Oval Definition:	oval:org.opensuse.security:def:20185296
Revision Date: 2022-09-02 Version: 1 Title: CVE-2018-5296 Description: In PoDoFo 0.9.5, there is an uncontrolled memory allocation in the PdfParser::ReadXRefSubsection function (base/PdfParser.cpp). Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted pdf file. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-5296 SUSE-SU-2019:0393-1 openSUSE-SU-2019:0066-1 Mitre CVE-2018-5296 SUSE CVE-2018-5296 SUSE-SU-2019:0393-1 openSUSE-SU-2019:0066-1 Platform(s): openSUSE Leap 42.3 openSUSE Tumbleweed SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Build System Kit 12 SP4 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Desktop 12 SP5 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Software Development Kit 12 SP5 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SP5 Product(s): Definition Synopsis openSUSE Leap 42.3 is installed AND Package Information libpodofo-devel-0.9.6-10.3 is installed AND libpodofo-devel is signed with openSUSE key OR libpodofo0_9_6-0.9.6-10.3 is installed AND libpodofo0_9_6 is signed with openSUSE key OR podofo-0.9.6-10.3 is installed AND podofo is signed with openSUSE key Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libpodofo0_9_2-0.9.2-3.6 is installed OR podofo-0.9.2-3.6 is installed Definition Synopsis Release Information SUSE Linux Enterprise Build System Kit 12 SP3 is installed OR SUSE Linux Enterprise Build System Kit 12 SP4 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP3 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND libpodofo-devel-0.9.2-3.6 is installed OR podofo-0.9.2-3.6 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP3 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND libpodofo0_9_2-0.9.2-3.6 is installed OR podofo-0.9.2-3.6 is installed Definition Synopsis Release Information SUSE Linux Enterprise Workstation Extension 12 SP3 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND Package Information libpodofo0_9_2-0.9.2-3.6 is installed OR podofo-0.9.2-3.6 is installed Definition Synopsis Release Information SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND libpodofo-devel-0.9.2-3.9 is installed OR Package Information SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND libpodofo0_9_2-0.9.2-3.9 is installed OR Package Information SUSE Linux Enterprise Build System Kit 12 SP3 is installed OR SUSE Linux Enterprise Build System Kit 12 SP4 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP3 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND libpodofo-devel-0.9.2-3.6 is installed OR podofo-0.9.2-3.6 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP3 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND libpodofo0_9_2-0.9.2-3.6 is installed OR podofo-0.9.2-3.6 is installed Definition Synopsis Release Information SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND libpodofo0_9_2-0.9.2-3.9 is installed OR Package Information SUSE Linux Enterprise Workstation Extension 12 SP3 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND libpodofo0_9_2-0.9.2-3.6 is installed OR podofo-0.9.2-3.6 is installed Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP2 is installed AND podofo is affected OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Desktop 12 SP4 is installed AND libpodofo0_9_2-0.9.2-3.6.3 is installed Definition Synopsis openSUSE Tumbleweed is installed AND Package Information libpodofo-devel-0.9.7-2.2 is installed OR libpodofo0_9_7-0.9.7-2.2 is installed OR podofo-0.9.7-2.2 is installed Definition Synopsis Release Information SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND libpodofo-devel-0.9.2-3.9.2 is installed OR Package Information SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND libpodofo0_9_2-0.9.2-3.9.2 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP3 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND libpodofo0_9_2-0.9.2-3.6.3 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP3 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND libpodofo-devel-0.9.2-3.6.3 is installed Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP2 is installed OR SUSE Linux Enterprise Server 12 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND podofo is affected OR Package Information SUSE Linux Enterprise Desktop 12 SP5 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND libpodofo0_9_2-0.9.2-3.9.2 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP3 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND libpodofo0_9_2-0.9.2-3.6.3 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND libpodofo-devel-0.9.2-3.9.2 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP5 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND libpodofo0_9_2-0.9.2-3.9.2 is installed Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND libpodofo0_9_2-0.9.2-3.6.3 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND libpodofo-devel-0.9.2-3.6.3 is installed
BACK