  • OR
  • kio-5.26.0-6.2 is installed
  • AND kio is signed with openSUSE key
  • OR
  • kio-32bit-5.26.0-6.2 is installed
  • AND kio-32bit is signed with openSUSE key
  • OR
  • kio-core-5.26.0-6.2 is installed
  • AND kio-core is signed with openSUSE key
  • OR
  • kio-core-32bit-5.26.0-6.2 is installed
  • AND kio-core-32bit is signed with openSUSE key
  • OR
  • kio-devel-5.26.0-6.2 is installed
  • AND kio-devel is signed with openSUSE key
  • OR
  • kio-devel-32bit-5.26.0-6.2 is installed
  • AND kio-devel-32bit is signed with openSUSE key
  • OR
  • kio-lang-5.26.0-6.2 is installed
  • AND kio-lang is signed with openSUSE key
  • OR
  • libkde4-4.14.25-5.2 is installed
  • AND libkde4 is signed with openSUSE key
  • OR
  • libkde4-32bit-4.14.25-5.2 is installed
  • AND libkde4-32bit is signed with openSUSE key
  • OR
  • libkde4-devel-4.14.25-5.2 is installed
  • AND libkde4-devel is signed with openSUSE key
  • OR
  • libkdecore4-4.14.25-5.2 is installed
  • AND libkdecore4 is signed with openSUSE key
  • OR
  • libkdecore4-32bit-4.14.25-5.2 is installed
  • AND libkdecore4-32bit is signed with openSUSE key
  • OR
  • libkdecore4-devel-4.14.25-5.2 is installed
  • AND libkdecore4-devel is signed with openSUSE key
  • OR
  • libksuseinstall-devel-4.14.25-5.2 is installed
  • AND libksuseinstall-devel is signed with openSUSE key
  • OR
  • libksuseinstall1-4.14.25-5.2 is installed
  • AND libksuseinstall1 is signed with openSUSE key
  • OR
  • libksuseinstall1-32bit-4.14.25-5.2 is installed
  • AND libksuseinstall1-32bit is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 42.1 is installed
  • AND Package Information
  • kdelibs4-4.14.18-15.2 is installed
  • AND kdelibs4 is signed with openSUSE key
  • OR
  • kdelibs4-apidocs-4.14.18-15.2 is installed
  • AND kdelibs4-apidocs is signed with openSUSE key
  • OR
  • kdelibs4-branding-upstream-4.14.18-15.2 is installed
  • AND kdelibs4-branding-upstream is signed with openSUSE key
  • OR
  • kdelibs4-core-4.14.18-15.2 is installed
  • AND kdelibs4-core is signed with openSUSE key
  • OR
  • kdelibs4-doc-4.14.18-15.2 is installed
  • AND kdelibs4-doc is signed with openSUSE key
  • OR
  • kio-5.21.0-23.2 is installed
  • AND kio is signed with openSUSE key
  • OR
  • kio-32bit-5.21.0-23.2 is installed
  • AND kio-32bit is signed with openSUSE key
  • OR
  • kio-core-5.21.0-23.2 is installed
  • AND kio-core is signed with openSUSE key
  • OR
  • kio-core-32bit-5.21.0-23.2 is installed
  • AND kio-core-32bit is signed with openSUSE key
  • OR
  • kio-devel-5.21.0-23.2 is installed
  • AND kio-devel is signed with openSUSE key
  • OR
  • kio-devel-32bit-5.21.0-23.2 is installed
  • AND kio-devel-32bit is signed with openSUSE key
  • OR
  • kio-lang-5.21.0-23.2 is installed
  • AND kio-lang is signed with openSUSE key
  • OR
  • libkde4-4.14.18-15.2 is installed
  • AND libkde4 is signed with openSUSE key
  • OR
  • libkde4-32bit-4.14.18-15.2 is installed
  • AND libkde4-32bit is signed with openSUSE key
  • OR
  • libkde4-devel-4.14.18-15.2 is installed
  • AND libkde4-devel is signed with openSUSE key
  • OR
  • libkdecore4-4.14.18-15.2 is installed
  • AND libkdecore4 is signed with openSUSE key
  • OR
  • libkdecore4-32bit-4.14.18-15.2 is installed
  • AND libkdecore4-32bit is signed with openSUSE key
  • OR
  • libkdecore4-devel-4.14.18-15.2 is installed
  • AND libkdecore4-devel is signed with openSUSE key
  • OR
  • libksuseinstall-devel-4.14.18-15.2 is installed
  • AND libksuseinstall-devel is signed with openSUSE key
  • OR
  • libksuseinstall1-4.14.18-15.2 is installed
  • AND libksuseinstall1 is signed with openSUSE key
  • OR
  • libksuseinstall1-32bit-4.14.18-15.2 is installed
