Oval Definition:oval:org.opensuse.security:def:85163
Revision Date:2019-04-29Version:1
Title:Security update for atftp (Important)
Description:

This update for atftp fixes the following issues:

Security issues fixed:

- CVE-2019-11366: Fixed a denial of service caused by a NULL pointer dereference because thread_list_mutex was not locked (bsc#1133145). - CVE-2019-11365: Fixed a buffer overflow which could lead to remote code execution caused by an insecure use of strncpy() (bsc#1133114).
Family:unixClass:patch
Status:Reference(s):1133114
1133145
CVE-2019-11365
CVE-2019-11366
SUSE-SU-2019:1091-1
Platform(s):SUSE Linux Enterprise Server 12 SP3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND atftp-0.7.0-160.8.1 is installed
    • BACK