OVAL Reference oval:org.opensuse.security:def:20208028

Oval Definition:

oval:org.opensuse.security:def:20208028

Revision Date:	2022-05-22	Version:	1
Title:	CVE-2020-8028
Description:	A Improper Access Control vulnerability in the configuration of salt of SUSE Linux Enterprise Module for SUSE Manager Server 4.1, SUSE Manager Proxy 4.0, SUSE Manager Retail Branch Server 4.0, SUSE Manager Server 3.2, SUSE Manager Server 4.0 allows local users to escalate to root on every system managed by SUSE manager. On the managing node itself code can be executed as user salt, potentially allowing for escalation to root there. This issue affects: SUSE Linux Enterprise Module for SUSE Manager Server 4.1 google-gson versions prior to 2.8.5-3.4.3, httpcomponents-client-4.5.6-3.4.2, httpcomponents-. SUSE Manager Proxy 4.0 release-notes-susemanager-proxy versions prior to 4.0.9-0.16.38.1. SUSE Manager Retail Branch Server 4.0 release-notes-susemanager-proxy versions prior to 4.0.9-0.16.38.1. SUSE Manager Server 3.2 salt-netapi-client versions prior to 0.16.0-4.14.1, spacewalk-. SUSE Manager Server 4.0 release-notes-susemanager versions prior to 4.0.9-3.54.1.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2020-8028 SUSE-SU-2020:2647-1 SUSE-SU-2020:2648-1 SUSE-SU-2020:2650-1 TID000019774 Mitre CVE-2020-8028 SUSE CVE-2020-8028 SUSE-SU-2020:2647-1 SUSE-SU-2020:2648-1 SUSE-SU-2020:2650-1
Platform(s):	Image SLES15-SP1-Manager-4-0-Azure-BYOS-Proxy Image SLES15-SP1-Manager-4-0-Azure-BYOS-Server Image SLES15-SP1-Manager-4-0-EC2-HVM-BYOS-Proxy Image SLES15-SP1-Manager-4-0-EC2-HVM-BYOS-Server Image SLES15-SP1-Manager-4-0-GCE-BYOS-Proxy Image SLES15-SP1-Manager-4-0-GCE-BYOS-Server Image SLES15-SP2-Manager-4-1-Server-BYOS-Azure Image SLES15-SP2-Manager-4-1-Server-BYOS-EC2-HVM Image SLES15-SP2-Manager-4-1-Server-BYOS-GCE SUSE Linux Enterprise Module for SUSE Manager Server 4.0 SUSE Linux Enterprise Module for SUSE Manager Server 4.1 SUSE Manager Server 4.0 SUSE Manager Server 4.1	Product(s):
Definition Synopsis
SUSE Linux Enterprise Module for SUSE Manager Server 4.0 is installed AND Package Information hibernate5-5.3.7-4.3 is installed OR image-sync-formula-0.1.1595937550.0285244-3.20 is installed OR openvpn-formula-0.1.1-4.6 is installed OR prometheus-exporters-formula-0.7.1-3.10 is installed OR python3-spacewalk-certs-tools-4.0.17-3.21 is installed OR salt-netapi-client-0.17.0-4.6 is installed OR saltboot-formula-0.1.1595937550.0285244-3.19 is installed OR spacecmd-4.0.20-3.19 is installed OR spacewalk-admin-4.0.11-3.12 is installed OR spacewalk-base-4.0.23-3.30 is installed OR spacewalk-base-minimal-4.0.23-3.30 is installed OR spacewalk-base-minimal-config-4.0.23-3.30 is installed OR spacewalk-certs-tools-4.0.17-3.21 is installed OR spacewalk-html-4.0.23-3.30 is installed OR spacewalk-java-4.0.37-3.39 is installed OR spacewalk-java-config-4.0.37-3.39 is installed OR spacewalk-java-lib-4.0.37-3.39 is installed OR spacewalk-java-postgresql-4.0.37-3.39 is installed OR spacewalk-setup-4.0.14-3.14 is installed OR spacewalk-taskomatic-4.0.37-3.39 is installed OR spacewalk-utils-4.0.18-3.21 is installed OR spacewalk-web-4.0.23-3.30 is installed OR susemanager-4.0.28-3.36 is installed OR susemanager-frontend-libs-4.0.2-4.3 is installed OR susemanager-schema-4.0.22-3.29 is installed OR susemanager-sls-4.0.29-3.31 is installed OR susemanager-sync-data-4.0.18-3.24 is installed OR susemanager-tools-4.0.28-3.36 is installed OR susemanager-web-libs-4.0.23-3.30 is installed OR virtualization-host-formula-0.5-4.