Oval Definition:oval:org.opensuse.security:def:202017521
Revision Date:2023-06-22Version:1
Title:CVE-2020-17521
Description:

Apache Groovy provides extension methods to aid with creating temporary directories. Prior to this fix, Groovy's implementation of those extension methods was using a now superseded Java JDK method call that is potentially not secure on some operating systems in some contexts. Users not using the extension methods mentioned in the advisory are not affected, but may wish to read the advisory for further details. Versions Affected: 2.0 to 2.4.20, 2.5.0 to 2.5.13, 3.0.0 to 3.0.6, and 4.0.0-alpha-1. Fixed in versions 2.4.21, 2.5.14, 3.0.7, 4.0.0-alpha-2.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2020-17521
SUSE CVE-2020-17521
SUSE-SU-2020:3917-1
openSUSE-SU-2020:2367-1
Platform(s):openSUSE Leap 15.2
openSUSE Leap 15.3 SLE Imports
openSUSE Tumbleweed
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise Desktop 15 SP4
SUSE Linux Enterprise Desktop 15 SP5
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise High Performance Computing 15 SP4
SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE Linux Enterprise Module for Development Tools 15 SP2
SUSE Linux Enterprise Module for Development Tools 15 SP3
SUSE Linux Enterprise Module for Development Tools 15 SP4
SUSE Linux Enterprise Module for Development Tools 15 SP5
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server 15 SP4
SUSE Linux Enterprise Server 15 SP5
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP4
SUSE Linux Enterprise Server for SAP Applications 15 SP5
SUSE Linux Enterprise Storage 7
SUSE Linux Enterprise Storage 7.1
SUSE Manager Proxy 4.1
SUSE Manager Proxy 4.2
SUSE Manager Proxy 4.3
SUSE Manager Retail Branch Server 4.1
SUSE Manager Retail Branch Server 4.2
SUSE Manager Retail Branch Server 4.3
SUSE Manager Server 4.1
SUSE Manager Server 4.2
SUSE Manager Server 4.3
Product(s):
Definition Synopsis
  • openSUSE Leap 15.3 SLE Imports is installed
  • AND Package Information
  • groovy-2.4.21-3.3.2 is installed
  • AND groovy is signed with openSUSE key
  • OR
  • groovy-ant-2.4.21-3.3.2 is installed
  • AND groovy-ant is signed with openSUSE key
  • OR
  • groovy-bsf-2.4.21-3.3.2 is installed
  • AND groovy-bsf is signed with openSUSE key
  • OR
  • groovy-console-2.4.21-3.3.2 is installed
  • AND groovy-console is signed with openSUSE key
  • OR
  • groovy-docgenerator-2.4.21-3.3.2 is installed
  • AND groovy-docgenerator is signed with openSUSE key
  • OR
  • groovy-groovydoc-2.4.21-3.3.2 is installed
  • AND groovy-groovydoc is signed with openSUSE key
  • OR
  • groovy-groovysh-2.4.21-3.3.2 is installed
  • AND groovy-groovysh is signed with openSUSE key
  • OR
  • groovy-jmx-2.4.21-3.3.2 is installed
  • AND groovy-jmx is signed with openSUSE key
  • OR
  • groovy-json-2.4.21-3.3.2 is installed
  • AND groovy-json is signed with openSUSE key
  • OR
  • groovy-jsr223-2.4.21-3.3.2 is installed
  • AND groovy-jsr223 is signed with openSUSE key
  • OR
  • groovy-lib-2.4.21-3.3.2 is installed
  • AND groovy-lib is signed with openSUSE key
  • OR
  • groovy-nio-2.4.21-3.3.2 is installed
  • AND groovy-nio is signed with openSUSE key
  • OR
  • groovy-servlet-2.4.21-3.3.2 is installed
  • AND groovy-servlet is signed with openSUSE key
  • OR
  • groovy-sql-2.4.21-3.3.2 is installed
  • AND groovy-sql is signed with openSUSE key
  • OR
  • groovy-swing-2.4.21-3.3.2 is installed
  • AND groovy-swing is signed with openSUSE key
  • OR
  • groovy-templates-2.4.21-3.3.2 is installed
  • AND groovy-templates is signed with openSUSE key
  • OR
  • groovy-test-2.4.21-3.3.2 is installed
  • AND groovy-test is signed with openSUSE key
  • OR
  • groovy-testng-2.4.21-3.3.2 is installed
  • AND groovy-testng is signed with openSUSE key
  • OR
  • groovy-xml-2.4.21-3.3.2 is installed
  • AND groovy-xml is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • groovy-2.4.21-2.3 is installed
  • OR groovy-ant-2.4.21-2.3 is installed
  • OR groovy-bsf-2.4.21-2.3 is installed
  • OR groovy-console-2.4.21-2.3 is installed
  • OR groovy-docgenerator-2.4.21-2.3 is installed
  • OR groovy-groovydoc-2.4.21-2.3 is installed
  • OR groovy-groovysh-2.4.21-2.3 is installed
  • OR groovy-jmx-2.4.21-2.3 is installed
  • OR groovy-json-2.4.21-2.3 is installed
