Oval Definition:oval:org.opensuse.security:def:2684
Revision Date:2020-12-02Version:1
Title:Security update for openssh (Important)
Description:

This update for openssh fixes the following issues:

Security issues fixed:

- CVE-2018-20685: Fixed an issue where scp client allows remote SSH servers to bypass intended access restrictions (bsc#1121571) - CVE-2019-6109: Fixed an issue where the scp client would allow malicious remote SSH servers to manipulate terminal output via the object name, e.g. by inserting ANSI escape sequences (bsc#1121816) - CVE-2019-6110: Fixed an issue where the scp client would allow malicious remote SSH servers to manipulate stderr output, e.g. by inserting ANSI escape sequences (bsc#1121818) - CVE-2019-6111: Fixed an issue where the scp client would allow malicious remote SSH servers to execute directory traversal attacks and overwrite files (bsc#1121821)
Family:unixClass:patch
Status:Reference(s):1013712
1100397
1100523
1106415
1106996
1113064
1114592
1115015
1115022
1115025
1119687
1120381
1121571
1121816
1121818
1121821
1123013
1123886
1124365
1124366
1124367
1124368
1128649
1135254
1137443
1141897
1142649
1142654
1148517
1149145
1159478
1159479
1159482
1159486
1159861
1160369
1160968
1161194
CVE-2016-9798
CVE-2018-13440
CVE-2018-16412
CVE-2018-16843
CVE-2018-16844
CVE-2018-16845
CVE-2018-18544
CVE-2018-20346
CVE-2018-20467
CVE-2018-20685
CVE-2019-12735
CVE-2019-14250
CVE-2019-15847
CVE-2019-18388
CVE-2019-18389
CVE-2019-18390
CVE-2019-18391
CVE-2019-19948
CVE-2019-19949
CVE-2019-6109
CVE-2019-6110
CVE-2019-6111
CVE-2019-6486
CVE-2019-7175
CVE-2019-7395
CVE-2019-7396
CVE-2019-7397
CVE-2019-7398
CVE-2020-2583
CVE-2020-2590
CVE-2020-2593
CVE-2020-2601
CVE-2020-2604
CVE-2020-2654
CVE-2020-2659
SUSE-SU-2019:0126-1
SUSE-SU-2019:0334-1
SUSE-SU-2019:0651-1
SUSE-SU-2019:0739-1
SUSE-SU-2019:0788-1
SUSE-SU-2019:0940-1
SUSE-SU-2019:1457-1
SUSE-SU-2019:3046-1
SUSE-SU-2019:3061-1
SUSE-SU-2019:3212-1
SUSE-SU-2020:0017-1
SUSE-SU-2020:0231-1
SUSE-SU-2020:0275-1
Platform(s):SUSE Linux Enterprise Build System Kit 12
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 15
SUSE Linux Enterprise High Availability 15 SP1
SUSE Linux Enterprise Module for additional PackageHub packages 15
SUSE Linux Enterprise Module for Desktop Applications 15
SUSE Linux Enterprise Module for High Performance Computing 12
SUSE Linux Enterprise Module for High Performance Computing 15
SUSE Linux Enterprise Module for High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Legacy Software 15 SP1
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Public Cloud 15 SP1
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 11-SECURITY
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 is installed
  • AND Package Information
  • libreoffice-4.3.3.2-6.1 is installed
  • OR libreoffice-sdk-4.3.3.2-6.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • bzip2-1.0.6-27 is installed
  • OR libbz2-1-1.0.6-27 is installed
  • OR libbz2-1-32bit-1.0.6-27 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-8 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-8 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-8 is installed
  • OR libMagickCore-6_Q16-1-32bit-6.8.8.1-8 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND dnsmasq-2.71-13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND libsrtp1-1.5.2-3.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND haproxy-1.6.5-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND Package Information
  • corosync-2.3.6-9.13 is installed
