OVAL Reference oval:org.opensuse.security:def:2710

Oval Definition:

oval:org.opensuse.security:def:2710

Revision Date:	2020-12-02	Version:	1
Title:	Security update for zypper, libzypp and libsolv (Moderate)
Description:	This update for libzypp and libsolv fixes the following issues: Security issues fixed: - CVE-2018-20532: Fixed NULL pointer dereference at ext/testcase.c (function testcase_read) (bsc#1120629). - CVE-2018-20533: Fixed NULL pointer dereference at ext/testcase.c (function testcase_str2dep_complex) in libsolvext.a (bsc#1120630). - CVE-2018-20534: Fixed illegal address access at src/pool.h (function pool_whatprovides) in libsolv.a (bsc#1120631). Fixed bugs and enhancements: - make cleandeps jobs on patterns work (bnc#1137977) - Fixed an issue where libsolv failed to build against swig 4.0 by updating the version to 0.7.5 (bsc#1135749). - Virtualization host upgrade from SLES-15 to SLES-15-SP1 finished with wrong product name shown up (bsc#1131823). - Copy pattern categories from the rpm that defines the pattern (fate#323785). - Enhance scanning /sys for modaliases (bsc#1130161). - Prevent SEGV if the application sets an empty TextLocale (bsc#1127026). - Handle libgpgme error when gpg key is not completely read and user hits CTRL + C (bsc#1127220). - Added a hint when registration codes have expired (bsc#965786). - Adds a better handling of an error when verifying any repository medium (bsc#1065022). - Will now only write type field when probing (bsc#1114908). - Fixes an issue where zypper has showed the info message 'Installation aborted by user' while the installation was aborted by wicked (bsc#978193). - Suppresses reporting `/memfd:` pseudo files (bsc#1123843). - Fixes an issue where zypper was not able to install or uninstall packages when rpm is unavailable (bsc#1122471). - Fixes an issue where locks were ignored (bsc#1113296). - Simplify complex locks so zypper can display them (bsc#1112911). - zypper will now set `SYSTEMD_OFFLINE=1` during chrooted commits (bsc#1118758). - no-recommends: Nevertheless consider resolver namespaces (hardware, language,..supporting packages) (fate#325513). - Removes world-readable bit from /var/log/zypp (bsc#1099019). - Does no longer fail service-refresh on a empty repoindex.xml (bsc#1116840). - Fixes soname due to libsolv ABI changes (bsc#1115341). - Add infrastructure to flag specific packages to trigger a reboot needed hint (fate#326451). This update for zypper 1.14.27 fixes the following issues: - bash-completion: add package completion for addlock (bsc#1047962) - bash-completion: fix incorrect detection of command names (bsc#1049826) - Offer to change the 'runSearchPackages' config option at the prompt (bsc#1119373, FATE#325599) - Prompt: provide a 'yes/no/always/never' prompt. - Prompt: support '#NUM' as answer to select the NUMth option... - Augeas: enable writing back changed option values (to ~/.zypper.conf) - removelocale: fix segfault - Move needs-restarting command to subpackage (fixes #254) - Allow empty string as argument (bsc#1125415) - Provide a way to delete cache for volatile repositories (bsc#1053177) - Adapt to boost-1.69 requiring explicit casts tribool->bool (fixes #255) - Show support status in info if not unknown (bsc#764147) - Fix installing plain rpm files with `zypper in` (bsc#1124897) - Show only required info in the summary in quiet mode (bsc#993025) - Stay with legacy behavior and return ZYPPER_EXIT_INF_REBOOT_NEEDED only for patches. We don't extend this return code to packages, although they may also carry the 'reboot-needed' attribute. The preferred way to test whether the system needs to be rebooted is `zypper needs-rebooting`. (openSUSE/zypper#237) - Skip repository on error (bsc#1123967) - New commands for locale management: locales addlocale removelocale Inspect and manipulate the systems `requested locales`, aka. the languages software packages should try support by installing translations, dictionaries and tools, as far as they