Oval Definition:oval:org.opensuse.security:def:2603
Revision Date:2020-12-02Version:1
Title:Security update for helm-mirror (Moderate)
Description:

This update for helm-mirror to version 0.2.1 fixes the following issues:



Security issues fixed:

- CVE-2018-16873: Fixed a remote command execution (bsc#1118897) - CVE-2018-16874: Fixed a directory traversal in 'go get' via curly braces in import path (bsc#1118898) - CVE-2018-16875: Fixed a CPU denial of service (bsc#1118899)

Non-security issue fixed:

- Update to v0.2.1 (bsc#1120762) - Include helm-mirror into the containers module (bsc#1116182)
Family:unixClass:patch
Status:Reference(s):1013712
1061305
1099358
1100397
1116182
1118897
1118898
1118899
1119069
1120374
1120431
1120762
1122293
1122299
1122983
1123886
1129124
1131314
1131553
1136440
1141619
1142988
1144363
1145095
1145575
1145738
1145739
1145740
1145741
1145742
1146065
1146068
1146211
1146212
1146213
1146360
1151488
1151781
1151782
1151783
1151784
1151785
1151786
1151793
1152308
1153674
1154092
CVE-2016-9798
CVE-2017-14988
CVE-2018-11212
CVE-2018-12404
CVE-2018-16873
CVE-2018-16874
CVE-2018-16875
CVE-2018-18500
CVE-2018-18501
CVE-2018-18505
CVE-2019-0816
CVE-2019-10081
CVE-2019-10082
CVE-2019-10092
CVE-2019-10097
CVE-2019-10098
CVE-2019-1010006
CVE-2019-11041
CVE-2019-11042
CVE-2019-14287
CVE-2019-14980
CVE-2019-14981
CVE-2019-15139
CVE-2019-15140
CVE-2019-15141
CVE-2019-16708
CVE-2019-16709
CVE-2019-16710
CVE-2019-16711
CVE-2019-16712
CVE-2019-16713
CVE-2019-16884
CVE-2019-2422
CVE-2019-2426
CVE-2019-9517
SUSE-SU-2019:0048-1
SUSE-SU-2019:0221-1
SUSE-SU-2019:0273-1
SUSE-SU-2019:2043-1
SUSE-SU-2019:2052-1
SUSE-SU-2019:2237-1
SUSE-SU-2019:2503-1
SUSE-SU-2019:2656-1
SUSE-SU-2019:2810-1
SUSE-SU-2019:2896-1
SUSE-SU-2019:3046-1
SUSE-SU-2019:3097-1
SUSE-SU-2019:3212-1
Platform(s):SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 15
SUSE Linux Enterprise Module for Containers 15
SUSE Linux Enterprise Module for Containers 15 SP1
SUSE Linux Enterprise Module for High Performance Computing 15
SUSE Linux Enterprise Module for High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Legacy Software 15 SP1
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Module for Web Scripting 15 SP1
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for Rasperry Pi 12 SP2
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND python-pycrypto-2.6.1-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • accountsservice-0.6.35-1 is installed
  • OR accountsservice-lang-0.6.35-1 is installed
  • OR libaccountsservice0-0.6.35-1 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.35-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • flash-player-24.0.0.194-155 is installed
  • OR flash-player-gnome-24.0.0.194-155 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND sudo-1.8.10p3-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND libgc1-7.2d-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND fence-agents-4.0.22+git.1455008135.15c5e92-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.4.73-5 is installed
  • OR dlm-kmp-default-4.4.73-5 is installed
  • OR gfs2-kmp-default-4.4.73-5 is installed
  • OR ocfs2-kmp-default-4.4.73-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND conntrack-tools-1.4.2-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 is installed
  • AND Package Information
  • drbd-9.0.13+git.b83ade31-3.2 is installed
  • OR drbd-kmp-default-9.0.13+git.b83ade31_k4.12.14_23-3.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 15 is installed
  • AND helm-mirror-0.2.1-1.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 15 SP1 is installed
  • AND runc-1.0.0~rc8-1.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 is installed
  • AND Package Information
  • libpmi0-17.11.13-6.15 is installed
  • OR libslurm32-17.11.13-6.15 is installed
  • OR perl-slurm-17.11.13-6.15 is installed
  • OR slurm-17.11.13-6.15 is installed
  • OR slurm-auth-none-17.11.13-6.15 is installed
  • OR slurm-config-17.11.13-6.15 is installed
