OPENSUSE-SU-2018:4045-1

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2018-1000632

Published: 07 Dec 2018, 18:04

Last modified:04 Feb 2026, 03:56

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

07 Dec 2018, 18:04

Published

Vulnerability first disclosed

04 Feb 2026, 03:56

Last Modified

Vulnerability information updated

Description

Security update for dom4j This update for dom4j fixes the following issues: - CVE-2018-1000632: Prevent XML injection that could have resulted in an attacker tampering with XML documents (bsc#1105443). This update was imported from the SUSE:SLE-15:Update update project. This update was imported from the openSUSE:Leap:15.0:Update update project.

Affected Systems

suse•dom4j&distro=SUSE Package Hub 15
< 1.6.1-bp150.2.3.1

References (3)

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5RYPCWEZ3MOAPSZ2627N5DL77DKXKBDQ/#5RYPCWEZ3MOAPSZ2627N5DL77DKXKBDQ
https://bugzilla.suse.com/1105443
https://www.suse.com/security/cve/CVE-2018-1000632