OVAL Reference oval:org.opensuse.security:def:1122

Oval Definition:

oval:org.opensuse.security:def:1122

Revision Date:	2021-08-25	Version:	1
Title:	Security update for jetty-minimal (Moderate)
Description:	This update for jetty-minimal fixes the following issues: - Update to version 9.4.43.v20210629 - CVE-2021-34429: URIs can be crafted using some encoded characters to access the content of the WEB-INF directory and/or bypass some security constraints. (bsc#1188438)
Family:	unix	Class:	patch
Status:		Reference(s):	1188438 CVE-2012-6708 CVE-2015-9251 CVE-2016-2851 CVE-2016-2851 CVE-2017-10683 CVE-2017-11126 CVE-2017-17742 CVE-2018-1000073 CVE-2018-1000074 CVE-2018-1000075 CVE-2018-1000076 CVE-2018-1000077 CVE-2018-1000078 CVE-2018-1000079 CVE-2018-16395 CVE-2018-16396 CVE-2018-6914 CVE-2018-8777 CVE-2018-8778 CVE-2018-8779 CVE-2018-8780 CVE-2019-15845 CVE-2019-16201 CVE-2019-16254 CVE-2019-16255 CVE-2019-8320 CVE-2019-8321 CVE-2019-8322 CVE-2019-8323 CVE-2019-8324 CVE-2019-8325 CVE-2020-10663 CVE-2020-10933 CVE-2020-25613 CVE-2020-8130 CVE-2021-28965 CVE-2021-34429 SUSE-SU-2021:2838-1
Platform(s):	openSUSE Leap 42.1 SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 15 SP3 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SP3 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Storage 7.1 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.2 SUSE Package Hub for SUSE Linux Enterprise 12 SUSE Package Hub for SUSE Linux Enterprise 12 SP1 SUSE Package Hub for SUSE Linux Enterprise 15	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information python-keystoneclient-1.0.0-14 is installed OR python-keystoneclient-doc-1.0.0-14 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 is installed AND kernel-zfcpdump-3.12.48-52.27.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-1 is installed OR aaa_base-extras-13.2+git20140911.61c1681-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information alsa-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information MozillaFirefox-45.4.0esr-81 is installed OR MozillaFirefox-translations-45.4.0esr-81 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information vino-3.20.2-5 is installed OR vino-lang-3.20.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed AND Package Information libruby2_5-2_5-2.5.9-4.17.1 is installed OR ruby2.5-2.5.9-4.17.1 is installed OR ruby2.5-devel-2.5.9-4.17.1 is installed OR ruby2.5-devel-extra-2.5.9-4.17.1 is installed OR ruby2.5-stdlib-2.5.9-4.17.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 15 SP3 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Module for Development Tools 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Linux Enterprise Storage 7.1 is installed OR SUSE Manager Proxy 4.2 is installed OR SUSE Manager Retail Branch Server 4.2 is installed OR SUSE Manager Server 4.2 is installed AND Package Information jetty-http-9.4.43-3.12.2 is installed OR jetty-io-9.4.43-3.12.2 is installed OR jetty-security-9.4.43-3.12.2 is installed OR jetty-server-9.4.43-3.12.2 is installed OR jetty-servlet-9.4.43-3.12.2 is installed OR jetty-util-9.4.43-3.12.2 is installed OR jetty-util-ajax-9.4.43-3.12.2 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 is installed AND Package Information ruby2.5-rubygem-sprockets-3.7.2-3.3 is installed OR rubygem-sprockets-3.7.2-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information java-1_8_0-openjdk-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-javadoc-1.8.0.212-3.19 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information libmpg123-0-1.25.10-1 is installed OR libout123-0-1.25.10-1 is installed OR mpg123-1.25.10-1 is installed OR mpg123-devel-1.25.10-1 is installed OR mpg123-pulse-1.25.10-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-150.17 is installed OR kernel-default-livepatch-4.12.14-150.17 is installed OR kernel-livepatch-4_12_14-150_17-default-1-1.3 is installed OR kernel-livepatch-SLE15_Update_10-1-1.