SUSE-SU-2018:2297-1

See a problem?
Please try reporting it to the source first.

Source

https://www.suse.com/support/update/announcement/2018/suse-su-20182297-1/

Import Source

https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2018:2297-1.json

JSON Data

https://api.osv.dev/v1/vulns/SUSE-SU-2018:2297-1

Related

CVE-2018-10900

Published

2018-08-10T09:39:10Z

Modified

2025-05-02T04:07:28.534110Z

Upstream

CVE-2018-10900

Summary

Recommended update for NetworkManager-vpnc

Details

This update for NetworkManager-vpnc fixes the following issues:

Security issue fixed:

CVE-2018-10900: Check configurations that contain newline characters and invalidate them to avoid security attacks (bsc#1101147).

References

Affected packages

SUSE:Linux Enterprise Desktop 12 SP3 / NetworkManager-vpnc

Package

Name: NetworkManager-vpnc
Purl: pkg:rpm/suse/NetworkManager-vpnc&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.0.8-8.4.2

Ecosystem specific

{
    "binaries": [
        {
            "NetworkManager-vpnc-gnome": "1.0.8-8.4.2",
            "NetworkManager-vpnc": "1.0.8-8.4.2",
            "NetworkManager-vpnc-lang": "1.0.8-8.4.2"
        }
    ]
}

SUSE:Linux Enterprise Workstation Extension 12 SP3 / NetworkManager-vpnc

Package

Name: NetworkManager-vpnc
Purl: pkg:rpm/suse/NetworkManager-vpnc&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP3

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.0.8-8.4.2

Ecosystem specific

{
    "binaries": [
        {
            "NetworkManager-vpnc-gnome": "1.0.8-8.4.2",
            "NetworkManager-vpnc": "1.0.8-8.4.2",
            "NetworkManager-vpnc-lang": "1.0.8-8.4.2"
        }
    ]
}