Oval Definition:	oval:org.opensuse.security:def:201917362
Revision Date: 2022-09-02 Version: 1 Title: CVE-2019-17362 Description: In LibTomCrypt through 1.18.2, the der_decode_utf8_string function (in der_decode_utf8_string.c) does not properly detect certain invalid UTF-8 sequences. This allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) or read information from other memory locations via carefully crafted DER-encoded data. Family: unix Class: vulnerability Status: Reference(s): CVE-2019-17362 SUSE-SU-2019:2808-1 SUSE-SU-2019:3095-1 openSUSE-SU-2019:2454-1 openSUSE-SU-2019:2514-1 Mitre CVE-2019-17362 SUSE CVE-2019-17362 SUSE-SU-2019:2808-1 SUSE-SU-2019:3095-1 openSUSE-SU-2019:2454-1 openSUSE-SU-2019:2514-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Desktop 12 SP5 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SP5 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information libtomcrypt-1.17-lp150.2.3 is installed AND libtomcrypt is signed with openSUSE key OR libtomcrypt-devel-1.17-lp150.2.3 is installed AND libtomcrypt-devel is signed with openSUSE key OR libtomcrypt-examples-1.17-lp150.2.3 is installed AND libtomcrypt-examples is signed with openSUSE key OR libtomcrypt0-1.17-lp150.2.3 is installed AND libtomcrypt0 is signed with openSUSE key Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND libtomcrypt0-1.17-3.3.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND libtomcrypt0-1.17-3.3.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed OR SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libtomcrypt-1.17-3.3 is installed OR libtomcrypt-devel-1.17-3.3 is installed OR libtomcrypt-examples-1.17-3.3 is installed OR libtomcrypt0-1.17-3.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libtomcrypt-devel-1.17-lp151.3.3.1 is installed AND libtomcrypt-devel is signed with openSUSE key OR libtomcrypt-examples-1.17-lp151.3.3.1 is installed AND libtomcrypt-examples is signed with openSUSE key OR libtomcrypt0-1.17-lp151.3.3.1 is installed AND libtomcrypt0 is signed with openSUSE key Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND Package Information libtomcrypt-1.17-3.3 is installed OR libtomcrypt0-1.17-3.3 is installed Definition Synopsis Release Information SUSE Linux Enterprise Workstation Extension 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND Package Information libtomcrypt-1.17-3.3 is installed OR libtomcrypt0-1.17-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libtomcrypt-1.17-3.3 is installed OR libtomcrypt-devel-1.17-3.3 is installed OR libtomcrypt-examples-1.17-3.3 is installed OR libtomcrypt0-1.17-3.3 is installed Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Desktop 12 SP5 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND libtomcrypt0-1.17-3.3.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP5 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND libtomcrypt0-1.17-3.3.1 is installed
BACK