are available. - Don't throw, just warn if options are repeated (bsc#1123865) - Fix detection whether stdout is a tty (happened too late) - Fix broken --plus-content switch (fixes bsc#1123681) - Fix broken --replacefiles switch (fixes bsc#1123137) - Extend zypper source-install (fixes bsc#663358) - Fix inconsistent results for search (bsc#1119873) - Show reboot hint in zypper ps and summary (fixes bsc#1120263) - Improve handling of partially locked packages (bsc#1113296) - Fix wrong default values in help text (bsc#1121611) - Fixed broken argument parsing for --reposd-dir (bsc#1122062) - Fix wrong zypp::indeterminate use (bsc#1120463) - CLI parser: fix broken initialization enforcing 'select by name' (bsc#1119820) - zypper.conf: [commit] autoAgreeWithLicenses {=false} (fixes #220) - locks: Fix printing of versioned locks (bsc#1112911) - locks: create and write versioned locks correctly (bsc#1112911) - patch: --with update may implicitly assume --with-optional (bsc#1102261) - no-recommends: Nevertheless consider resolver namespaces (hardware, language,..supporting packages) (FATE#325513) - Optionally run 'zypper search-packages' after 'search' (FATE#325599) - zypper.conf: Add [search]runSearchPackages config variable. - Don't iterate twice on --no-cd (bsc#1111319) - zypper-log: Make it Python 3 compatible - man: mention /etc/zypp/needreboot config file (fate#326451, fixes #140) - Add `needs-restarting` shell script and manpage (fate#326451) - Add zypper needs-rebooting command (fate#326451) - Introduce new zypper command framefork. Migrated commands so far: addlock addrepo addservice clean cleanlocks modifyrepo modifyservice ps refresh refresh-services removelock removerepo removeservice renamerepo repos services - MediaChangeReport: fix https URLs causing 2 prompts on error (bsc#1110542)
Family:	unix	Class:	patch
Status:		Reference(s):	1047962 1049826 1053177 1065022 1084645 1086613 1096748 1099019 1099162 1101262 1101888 1101889 1102261 1106279 1108889 1110542 1111177 1111319 1112911 1113296 1114209 1114567 1114832 1114908 1115341 1116840 1118597 1118758 1118897 1118898 1118899 1119373 1119553 1119554 1119555 1119556 1119557 1119558 1119820 1119873 1120263 1120463 1120629 1120630 1120631 1121086 1121397 1121611 1121967 1122062 1122471 1122838 1122839 1123013 1123137 1123681 1123843 1123865 1123967 1124897 1125415 1127026 1127155 1127220 1128376 1128746 1129662 1129991 1130161 1130246 1131823 1134068 1135114 1135749 1137977 1148931 1152763 1153921 1154804 1154805 1155198 1155205 1155298 1155678 1155819 1156158 1157377 1158763 1159478 1159479 1159482 1159486 1159922 1159923 1159924 1159927 663358 764147 965786 978193 993025 CVE-2018-1000656 CVE-2018-10861 CVE-2018-1128 CVE-2018-1129 CVE-2018-14394 CVE-2018-14395 CVE-2018-14662 CVE-2018-16846 CVE-2018-16873 CVE-2018-16874 CVE-2018-16875 CVE-2018-17189 CVE-2018-17199 CVE-2018-19870 CVE-2018-19872 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2018-4437 CVE-2018-4438 CVE-2018-4441 CVE-2018-4442 CVE-2018-4443 CVE-2018-4464 CVE-2019-11045 CVE-2019-11046 CVE-2019-11047 CVE-2019-11050 CVE-2019-18388 CVE-2019-18389 CVE-2019-18390 CVE-2019-18391 CVE-2019-18900 CVE-2019-3695 CVE-2019-3696 CVE-2019-5736 CVE-2019-6212 CVE-2019-6215 CVE-2019-6216 CVE-2019-6217 CVE-2019-6226 CVE-2019-6227 CVE-2019-6229 CVE-2019-6233 CVE-2019-6234 CVE-2019-6486 CVE-2019-8595 CVE-2019-8607 CVE-2019-8615 CVE-2019-8644 CVE-2019-8649 CVE-2019-8658 CVE-2019-8666 CVE-2019-8669 CVE-2019-8671 CVE-2019-8672 CVE-2019-8673 CVE-2019-8676 CVE-2019-8677 CVE-2019-8678 CVE-2019-8679 CVE-2019-8680 CVE-2019-8681 CVE-2019-8683 CVE-2019-8684 CVE-2019-8686 CVE-2019-8687 CVE-2019-8688 CVE-2019-8689 CVE-2019-8690 SUSE-SU-2019:0497-1 SUSE-SU-2019:0504-1 SUSE-SU-2019:0586-1 SUSE-SU-2019:0657-1 SUSE-SU-2019:0927-1 SUSE-SU-2019:1234-2 SUSE-SU-2019:1299-2 SUSE-SU-2019:2030-1 SUSE-SU-2019:2428-1 SUSE-SU-2020:0017-1 SUSE-SU-2020:0087-1 SUSE-SU-2020:0101-1 SUSE-SU-2020:0357-1
