Oval Definition:	oval:org.opensuse.security:def:201917626
Revision Date: 2022-09-02 Version: 1 Title: CVE-2019-17626 Description: ReportLab through 3.5.26 allows remote code execution because of toColor(eval(arg)) in colors.py, as demonstrated by a crafted XML document with 'Family: unix Class: vulnerability Status: Reference(s): CVE-2019-17626 SUSE-SU-2020:0255-1 SUSE-SU-2020:0324-1 openSUSE-SU-2020:0160-1 Mitre CVE-2019-17626 SUSE CVE-2019-17626 SUSE-SU-2020:0255-1 SUSE-SU-2020:0324-1 openSUSE-SU-2020:0160-1 Platform(s): openSUSE Leap 15.1 openSUSE Tumbleweed SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Desktop 12 SP5 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SP5 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND python-reportlab is affected Definition Synopsis Release Information SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed OR SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information python-reportlab-3.4.0-3.3 is installed OR python2-reportlab-3.4.0-3.3 is installed OR python3-reportlab-3.4.0-3.3 is installed Definition Synopsis Release Information SUSE Linux Enterprise Workstation Extension 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND python-reportlab-2.7-3.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information python-reportlab-3.4.0-lp151.3.3 is installed AND python-reportlab is signed with openSUSE key OR python2-reportlab-3.4.0-lp151.3.3 is installed AND python2-reportlab is signed with openSUSE key OR python3-reportlab-3.4.0-lp151.3.3 is installed AND python3-reportlab is signed with openSUSE key Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information python-reportlab-3.4.0-3.3 is installed OR python2-reportlab-3.4.0-3.3 is installed OR python3-reportlab-3.4.0-3.3 is installed Definition Synopsis openSUSE Tumbleweed is installed AND Package Information python36-reportlab-3.5.59-2.6 is installed OR python38-reportlab-3.5.59-2.6 is installed OR python39-reportlab-3.5.59-2.6 is installed Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Desktop 12 SP5 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND python-reportlab-2.7-3.3.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP5 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND python-reportlab-2.7-3.3.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND python-reportlab-2.7-3.3.1 is installed
BACK