Oval Definition:	oval:org.opensuse.security:def:202026235
Revision Date: 2022-09-02 Version: 1 Title: CVE-2020-26235 Description: In Rust time crate from version 0.2.7 and before version 0.2.23, unix-like operating systems may segfault due to dereferencing a dangling pointer in specific circumstances. This requires the user to set any environment variable in a different thread than the affected functions. The affected functions are time::UtcOffset::local_offset_at, time::UtcOffset::try_local_offset_at, time::UtcOffset::current_local_offset, time::UtcOffset::try_current_local_offset, time::OffsetDateTime::now_local and time::OffsetDateTime::try_now_local. Non-Unix targets are unaffected. This includes Windows and wasm. The issue was introduced in version 0.2.7 and fixed in version 0.2.23. Family: unix Class: vulnerability Status: Reference(s): Mitre CVE-2020-26235 SUSE CVE-2020-26235 Platform(s): SUSE Linux Enterprise Desktop 15 SP1 SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise Module for Development Tools 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Storage 6 SUSE Linux Enterprise Storage 7 SUSE Manager Proxy 4.0 SUSE Manager Proxy 4.1 SUSE Manager Retail Branch Server 4.0 SUSE Manager Retail Branch Server 4.1 SUSE Manager Server 4.0 SUSE Manager Server 4.1 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND rust is not affected Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed AND Package Information cargo is not affected OR clippy is not affected OR rls is not affected OR rust is not affected OR rust-analysis is not affected OR rust-src is not affected OR rust-std-static is not affected OR rustfmt is not affected Definition Synopsis Release Information SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND rust is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 15 is installed AND cargo is not affected OR clippy is not affected OR rls is not affected OR rust is not affected OR rust-analysis is not affected OR rust-gdb is not affected OR rust-src is not affected OR rust-std is not affected OR rust-std-static is not affected OR rustfmt is not affected OR Package Information SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed AND cargo is not affected OR clippy is not affected OR rls is not affected OR rust is not affected OR rust-analysis is not affected OR rust-src is not affected OR rust-std-static is not affected OR rustfmt is not affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP1 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP1 is installed OR SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed OR SUSE Linux Enterprise Server 15 SP1 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed OR SUSE Linux Enterprise Storage 6 is installed OR SUSE Manager Proxy 4.0 is installed OR SUSE Manager Retail Branch Server 4.0 is installed OR SUSE Manager Server 4.0 is installed AND rust is not affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP2 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP2 is installed OR SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed OR SUSE Linux Enterprise Server 15 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed OR SUSE Linux Enterprise Storage 7 is installed OR SUSE Manager Proxy 4.1 is installed OR SUSE Manager Retail Branch Server 4.1 is installed OR SUSE Manager Server 4.1 is installed AND rust is not affected
BACK