VYPR

rpm package

suse/openslp&distro=SUSE Linux Enterprise Desktop 12 SP2

pkg:rpm/suse/openslp&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP2

Vulnerabilities (2)

  • CVE-2016-4912HigMar 27, 2017
    affected < 2.0.0-18.2.1fixed 2.0.0-18.2.1

    The _xrealloc function in xlsp_xmalloc.c in OpenSLP 2.0.0 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a large number of crafted packets, which triggers a memory allocation failure.

  • CVE-2016-7567CriJan 23, 2017
    affected < 2.0.0-18.2.1fixed 2.0.0-18.2.1

    Buffer overflow in the SLPFoldWhiteSpace function in common/slp_compare.c in OpenSLP 2.0 allows remote attackers to have unspecified impact via a crafted string.