| Revision Date: | 2020-12-01 | Version: | 1 |
| Title: | Security update for nextcloud (Moderate) |
| Description: |
This update for nextcloud to 18.0.4 fixes the following issues:
Security issues fixed:
- CVE-2020-8154: Fixed an XSS vulnerability when opening malicious PDFs (NC-SA-2020-018 boo#1171579). - CVE-2020-8155: Fixed a direct object reference vulnerability that allowed attackers to remotely wipe devices of other users (NC-SA-2020-019 boo#1171572).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1171572
1171579
1173703
CVE-2020-8154
CVE-2020-8155
openSUSE-SU-2020:0670-1
openSUSE-SU-2020:1093-1
|
| Platform(s): | openSUSE Leap 15.1
openSUSE Leap 15.2
| Product(s): | |
| Definition Synopsis |
| openSUSE Leap 15.1 is installed AND nextcloud-18.0.4-lp151.2.6 is installed
|
| Definition Synopsis |
| openSUSE Leap 15.2 is installed
AND perl-YAML-LibYAML-0.69-lp152.4.3 is installed
|