SUSE-SU-2018:0140-1 -- SLES xmltooling, libxmltooling6| ID: oval:org.secpod.oval:def:89002432 | Date: (C)2021-02-25 (M)2022-10-10 |
| Class: PATCH | Family: unix |
This update for xmltooling fixes the following issues: - CVE-2018-0486: Fixed a security bug when xmltooling mishandles digital signatures of user attribute data, which allows remote attackers to obtain sensitive information or conduct impersonation attacks via a crafted DTD
| Platform: |
| SUSE Linux Enterprise Server 12 SP3 |
| SUSE Linux Enterprise Server 12 SP2 |
| Product: |
| xmltooling |
| libxmltooling6 |