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information ceph-14.2.2.349+g6716a1e448-3.9 is installed OR ceph-base-14.2.2.349+g6716a1e448-3.9 is installed OR ceph-fuse-14.2.2.349+g6716a1e448-3.9 is installed OR ceph-grafana-dashboards-14.2.2.349+g6716a1e448-3.9 is installed OR ceph-mds-14.2.2.349+g6716a1e448-3.9 is installed OR ceph-mgr-14.2.2.349+g6716a1e448-3.9 is installed OR ceph-mgr-dashboard-14.2.2.349+g6716a1e448-3.9 is installed OR ceph-mgr-diskprediction-cloud-14.2.2.349+g6716a1e448-3.9 is installed OR ceph-mgr-diskprediction-local-14.2.2.349+g6716a1e448-3.9 is installed OR ceph-mgr-rook-14.2.2.349+g6716a1e448-3.9 is installed OR ceph-mgr-ssh-14.2.2.349+g6716a1e448-3.9 is installed OR ceph-mon-14.2.2.349+g6716a1e448-3.9 is installed OR ceph-osd-14.2.2.349+g6716a1e448-3.9 is installed OR ceph-radosgw-14.2.2.349+g6716a1e448-3.9 is installed OR ceph-test-14.2.2.349+g6716a1e448-3.9 is installed OR cephfs-shell-14.2.2.349+g6716a1e448-3.9 is installed OR rbd-fuse-14.2.2.349+g6716a1e448-3.9 is installed OR rbd-mirror-14.2.2.349+g6716a1e448-3.9 is installed OR rbd-nbd-14.2.2.349+g6716a1e448-3.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.16 is installed OR kernel-azure-base-4.12.14-5.16 is installed OR kernel-azure-devel-4.12.14-5.16 is installed OR kernel-devel-azure-4.12.14-5.16 is installed OR kernel-source-azure-4.12.14-5.16 is installed OR kernel-syms-azure-4.12.14-5.16 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libecpg6-10.5-4.5 is installed OR postgresql10-10.5-4.5 is installed OR postgresql10-contrib-10.5-4.5 is installed OR postgresql10-devel-10.5-4.5 is installed OR postgresql10-docs-10.5-4.5 is installed OR postgresql10-plperl-10.5-4.5 is installed OR postgresql10-plpython-10.5-4.5 is installed OR postgresql10-pltcl-10.5-4.5 is installed OR postgresql10-server-10.5-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs8-8.11.3-3.5 is installed OR nodejs8-devel-8.11.3-3.5 is installed OR nodejs8-docs-8.11.3-3.5 is installed OR npm8-8.11.3-3.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information ibus-chewing-1.4.10.1-2.25 is installed OR ibus-pinyin-1.5.0-2.13 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information libotr-devel-4.1.1-2 is installed OR libotr5-4.1.1-2 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information PackageKit-gstreamer-plugin-1.1.10-10 is installed OR PackageKit-gtk3-module-1.1.10-10 is installed
Definition Synopsis
SUSE Package Hub for SUSE Linux Enterprise 12 is installed AND Package Information irssi-0.8.20-9 is installed OR irssi-devel-0.8.20-9 is installed
Definition Synopsis
SUSE Package Hub for SUSE Linux Enterprise 12 SP1 is installed AND Package Information kinit-5.20.0-5 is installed OR kinit-devel-5.20.0-5 is installed OR kinit-lang-5.20.0-5 is installed
Definition Synopsis
SUSE Package Hub for SUSE Linux Enterprise 15 is installed AND Package Information aubio-0.4.1-bp150.3.6 is installed OR aubio-tools-0.4.1-bp150.3.6 is installed OR libaubio-devel-0.4.1-bp150.3.6 is installed OR libaubio4-0.4.1-bp150.3.6 is installed OR libaubio4-64bit-0.4.1-bp150.3.6 is installed

BACK