OVAL Reference oval:org.opensuse.security:def:20134956

Oval Definition:

oval:org.opensuse.security:def:20134956

Revision Date:	2022-09-02	Version:	1
Title:	CVE-2013-4956
Description:	Puppet Module Tool (PMT), as used in Puppet 2.7.x before 2.7.23 and 3.2.x before 3.2.4, and Puppet Enterprise 2.8.x before 2.8.3 and 3.0.x before 3.0.1, installs modules with weak permissions if those permissions were used when the modules were originally built, which might allow local users to read or modify those modules depending on the original permissions.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2013-4956 Mitre CVE-2013-4956 SUSE CVE-2013-4956
Platform(s):	openSUSE Tumbleweed SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Performance Computing 12 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5	Product(s):
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 is installed AND puppet-3.6.2-3.62 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP1 is installed AND puppet-3.6.2-3.62 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP2 is installed AND puppet-3.8.5-5.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND Package Information puppet-3.6.2-3 is installed OR puppet-server-3.6.2-3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 is installed AND puppet-3.6.2-3.62 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP1 is installed AND puppet-3.6.2-3.62 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP2 is installed AND puppet-3.8.5-5.1 is installed OR Package Information SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND puppet-3.6.2-3.62 is installed OR puppet-server-3.6.2-3.62 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 is installed AND puppet-3.6.2-3 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP1 is installed AND puppet-3.6.2-3 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP2 is installed AND puppet-3.8.5-5 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed AND puppet-3.8.5-14 is installed OR Package Information SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND puppet-3.6.2-3 is installed OR puppet-server-3.6.2-3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 is installed AND puppet-3.6.2-3 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP1 is installed AND puppet-3.6.2-3 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP2 is installed AND puppet-3.8.5-5 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed AND puppet-3.8.5-14 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 is installed OR SUSE Linux Enterprise Desktop 12 SP1 is installed AND puppet-3.6.2-3 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP2 is installed AND puppet-3.8.5-5 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed AND puppet-3.8.5-14 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP4 is installed AND puppet-3.8.5-15.9 is installed OR Package Information SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND puppet-3.6.2-3 is installed OR puppet-server-3.6.2-3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 is installed OR SUSE Linux Enterprise Desktop 12 SP1 is installed AND puppet-3.6.2-3.62 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP2 is installed AND puppet-3.8.5-5.1 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed AND puppet-3.8.5-14.1 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP4 is installed AND puppet-3.8.5-15.9.1 is installed
Definition Synopsis
openSUSE Tumbleweed is installed AND Package Information ruby2.2-rubygem-puppet-3.8.7-2.2 is installed OR ruby2.2-rubygem-puppet-doc-3.8.7-2.2 is installed OR ruby2.2-rubygem-puppet-testsuite-3.8.7-2.2 is installed OR ruby2.3-rubygem-puppet-3.8.7-2.2 is installed OR ruby2.3-rubygem-puppet-doc-3.8.7-2.2 is installed OR ruby2.3-rubygem-puppet-testsuite-3.8.7-2.2 is installed OR rubygem-puppet-3.8.7-2.2 is installed OR rubygem-puppet-emacs-3.8.7-2.2 is installed OR rubygem-puppet-master-3.8.7-2.2 is installed OR rubygem-puppet-master-unicorn-3.8.7-2.2 is installed OR rubygem-puppet-vim-3.8.7-2.2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 is installed OR SUSE Linux Enterprise Desktop 12 SP1 is installed AND puppet-3.6.2-3.62 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP2 is installed AND puppet-3.8.5-5.1 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed AND puppet-3.8.5-14.1 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP4 is installed AND puppet-3.8.5-15.9.1 is installed OR Package Information SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND puppet-3.6.2-3.62 is installed OR puppet-server-3.6.2-3.62 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 12 is installed OR SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed OR SUSE Linux Enterprise Server 12 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND Package Information puppet-3.6.2-3.62 is installed OR puppet-server-3.6.2-3.62 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND puppet-3.8.5-15.9.1 is installed

BACK