  • OR groovy-jsr223-2.4.21-2.3 is installed
  • OR groovy-lib-2.4.21-2.3 is installed
  • OR groovy-nio-2.4.21-2.3 is installed
  • OR groovy-servlet-2.4.21-2.3 is installed
  • OR groovy-sql-2.4.21-2.3 is installed
  • OR groovy-swing-2.4.21-2.3 is installed
  • OR groovy-templates-2.4.21-2.3 is installed
  • OR groovy-test-2.4.21-2.3 is installed
  • OR groovy-testng-2.4.21-2.3 is installed
  • OR groovy-xml-2.4.21-2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed
  • AND groovy-lib-2.4.21-3.3.2 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed
  • AND groovy-lib-2.4.21-3.3.2 is installed
  • OR Package Information
  • SUSE Linux Enterprise Module for Development Tools 15 SP3 is installed
  • AND groovy-lib-2.4.21-3.3.2 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP3 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Development Tools 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Server 4.2 is installed
  • AND groovy-lib-2.4.21-3.3.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • groovy-2.4.21-lp152.2.3.2 is installed
  • AND groovy is signed with openSUSE key
  • OR
  • groovy-ant-2.4.21-lp152.2.3.2 is installed
  • AND groovy-ant is signed with openSUSE key
  • OR
  • groovy-bsf-2.4.21-lp152.2.3.2 is installed
  • AND groovy-bsf is signed with openSUSE key
  • OR
  • groovy-console-2.4.21-lp152.2.3.2 is installed
  • AND groovy-console is signed with openSUSE key
  • OR
  • groovy-docgenerator-2.4.21-lp152.2.3.2 is installed
  • AND groovy-docgenerator is signed with openSUSE key
  • OR
  • groovy-groovydoc-2.4.21-lp152.2.3.2 is installed
  • AND groovy-groovydoc is signed with openSUSE key
  • OR
  • groovy-groovysh-2.4.21-lp152.2.3.2 is installed
  • AND groovy-groovysh is signed with openSUSE key
  • OR
  • groovy-jmx-2.4.21-lp152.2.3.2 is installed
  • AND groovy-jmx is signed with openSUSE key
  • OR
  • groovy-json-2.4.21-lp152.2.3.2 is installed
  • AND groovy-json is signed with openSUSE key
  • OR
  • groovy-jsr223-2.4.21-lp152.2.3.2 is installed
  • AND groovy-jsr223 is signed with openSUSE key
  • OR
  • groovy-lib-2.4.21-lp152.2.3.2 is installed
  • AND groovy-lib is signed with openSUSE key
  • OR
  • groovy-nio-2.4.21-lp152.2.3.2 is installed
  • AND groovy-nio is signed with openSUSE key
  • OR
  • groovy-servlet-2.4.21-lp152.2.3.2 is installed
  • AND groovy-servlet is signed with openSUSE key
  • OR
  • groovy-sql-2.4.21-lp152.2.3.2 is installed
  • AND groovy-sql is signed with openSUSE key
  • OR
  • groovy-swing-2.4.21-lp152.2.3.2 is installed
  • AND groovy-swing is signed with openSUSE key
  • OR
  • groovy-templates-2.4.21-lp152.2.3.2 is installed
  • AND groovy-templates is signed with openSUSE key
  • OR
  • groovy-test-2.4.21-lp152.2.3.2 is installed
  • AND groovy-test is signed with openSUSE key
  • OR
  • groovy-testng-2.4.21-lp152.2.3.2 is installed
  • AND groovy-testng is signed with openSUSE key
  • OR
  • groovy-xml-2.4.21-lp152.2.3.2 is installed
  • AND groovy-xml is signed with openSUSE key
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP2 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP2 is installed
  • OR SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed
  • OR SUSE Linux Enterprise Server 15 SP2 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed
  • OR SUSE Linux Enterprise Storage 7 is installed
  • OR SUSE Manager Proxy 4.1 is installed
  • OR SUSE Manager Retail Branch Server 4.1 is installed
  • OR SUSE Manager Server 4.1 is installed
  • AND groovy-lib-2.4.21-3.3.2 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP4 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP4 is installed
  • OR SUSE Linux Enterprise Module for Development Tools 15 SP4 is installed
  • OR SUSE Linux Enterprise Server 15 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed
  • OR SUSE Manager Proxy 4.3 is installed
  • OR SUSE Manager Retail Branch Server 4.3 is installed
  • OR SUSE Manager Server 4.3 is installed
  • AND groovy-lib-2.4.21-3.3.2 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP5 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
  • OR SUSE Linux Enterprise Module for Development Tools 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • AND groovy-lib-2.4.21-150200.3.7.4 is installed
    • BACK