Oval Definition:	oval:org.opensuse.security:def:20178114
Revision Date: 2022-06-30 Version: 1 Title: CVE-2017-8114 Description: Roundcube Webmail allows arbitrary password resets by authenticated users. This affects versions before 1.0.11, 1.1.x before 1.1.9, and 1.2.x before 1.2.5. The problem is caused by an improperly restricted exec call in the virtualmin and sasl drivers of the password plugin. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-8114 Mitre CVE-2017-8114 SUSE CVE-2017-8114 openSUSE-SU-2017:1263-1 Platform(s): openSUSE Leap 42.1 openSUSE Leap 42.2 openSUSE Tumbleweed Product(s): Definition Synopsis openSUSE Leap 42.1 is installed AND Package Information roundcubemail-1.1.9-21.1 is installed AND roundcubemail is signed with openSUSE key Definition Synopsis openSUSE Leap 42.2 is installed AND Package Information roundcubemail-1.1.9-17.6.1 is installed AND roundcubemail is signed with openSUSE key Definition Synopsis openSUSE Tumbleweed is installed AND roundcubemail-1.4.11-1.3 is installed
BACK