  • OR libcorosync4-2.3.6-9.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-25.16 is installed
  • OR dlm-kmp-default-4.12.14-25.16 is installed
  • OR gfs2-kmp-default-4.12.14-25.16 is installed
  • OR kernel-default-4.12.14-25.16 is installed
  • OR ocfs2-kmp-default-4.12.14-25.16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 SP1 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-197.10 is installed
  • OR dlm-kmp-default-4.12.14-197.10 is installed
  • OR gfs2-kmp-default-4.12.14-197.10 is installed
  • OR kernel-default-4.12.14-197.10 is installed
  • OR ocfs2-kmp-default-4.12.14-197.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed
  • AND Package Information
  • ffmpeg-3.4.2-4.12 is installed
  • OR libavdevice57-3.4.2-4.12 is installed
  • OR libavfilter6-3.4.2-4.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND openssh-askpass-gnome-7.6p1-9.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 12 is installed
  • AND Package Information
  • libslurm29-16.05.8.1-5 is installed
  • OR perl-slurm-16.05.8.1-5 is installed
  • OR slurm-16.05.8.1-5 is installed
  • OR slurm-auth-none-16.05.8.1-5 is installed
  • OR slurm-devel-16.05.8.1-5 is installed
  • OR slurm-doc-16.05.8.1-5 is installed
  • OR slurm-lua-16.05.8.1-5 is installed
  • OR slurm-munge-16.05.8.1-5 is installed
  • OR slurm-pam_slurm-16.05.8.1-5 is installed
  • OR slurm-plugins-16.05.8.1-5 is installed
  • OR slurm-sched-wiki-16.05.8.1-5 is installed
  • OR slurm-slurmdbd-16.05.8.1-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 is installed
  • AND Package Information
  • libpmi0-17.11.13-6.18 is installed
  • OR libslurm32-17.11.13-6.18 is installed
  • OR perl-slurm-17.11.13-6.18 is installed
  • OR slurm-17.11.13-6.18 is installed
  • OR slurm-auth-none-17.11.13-6.18 is installed
  • OR slurm-config-17.11.13-6.18 is installed
  • OR slurm-devel-17.11.13-6.18 is installed
  • OR slurm-doc-17.11.13-6.18 is installed
  • OR slurm-lua-17.11.13-6.18 is installed
  • OR slurm-munge-17.11.13-6.18 is installed
  • OR slurm-node-17.11.13-6.18 is installed
  • OR slurm-pam_slurm-17.11.13-6.18 is installed
  • OR slurm-plugins-17.11.13-6.18 is installed
  • OR slurm-slurmdbd-17.11.13-6.18 is installed
  • OR slurm-sql-17.11.13-6.18 is installed
  • OR slurm-torque-17.11.13-6.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed
  • AND Package Information
  • libpmi0-18.08.8-3.4 is installed
  • OR libslurm33-18.08.8-3.4 is installed
  • OR perl-Switch-2.17-3.2 is installed
  • OR perl-slurm-18.08.8-3.4 is installed
  • OR slurm-18.08.8-3.4 is installed
  • OR slurm-auth-none-18.08.8-3.4 is installed
  • OR slurm-config-18.08.8-3.4 is installed
  • OR slurm-config-man-18.08.8-3.4 is installed
  • OR slurm-devel-18.08.8-3.4 is installed
  • OR slurm-doc-18.08.8-3.4 is installed
  • OR slurm-lua-18.08.8-3.4 is installed
  • OR slurm-munge-18.08.8-3.4 is installed
  • OR slurm-node-18.08.8-3.4 is installed
  • OR slurm-pam_slurm-18.08.8-3.4 is installed
  • OR slurm-plugins-18.08.8-3.4 is installed
  • OR slurm-slurmdbd-18.08.8-3.4 is installed
  • OR slurm-sql-18.08.8-3.4 is installed
  • OR slurm-sview-18.08.8-3.4 is installed
  • OR slurm-torque-18.08.8-3.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 12 is installed
  • AND Package Information
