Lucene search
SuseOPENSUSE-SU-2018:2859-1HistorySep 25, 2018 - 6:32 p.m.
Security update for php5-smarty3 (moderate)
2018-09-2518:32:37
lists.opensuse.org
46
0.001 Low
EPSS
Percentile
36.4%
This update for php5-smarty3 fixes the following issues:
- CVE-2018-16381: Prevent traversal vulnerability due to insufficient
template code sanitization that allowed attackers controlling the
executed template code to bypass the trusted directory security
restriction and read arbitrary files (bsc#1108741).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 42.3 | noarch | php5-smarty3 | < 3.1.33-5.5.1 | php5-smarty3-3.1.33-5.5.1.noarch.rpm |
| openSUSE Leap | 42.3 | noarch | php5-smarty3-doc | < 3.1.33-5.5.1 | php5-smarty3-doc-3.1.33-5.5.1.noarch.rpm |
References
Related
prion
prion
Code injection
2018-09-05 21:29:00
openvas
openvas
openSUSE: Security Advisory for php5-smarty3 (openSUSE-SU-2018:2859-1)
2018-09-26 00:00:00
e107 <= 2.1.8 Multiple Vulnerabilities
2018-09-11 00:00:00
nessus
nessus
openSUSE Security Update : php5-smarty3 (openSUSE-2018-1052)
2018-09-27 00:00:00
cve
cve
CVE-2018-16381
2018-09-05 21:29:00
osv
osv
CVE-2018-16381
2018-09-05 21:29:03