Overview

File _patchinfo of Package patchinfo.16458

<patchinfo incident="16458">
  <issue tracker="bnc" id="1186088">Java:packages/snakeyaml: CVE-2017-18640</issue>
  <issue tracker="bnc" id="1159488">VUL-0: CVE-2017-18640: snakeyaml: The Alias feature allows entity expansion during a load operation</issue>
  <issue tracker="cve" id="2017-18640"/>
  <packager>fstrba</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for snakeyaml</summary>
  <description>This update for snakeyaml fixes the following issues:

- Upgrade to 1.28
- CVE-2017-18640: The Alias feature allows entity expansion during a load operation (bsc#1159488, bsc#1186088)

This update was imported from the SUSE:SLE-15-SP2:Update update project.</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places