  • java-1_6_0-ibm-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-fonts-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-jdbc-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-plugin-1.6.0_sr16.1-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.15-3.3 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-3.3 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.15-3.3 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.7 is installed
  • OR reiserfs-kmp-default-4.12.14-197.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-23-default-2-4 is installed
  • OR kernel-livepatch-SLE15_Update_0-2-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-195-default-2-4 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_0-2-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • bluez-5.48-5.19 is installed
  • OR bluez-auto-enable-devices-5.48-5.19 is installed
  • OR bluez-test-5.48-5.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • 389-ds-1.4.0.3-4.7 is installed
  • OR 389-ds-snmp-1.4.0.3-4.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • gnutls-3.6.7-6.14 is installed
  • OR gnutls-guile-3.6.7-6.14 is installed
  • OR libgnutls-devel-32bit-3.6.7-6.14 is installed
  • OR libnettle-3.4.1-4.12 is installed
  • OR libnettle-devel-32bit-3.4.1-4.12 is installed
  • OR nettle-3.4.1-4.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 12 is installed
  • AND python-requests-2.3.0-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed
  • AND Package Information
  • kernel-azure-4.12.14-8.16 is installed
  • OR kernel-azure-base-4.12.14-8.16 is installed
  • OR kernel-azure-devel-4.12.14-8.16 is installed
  • OR kernel-devel-azure-4.12.14-8.16 is installed
  • OR kernel-source-azure-4.12.14-8.16 is installed
  • OR kernel-syms-azure-4.12.14-8.16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND Package Information
  • apache2-mod_php5-5.5.14-4 is installed
  • OR php5-5.5.14-4 is installed
  • OR php5-bcmath-5.5.14-4 is installed
  • OR php5-bz2-5.5.14-4 is installed
  • OR php5-calendar-5.5.14-4 is installed
  • OR php5-ctype-5.5.14-4 is installed
  • OR php5-curl-5.5.14-4 is installed
  • OR php5-dba-5.5.14-4 is installed
  • OR php5-dom-5.5.14-4 is installed
  • OR php5-enchant-5.5.14-4 is installed
  • OR php5-exif-5.5.14-4 is installed
  • OR php5-fastcgi-5.5.14-4 is installed
  • OR php5-fileinfo-5.5.14-4 is installed
  • OR php5-fpm-5.5.14-4 is installed
  • OR php5-ftp-5.5.14-4 is installed
  • OR php5-gd-5.5.14-4 is installed
  • OR php5-gettext-5.5.14-4 is installed
  • OR php5-gmp-5.5.14-4 is installed
  • OR php5-iconv-5.5.14-4 is installed
  • OR php5-intl-5.5.14-4 is installed
  • OR php5-json-5.5.14-4 is installed
  • OR php5-ldap-5.5.14-4 is installed
  • OR php5-mbstring-5.5.14-4 is installed
  • OR php5-mcrypt-5.5.14-4 is installed
  • OR php5-mysql-5.5.14-4 is installed
  • OR php5-odbc-5.5.14-4 is installed
  • OR php5-openssl-5.5.14-4 is installed
  • OR php5-pcntl-5.5.14-4 is installed
  • OR php5-pdo-5.5.14-4 is installed
  • OR php5-pear-5.5.14-4 is installed
  • OR php5-pgsql-5.5.14-4 is installed
  • OR php5-pspell-5.5.14-4 is installed
  • OR php5-shmop-5.5.14-4 is installed
  • OR php5-snmp-5.5.14-4 is installed
  • OR php5-soap-5.5.14-4 is installed
  • OR php5-sockets-5.5.14-4 is installed
  • OR php5-sqlite-5.5.14-4 is installed
  • OR php5-suhosin-5.5.14-4 is installed
  • OR php5-sysvmsg-5.5.14-4 is installed
  • OR php5-sysvsem-5.5.14-4 is installed
  • OR php5-sysvshm-5.5.14-4 is installed
  • OR php5-tokenizer-5.5.14-4 is installed
  • OR php5-wddx-5.5.14-4 is installed
  • OR php5-xmlreader-5.5.14-4 is installed
  • OR php5-xmlrpc-5.5.14-4 is installed
  • OR php5-xmlwriter-5.5.14-4 is installed
