Oval Definition:	oval:org.opensuse.security:def:63888
Revision Date: 2020-12-01 Version: 1 Title: Security update for w3m (Moderate) Description: This update for w3m fixes several issues. These security issues were fixed: - CVE-2018-6196: Prevent infinite recursion in HTMLlineproc0 caused by the feed_table_block_tag function which did not prevent a negative indent value (bsc#1077559) - CVE-2018-6197: Prevent NULL pointer dereference in formUpdateBuffer (bsc#1077568) - CVE-2018-6198: w3m did not properly handle temporary files when the ~/.w3m directory is unwritable, which allowed a local attacker to craft a symlink attack to overwrite arbitrary files (bsc#1077572) Family: unix Class: patch Status: Reference(s): 1048942 1051510 1077559 1077568 1077572 1082635 1090631 1096254 1111666 1117665 1119461 1119465 1123034 1135966 1135967 1138190 1138582 1139073 1140090 1141322 1142810 1143706 1144903 1149119 1150466 1152665 1152696 1152697 1152782 1153681 1154124 1154526 1154858 1154905 1154956 1155021 1155061 1155671 1155692 1155836 1155982 1156187 1156429 1158527 1159819 1165439 1169740 1170446 1170603 1171355 1172651 1173334 1173594 1173991 1174284 1174922 1174923 1175686 CVE-2018-12207 CVE-2018-6196 CVE-2018-6197 CVE-2018-6198 CVE-2018-8956 CVE-2019-0154 CVE-2019-0155 CVE-2019-10162 CVE-2019-10163 CVE-2019-10203 CVE-2019-10220 CVE-2019-11135 CVE-2019-11745 CVE-2019-16231 CVE-2019-17006 CVE-2019-17055 CVE-2019-18805 CVE-2020-11868 CVE-2020-12268 CVE-2020-12673 CVE-2020-12674 CVE-2020-13817 CVE-2020-15025 CVE-2020-15663 CVE-2020-15664 CVE-2020-15670 CVE-2020-1747 CVE-2020-8695 CVE-2020-8698 openSUSE-SU-2019:1904-1 openSUSE-SU-2019:2507-1 openSUSE-SU-2020:0507-1 openSUSE-SU-2020:1262-1 SUSE-SU-2019:0776-1 SUSE-SU-2020:0088-1 SUSE-SU-2020:1212-1 SUSE-SU-2020:1805-1 SUSE-SU-2020:3279-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information pdns-4.1.11-20 is installed OR pdns-backend-geoip-4.1.8-lp151.2.3 is installed OR pdns-backend-godbc-4.1.11-20 is installed OR pdns-backend-ldap-4.1.11-20 is installed OR pdns-backend-lua-4.1.11-20 is installed OR pdns-backend-mydns-4.1.11-20 is installed OR pdns-backend-mysql-4.1.11-20 is installed OR pdns-backend-postgresql-4.1.11-20 is installed OR pdns-backend-remote-4.1.11-20 is installed OR pdns-backend-sqlite3-4.1.11-20 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information dovecot23-2.3.10-lp152.2.3 is installed OR dovecot23-backend-mysql-2.3.10-lp152.2.3 is installed OR dovecot23-backend-pgsql-2.3.10-lp152.2.3 is installed OR dovecot23-backend-sqlite-2.3.10-lp152.2.3 is installed OR dovecot23-devel-2.3.10-lp152.2.3 is installed OR dovecot23-fts-2.3.10-lp152.2.3 is installed OR dovecot23-fts-lucene-2.3.10-lp152.2.3 is installed OR dovecot23-fts-solr-2.3.10-lp152.2.3 is installed OR dovecot23-fts-squat-2.3.10-lp152.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND w3m-0.5.3.git20161120-161.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information MozillaFirefox-78.2.0-112.19 is installed OR MozillaFirefox-devel-78.2.0-112.19 is installed OR MozillaFirefox-translations-common-78.2.0-112.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND ucode-intel-20201027-13.76 is installed
BACK