OVAL Reference oval:org.opensuse.security:def:1548

Oval Definition:

oval:org.opensuse.security:def:1548

Revision Date:	2021-08-12	Version:	1
Title:	Security update for rpm (Important)
Description:	This update for rpm fixes the following issues: - Changed default package verification level to 'none' to be compatible to rpm-4.14.1 - Made illegal obsoletes a warning - Fixed a potential access of freed mem in ndb's glue code (bsc#1179416) - Added support for enforcing signature policy and payload verification step to transactions (jsc#SLE-17817) - Added :humansi and :hmaniec query formatters for human readable output - Added query selectors for whatobsoletes and whatconflicts - Added support for sorting caret higher than base version - rpm does no longer require the signature header to be in a contiguous region when signing (bsc#1181805) Security fixes: - CVE-2021-3421: A flaw was found in the RPM package in the read functionality. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package or compromise an RPM repository, to cause RPM database corruption. The highest threat from this vulnerability is to data integrity (bsc#1183543) - CVE-2021-20271: A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package, whose signature header was modified, to cause RPM database corruption and execute code. The highest threat from this vulnerability is to data integrity, confidentiality, and system availability (bsc#1183545) - CVE-2021-20266: A flaw was found in RPM's hdrblobInit() in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from this vulnerability is to system availability.
Family:	unix	Class:	patch
Status:		Reference(s):	1133291 1135715 1179416 1181805 1183543 1183545 CVE-2017-6507 CVE-2019-11461 CVE-2019-6237 CVE-2019-6237 CVE-2019-8571 CVE-2019-8571 CVE-2019-8583 CVE-2019-8583 CVE-2019-8584 CVE-2019-8584 CVE-2019-8586 CVE-2019-8586 CVE-2019-8587 CVE-2019-8587 CVE-2019-8594 CVE-2019-8594 CVE-2019-8595 CVE-2019-8595 CVE-2019-8596 CVE-2019-8596 CVE-2019-8597 CVE-2019-8597 CVE-2019-8601 CVE-2019-8601 CVE-2019-8607 CVE-2019-8607 CVE-2019-8608 CVE-2019-8608 CVE-2019-8609 CVE-2019-8609 CVE-2019-8610 CVE-2019-8610 CVE-2019-8611 CVE-2019-8611 CVE-2019-8615 CVE-2019-8615 CVE-2019-8619 CVE-2019-8619 CVE-2019-8622 CVE-2019-8622 CVE-2019-8623 CVE-2019-8623 CVE-2021-20266 CVE-2021-20271 CVE-2021-3421 SUSE-SU-2021:2682-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for CAP 15 SUSE Linux Enterprise Module for Containers 15 SUSE Linux Enterprise Module for Containers 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SP2 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Public Cloud 15 SP3 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Storage 7 SUSE Linux Enterprise Storage 7.1 SUSE Manager Proxy 4.1 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.1 SUSE Manager Server 4.2	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information accountsservice-0.6.35-3 is installed OR accountsservice-lang-0.6.35-3 is installed OR libaccountsservice0-0.6.35-3 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information augeas-1.2.0-10 is installed OR augeas-lenses-1.2.0-10 is installed OR libaugeas0-1.2.0-10 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed AND Package Information gnome-shell-search-provider-nautilus-3.34.2-2.25 is installed OR libnautilus-extension1-3.34.2-2.25 is installed OR nautilus-3.34.2-2.25 is installed OR nautilus-devel-3.34.2-2.25 is installed OR nautilus-lang-3.34.2-2.25 is installed OR typelib-1_0-Nautilus-3_0-3.34.2-2.25 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Module for Public Cloud 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Linux Enterprise Storage 7.1 is installed OR SUSE Manager Proxy 4.2 is installed OR SUSE Manager Retail Branch Server 4.2 is installed OR SUSE Manager Server 4.2 is installed AND rpm-ndb-4.14.3-37.2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.2-3.27 is installed OR libwebkit2gtk-4_0-37-2.24.2-3.27 is installed OR libwebkit2gtk3-lang-2.24.2-3.27 is installed OR webkit2gtk-4_0-injected-bundles-2.24.2-3.27 is installed OR webkit2gtk3-2.24.2-3.27 is installed
Definition Synopsis
SUSE Linux Enterprise Module for CAP 15 is installed AND cf-cli-6.43.0-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 15 is installed AND Package Information containerd-1.1.2-5.3 is installed OR docker-18.06.1_ce-6.8 is installed OR docker-bash-completion-18.06.1_ce-6.8 is installed OR docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3 is installed OR docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 15 SP1 is installed AND Package Information docker-18.09.6_ce-6.20 is installed OR docker-bash-completion-18.09.6_ce-6.20 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information exiv2-0.26-6.3 is installed OR libexiv2-26-0.26-6.3 is installed OR libexiv2-devel-0.26-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information MozillaFirefox-60.7.0-3.40 is installed OR MozillaFirefox-devel-60.7.0-3.40 is installed OR MozillaFirefox-translations-common-60.7.0-3.40 is installed OR MozillaFirefox-translations-other-60.7.0-3.40 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 is installed AND Package Information ImageMagick-7.0.7.34-3.9 is installed OR perl-PerlMagick-7.0.7.34-3.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND Package Information kernel-docs-4.12.14-197.4 is installed OR kernel-obs-build-4.12.14-197.4 is installed OR kernel-source-4.12.14-197.4 is installed OR kernel-syms-4.12.14-197.4 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information kernel-default-4.12.14-25.25 is installed OR kernel-default-base-4.12.14-25.25 is installed OR kernel-docs-4.12.14-25.25 is installed OR kernel-docs-html-4.12.14-25.25 is installed OR kernel-obs-qa-4.12.14-25.25 is installed OR kselftests-kmp-default-4.12.14-25.25 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libmariadb-devel-3.1.2-3.9 is installed OR libmariadb_plugins-3.1.2-3.9 is installed OR libmysqld-devel-10.2.25-3.17 is installed OR libmysqld19-10.2.25-3.17 is installed OR mariadb-10.2.25-3.17 is installed OR mariadb-client-10.2.25-3.17 is installed OR mariadb-connector-c-3.1.2-3.9 is installed OR mariadb-errormessages-10.2.25-3.17 is installed OR mariadb-tools-10.2.25-3.17 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND apache2-mod_apparmor-2.12.2-7.17 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information tomcat-9.0.21-3.27 is installed OR tomcat-admin-webapps-9.0.21-3.27 is installed OR tomcat-el-3_0-api-9.0.21-3.27 is installed OR tomcat-jsp-2_3-api-9.0.21-3.27 is installed OR tomcat-lib-9.0.21-3.27 is installed OR tomcat-servlet-4_0-api-9.0.21-3.27 is installed OR tomcat-webapps-9.0.21-3.27 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libjson-c2-0.11-2 is installed OR libjson-c2-32bit-0.11-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND mutt-1.6.0-54.1 is installed

BACK