Platform(s):	SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise High Availability 15 SP1 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-CLIENT-TOOLS SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Package Hub for SUSE Linux Enterprise 12	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information openstack-neutron-2014.2.2.dev26-3 is installed OR openstack-neutron-dhcp-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-ha-tool-2014.2.2.dev26-3 is installed OR openstack-neutron-l3-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-lbaas-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-linuxbridge-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-metadata-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-metering-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-openvswitch-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-vpn-agent-2014.2.2.dev26-3 is installed OR python-neutron-2014.2.2.dev26-3 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 is installed AND kernel-zfcpdump-3.12.51-52.39.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND facter-2.0.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information accountsservice-0.6.35-3 is installed OR accountsservice-lang-0.6.35-3 is installed OR libaccountsservice0-0.6.35-3 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information xen-4.7.2_06-42 is installed OR xen-libs-4.7.2_06-42 is installed OR xen-libs-32bit-4.7.2_06-42 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libxslt-tools-1.1.28-16 is installed OR libxslt1-1.1.28-16 is installed OR libxslt1-32bit-1.1.28-16 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information cluster-md-kmp-default-4.4.73-5 is installed OR dlm-kmp-default-4.4.73-5 is installed OR gfs2-kmp-default-4.4.73-5 is installed OR ocfs2-kmp-default-4.4.73-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP4 is installed AND ruby2.1-rubygem-bundler-1.7.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 is installed AND Package Information cluster-md-kmp-default-4.12.14-25.6 is installed OR dlm-kmp-default-4.12.14-25.6 is installed OR gfs2-kmp-default-4.12.14-25.6 is installed OR kernel-default-4.12.14-25.6 is installed OR ocfs2-kmp-default-4.12.14-25.6 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP1 is installed AND Package Information cluster-md-kmp-default-4.12.14-197.21 is installed OR dlm-kmp-default-4.12.14-197.21 is installed OR gfs2-kmp-default-4.12.14-197.21 is installed OR kernel-default-4.12.14-197.21 is installed OR ocfs2-kmp-default-4.12.14-197.21 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND tiff-4.0.9-5.17 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND docker-1.6.2-31 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information PackageKit-1.1.10-4.10 is installed OR PackageKit-backend-zypp-1.1.10-4.10 is installed OR PackageKit-devel-1.1.10-4.10 is installed OR PackageKit-lang-1.1.10-4.10 is installed OR libpackagekit-glib2-18-1.1.10-4.10 is installed OR libpackagekit-glib2-devel-1.1.10-4.10 is installed OR libyui-qt-pkg-2.45.15.2-3.5 is installed OR libyui-qt-pkg-devel-2.45.15.2-3.5 is installed OR typelib-1_0-PackageKitGlib-1_0-1.1.10-4.10 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information libpmi0-18.08.8-3.4 is installed OR libslurm33-18.08.8-3.4 is installed OR perl-Switch-2.17-3.2 is installed OR perl-slurm-18.08.8-3.4 is installed OR slurm-18.08.8-3.4 is installed OR slurm-auth-none-18.08.8-3.4 is installed OR slurm-config-18.08.8-3.4 is installed OR slurm-config-man-18.08.8-3.4 is installed OR slurm-devel-18.08.8-3.4 is installed OR slurm-doc-18.08.8-3.4 is installed OR slurm-lua-18.08.8-3.4 is installed OR slurm-munge-18.08.8-3.4 is installed OR slurm-node-18.08.8-3.4 is installed OR slurm-pam_slurm-18.08.8-3.4 is installed OR slurm-plugins-18.08.8-3.4 is installed OR slurm-slurmdbd-18.08.8-3.4 is installed OR slurm-sql-18.08.8-3.4 is installed OR slurm-sview-18.08.8-3.4 is installed OR slurm-torque-18.08.8-3.4 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.15-3.3 