{"affected":[{"ecosystem_specific":{"binaries":[{"libu2f-host-devel":"1.1.6-lp151.2.3.1","libu2f-host-doc":"1.1.6-lp151.2.3.1","libu2f-host0":"1.1.6-lp151.2.3.1","u2f-host":"1.1.6-lp151.2.3.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.0","name":"libu2f-host","purl":"pkg:rpm/opensuse/libu2f-host&distro=openSUSE%20Leap%2015.0"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.1.6-lp151.2.3.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libu2f-host-devel":"1.1.6-lp151.2.3.1","libu2f-host-doc":"1.1.6-lp151.2.3.1","libu2f-host0":"1.1.6-lp151.2.3.1","u2f-host":"1.1.6-lp151.2.3.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.1","name":"libu2f-host","purl":"pkg:rpm/opensuse/libu2f-host&distro=openSUSE%20Leap%2015.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.1.6-lp151.2.3.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for libu2f-host fixes the following issues:\n\t  \nSecurity issue fixed: \n\n- CVE-2018-20340: Fixed an unchecked buffer, which could allow a buffer overflow \n  with a custom made malicious USB device (bsc#1124781).\n  \nThis update was imported from the SUSE:SLE-15:Update update project.","id":"openSUSE-SU-2019:1475-1","modified":"2019-05-30T06:17:52Z","published":"2019-05-30T06:17:52Z","references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/EQ36UOSV6ZRKJLN2XKDNYOB7MKQAPYUE/#EQ36UOSV6ZRKJLN2XKDNYOB7MKQAPYUE"},{"type":"REPORT","url":"https://bugzilla.suse.com/1124781"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-20340"}],"related":["CVE-2018-20340"],"summary":"Security update for libu2f-host","upstream":["CVE-2018-20340"]}