Oval Definition:	oval:org.opensuse.security:def:201917455
Revision Date: 2022-06-30 Version: 1 Title: CVE-2019-17455 Description: Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest, tSmbNtlmAuthChallenge, and tSmbNtlmAuthResponse read and write operations, as demonstrated by a stack-based buffer over-read in buildSmbNtlmAuthRequest in smbutil.c for a crafted NTLM request. Family: unix Class: vulnerability Status: Reference(s): CVE-2019-17455 openSUSE-SU-2020:0806-1 openSUSE-SU-2020:0816-1 Mitre CVE-2019-17455 SUSE CVE-2019-17455 openSUSE-SU-2020:0806-1 openSUSE-SU-2020:0816-1 Platform(s): openSUSE Leap 15.1 openSUSE Tumbleweed SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Storage 6 SUSE Manager Proxy 4.0 SUSE Manager Server 4.0 SUSE Package Hub for SUSE Linux Enterprise 15 SP1 Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libntlm-1.6-lp151.3.3 is installed AND libntlm is signed with openSUSE key OR libntlm-devel-1.6-lp151.3.3 is installed AND libntlm-devel is signed with openSUSE key OR libntlm0-1.6-lp151.3.3 is installed AND libntlm0 is signed with openSUSE key Definition Synopsis openSUSE Tumbleweed is installed AND Package Information libntlm-devel-1.6-1.8 is installed OR libntlm0-1.6-1.8 is installed Definition Synopsis SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed AND Package Information libntlm-devel-1.6-bp151.4.3.1 is installed OR libntlm0-1.6-bp151.4.3.1 is installed
BACK