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-3.3 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.15-3.3 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.35-3.20 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-25.13 is installed OR kernel-default-livepatch-4.12.14-25.13 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_7-default-2-2 is installed OR kernel-livepatch-SLE15-SP1_Update_2-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information webkit-jsc-4-2.22.6-3.18 is installed OR webkit2gtk3-2.22.6-3.18 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information containerd-1.2.5-5.13 is installed OR containerd-ctr-1.2.5-5.13 is installed OR containerd-test-1.2.5-5.13 is installed OR docker-18.09.6_ce-6.17 is installed OR docker-runc-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed OR docker-runc-test-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed OR docker-test-18.09.6_ce-6.17 is installed OR docker-zsh-completion-18.09.6_ce-6.17 is installed OR go-1.12-3.10 is installed OR go-doc-1.12-3.10 is installed OR go-race-1.12-3.10 is installed OR go1.11-1.11.9-1.12 is installed OR go1.11-doc-1.11.9-1.12 is installed OR go1.11-race-1.11.9-1.12 is installed OR go1.12-1.12.4-1.9 is installed OR go1.12-doc-1.12.4-1.9 is installed OR go1.12-race-1.12.4-1.9 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.38 is installed OR kernel-azure-base-4.12.14-5.38 is installed OR kernel-azure-devel-4.12.14-5.38 is installed OR kernel-devel-azure-4.12.14-5.38 is installed OR kernel-source-azure-4.12.14-5.38 is installed OR kernel-syms-azure-4.12.14-5.38 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information kernel-azure-4.12.14-8.19 is installed OR kernel-azure-base-4.12.14-8.19 is installed OR kernel-azure-devel-4.12.14-8.19 is installed OR kernel-devel-azure-4.12.14-8.19 is installed OR kernel-source-azure-4.12.14-8.19 is installed OR kernel-syms-azure-4.12.14-8.19 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information apache2-2.4.33-3.3 is installed OR apache2-devel-2.4.33-3.3 is installed OR apache2-doc-2.4.33-3.3 is installed OR apache2-prefork-2.4.33-3.3 is installed OR apache2-utils-2.4.33-3.3 is installed OR apache2-worker-2.4.33-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information nodejs6-6.9.5-7 is installed OR nodejs6-devel-6.9.5-7 is installed OR nodejs6-docs-6.9.5-7 is installed OR npm6-6.9.5-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information MozillaFirefox-31.1.0esr-1 is installed OR MozillaFirefox-translations-31.1.0esr-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND ant-1.9.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libsqlite3-0-3.8.10.2-3 is installed OR libsqlite3-0-32bit-3.8.10.2-3 is installed OR sqlite3-3.8.10.2-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information openssh-6.6p1-52.1 is installed OR openssh-askpass-gnome-6.6p1-52.1 is installed OR openssh-fips-6.6p1-52.1 is installed OR openssh-helpers-6.6p1-52.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND libXrandr-devel-1.4.2-3 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND hplip-devel-3.14.6-3.5 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.19 is installed OR kernel-default-extra-4.12.14-25.19 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information evolution-3.26.6-4.3 is installed OR evolution-devel-3.26.6-4.3 is installed OR evolution-lang-3.26.6-4.3 is installed OR evolution-plugin-bogofilter-3.26.6-4.3 is installed OR evolution-plugin-pst-import-3.26.6-4.3 is installed OR evolution-plugin-spamassassin-3.26.6-4.3 is installed
Definition Synopsis
SUSE Package Hub for SUSE Linux Enterprise 12 is installed AND Package Information chromedriver-53.0.2785.89-96 is installed OR chromium-53.0.2785.89-96 is installed OR chromium-desktop-gnome-53.0.2785.89-96 is installed OR chromium-desktop-kde-53.0.2785.89-96 is installed OR chromium-ffmpegsumo-53.0.2785.89-96 is installed

BACK