SUSE-SU-2023:3164-1

Details

This update for jtidy fixes the following issues:

CVE-2023-34623: Prevent crash when parsing documents with excessive nesting (bsc#1212404).

Affected Packages

jtidy

SUSE Linux Enterprise Module for Development Tools 15 SP4SUSE Linux Enterprise Module for Development Tools 15 SP5SUSE Linux Enterprise Real Time 15 SP3openSUSE Leap 15.4openSUSE Leap 15.5

Fixed in:

8.0-150200.11.7.1

jtidy-javadoc

openSUSE Leap 15.4openSUSE Leap 15.5

Fixed in:

8.0-150200.11.7.1

jtidy-scripts

openSUSE Leap 15.4openSUSE Leap 15.5

Fixed in:

8.0-150200.11.7.1

References

REPORT

https://bugzilla.suse.com/1212404

WEB

https://www.suse.com/security/cve/CVE-2023-34623

ADVISORY

https://www.suse.com/support/update/announcement/2023/suse-su-20233164-1/