Oval Definition:	oval:org.opensuse.security:def:20187186
Revision Date: 2022-06-30 Version: 1 Title: CVE-2018-7186 Description: Leptonica before 1.75.3 does not limit the number of characters in a %s format argument to fscanf or sscanf, which allows remote attackers to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact via a long string, as demonstrated by the gplotRead and ptaReadStream functions. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-7186 Mitre CVE-2018-7186 SUSE CVE-2018-7186 openSUSE-SU-2018:0615-1 Platform(s): openSUSE Leap 42.3 openSUSE Tumbleweed Product(s): Definition Synopsis openSUSE Leap 42.3 is installed AND Package Information leptonica-1.72-9 is installed AND leptonica is signed with openSUSE key OR leptonica-devel-1.72-9 is installed AND leptonica-devel is signed with openSUSE key OR leptonica-tools-1.72-9 is installed AND leptonica-tools is signed with openSUSE key OR liblept4-1.72-9 is installed AND liblept4 is signed with openSUSE key OR liblept4-32bit-1.72-9 is installed AND liblept4-32bit is signed with openSUSE key Definition Synopsis openSUSE Tumbleweed is installed AND Package Information leptonica-devel-1.80.0-1.9 is installed OR leptonica-tools-1.80.0-1.9 is installed OR liblept5-1.80.0-1.9 is installed OR liblept5-32bit-1.80.0-1.9 is installed
BACK