OVAL Reference oval:org.opensuse.security:def:20165746 - CERT Civis.Net

Oval Definition:

oval:org.opensuse.security:def:20165746

Revision Date:	2022-05-20	Version:	1
Title:	CVE-2016-5746
Description:	libstorage, libstorage-ng, and yast-storage improperly store passphrases for encrypted storage devices in a temporary file on disk, which might allow local users to obtain sensitive information by reading the file, as demonstrated by /tmp/libstorage-XXXXXX/pwdf.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2016-5746 SUSE-SU-2016:2189-1 SUSE-SU-2016:2353-1 SUSE-SU-2016:2355-1 openSUSE-SU-2016:2264-1 Mitre CVE-2016-5746 SUSE CVE-2016-5746 SUSE-SU-2016:2189-1 SUSE-SU-2016:2353-1 SUSE-SU-2016:2355-1 openSUSE-SU-2016:2264-1
Platform(s):	openSUSE Leap 42.1 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Server 11 SP3-TERADATA SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA SUSE Linux Enterprise Server for SAP Applications 11 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12-LTSS SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libstorage-2.25.35.1-3 is installed OR libstorage-ruby-2.25.35.1-3 is installed OR libstorage6-2.25.35.1-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information yast2-storage-2.17.161-5 is installed OR yast2-storage-lib-2.17.161-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libstorage-2.25.35.1-3 is installed OR libstorage-ruby-2.25.35.1-3 is installed OR libstorage6-2.25.35.1-3 is installed
Definition Synopsis
openSUSE Leap 42.1 is installed AND Package Information libstorage-2.25.35.1-6.1 is installed AND libstorage is signed with openSUSE key OR libstorage-devel-2.25.35.1-6.1 is installed AND libstorage-devel is signed with openSUSE key OR libstorage-python-2.25.35.1-6.1 is installed AND libstorage-python is signed with openSUSE key OR libstorage-ruby-2.25.35.1-6.1 is installed AND libstorage-ruby is signed with openSUSE key OR libstorage-testsuite-2.25.35.1-6.1 is installed AND libstorage-testsuite is signed with openSUSE key OR libstorage6-2.25.35.1-6.1 is installed AND libstorage6 is signed with openSUSE key OR yast2-storage-3.1.71-4.1 is installed AND yast2-storage is signed with openSUSE key OR yast2-storage-devel-3.1.71-4.1 is installed AND yast2-storage-devel is signed with openSUSE key
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP4 is installed AND yast2-storage-2.17.161-5 is installed OR yast2-storage-lib-2.17.161-5 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND yast2-storage-2.17.161-5 is installed OR yast2-storage-devel-2.17.161-5 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP1 is installed AND libstorage-2.25.35.1-3 is installed OR libstorage-ruby-2.25.35.1-3 is installed OR libstorage6-2.25.35.1-3 is installed OR Package Information SUSE Linux Enterprise Server 12-LTSS is installed AND libstorage-2.25.16.1-3 is installed OR libstorage-ruby-2.25.16.1-3 is installed OR libstorage5-2.25.16.1-3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP1 is installed AND libstorage-2.25.35.1-3 is installed OR libstorage-ruby-2.25.35.1-3 is installed OR libstorage6-2.25.35.1-3 is installed OR Package Information SUSE Linux Enterprise Server 12 SP1 is installed AND libstorage-2.25.35.1-3 is installed OR libstorage-ruby-2.25.35.1-3 is installed OR libstorage6-2.25.35.1-3 is installed OR Package Information SUSE Linux Enterprise Server 12-LTSS is installed AND libstorage-2.25.16.1-3 is installed OR libstorage-ruby-2.25.16.1-3 is installed OR libstorage5-2.25.16.1-3 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND libstorage-2.25.35.1-3 is installed OR libstorage-devel-2.25.35.1-3 is installed OR Package Information SUSE Linux Enterprise for SAP 12 is installed AND libstorage-2.25.16.1-3 is installed OR libstorage-ruby-2.25.16.1-3 is installed OR libstorage5-2.25.16.1-3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND yast2-storage-2.17.161-5 is installed OR yast2-storage-devel-2.17.161-5 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP4 is installed AND yast2-storage-2.17.161-5 is installed OR yast2-storage-lib-2.17.161-5 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP1 is installed OR SUSE Linux Enterprise Server 12 SP1 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND libstorage-2.25.35.1-3 is installed OR libstorage-ruby-2.25.35.1-3 is installed OR libstorage6-2.25.35.1-3 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND libstorage-2.25.35.1-3 is installed OR libstorage-devel-2.25.35.1-3 is installed OR Package Information SUSE Linux Enterprise Server 12-LTSS is installed OR SUSE Linux Enterprise Server for SAP Applications 12 is installed OR SUSE Linux Enterprise Server for SAP Applications 12-LTSS is installed AND libstorage-2.25.16.1-3 is installed OR libstorage-ruby-2.25.16.1-3 is installed OR