Oval Definition:	oval:org.opensuse.security:def:202329469
Revision Date: 2023-06-22 Version: 1 Title: CVE-2023-29469 Description: An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML document, xmlDictComputeFastKey in dict.c can produce non-deterministic values, leading to various logic and memory errors, such as a double free. This behavior occurs because there is an attempt to use the first byte of an empty string, and any value is possible (not solely the '\0' value). Family: unix Class: vulnerability Status: Reference(s): Mitre CVE-2023-29469 SUSE CVE-2023-29469 SUSE-CU-2023:1305-1 SUSE-CU-2023:1306-1 SUSE-CU-2023:1307-1 SUSE-CU-2023:1308-1 SUSE-CU-2023:1309-1 SUSE-CU-2023:1310-1 SUSE-CU-2023:1311-1 SUSE-CU-2023:1312-1 SUSE-CU-2023:1313-1 SUSE-CU-2023:1314-1 SUSE-CU-2023:1315-1 SUSE-CU-2023:1316-1 SUSE-CU-2023:1317-1 SUSE-CU-2023:1318-1 SUSE-CU-2023:1319-1 SUSE-CU-2023:1320-1 SUSE-CU-2023:1321-1 SUSE-CU-2023:1322-1 SUSE-CU-2023:1323-1 SUSE-CU-2023:1324-1 SUSE-CU-2023:1325-1 SUSE-CU-2023:1326-1 SUSE-CU-2023:1327-1 SUSE-CU-2023:1328-1 SUSE-CU-2023:1329-1 SUSE-CU-2023:1330-1 SUSE-CU-2023:1331-1 SUSE-CU-2023:1332-1 SUSE-CU-2023:1333-1 SUSE-CU-2023:1334-1 SUSE-CU-2023:1335-1 SUSE-CU-2023:1336-1 SUSE-CU-2023:1337-1 SUSE-CU-2023:1338-1 SUSE-CU-2023:1339-1 SUSE-CU-2023:1341-1 SUSE-CU-2023:1342-1 SUSE-CU-2023:1369-1 SUSE-CU-2023:1458-1 SUSE-CU-2023:1459-1 SUSE-CU-2023:1460-1 SUSE-CU-2023:1461-1 SUSE-CU-2023:1462-1 SUSE-CU-2023:1463-1 SUSE-CU-2023:1464-1 SUSE-CU-2023:1465-1 SUSE-CU-2023:1466-1 SUSE-CU-2023:1467-1 SUSE-CU-2023:1498-1 SUSE-CU-2023:1546-1 SUSE-CU-2023:1547-1 SUSE-CU-2023:1548-1 SUSE-CU-2023:1549-1 SUSE-CU-2023:1836-1 SUSE-CU-2023:1838-1 SUSE-CU-2023:1839-1 SUSE-CU-2023:1840-1 SUSE-CU-2023:1844-1 SUSE-CU-2023:2047-1 SUSE-CU-2023:2048-1 SUSE-CU-2023:2049-1 SUSE-CU-2023:2050-1 SUSE-CU-2023:2051-1 SUSE-IU-2023:317-1 SUSE-IU-2023:318-1 SUSE-IU-2023:319-1 SUSE-IU-2023:347-1 SUSE-IU-2023:348-1 SUSE-IU-2023:349-1 SUSE-SU-2023:2048-1 SUSE-SU-2023:2053-1 SUSE-SU-2023:2054-1 Platform(s): SUSE Linux Enterprise Desktop 15 SP5 SUSE Linux Enterprise High Performance Computing 15 SP5 SUSE Linux Enterprise Micro 5.4 SUSE Linux Enterprise Module for Basesystem 15 SP5 SUSE Linux Enterprise Server 15 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SP5 Product(s): Definition Synopsis SUSE Linux Enterprise Micro 5.4 is installed AND Package Information libxml2-2 is affected OR libxml2-tools is affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP5 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP5 is installed OR SUSE Linux Enterprise Server 15 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed AND Package Information libxml2-2-2.10.3-150500.3.1 is installed OR libxml2-2-32bit-2.10.3-150500.3.1 is installed OR libxml2-devel-2.10.3-150500.3.1 is installed OR libxml2-tools-2.10.3-150500.3.1 is installed OR python3-libxml2-2.10.3-150500.3.1 is installed OR ruby2.5-rubygem-nokogiri is not affected
BACK