Upstream information
Description
Multiple format string vulnerabilities in (1) neon 0.24.4 and earlier, and other products that use neon including (2) Cadaver, (3) Subversion, and (4) OpenOffice, allow remote malicious WebDAV servers to execute arbitrary code.NVD CVSS v2 Base Score: 5.1 (AV:N/AC:H/Au:N/C:P/I:P/A:P)
Novell/SUSE information
Novell Bugzilla entries: 52716, 56711, 56712, 56724, 56833 SUSE Security Advisories:- SUSE-SA:2004:020, published Tuesday, Jul 2nd 2004 18:00 MEST
- SUSE-SA:2004:021, published Friday, Jul 16th 2004 13:00:00 MEST
- SUSE-SA:2004:022, published Friday, Jul 23th 2004 12:30 MEST
- SuSE-SA:2004:008, published Wed Apr 14 16:00:00 MEST 2004
- SuSE-SA:2004:009, published Wednesday, Apr. 14th 2004 16:00 MEST
- SuSE-SA:2004:015, published Wed Jun 9 15:00:00 MEST 2004
- SuSE-SA:2004:016, published Wednesday, Jun 9th 2004 16:30 MEST
- SuSE-SA:2004:017, published Wednesday, Jun 16th 2004 15:20 MEST
- SuSE-SA:2004:018, published Thursday, Jun 17th 2004 09:30 MEST
- SuSE-SA:2004:019, published Tuesday, Jun 22st 2004 21:00 MEST
List of released packages
| Product(s) | Fixed package version(s) | References |
|---|---|---|
| SuSE Linux Desktop 1.0 |
| Builds |
| SUSE LINUX Retail Solution 8 SuSE Linux Enterprise Server 8 for AMD64 SuSE Linux Enterprise Server 8 for IBM iSeries and IBM pSeries SuSE Linux Enterprise Server 8 for IBM zSeries SuSE Linux Enterprise Server 8 for IPF SuSE Linux Openexchange Server 4 SuSE Linux School Server for i386 SuSE Linux Standard Server 8 UnitedLinux 1.0 |
| ul1.s390x ul1.x86-64 ul1.ppc ul1.ia64 ul1.s390 slox4,2.x86 YOU Patch Nr: 9053 |
| SUSE LINUX Retail Solution 8 SuSE Linux Enterprise Server 8 for AMD64 SuSE Linux Enterprise Server 8 for IBM iSeries and IBM pSeries SuSE Linux Enterprise Server 8 for IBM zSeries SuSE Linux Enterprise Server 8 for IPF SuSE Linux Openexchange Server 4 SuSE Linux School Server for i386 SuSE Linux Standard Server 8 UnitedLinux 1.0 |
| ul1.ppc ul1.x86-64 ul1.ia64 slox4,2.x86 ul1.s390 ul1.s390x YOU Patch Nr: 9047 |