Oval Definition:oval:org.opensuse.security:def:67081
Revision Date:2021-03-24Version:1
Title:Security update for evolution-data-server (Moderate)
Description:

This update for evolution-data-server fixes the following issues:

- CVE-2020-16117: Fix crash on malformed server response with minimal capabilities (bsc#1174712). - CVE-2020-14928: Response injection via STARTTLS in SMTP and POP3 (bsc#1173910). - Fix buffer overrun when parsing base64 data (bsc#1182882).

This update for evolution-ews fixes the following issue:

- Fix buffer overrun when parsing base64 data (bsc#1182882).
Family:unixClass:patch
Status:Reference(s):1172402
1173910
1174712
1178882
1182882
CVE-2020-12398
CVE-2020-12405
CVE-2020-12406
CVE-2020-12410
CVE-2020-14928
CVE-2020-16117
CVE-2020-8277
SUSE-SU-2020:3478-1
Platform(s):SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • c-ares-1.17.0-3.8 is installed
  • OR c-ares-devel-1.17.0-3.8 is installed
  • OR libcares2-1.17.0-3.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • MozillaThunderbird-68.9.0-3.85 is installed
  • OR MozillaThunderbird-translations-common-68.9.0-3.85 is installed
  • OR MozillaThunderbird-translations-other-68.9.0-3.85 is installed
    • BACK