  • OR slurm-devel-17.11.13-6.15 is installed
  • OR slurm-doc-17.11.13-6.15 is installed
  • OR slurm-lua-17.11.13-6.15 is installed
  • OR slurm-munge-17.11.13-6.15 is installed
  • OR slurm-node-17.11.13-6.15 is installed
  • OR slurm-pam_slurm-17.11.13-6.15 is installed
  • OR slurm-plugins-17.11.13-6.15 is installed
  • OR slurm-slurmdbd-17.11.13-6.15 is installed
  • OR slurm-sql-17.11.13-6.15 is installed
  • OR slurm-torque-17.11.13-6.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed
  • AND Package Information
  • python-numpy_1_16_1-gnu-hpc-1.16.1-4.8 is installed
  • OR python2-numpy-gnu-hpc-1.16.1-4.8 is installed
  • OR python2-numpy-gnu-hpc-devel-1.16.1-4.8 is installed
  • OR python3-numpy-gnu-hpc-1.16.1-4.8 is installed
  • OR python3-numpy-gnu-hpc-devel-1.16.1-4.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 12 is installed
  • AND Package Information
  • libopenssl0_9_8-0.9.8j-59 is installed
  • OR libopenssl0_9_8-32bit-0.9.8j-59 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.16 is installed
  • OR reiserfs-kmp-default-4.12.14-25.16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.7 is installed
  • OR reiserfs-kmp-default-4.12.14-197.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-25_6-default-2-2 is installed
  • OR kernel-livepatch-SLE15_Update_2-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-195-default-7-19 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_0-7-19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • openexr-2.2.1-3.9 is installed
  • OR openexr-doc-2.2.1-3.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • graphviz-addons-2.40.1-6.3 is installed
  • OR graphviz-doc-2.40.1-6.3 is installed
  • OR graphviz-gnome-2.40.1-6.3 is installed
  • OR graphviz-guile-2.40.1-6.3 is installed
  • OR graphviz-gvedit-2.40.1-6.3 is installed
  • OR graphviz-java-2.40.1-6.3 is installed
  • OR graphviz-lua-2.40.1-6.3 is installed
  • OR graphviz-php-2.40.1-6.3 is installed
  • OR graphviz-ruby-2.40.1-6.3 is installed
  • OR graphviz-smyrna-2.40.1-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • libvirt-4.0.0-9.27 is installed
  • OR libvirt-admin-4.0.0-9.27 is installed
  • OR libvirt-client-4.0.0-9.27 is installed
  • OR libvirt-daemon-4.0.0-9.27 is installed
  • OR libvirt-daemon-config-network-4.0.0-9.27 is installed
  • OR libvirt-daemon-config-nwfilter-4.0.0-9.27 is installed
  • OR libvirt-daemon-driver-interface-4.0.0-9.27 is installed
  • OR libvirt-daemon-driver-libxl-4.0.0-9.27 is installed
  • OR libvirt-daemon-driver-lxc-4.0.0-9.27 is installed
  • OR libvirt-daemon-driver-network-4.0.0-9.27 is installed
  • OR libvirt-daemon-driver-nodedev-4.0.0-9.27 is installed
  • OR libvirt-daemon-driver-nwfilter-4.0.0-9.27 is installed
  • OR libvirt-daemon-driver-qemu-4.0.0-9.27 is installed
  • OR libvirt-daemon-driver-secret-4.0.0-9.27 is installed
  • OR libvirt-daemon-driver-storage-4.0.0-9.27 is installed
  • OR libvirt-daemon-driver-storage-core-4.0.0-9.27 is installed
  • OR libvirt-daemon-driver-storage-disk-4.0.0-9.27 is installed
  • OR libvirt-daemon-driver-storage-iscsi-4.0.0-9.27 is installed
  • OR libvirt-daemon-driver-storage-logical-4.0.0-9.27 is installed
  • OR libvirt-daemon-driver-storage-mpath-4.0.0-9.27 is installed
  • OR libvirt-daemon-driver-storage-rbd-4.0.0-9.27 is installed
  • OR libvirt-daemon-driver-storage-scsi-4.0.0-9.27 is installed
  • OR libvirt-daemon-hooks-4.0.0-9.27 is installed
  • OR libvirt-daemon-lxc-4.0.0-9.27 is installed
  • OR libvirt-daemon-qemu-4.0.0-9.27 is installed
  • OR libvirt-daemon-xen-4.0.0-9.27 is installed
  • OR libvirt-devel-4.0.0-9.27 is installed
  • OR libvirt-doc-4.0.0-9.27 is installed
  • OR libvirt-lock-sanlock-4.0.0-9.27 is installed
  • OR libvirt-nss-4.0.0-9.27 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • libecpg6-10.9-8.3 is installed
  • OR postgresql10-10.9-8.3 is installed
  • OR postgresql10-contrib-10.9-8.3 is installed
  • OR postgresql10-devel-10.9-8.3 is installed
  • OR postgresql10-docs-10.9-8.3 is installed
