OVAL Reference oval:org.opensuse.security:def:201715638

Oval Definition:

oval:org.opensuse.security:def:201715638

Revision Date:	2022-09-02	Version:	1
Title:	CVE-2017-15638
Description:	The SuSEfirewall2 package before 3.6.312-2.13.1 in SUSE Linux Enterprise (SLE) Desktop 12 SP2, Server 12 SP2, and Server for Raspberry Pi 12 SP2; before 3.6.312.333-3.10.1 in SLE Desktop 12 SP3 and Server 12 SP3; before 3.6_SVNr208-2.18.3.1 in SLE Server 11 SP4; before 3.6.312-5.9.1 in openSUSE Leap 42.2; and before 3.6.312.333-7.1 in openSUSE Leap 42.3 might allow remote attackers to bypass intended access restrictions on the portmap service by leveraging a missing source net restriction for _rpc_ services.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2017-15638 SUSE-SU-2017:2923-1 SUSE-SU-2017:2932-1 SUSE-SU-2017:2935-1 openSUSE-SU-2017:2940-1 Mitre CVE-2017-15638 SUSE CVE-2017-15638 SUSE-SU-2017:2923-1 SUSE-SU-2017:2932-1 SUSE-SU-2017:2935-1 openSUSE-SU-2017:2940-1
Platform(s):	openSUSE Leap 42.2 openSUSE Leap 42.3 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Server 11 SP3-TERADATA SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA SUSE Linux Enterprise Server for SAP Applications 11 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND SuSEfirewall2-3.6_SVNr208-2.18.3 is installed
Definition Synopsis
openSUSE Leap 42.2 is installed AND Package Information SuSEfirewall2-3.6.312-5.9.1 is installed AND SuSEfirewall2 is signed with openSUSE key
Definition Synopsis
openSUSE Leap 42.3 is installed AND Package Information SuSEfirewall2-3.6.312.333-7 is installed AND SuSEfirewall2 is signed with openSUSE key
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed AND SuSEfirewall2-3.6.312.333-3.10 is installed OR Package Information SUSE Linux Enterprise Server 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3 is installed AND SuSEfirewall2-3.6.312.333-3.10 is installed OR Package Information SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed AND SuSEfirewall2-3.6.312.333-3.10 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3 is installed AND SuSEfirewall2-3.6.312.333-3.10 is installed OR Package Information SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND SuSEfirewall2-3.6.312.333-3.10 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP4 is installed AND SuSEfirewall2-3.6_SVNr208-2.18.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed AND SuSEfirewall2-3.6.312.333-3.10 is installed OR Package Information SUSE Linux Enterprise Server 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3 is installed AND SuSEfirewall2-3.6.312.333-3.10 is installed OR Package Information SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND SuSEfirewall2-3.6.312.333-3.10 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3 is installed AND SuSEfirewall2-3.6.312.333-3.10 is installed OR Package Information SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND SuSEfirewall2-3.6.312.333-3.10 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP2 is installed OR SUSE Linux Enterprise Server 12 SP2 is installed OR SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND SuSEfirewall2-3.6.312.333-3.10 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed AND SuSEfirewall2-3.6.312.333-3.13.1 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13.1 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed AND SuSEfirewall2-3.6.312.333-3.10.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP2 is installed OR SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND SuSEfirewall2-3.6.312.333-3.10 is installed OR Package Information SUSE Linux Enterprise Server 12 SP4 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3-TERADATA is installed AND SuSEfirewall2-3.6_SVNr208-2.18.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP1-TERADATA is installed OR SUSE Linux Enterprise Server 11 SP3-TERADATA is installed OR SUSE Linux Enterprise Server 11 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP3-TERADATA is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP4 is installed AND SuSEfirewall2-3.6_SVNr208-2.18.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP2 is installed OR SUSE Linux Enterprise Server 12 SP2 is installed OR SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND SuSEfirewall2-3.6.312.333-3.10 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP2 is installed OR SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND SuSEfirewall2-3.6.312.333-3.10 is installed OR Package Information SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP2 is installed OR SUSE Linux Enterprise Server 12 SP2 is installed OR SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND SuSEfirewall2-3.6.312.333-3.10 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise High Performance Computing 12 SP5 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP1-TERADATA is installed OR SUSE Linux Enterprise Server 11 SP3-TERADATA is installed OR SUSE Linux Enterprise Server 11 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP4 is installed AND SuSEfirewall2-3.6_SVNr208-2.18.3.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed AND SuSEfirewall2-3.6.312.333-3.13.1 is installed OR Package Information SUSE Linux Enterprise Server 12 SP2 is installed OR SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13.1 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND SuSEfirewall2-3.6.312.333-3.10.1 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND SuSEfirewall2 is affected
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND SuSEfirewall2-3.6.312.333-3.10.1 is installed OR Package Information SUSE OpenStack Cloud 8 is installed OR SUSE OpenStack Cloud Crowbar 8 is installed AND SuSEfirewall2 is affected
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND SuSEfirewall2-3.6.312.333-3.13.1 is installed OR Package Information SUSE OpenStack Cloud 9 is installed OR SUSE OpenStack Cloud Crowbar 9 is installed AND SuSEfirewall2 is affected
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 12 SP5 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed AND SuSEfirewall2-3.6.312.333-3.13.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 12 SP5 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed AND SuSEfirewall2-3.6.312.333-3.13.1 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND SuSEfirewall2 is affected
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed AND SuSEfirewall2-3.6.312.333-3.13.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed AND SuSEfirewall2-3.6.312.333-3.13.1 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND SuSEfirewall2 is affected

BACK