Oval Definition:oval:org.opensuse.security:def:99667
Revision Date:2021-08-16Version:1
Title: (Important)
Description:

This update for cpio fixes the following issues:

It was possible to trigger Remote code execution due to a integer overflow (CVE-2021-38185, bsc#1189206)

Family:unixClass:patch
Status:Reference(s):1185652
1185654
1185673
1185674
1185685
1185686
1185688
1185690
1185691
1186247
1189206
CVE-2018-25009
CVE-2018-25010
CVE-2018-25011
CVE-2018-25012
CVE-2018-25013
CVE-2020-36328
CVE-2020-36329
CVE-2020-36330
CVE-2020-36331
CVE-2020-36332
CVE-2021-38185
SUSE-SU-2021:1860-1
Platform(s):Image SLES15-SP3-Manager-4-2-Proxy-BYOS-GCE
SUSE Linux Enterprise Server for SAP Applications 15 SP1
Product(s):
Definition Synopsis
  • Image SLES15-SP3-Manager-4-2-Proxy-BYOS-GCE is installed
  • AND cpio-2.12-3.6.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • AND Package Information
  • libwebp-devel-0.5.0-3.5.1 is installed
  • OR libwebp6-0.5.0-3.5.1 is installed
  • OR libwebpdecoder2-0.5.0-3.5.1 is installed
  • OR libwebpdemux2-0.5.0-3.5.1 is installed
  • OR libwebpextras0-0.5.0-3.5.1 is installed
  • OR libwebpmux2-0.5.0-3.5.1 is installed
  • BACK