Oval Definition:oval:org.opensuse.security:def:202324539
Revision Date:2023-06-22Version:1
Title:CVE-2023-24539
Description:

Angle brackets (<>) are not considered dangerous characters when inserted into CSS contexts. Templates containing multiple actions separated by a '/' character can result in unexpectedly closing the CSS context and allowing for injection of unexpected HTML, if executed with untrusted input.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2023-24539
SUSE CVE-2023-24539
SUSE-CU-2023:1516-1
SUSE-CU-2023:1517-1
SUSE-SU-2023:2105-1
SUSE-SU-2023:2105-2
SUSE-SU-2023:2127-1
Platform(s):SUSE Linux Enterprise Desktop 15 SP5
SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE Linux Enterprise Module for Development Tools 15 SP5
SUSE Linux Enterprise Server 15 SP5
SUSE Linux Enterprise Server for SAP Applications 15 SP5
Product(s):
Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP5 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
  • OR SUSE Linux Enterprise Module for Development Tools 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • AND Package Information
  • go1.19-1.19.9-150000.1.31.1 is installed
  • OR go1.19-doc-1.19.9-150000.1.31.1 is installed
  • OR go1.19-race-1.19.9-150000.1.31.1 is installed
  • OR go1.20-1.20.4-150000.1.11.1 is installed
  • OR go1.20-doc-1.20.4-150000.1.11.1 is installed
  • OR go1.20-race-1.20.4-150000.1.11.1 is installed
    • BACK