Oval Definition:oval:org.opensuse.security:def:67102
Revision Date:2021-05-19Version:1
Title:Security update for libxml2 (Important)
Description:

This update for libxml2 fixes the following issues:

- CVE-2021-3537: NULL pointer dereference in valid.c:xmlValidBuildAContentModel (bsc#1185698) - CVE-2021-3518: Fixed a use after free in xinclude.c:xmlXIncludeDoProcess (bsc#1185408). - CVE-2021-3517: Fixed a heap based buffer overflow in entities.c:xmlEncodeEntitiesInternal (bsc#1185410). - CVE-2021-3516: Fixed a use after free in entities.c:xmlEncodeEntitiesInternal (bsc#1185409).
Family:unixClass:patch
Status:Reference(s):1173477
1173948
1185408
1185409
1185410
1185698
CVE-2017-18922
CVE-2021-3516
CVE-2021-3517
CVE-2021-3518
CVE-2021-3537
SUSE-SU-2020:1958-1
Platform(s):SUSE Linux Enterprise Module for Desktop Applications 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed
  • AND Package Information
  • MozillaFirefox-78.0.2-3.97 is installed
  • OR MozillaFirefox-devel-78.0.2-3.97 is installed
  • OR MozillaFirefox-translations-common-78.0.2-3.97 is installed
  • OR MozillaFirefox-translations-other-78.0.2-3.97 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • LibVNCServer-0.9.10-4.19 is installed
  • OR LibVNCServer-devel-0.9.10-4.19 is installed
    • BACK