  • AND libksuseinstall1-32bit is signed with openSUSE key
    • Definition Synopsis
  • Release Information
  • SUSE Package Hub for SUSE Linux Enterprise 12 SP2 is installed
  • AND
  • kdelibs4-4.14.25-5 is installed
  • OR kdelibs4-apidocs-4.14.25-5 is installed
  • OR kdelibs4-branding-upstream-4.14.25-5 is installed
  • OR kdelibs4-core-4.14.25-5 is installed
  • OR kdelibs4-doc-4.14.25-5 is installed
  • OR kio-5.26.0-5 is installed
  • OR kio-32bit-5.26.0-6 is installed
  • OR kio-core-5.26.0-5 is installed
  • OR kio-core-32bit-5.26.0-6 is installed
  • OR kio-devel-5.26.0-5 is installed
  • OR kio-devel-32bit-5.26.0-6 is installed
  • OR kio-lang-5.26.0-5 is installed
  • OR libkde4-4.14.25-5 is installed
  • OR libkde4-32bit-4.14.25-5 is installed
  • OR libkde4-devel-4.14.25-5 is installed
  • OR libkdecore4-4.14.25-5 is installed
  • OR libkdecore4-32bit-4.14.25-5 is installed
  • OR libkdecore4-devel-4.14.25-5 is installed
  • OR libksuseinstall-devel-4.14.25-5 is installed
  • OR libksuseinstall1-4.14.25-5 is installed
  • OR libksuseinstall1-32bit-4.14.25-5 is installed
  • OR Package Information
  • SUSE Package Hub for SUSE Linux Enterprise 12 SP1 is installed
  • AND
  • kdelibs4-4.14.18-6 is installed
  • OR kdelibs4-apidocs-4.14.18-6 is installed
  • OR kdelibs4-branding-upstream-4.14.18-6 is installed
  • OR kdelibs4-core-4.14.18-6 is installed
  • OR kdelibs4-doc-4.14.18-6 is installed
  • OR kio-5.20.0-6 is installed
  • OR kio-32bit-5.26.0-6 is installed
  • OR kio-core-5.20.0-6 is installed
  • OR kio-core-32bit-5.26.0-6 is installed
  • OR kio-devel-5.20.0-6 is installed
  • OR kio-devel-32bit-5.26.0-6 is installed
  • OR kio-lang-5.20.0-6 is installed
  • OR libkde4-4.14.18-6 is installed
  • OR libkde4-32bit-4.14.25-5 is installed
  • OR libkde4-devel-4.14.18-6 is installed
  • OR libkdecore4-4.14.18-6 is installed
  • OR libkdecore4-32bit-4.14.25-5 is installed
  • OR libkdecore4-devel-4.14.18-6 is installed
  • OR libksuseinstall-devel-4.14.18-6 is installed
  • OR libksuseinstall1-4.14.18-6 is installed
  • OR libksuseinstall1-32bit-4.14.25-5 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Package Hub for SUSE Linux Enterprise 12 SP2 is installed
  • AND
  • kdelibs4-4.14.25-5.3 is installed
  • OR kdelibs4-apidocs-4.14.25-5.3 is installed
  • OR kdelibs4-branding-upstream-4.14.25-5.3 is installed
  • OR kdelibs4-core-4.14.25-5.3 is installed
  • OR kdelibs4-doc-4.14.25-5.3 is installed
  • OR kio-5.26.0-5.1 is installed
  • OR kio-core-5.26.0-5.1 is installed
  • OR kio-devel-5.26.0-5.1 is installed
  • OR kio-lang-5.26.0-5.1 is installed
  • OR libkde4-4.14.25-5.3 is installed
  • OR libkde4-devel-4.14.25-5.3 is installed
  • OR libkdecore4-4.14.25-5.3 is installed
  • OR libkdecore4-devel-4.14.25-5.3 is installed
  • OR libksuseinstall-devel-4.14.25-5.3 is installed
  • OR libksuseinstall1-4.14.25-5.3 is installed
  • OR Package Information
  • SUSE Package Hub for SUSE Linux Enterprise 12 SP1 is installed
  • AND
  • kdelibs4-4.14.18-6.2 is installed
  • OR kdelibs4-apidocs-4.14.18-6.2 is installed
  • OR kdelibs4-branding-upstream-4.14.18-6.2 is installed
  • OR kdelibs4-core-4.14.18-6.2 is installed
  • OR kdelibs4-doc-4.14.18-6.2 is installed
  • OR kio-5.20.0-6.2 is installed
  • OR kio-core-5.20.0-6.2 is installed
  • OR kio-devel-5.20.0-6.2 is installed
  • OR kio-lang-5.20.0-6.2 is installed
  • OR libkde4-4.14.18-6.2 is installed
  • OR libkde4-devel-4.14.18-6.2 is installed
  • OR libkdecore4-4.14.18-6.2 is installed
  • OR libkdecore4-devel-4.14.18-6.2 is installed
  • OR libksuseinstall-devel-4.14.18-6.2 is installed
  • OR libksuseinstall1-4.14.18-6.2 is installed
    • BACK