Описание
Security update for jdom
This update for jdom fixes the following issues:
- CVE-2021-33813: Fixed XXE issue in SAXBuilder can cause a denial of service via a crafted HTTP request (bsc#1187446).
Список пакетов
SUSE Enterprise Storage 6
jaxen-1.1.1-150000.5.3.1
jdom-1.1-150000.5.3.1
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS
jaxen-1.1.1-150000.5.3.1
jdom-1.1-150000.5.3.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
jaxen-1.1.1-150000.5.3.1
jdom-1.1-150000.5.3.1
SUSE Linux Enterprise High Performance Computing 15-ESPOS
jaxen-1.1.1-150000.5.3.1
jdom-1.1-150000.5.3.1
SUSE Linux Enterprise High Performance Computing 15-LTSS
jaxen-1.1.1-150000.5.3.1
jdom-1.1-150000.5.3.1
SUSE Linux Enterprise Server 15 SP1-BCL
jaxen-1.1.1-150000.5.3.1
jdom-1.1-150000.5.3.1
SUSE Linux Enterprise Server 15 SP1-LTSS
jaxen-1.1.1-150000.5.3.1
jdom-1.1-150000.5.3.1
SUSE Linux Enterprise Server 15-LTSS
jaxen-1.1.1-150000.5.3.1
jdom-1.1-150000.5.3.1
SUSE Linux Enterprise Server for SAP Applications 15
jaxen-1.1.1-150000.5.3.1
jdom-1.1-150000.5.3.1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
jaxen-1.1.1-150000.5.3.1
jdom-1.1-150000.5.3.1
Ссылки
- Link for SUSE-SU-2022:3547-1
- E-Mail link for SUSE-SU-2022:3547-1
- SUSE Security Ratings
- SUSE Bug 1187446
- SUSE CVE CVE-2021-33813 page
Описание
An XXE issue in SAXBuilder in JDOM through 2.0.6 allows attackers to cause a denial of service via a crafted HTTP request.
Затронутые продукты
SUSE Enterprise Storage 6:jaxen-1.1.1-150000.5.3.1
SUSE Enterprise Storage 6:jdom-1.1-150000.5.3.1
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:jaxen-1.1.1-150000.5.3.1
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:jdom-1.1-150000.5.3.1
Ссылки
- CVE-2021-33813
- SUSE Bug 1187446