Vulnerability Database
Blog
FAQ
Docs
SUSE-SU-2021:0800-1
See a problem?
Please try reporting it
to the source
first.
Source
https://www.suse.com/support/update/announcement/2021/suse-su-20210800-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:0800-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2021:0800-1
Related
CVE-2020-13936
Published
2021-03-16T11:53:12Z
Modified
2021-03-16T11:53:12Z
Summary
Security update for velocity
Details
This update for velocity fixes the following issues:
CVE-2020-13936: Fixed an arbitrary code execution when attacker is able to modify templates (bsc#1183360).
References
https://www.suse.com/support/update/announcement/2021/suse-su-20210800-1/
https://bugzilla.suse.com/1183360
https://www.suse.com/security/cve/CVE-2020-13936
Affected packages
SUSE:Linux Enterprise Module for Development Tools 15 SP2
/
velocity
Package
Name
velocity
Purl
pkg:rpm/suse/velocity&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1.7-3.3.1
Ecosystem specific
{ "binaries": [ { "velocity": "1.7-3.3.1" } ] }
SUSE-SU-2021:0800-1 - OSV