Oval Definition:oval:org.opensuse.security:def:20172295
Revision Date:2022-09-02Version:1
Title:CVE-2017-2295
Description:

Versions of Puppet prior to 4.10.1 will deserialize data off the wire (from the agent to the server, in this case) with a attacker-specified format. This could be used to force YAML deserialization in an unsafe manner, which would lead to remote code execution. This change constrains the format of data on the wire to PSON or safely decoded YAML.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2017-2295
SUSE-SU-2017:2113-1
SUSE-SU-2018:0600-1
openSUSE-SU-2017:1948-1
Mitre CVE-2017-2295
SUSE CVE-2017-2295
SUSE-SU-2017:2113-1
SUSE-SU-2018:0600-1
openSUSE-SU-2017:1948-1
Platform(s):openSUSE Leap 42.2
openSUSE Leap 42.3
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Performance Computing 12
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Linux Enterprise Server 11 SP1-TERADATA
SUSE Linux Enterprise Server 11 SP3-TERADATA
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA
SUSE Linux Enterprise Server for SAP Applications 11 SP3-TERADATA
SUSE Linux Enterprise Server for SAP Applications 11 SP4
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
Product(s):
Definition Synopsis
  • openSUSE Leap 42.2 is installed
  • AND Package Information
  • ruby2.1-rubygem-puppet-3.8.7-17.3.1 is installed
  • AND ruby2.1-rubygem-puppet is signed with openSUSE key
  • OR
  • ruby2.1-rubygem-puppet-doc-3.8.7-17.3.1 is installed
  • AND ruby2.1-rubygem-puppet-doc is signed with openSUSE key
  • OR
  • ruby2.1-rubygem-puppet-testsuite-3.8.7-17.3.1 is installed
  • AND ruby2.1-rubygem-puppet-testsuite is signed with openSUSE key
  • OR
  • rubygem-puppet-3.8.7-17.3.1 is installed
  • AND rubygem-puppet is signed with openSUSE key
  • OR
  • rubygem-puppet-emacs-3.8.7-17.3.1 is installed
  • AND rubygem-puppet-emacs is signed with openSUSE key
  • OR
  • rubygem-puppet-master-3.8.7-17.3.1 is installed
  • AND rubygem-puppet-master is signed with openSUSE key
  • OR
  • rubygem-puppet-master-unicorn-3.8.7-17.3.1 is installed
  • AND rubygem-puppet-master-unicorn is signed with openSUSE key
  • OR
  • rubygem-puppet-vim-3.8.7-17.3.1 is installed
  • AND rubygem-puppet-vim is signed with openSUSE key
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND puppet-3.8.5-15.3 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND puppet-3.8.5-15.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
  • AND Package Information
  • puppet-3.8.5-15.3 is installed
  • OR puppet-server-3.8.5-15.3 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND puppet-3.8.5-15.3 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND puppet-3.8.5-15.3 is installed
  • OR Package Information
  • SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
  • AND
  • puppet-3.8.5-15.3 is installed
  • OR puppet-server-3.8.5-15.3 is installed
    • Definition Synopsis
  • openSUSE Leap 42.3 is installed
  • AND Package Information
  • ruby2.1-rubygem-puppet-3.8.7-20 is installed
  • AND ruby2.1-rubygem-puppet is signed with openSUSE key
  • OR
  • ruby2.1-rubygem-puppet-doc-3.8.7-20 is installed
  • AND ruby2.1-rubygem-puppet-doc is signed with openSUSE key
  • OR
  • ruby2.1-rubygem-puppet-testsuite-3.8.7-20 is installed
  • AND ruby2.1-rubygem-puppet-testsuite is signed with openSUSE key
  • OR
  • ruby2.2-rubygem-puppet-3.8.7-20 is installed
  • AND ruby2.2-rubygem-puppet is signed with openSUSE key
  • OR
  • ruby2.2-rubygem-puppet-doc-3.8.7-20 is installed
  • AND ruby2.2-rubygem-puppet-doc is signed with openSUSE key
  • OR
  • ruby2.2-rubygem-puppet-testsuite-3.8.7-20 is installed
  • AND ruby2.2-rubygem-puppet-testsuite is signed with openSUSE key
  • OR
  • ruby2.3-rubygem-puppet-3.8.7-20 is installed
  • AND ruby2.3-rubygem-puppet is signed with openSUSE key
  • OR
  • ruby2.3-rubygem-puppet-doc-3.8.7-20 is installed
