Oval Definition:oval:org.opensuse.security:def:202013949
Revision Date:2022-06-30Version:1
Title:CVE-2020-13949
Description:

In Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result in a large memory allocation, potentially leading to denial of service.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2020-13949
SUSE CVE-2020-13949
Platform(s):openSUSE Tumbleweed
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • libthrift-0_14_1-0.14.1-1.6 is installed
  • OR libthrift-devel-0.14.1-1.6 is installed
  • OR libthrift_c_glib0-0.14.1-1.6 is installed
  • OR libthriftnb-0_14_1-0.14.1-1.6 is installed
  • OR libthriftz-0_14_1-0.14.1-1.6 is installed
  • OR perl-thrift-0.14.1-1.6 is installed
  • OR python36-thrift-0.14.1-1.6 is installed
  • OR python38-thrift-0.14.1-1.6 is installed
  • OR python39-thrift-0.14.1-1.6 is installed
  • OR thrift-0.14.1-1.6 is installed
    • Definition Synopsis
  • Release Information
  • SUSE OpenStack Cloud 8 is installed
  • OR SUSE OpenStack Cloud Crowbar 8 is installed
  • AND python-thrift is affected
    • Definition Synopsis
  • Release Information
  • SUSE OpenStack Cloud 9 is installed
  • OR SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-thrift is affected
    • BACK