Oval Definition:	oval:org.opensuse.security:def:79955
Revision Date: 2015-02-18 Version: 1 Title: Security update for elfutils Description: elfutils has been updated to fix one security issue: * CVE-2014-9447: Directory traversal vulnerability in the read_long_names function in libelf/elf_begin.c in elfutils 0.152 and 0.161 allowed remote attackers to write to arbitrary files to the root directory via a / (slash) in a crafted archive, as demonstrated using the ar program (bnc#911662). Security Issues: * CVE-2014-9447 Family: unix Class: patch Status: Reference(s): 911662 CVE-2014-9447 SUSE-SU-2015:0434-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP3 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information elfutils-0.152-4.9.17 is installed OR libasm1-0.152-4.9.17 is installed OR libdw1-0.152-4.9.17 is installed OR libdw1-32bit-0.152-4.9.17 is installed OR libebl1-0.152-4.9.17 is installed OR libebl1-32bit-0.152-4.9.17 is installed OR libelf1-0.152-4.9.17 is installed OR libelf1-32bit-0.152-4.9.17 is installed
BACK