Vulnerability Database
Blog
FAQ
Docs
SUSE-SU-2020:1009-1
See a problem?
Please try reporting it
to the source
first.
Source
https://www.suse.com/support/update/announcement/2020/suse-su-20201009-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2020:1009-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2020:1009-1
Related
CVE-2019-13990
Published
2020-04-16T06:32:37Z
Modified
2020-04-16T06:32:37Z
Summary
Security update for quartz
Details
This update for quartz fixes the following issues:
CVE-2019-13990: Fixed XML External Entity attack in initDocumentParser (bsc#1143227).
References
https://www.suse.com/support/update/announcement/2020/suse-su-20201009-1/
https://bugzilla.suse.com/1143227
https://www.suse.com/security/cve/CVE-2019-13990
Affected packages
SUSE:Manager Server 3.2
/
quartz
Package
Name
quartz
Purl
pkg:rpm/suse/quartz&distro=SUSE%20Manager%20Server%203.2
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2.3.0-14.3.1
Ecosystem specific
{ "binaries": [ { "quartz": "2.3.0-14.3.1" } ] }
SUSE-SU-2020:1009-1 - OSV