Oval Definition:oval:org.opensuse.security:def:20181000801
Revision Date:2022-06-30Version:1
Title:CVE-2018-1000801
Description:

okular version 18.08 and earlier contains a Directory Traversal vulnerability in function "unpackDocumentArchive(...)" in "core/document.cpp" that can result in Arbitrary file creation on the user workstation. This attack appear to be exploitable via he victim must open a specially crafted Okular archive. This issue appears to have been corrected in version 18.08.1
Family:unixClass:vulnerability
Status:Reference(s):CVE-2018-1000801
openSUSE-SU-2018:2727-1
openSUSE-SU-2018:2733-1
openSUSE-SU-2018:2733-2
Mitre CVE-2018-1000801
SUSE CVE-2018-1000801
openSUSE-SU-2018:2727-1
openSUSE-SU-2018:2733-1
openSUSE-SU-2018:2733-2
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.3
openSUSE Leap 15.4
openSUSE Leap 42.3
openSUSE Tumbleweed
SUSE Linux Enterprise High Performance Computing 12 SP3
SUSE Linux Enterprise High Performance Computing 15
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server 15
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Package Hub for SUSE Linux Enterprise 12 SP3
SUSE Package Hub for SUSE Linux Enterprise 15
Product(s):
Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 SP3 is installed
  • AND Package Information
  • okular-17.04.2-12 is installed
  • OR okular-devel-17.04.2-12 is installed
  • OR okular-lang-17.04.2-12 is installed
    • Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • okular-17.12.3-lp150.5 is installed
  • AND okular is signed with openSUSE key
  • OR
  • okular-devel-17.12.3-lp150.5 is installed
  • AND okular-devel is signed with openSUSE key
  • OR
  • okular-lang-17.12.3-lp150.5 is installed
  • AND okular-lang is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 42.3 is installed
  • AND Package Information
  • okular-17.04.2-7 is installed
  • AND okular is signed with openSUSE key
  • OR
  • okular-devel-17.04.2-7 is installed
  • AND okular-devel is signed with openSUSE key
  • OR
  • okular-lang-17.04.2-7 is installed
  • AND okular-lang is signed with openSUSE key
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 is installed
  • AND Package Information
  • okular-17.12.3-bp150.5 is installed
  • OR okular-devel-17.12.3-bp150.5 is installed
  • OR okular-lang-17.12.3-bp150.5 is installed
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • okular-21.08.1-1.2 is installed
  • OR okular-devel-21.08.1-1.2 is installed
  • OR okular-lang-21.08.1-1.2 is installed
  • OR okular-mobile-21.08.1-1.2 is installed
  • OR okular-spectre-21.08.1-1.2 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 SP3 is installed
  • AND Package Information
  • okular-17.04.2-12.1 is installed
  • OR okular-devel-17.04.2-12.1 is installed
  • OR okular-lang-17.04.2-12.1 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 is installed
  • AND Package Information
  • okular-17.12.3-bp150.5.1 is installed
  • OR okular-devel-17.12.3-bp150.5.1 is installed
  • OR okular-lang-17.12.3-bp150.5.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.3 is installed
  • AND Package Information
  • okular-20.04.2-bp153.1.31 is installed
  • AND okular is signed with openSUSE key
  • OR
  • okular-lang-20.04.2-bp153.1.31 is installed
  • AND okular-lang is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 15.4 is installed
  • AND Package Information
  • okular-21.12.3-bp154.1.25 is installed
  • AND okular is signed with openSUSE key
  • OR
  • okular-lang-21.12.3-bp154.1.25 is installed
  • AND okular-lang is signed with openSUSE key
    • BACK