  • OR postgresql10-plperl-10.9-8.3 is installed
  • OR postgresql10-plpython-10.9-8.3 is installed
  • OR postgresql10-pltcl-10.9-8.3 is installed
  • OR postgresql10-server-10.9-8.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND python3-3.4.1-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed
  • AND Package Information
  • apache2-mod_php7-7.2.5-4.35 is installed
  • OR php7-7.2.5-4.35 is installed
  • OR php7-bcmath-7.2.5-4.35 is installed
  • OR php7-bz2-7.2.5-4.35 is installed
  • OR php7-calendar-7.2.5-4.35 is installed
  • OR php7-ctype-7.2.5-4.35 is installed
  • OR php7-curl-7.2.5-4.35 is installed
  • OR php7-dba-7.2.5-4.35 is installed
  • OR php7-devel-7.2.5-4.35 is installed
  • OR php7-dom-7.2.5-4.35 is installed
  • OR php7-enchant-7.2.5-4.35 is installed
  • OR php7-exif-7.2.5-4.35 is installed
  • OR php7-fastcgi-7.2.5-4.35 is installed
  • OR php7-fileinfo-7.2.5-4.35 is installed
  • OR php7-fpm-7.2.5-4.35 is installed
  • OR php7-ftp-7.2.5-4.35 is installed
  • OR php7-gd-7.2.5-4.35 is installed
  • OR php7-gettext-7.2.5-4.35 is installed
  • OR php7-gmp-7.2.5-4.35 is installed
  • OR php7-iconv-7.2.5-4.35 is installed
  • OR php7-intl-7.2.5-4.35 is installed
  • OR php7-json-7.2.5-4.35 is installed
  • OR php7-ldap-7.2.5-4.35 is installed
  • OR php7-mbstring-7.2.5-4.35 is installed
  • OR php7-mysql-7.2.5-4.35 is installed
  • OR php7-odbc-7.2.5-4.35 is installed
  • OR php7-opcache-7.2.5-4.35 is installed
  • OR php7-openssl-7.2.5-4.35 is installed
  • OR php7-pcntl-7.2.5-4.35 is installed
  • OR php7-pdo-7.2.5-4.35 is installed
  • OR php7-pear-7.2.5-4.35 is installed
  • OR php7-pear-Archive_Tar-7.2.5-4.35 is installed
  • OR php7-pgsql-7.2.5-4.35 is installed
  • OR php7-phar-7.2.5-4.35 is installed
  • OR php7-posix-7.2.5-4.35 is installed
  • OR php7-shmop-7.2.5-4.35 is installed
  • OR php7-snmp-7.2.5-4.35 is installed
  • OR php7-soap-7.2.5-4.35 is installed
  • OR php7-sockets-7.2.5-4.35 is installed
  • OR php7-sqlite-7.2.5-4.35 is installed
  • OR php7-sysvmsg-7.2.5-4.35 is installed
  • OR php7-sysvsem-7.2.5-4.35 is installed
  • OR php7-sysvshm-7.2.5-4.35 is installed
  • OR php7-tokenizer-7.2.5-4.35 is installed
  • OR php7-wddx-7.2.5-4.35 is installed
  • OR php7-xmlreader-7.2.5-4.35 is installed
  • OR php7-xmlrpc-7.2.5-4.35 is installed
  • OR php7-xmlwriter-7.2.5-4.35 is installed
  • OR php7-xsl-7.2.5-4.35 is installed
  • OR php7-zip-7.2.5-4.35 is installed
  • OR php7-zlib-7.2.5-4.35 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND apache2-mod_nss-1.0.8-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • jakarta-commons-fileupload-1.1.1-120 is installed
  • OR jakarta-commons-fileupload-javadoc-1.1.1-120 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-36 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND quagga-0.99.22.1-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Rasperry Pi 12 SP2 is installed
  • AND Package Information
  • kernel-default-4.4.21-90.1 is installed
  • OR kernel-default-base-4.4.21-90.1 is installed
  • OR kernel-default-devel-4.4.21-90.1 is installed
  • OR kernel-devel-4.4.21-90.1 is installed
  • OR kernel-macros-4.4.21-90.1 is installed
  • OR kernel-source-4.4.21-90.1 is installed
  • OR kernel-syms-4.4.21-90.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND Package Information
  • MozillaFirefox-31.7.0esr-34.1 is installed
  • OR MozillaFirefox-devel-31.7.0esr-34.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND libvorbis-devel-1.3.3-8.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND libproxy1-networkmanager-32bit-0.4.11-11.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • bluez-5.48-5.8 is installed
  • OR bluez-cups-5.48-5.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • ffmpeg-3.4.2-4.17 is installed
  • OR libavcodec-devel-3.4.2-4.17 is installed
  • OR libavformat-devel-3.4.2-4.17 is installed
  • OR libavformat57-3.4.2-4.17 is installed
  • OR libavresample-devel-3.4.2-4.17 is installed
  • OR libavresample3-3.4.2-4.17 is installed
    • BACK