Alerts This Week
Warning Icon 1 646
Alerts This Week
Warning Icon 1 646

SUSE: 2020:1009-1 Moderate: Quartz XML External Entity Fix

suse
Calendar Grey April 16, 2020
Dist Suse Esm H88
SUSE Security Patch for quartz addresses a significant vulnerability related to XML External Entity exploitation. Detailed guidance provided.

An update that fixes one vulnerability is now available.

Summary

This update for quartz fixes the following issues: - CVE-2019-13990: Fixed XML External Entity attack in initDocumentParser (bsc#1143227). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Manager Server 3.2: zypper in -t patch SUSE-SUSE-Manager-Server-3.2-2020-1009=1 Package List: - SUSE Manager Server 3.2 (noarch): quartz-2.3.0-14.3.1

Topics%20covered

Topics Covered

security advisory moderate security update suse manager patch instructions xml attack quartz

References

#1143227

Cross- CVE-2019-13990

Affected Products:

SUSE Manager Server 3.2

https://www.suse.com/security/cve/CVE-2019-13990.html

https://bugzilla.suse.com/1143227

Announcement ID: SUSE-SU-2020:1009-1
Rating: moderate

Topics%20covered

Topics Covered

security advisory moderate security update suse manager patch instructions xml attack quartz

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here