Oval Definition:oval:org.opensuse.security:def:79186
Revision Date:2018-07-26Version:1
Title:Security update for libofx (Important)
Description:

This update for libofx fixes the following issues:

Security issues fixed:

- CVE-2017-2816: Fix an exploitable buffer overflow vulnerability in the tag parsing functionality (bsc#1058673). - CVE-2017-2920: Fix a buffer overflow vulnerability in sanitize_proprietary_tags in lib/ofx_preproc.cpp (bsc#1061964). - CVE-2017-14731: Fix remote denial of service via a crafted file in ofx_proc_file in ofx_preproc.cpp (bsc#1060437).
Family:unixClass:patch
Status:Reference(s):1058673
1060437
1061964
CVE-2017-14731
CVE-2017-2816
CVE-2017-2920
SUSE-SU-2018:2064-1
Platform(s):SUSE Linux Enterprise Desktop 12 SP3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libofx-0.9.9-3.7.1 is installed
  • OR libofx6-0.9.9-3.7.1 is installed
  • BACK