libstorage5-2.25.16.1-3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP4 is installed AND Package Information yast2-storage-2.17.161-5 is installed OR yast2-storage-lib-2.17.161-5 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP1 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND libstorage-2.25.35.1-3 is installed OR libstorage-ruby-2.25.35.1-3 is installed OR libstorage6-2.25.35.1-3 is installed OR Package Information SUSE Linux Enterprise Server 12-LTSS is installed OR SUSE Linux Enterprise Server for SAP Applications 12 is installed OR SUSE Linux Enterprise Server for SAP Applications 12-LTSS is installed AND libstorage-2.25.16.1-3 is installed OR libstorage-ruby-2.25.16.1-3 is installed OR libstorage5-2.25.16.1-3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 is installed AND yast2-storage is not affected OR Package Information SUSE Linux Enterprise Desktop 12 SP1 is installed AND libstorage-ruby-2.25.35.1-3.1 is installed OR libstorage6-2.25.35.1-3.1 is installed OR yast2-storage is not affected
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3-TERADATA is installed AND Package Information yast2-storage-2.17.147.1-9 is installed OR yast2-storage-lib-2.17.147.1-9 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND yast2-storage-2.17.161-5 is installed OR yast2-storage-devel-2.17.161-5 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP4 is installed AND yast2-storage-2.17.161-5 is installed OR yast2-storage-lib-2.17.161-5 is installed OR Package Information SUSE Linux Enterprise Server 11 SP1-TERADATA is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA is installed AND yast2-storage-2.17.99.5-5 is installed OR yast2-storage-lib-2.17.99.5-5 is installed OR Package Information SUSE Linux Enterprise Server 11 SP3-TERADATA is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP3-TERADATA is installed AND yast2-storage-2.17.147.1-9 is installed OR yast2-storage-lib-2.17.147.1-9 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND yast2-storage-devel-2.17.161-5.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP1-TERADATA is installed AND yast2-storage-2.17.99.5-5.1 is installed OR yast2-storage-lib-2.17.99.5-5.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP3-TERADATA is installed AND yast2-storage-2.17.147.1-9.1 is installed OR yast2-storage-lib-2.17.147.1-9.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP4 is installed AND yast2-storage-2.17.161-5.1 is installed OR yast2-storage-lib-2.17.161-5.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 is installed OR SUSE Linux Enterprise Server 12 is installed OR SUSE Linux Enterprise Software Development Kit 12 is installed AND yast2-storage is not affected OR Package Information SUSE Linux Enterprise Desktop 12 SP1 is installed AND libstorage-ruby-2.25.35.1-3.1 is installed OR libstorage6-2.25.35.1-3.1 is installed OR yast2-storage is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 is installed AND libstorage-ruby-2.25.16.1-3.1 is installed OR libstorage5-2.25.16.1-3.1 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND libstorage-devel-2.25.35.1-3.1 is installed OR yast2-storage is not affected OR Package Information SUSE Linux Enterprise Server 12-LTSS is installed AND libstorage-ruby-2.25.16.1-3.1 is installed OR libstorage5-2.25.16.1-3.1 is installed OR Package Information SUSE Linux Enterprise Server 12 SP1 is installed AND libstorage-ruby-2.25.35.1-3.1 is installed OR libstorage6-2.25.35.1-3.1 is installed OR yast2-storage is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND libstorage-ruby-2.25.35.1-3.1 is installed OR libstorage6-2.25.35.1-3.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP1-TERADATA is installed AND yast2-storage-2.17.99.5-5.1 is installed OR yast2-storage-lib-2.17.99.5-5.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP3-TERADATA is installed AND yast2-storage-2.17.147.1-9.1 is installed OR yast2-storage-lib-2.17.147.1-9.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP4 is installed AND yast2-storage-2.17.161-5.1 is installed OR yast2-storage-lib-2.17.161-5.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 is installed AND yast2-storage is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 is installed AND libstorage-ruby-2.25.16.1-3.1 is installed OR libstorage5-2.25.16.1-3.1 is installed OR Package Information SUSE Linux Enterprise Server 12-LTSS is installed AND libstorage-ruby-2.25.16.1-3.1 is installed OR libstorage5-2.25.16.1-3.1 is installed OR Package Information SUSE Linux Enterprise Server 12 SP1 is installed AND libstorage-ruby-2.25.35.1-3.1 is installed OR libstorage6-2.25.35.1-3.1 is installed OR yast2-storage is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND libstorage-ruby-2.25.35.1-3.1 is installed OR libstorage6-2.25.35.1-3.1 is installed