  • OR php5-xsl-5.5.14-4 is installed
  • OR php5-zip-5.5.14-4 is installed
  • OR php5-zlib-5.5.14-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND Package Information
  • apache2-mod_php7-7.2.5-4.32 is installed
  • OR php7-7.2.5-4.32 is installed
  • OR php7-bcmath-7.2.5-4.32 is installed
  • OR php7-bz2-7.2.5-4.32 is installed
  • OR php7-calendar-7.2.5-4.32 is installed
  • OR php7-ctype-7.2.5-4.32 is installed
  • OR php7-curl-7.2.5-4.32 is installed
  • OR php7-dba-7.2.5-4.32 is installed
  • OR php7-devel-7.2.5-4.32 is installed
  • OR php7-dom-7.2.5-4.32 is installed
  • OR php7-enchant-7.2.5-4.32 is installed
  • OR php7-exif-7.2.5-4.32 is installed
  • OR php7-fastcgi-7.2.5-4.32 is installed
  • OR php7-fileinfo-7.2.5-4.32 is installed
  • OR php7-fpm-7.2.5-4.32 is installed
  • OR php7-ftp-7.2.5-4.32 is installed
  • OR php7-gd-7.2.5-4.32 is installed
  • OR php7-gettext-7.2.5-4.32 is installed
  • OR php7-gmp-7.2.5-4.32 is installed
  • OR php7-iconv-7.2.5-4.32 is installed
  • OR php7-intl-7.2.5-4.32 is installed
  • OR php7-json-7.2.5-4.32 is installed
  • OR php7-ldap-7.2.5-4.32 is installed
  • OR php7-mbstring-7.2.5-4.32 is installed
  • OR php7-mysql-7.2.5-4.32 is installed
  • OR php7-odbc-7.2.5-4.32 is installed
  • OR php7-opcache-7.2.5-4.32 is installed
  • OR php7-openssl-7.2.5-4.32 is installed
  • OR php7-pcntl-7.2.5-4.32 is installed
  • OR php7-pdo-7.2.5-4.32 is installed
  • OR php7-pear-7.2.5-4.32 is installed
  • OR php7-pear-Archive_Tar-7.2.5-4.32 is installed
  • OR php7-pgsql-7.2.5-4.32 is installed
  • OR php7-phar-7.2.5-4.32 is installed
  • OR php7-posix-7.2.5-4.32 is installed
  • OR php7-shmop-7.2.5-4.32 is installed
  • OR php7-snmp-7.2.5-4.32 is installed
  • OR php7-soap-7.2.5-4.32 is installed
  • OR php7-sockets-7.2.5-4.32 is installed
  • OR php7-sodium-7.2.5-4.32 is installed
  • OR php7-sqlite-7.2.5-4.32 is installed
  • OR php7-sysvmsg-7.2.5-4.32 is installed
  • OR php7-sysvsem-7.2.5-4.32 is installed
  • OR php7-sysvshm-7.2.5-4.32 is installed
  • OR php7-tokenizer-7.2.5-4.32 is installed
  • OR php7-wddx-7.2.5-4.32 is installed
  • OR php7-xmlreader-7.2.5-4.32 is installed
  • OR php7-xmlrpc-7.2.5-4.32 is installed
  • OR php7-xmlwriter-7.2.5-4.32 is installed
  • OR php7-xsl-7.2.5-4.32 is installed
  • OR php7-zip-7.2.5-4.32 is installed
  • OR php7-zlib-7.2.5-4.32 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • MozillaFirefox-31.1.0esr-1 is installed
  • OR MozillaFirefox-translations-31.1.0esr-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND ant-1.9.4-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libneon27-0.30.0-3 is installed
  • OR libneon27-32bit-0.30.0-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND gc-devel-7.2d-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND Package Information
  • finch-devel-2.11.0-12.5 is installed
  • OR libpurple-2.11.0-12.5 is installed
  • OR libpurple-devel-2.11.0-12.5 is installed
  • OR libpurple-lang-2.11.0-12.5 is installed
  • OR pidgin-devel-2.11.0-12.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.6 is installed
  • OR kernel-default-extra-4.12.14-25.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • evolution-3.26.6-4.3 is installed
  • OR evolution-devel-3.26.6-4.3 is installed
  • OR evolution-lang-3.26.6-4.3 is installed
  • OR evolution-plugin-bogofilter-3.26.6-4.3 is installed
  • OR evolution-plugin-pst-import-3.26.6-4.3 is installed
  • OR evolution-plugin-spamassassin-3.26.6-4.3 is installed
    • BACK