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for SUSE Manager Server 4.1 is installed AND Package Information google-gson-2.8.5-3.4 is installed OR httpcomponents-client-4.5.6-3.4 is installed OR httpcomponents-core-4.4.10-3.4 is installed OR salt-netapi-client-0.17.0-3.3 is installed OR spacewalk-admin-4.1.6-3.3 is installed OR spacewalk-java-4.1.19-3.8 is installed OR spacewalk-java-config-4.1.19-3.8 is installed OR spacewalk-java-lib-4.1.19-3.8 is installed OR spacewalk-java-postgresql-4.1.19-3.8 is installed OR spacewalk-setup-4.1.6-3.3 is installed OR spacewalk-taskomatic-4.1.19-3.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for SUSE Manager Server 4.0 is installed AND Package Information hibernate5-5.3.7-4.3.2 is installed OR image-sync-formula-0.1.1595937550.0285244-3.20.2 is installed OR openvpn-formula-0.1.1-4.6.2 is installed OR prometheus-exporters-formula-0.7.1-3.10.2 is installed OR python3-spacewalk-certs-tools-4.0.17-3.21.3 is installed OR salt-netapi-client-0.17.0-4.6.3 is installed OR saltboot-formula-0.1.1595937550.0285244-3.19.2 is installed OR spacecmd-4.0.20-3.19.2 is installed OR spacewalk-admin-4.0.11-3.12.1 is installed OR spacewalk-base-4.0.23-3.30.3 is installed OR spacewalk-base-minimal-4.0.23-3.30.3 is installed OR spacewalk-base-minimal-config-4.0.23-3.30.3 is installed OR spacewalk-certs-tools-4.0.17-3.21.3 is installed OR spacewalk-html-4.0.23-3.30.3 is installed OR spacewalk-java-4.0.37-3.39.1 is installed OR spacewalk-java-config-4.0.37-3.39.1 is installed OR spacewalk-java-lib-4.0.37-3.39.1 is installed OR spacewalk-java-postgresql-4.0.37-3.39.1 is installed OR spacewalk-setup-4.0.14-3.14.1 is installed OR spacewalk-taskomatic-4.0.37-3.39.1 is installed OR spacewalk-utils-4.0.18-3.21.3 is installed OR susemanager-4.0.28-3.36.3 is installed OR susemanager-frontend-libs-4.0.2-4.3.2 is installed OR susemanager-schema-4.0.22-3.29.2 is installed OR susemanager-sls-4.0.29-3.31.3 is installed OR susemanager-sync-data-4.0.18-3.24.2 is installed OR susemanager-tools-4.0.28-3.36.3 is installed OR susemanager-web-libs-4.0.23-3.30.3 is installed OR virtualization-host-formula-0.5-4.12.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for SUSE Manager Server 4.1 is installed AND Package Information google-gson-2.8.5-3.4.3 is installed OR httpcomponents-client-4.5.6-3.4.2 is installed OR httpcomponents-core-4.4.10-3.4.2 is installed OR salt-netapi-client-0.17.0-3.3.2 is installed OR spacewalk-admin-4.1.6-3.3.3 is installed OR spacewalk-java-4.1.19-3.8.2 is installed OR spacewalk-java-config-4.1.19-3.8.2 is installed OR spacewalk-java-lib-4.1.19-3.8.2 is installed OR spacewalk-java-postgresql-4.1.19-3.8.2 is installed OR spacewalk-setup-4.1.6-3.3.2 is installed OR spacewalk-taskomatic-4.1.19-3.8.2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Module for SUSE Manager Server 4.0 is installed OR SUSE Manager Server 4.0 is installed AND hibernate5-5.3.7-4.3.2 is installed OR image-sync-formula-0.1.1595937550.0285244-3.20.2 is installed OR openvpn-formula-0.1.1-4.6.2 is installed OR prometheus-exporters-formula-0.7.1-3.10.2 is installed OR python3-spacewalk-certs-tools-4.0.17-3.21.3 is installed OR salt-netapi-client-0.17.0-4.6.3 is installed OR saltboot-formula-0.1.1595937550.0285244-3.19.2 is installed OR spacecmd-4.0.20-3.19.2 is installed OR spacewalk-admin-4.0.11-3.12.1 is installed OR spacewalk-base-4.0.23-3.30.3 is installed OR spacewalk-base-minimal-4.0.23-3.30.3 is installed OR spacewalk-base-minimal-config-4.0.23-3.30.3 is installed OR spacewalk-certs-tools-4.0.17-3.21.3 is installed OR spacewalk-html-4.0.23-3.30.3 is installed OR spacewalk-java-4.0.37-3.39.1 is installed OR spacewalk-java-config-4.0.37-3.39.1 is installed OR spacewalk-java-lib-4.0.37-3.39.1 is installed OR spacewalk-java-postgresql-4.0.37-3.39.1 is installed OR spacewalk-setup-4.0.14-3.14.1 is installed OR spacewalk-taskomatic-4.0.37-3.39.1 is installed OR spacewalk-utils-4.0.18-3.21.3 is installed OR susemanager-4.0.28-3.36.3 is installed OR susemanager-frontend-libs-4.0.2-4.3.2 is installed OR