Oval Definition:oval:org.opensuse.security:def:63878
Revision Date:2020-12-01Version:1
Title:Security update for lftp (Moderate)
Description:

This update for lftp fixes the following issues:

Security issue fixed:

- CVE-2018-10916: Fixed an improper file name sanitization which could lead to loss of integrity of the local system (bsc#1103367). Other issue addressed:

- The SSH login handling code detects password prompts more reliably (bsc#1120946).
Family:unixClass:patch
Status:Reference(s):1008644
1040109
1040113
1040115
1044231
1046299
1046303
1046305
1050244
1050536
1050545
1050549
1051510
1051858
1055186
1056686
1060463
1061840
1064802
1065600
1065729
1066129
1071995
1073513
1082635
1083630
1083647
1085030
1086323
1087092
1089644
1093205
1097583
1097584
1097585
1097586
1097587
1097588
1098291
1101674
1103367
1104967
1109158
1109911
1111666
1112178
1113994
1114279
1117665
1118338
1120386
1120946
1123034
1123080
1123156
1133021
1133140
1134303
1135642
1135854
1135873
1136157
1137040
1137325
1137799
1137861
1140729
1140845
1140883
1141600
1142635
1142667
1143706
1144333
1144338
1144375
1144449
1145051
1145099
1145929
1146539
1146612
1148410
1148868
1149853
1150452
1150457
1150465
1150875
1151508
1151807
1152033
1152624
1152685
1152788
1152790
1152791
1153112
1153158
1153236
1153263
1153476
1153509
1153607
1153646
1153713
1153717
1153718
1153719
1153811
1153969
1154108
1154189
1154242
1154268
1154354
1154372
1154385
1154521
1154578
1154607
1154608
1154610
1154611
1154651
1154737
1154747
1154790
1154848
1155178
1155179
1155184
1155186
1157424
1158552
1158983
1159037
1159142
1159198
1159199
1159285
1160659
1161066
1161951
1162729
1162929
1162931
1163018
1163403
1163508
1163897
1163985
1164078
1164284
1164507
1164893
1165019
1165111
1165182
1165404
1165488
1165527
1165741
1165776
1165813
1165873
1165949
1165984
1165985
1166003
1166101
1166102
1166103
1166104
1166240
1166379
1166632
1166730
1166731
1166732
1166733
1166734
1166735
1166780
1166860
1166861
1166862
1166864
1166866
1166867
1166868
1166870
1166940
1167005
1167288
1167290
1167316
1167421
1167423
1167629
1168075
1168202
1168276
1168295
1168424
1168443
1168486
1168760
1168762
1168763
1168764
1168765
1168829
1168854
1168881
1168884
1168952
1169057
1169390
1169514
1169625
1171550
1173251
1176756
1177872
CVE-2016-9180
CVE-2017-12627
CVE-2017-9111
CVE-2017-9113
CVE-2017-9115
CVE-2018-10916
CVE-2019-15034
CVE-2019-16232
CVE-2019-16233
CVE-2019-16234
CVE-2019-16995
CVE-2019-17056
CVE-2019-17133
CVE-2019-17666
CVE-2019-19768
CVE-2019-19770
CVE-2019-20382
CVE-2019-3701
CVE-2019-6778
CVE-2019-9458
CVE-2020-10942
CVE-2020-11494
CVE-2020-11669
CVE-2020-13249
CVE-2020-15683
CVE-2020-15969
CVE-2020-1711
CVE-2020-1720
CVE-2020-2752
CVE-2020-2760
CVE-2020-2812
CVE-2020-2814
CVE-2020-6509
CVE-2020-7039
CVE-2020-8608
CVE-2020-8647
CVE-2020-8649
CVE-2020-8834
CVE-2020-9383
openSUSE-SU-2019:1826-1
openSUSE-SU-2019:2444-1
openSUSE-SU-2020:0468-1
openSUSE-SU-2020:0950-1
openSUSE-SU-2020:1204-1
SUSE-SU-2019:0642-1
SUSE-SU-2020:0715-1
SUSE-SU-2020:1119-1
SUSE-SU-2020:1710-1
SUSE-SU-2020:3053-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.2
openSUSE Leap 15.2 NonFree
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE Linux Enterprise Server 12 SP4-LTSS
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libIlmImf-2_2-23-2.2.1-lp151.4.3 is installed
  • OR libIlmImf-2_2-23-32bit-2.2.1-lp151.4.3 is installed
  • OR libIlmImfUtil-2_2-23-2.2.1-lp151.4.3 is installed
  • OR libIlmImfUtil-2_2-23-32bit-2.2.1-lp151.4.3 is installed
  • OR openexr-2.2.1-lp151.4.3 is installed
  • OR openexr-devel-2.2.1-lp151.4.3 is installed
  • OR openexr-doc-2.2.1-lp151.4.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND perl-XML-Twig-3.52-lp152.4.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 NonFree is installed
  • AND opera-69.0.3686.49-lp152.2.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND lftp-4.7.4-3.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND Package Information
  • libxerces-c-3_1-3.1.1-13.3 is installed
  • OR libxerces-c-3_1-32bit-3.1.1-13.3 is installed
  • OR xerces-c-3.1.1-13.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-LTSS is installed
  • AND Package Information
  • MozillaFirefox-78.4.0-112.28 is installed
  • OR MozillaFirefox-devel-78.4.0-112.28 is installed
  • OR MozillaFirefox-translations-common-78.4.0-112.28 is installed
    • BACK