  • AND ruby2.3-rubygem-puppet-doc is signed with openSUSE key
  • OR
  • ruby2.3-rubygem-puppet-testsuite-3.8.7-20 is installed
  • AND ruby2.3-rubygem-puppet-testsuite is signed with openSUSE key
  • OR
  • ruby2.4-rubygem-puppet-3.8.7-20 is installed
  • AND ruby2.4-rubygem-puppet is signed with openSUSE key
  • OR
  • ruby2.4-rubygem-puppet-doc-3.8.7-20 is installed
  • AND ruby2.4-rubygem-puppet-doc is signed with openSUSE key
  • OR
  • ruby2.4-rubygem-puppet-testsuite-3.8.7-20 is installed
  • AND ruby2.4-rubygem-puppet-testsuite is signed with openSUSE key
  • OR
  • rubygem-puppet-3.8.7-20 is installed
  • AND rubygem-puppet is signed with openSUSE key
  • OR
  • rubygem-puppet-emacs-3.8.7-20 is installed
  • AND rubygem-puppet-emacs is signed with openSUSE key
  • OR
  • rubygem-puppet-master-3.8.7-20 is installed
  • AND rubygem-puppet-master is signed with openSUSE key
  • OR
  • rubygem-puppet-master-unicorn-3.8.7-20 is installed
  • AND rubygem-puppet-master-unicorn is signed with openSUSE key
  • OR
  • rubygem-puppet-vim-3.8.7-20 is installed
  • AND rubygem-puppet-vim is signed with openSUSE key
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND Package Information
  • puppet-2.7.26-0.5.3 is installed
  • OR puppet-server-2.7.26-0.5.3 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP4 is installed
  • AND Package Information
  • puppet-2.7.26-0.5.3 is installed
  • OR puppet-server-2.7.26-0.5.3 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • OR SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND puppet-3.8.5-15.3 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND puppet-3.8.5-15.9 is installed
  • OR Package Information
  • SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
  • AND
  • puppet-3.8.5-15.3 is installed
  • OR puppet-server-3.8.5-15.3 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND puppet-3.8.5-15.9.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • OR SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND puppet-3.8.5-15.3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3-TERADATA is installed
  • AND Package Information
  • puppet-2.7.26-0.5.3 is installed
  • OR puppet-server-2.7.26-0.5.3 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • OR SUSE Linux Enterprise Server 11 SP3-TERADATA is installed
  • OR SUSE Linux Enterprise Server 11 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP3-TERADATA is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP4 is installed
  • AND Package Information
  • puppet-2.7.26-0.5.3 is installed
  • OR puppet-server-2.7.26-0.5.3 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • OR SUSE Linux Enterprise Server 11 SP3-TERADATA is installed
  • AND
  • puppet-2.7.26-0.5.3.1 is installed
  • OR puppet-server-2.7.26-0.5.3.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP4 is installed
  • AND
  • puppet-2.7.26-0.5.3.1 is installed
  • OR puppet-server-2.7.26-0.5.3.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND puppet-3.8.5-15.9.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • OR SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND puppet-3.8.5-15.3.3 is installed
  • OR Package Information
  • SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
  • AND
  • puppet-3.8.5-15.3.3 is installed
  • OR puppet-server-3.8.5-15.3.3 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 12 is installed
  • OR SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
  • OR SUSE Linux Enterprise Server 12 is installed
  • OR SUSE Linux Enterprise Server 12 SP3 is installed
  • OR SUSE Linux Enterprise Server 12 SP4 is installed
  • OR SUSE Linux Enterprise Server 12 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • AND Package Information
  • puppet-3.8.5-15.3.3 is installed
  • OR puppet-server-3.8.5-15.3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND puppet-3.8.5-15.9.1 is installed
    • BACK