Oval Definition:oval:org.opensuse.security:def:105681
Revision Date:2021-12-14Version:1
Title:Security update for fetchmail (Moderate)
Description:

This update for fetchmail fixes the following issues:

- CVE-2021-36386: Fixed DoS or information disclosure in some configurations (bsc#1188875). - CVE-2021-39272: Fixed STARTTLS session encryption bypassing (fetchmail-SA-2021-02) (bsc#1190069).

- Update to 6.4.22 (bsc#1152964, jsc#SLE-18159, jsc#SLE-17903, jsc#SLE-18059) - Remove all python2 dependencies (bsc#1190896). - De-hardcode /usr/lib path for launch executable (bsc#1174075). - Added hardening to systemd service(s) (bsc#1181400).
Family:unixClass:patch
Status:Reference(s):1152964
1174075
1181400
1188875
1190069
1190896
CVE-2018-18310
CVE-2019-7146
CVE-2019-7664
CVE-2021-36386
CVE-2021-39272
SUSE-SU-2021:4018-1
Platform(s):openSUSE Tumbleweed
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS
Product(s):
Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • elfutils-0.185-3.1 is installed
  • OR elfutils-lang-0.185-3.1 is installed
  • OR libasm-devel-0.185-3.1 is installed
  • OR libasm1-0.185-3.1 is installed
  • OR libasm1-32bit-0.185-3.1 is installed
  • OR libdw-devel-0.185-3.1 is installed
  • OR libdw1-0.185-3.1 is installed
  • OR libdw1-32bit-0.185-3.1 is installed
  • OR libelf-devel-0.185-3.1 is installed
  • OR libelf-devel-32bit-0.185-3.1 is installed
  • OR libelf1-0.185-3.1 is installed
  • OR libelf1-32bit-0.185-3.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS is installed
  • AND Package Information
  • fetchmail-6.4.22-20.20.1 is installed
  • OR fetchmailconf-6.4.22-20.20.1 is installed
  • BACK