susemanager-schema-4.0.22-3.29.2 is installed OR susemanager-sls-4.0.29-3.31.3 is installed OR susemanager-sync-data-4.0.18-3.24.2 is installed OR susemanager-tools-4.0.28-3.36.3 is installed OR susemanager-web-libs-4.0.23-3.30.3 is installed OR virtualization-host-formula-0.5-4.12.3 is installed OR Package Information Image SLES15-SP1-Manager-4-0-Azure-BYOS-Proxy is installed OR Image SLES15-SP1-Manager-4-0-EC2-HVM-BYOS-Proxy is installed OR Image SLES15-SP1-Manager-4-0-GCE-BYOS-Proxy is installed AND python3-spacewalk-certs-tools-4.0.17-3.21.3 is installed OR spacewalk-base-minimal-4.0.23-3.30.3 is installed OR spacewalk-base-minimal-config-4.0.23-3.30.3 is installed OR spacewalk-certs-tools-4.0.17-3.21.3 is installed OR spacewalk-proxy-broker-4.0.14-3.10.3 is installed OR spacewalk-proxy-common-4.0.14-3.10.3 is installed OR spacewalk-proxy-management-4.0.14-3.10.3 is installed OR spacewalk-proxy-package-manager-4.0.14-3.10.3 is installed OR spacewalk-proxy-redirect-4.0.14-3.10.3 is installed OR spacewalk-proxy-salt-4.0.14-3.10.3 is installed OR Package Information Image SLES15-SP1-Manager-4-0-Azure-BYOS-Server is installed OR Image SLES15-SP1-Manager-4-0-EC2-HVM-BYOS-Server is installed OR Image SLES15-SP1-Manager-4-0-GCE-BYOS-Server is installed AND hibernate5-5.3.7-4.3.2 is installed OR openvpn-formula-0.1.1-4.6.2 is installed OR python3-spacewalk-certs-tools-4.0.17-3.21.3 is installed OR salt-netapi-client-0.17.0-4.6.3 is installed OR spacecmd-4.0.20-3.19.2 is installed OR spacewalk-admin-4.0.11-3.12.1 is installed OR spacewalk-base-4.0.23-3.30.3 is installed OR spacewalk-base-minimal-4.0.23-3.30.3 is installed OR spacewalk-base-minimal-config-4.0.23-3.30.3 is installed OR spacewalk-certs-tools-4.0.17-3.21.3 is installed OR spacewalk-html-4.0.23-3.30.3 is installed OR spacewalk-java-4.0.37-3.39.1 is installed OR spacewalk-java-config-4.0.37-3.39.1 is installed OR spacewalk-java-lib-4.0.37-3.39.1 is installed OR spacewalk-java-postgresql-4.0.37-3.39.1 is installed OR spacewalk-setup-4.0.14-3.14.1 is installed OR spacewalk-taskomatic-4.0.37-3.39.1 is installed OR susemanager-4.0.28-3.36.3 is installed OR susemanager-frontend-libs-4.0.2-4.3.2 is installed OR susemanager-schema-4.0.22-3.29.2 is installed OR susemanager-sls-4.0.29-3.31.3 is installed OR susemanager-sync-data-4.0.18-3.24.2 is installed OR susemanager-tools-4.0.28-3.36.3 is installed OR susemanager-web-libs-4.0.23-3.30.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Module for SUSE Manager Server 4.1 is installed OR SUSE Manager Server 4.1 is installed AND google-gson-2.8.5-3.4.3 is installed OR httpcomponents-client-4.5.6-3.4.2 is installed OR httpcomponents-core-4.4.10-3.4.2 is installed OR salt-netapi-client-0.17.0-3.3.2 is installed OR spacewalk-admin-4.1.6-3.3.3 is installed OR spacewalk-java-4.1.19-3.8.2 is installed OR spacewalk-java-config-4.1.19-3.8.2 is installed OR spacewalk-java-lib-4.1.19-3.8.2 is installed OR spacewalk-java-postgresql-4.1.19-3.8.2 is installed OR spacewalk-setup-4.1.6-3.3.2 is installed OR spacewalk-taskomatic-4.1.19-3.8.2 is installed OR Package Information Image SLES15-SP2-Manager-4-1-Server-BYOS-Azure is installed OR Image SLES15-SP2-Manager-4-1-Server-BYOS-EC2-HVM is installed OR Image SLES15-SP2-Manager-4-1-Server-BYOS-GCE is installed AND google-gson-2.8.5-3.4.3 is installed OR httpcomponents-client-4.5.6-3.4.2 is installed OR httpcomponents-core-4.4.10-3.4.2 is installed OR salt-netapi-client-0.17.0-3.3.2 is installed OR spacewalk-admin-4.1.6-3.3.3 is installed OR spacewalk-java-4.1.19-3.8.2 is installed OR spacewalk-java-config-4.1.19-3.8.2 is installed OR spacewalk-java-lib-4.1.19-3.8.2 is installed OR spacewalk-java-postgresql-4.1.19-3.8.2 is installed OR spacewalk-setup-4.1.6-3.3.2 is installed OR spacewalk-taskomatic-4.1.19-3.8.2 is installed

BACK