Oval Definition:	oval:org.opensuse.security:def:20189988
Revision Date: 2021-10-24 Version: 1 Title: CVE-2018-9988 Description: ARM mbed TLS before 2.1.11, before 2.7.2, and before 2.8.0 has a buffer over-read in ssl_parse_server_key_exchange() that could cause a crash on invalid input. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-9988 Mitre CVE-2018-9988 SUSE CVE-2018-9988 openSUSE-SU-2018:1039-1 openSUSE-SU-2018:1039-1 openSUSE-SU-2018:1041-1 openSUSE-SU-2018:1041-1 Platform(s): openSUSE Leap 42.3 SUSE Linux Enterprise High Performance Computing 12 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Package Hub for SUSE Linux Enterprise 12 Product(s): Definition Synopsis openSUSE Leap 42.3 is installed AND Package Information libmbedtls9-1.3.19-24 is installed AND libmbedtls9 is signed with openSUSE key OR libmbedtls9-32bit-1.3.19-24 is installed AND libmbedtls9-32bit is signed with openSUSE key OR mbedtls-1.3.19-24 is installed AND mbedtls is signed with openSUSE key OR mbedtls-devel-1.3.19-24 is installed AND mbedtls-devel is signed with openSUSE key Definition Synopsis SUSE Package Hub for SUSE Linux Enterprise 12 is installed AND Package Information libmbedtls9-1.3.19-14 is installed OR libmbedtls9-32bit-1.3.19-24 is installed OR mbedtls-1.3.19-14 is installed OR mbedtls-devel-1.3.19-14 is installed Definition Synopsis SUSE Package Hub for SUSE Linux Enterprise 12 is installed AND Package Information libmbedtls9-1.3.19-14.1 is installed OR mbedtls-devel-1.3.19-14.1 is installed
BACK