OVAL Reference oval:org.opensuse.security:def:44366

Oval Definition:

oval:org.opensuse.security:def:44366

Revision Date:	2020-12-01	Version:	1
Title:	Security update for atftp (Important)
Description:	This update for atftp fixes the following issues: Security issues fixed: - CVE-2019-11366: Fixed a denial of service caused by a NULL pointer dereference because thread_list_mutex was not locked (bsc#1133145). - CVE-2019-11365: Fixed a buffer overflow which could lead to remote code execution caused by an insecure use of strncpy() (bsc#1133114).
Family:	unix	Class:	patch
Status:		Reference(s):	1004527 1005776 1005778 1005780 1005781 1012382 1012829 1015342 1015343 1019675 1019680 1019695 1019699 1020412 1020645 1020657 1020989 1021424 1022595 1022604 1022743 1022912 1022967 1024346 1024373 1024405 1025461 1030850 1031717 1031784 1032150 1034048 1034075 1035479 1036060 1036215 1036737 1037579 1037838 1037890 1038583 1040813 1042847 1043598 1044503 1046529 1047238 1047487 1047989 1048155 1048228 1048325 1048327 1048356 1048501 1048893 1048912 1048934 1049226 1049272 1049291 1049336 1049361 1049580 1049607 1050471 1050742 1051790 1051987 1052093 1052094 1052095 1052360 1052384 1052580 1052593 1052888 1053043 1053309 1053472 1053627 1053629 1053633 1053681 1053685 1053802 1053915 1053919 1054082 1054084 1054654 1055013 1055096 1055272 1055290 1055359 1055493 1055567 1055709 1055755 1055896 1055935 1055963 1056061 1056185 1056230 1056261 1056427 1056587 1056588 1056596 1056686 1056827 1056849 1056982 1057015 1057031 1057035 1057038 1057047 1057067 1057383 1057498 1057849 1058038 1058116 1058135 1058410 1058507 1058512 1058550 1059051 1059465 1059500 1059863 1060197 1060229 1060249 1060400 1060985 1061017 1061046 1061064 1061067 1061172 1061451 1061721 1061775 1061831 1061872 1062279 1062520 1062962 1063102 1063349 1063460 1063475 1063479 1063501 1063509 1063520 1063570 1063667 1063671 1063695 1064064 1064206 1064388 1064436 1064982 1082023 1086001 1088004 1088009 1096745 1107030 1121826 1133114 1133145 1137832 1139083 1153108 1156317 1156321 1156331 1158785 1158787 1158788 1158789 1158790 1158791 1158792 1158793 1158795 1159646 1160968 1162972 1170715 1172698 1172704 1176733 963575 964944 966170 966172 966186 966191 966316 966318 969476 969477 969756 971975 981309 CVE-2017-1000252 CVE-2017-11464 CVE-2017-11472 CVE-2017-12134 CVE-2017-12153 CVE-2017-12154 CVE-2017-12613 CVE-2017-13080 CVE-2017-14051 CVE-2017-14106 CVE-2017-14489 CVE-2017-15265 CVE-2017-15649 CVE-2018-1060 CVE-2018-1061 CVE-2018-12020 CVE-2018-20856 CVE-2019-10220 CVE-2019-11365 CVE-2019-11366 CVE-2019-12749 CVE-2019-12900 CVE-2019-13272 CVE-2019-1348 CVE-2019-1349 CVE-2019-1350 CVE-2019-1351 CVE-2019-1352 CVE-2019-1353 CVE-2019-1354 CVE-2019-1387 CVE-2019-15239 CVE-2019-17571 CVE-2019-19604 CVE-2019-4732 CVE-2019-6133 CVE-2020-2583 CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2604 CVE-2020-26117 CVE-2020-2654 CVE-2020-2659 CVE-2020-2659 CVE-2020-8023 SUSE-SU-2017:2117-1 SUSE-SU-2017:2847-1 SUSE-SU-2018:1196-1 SUSE-SU-2018:1698-1 SUSE-SU-2018:2696-1 SUSE-SU-2019:1091-1 SUSE-SU-2019:2013-1 SUSE-SU-2019:2035-1 SUSE-SU-2019:3311-1 SUSE-SU-2020:0054-1 SUSE-SU-2020:0528-1 SUSE-SU-2020:1859-1
Platform(s):	openSUSE Leap 42.3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Realtime packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP2-BCL SUSE Linux Enterprise Server for SAP Applications 12 SP2-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP3-BCL SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP3-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8	Product(s):
Definition Synopsis
openSUSE Leap 42.3 is installed AND Package Information liblcms-devel-1.19-22 is installed OR liblcms1-1.19-22 is installed OR liblcms1-32bit-1.19-22 is installed OR python-lcms-1.19-22 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information evince-3.10.3-1 is installed OR evince-lang-3.10.3-1 is installed OR libevdocument3-4-3.10.3-1 is installed OR libevview3-3-3.10.3-1 is installed OR typelib-1_0-EvinceDocument-3_0-3.10.3-1 is installed OR typelib-1_0-EvinceView-3_0-3.10.3-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information empathy-3.10.3-1 is installed OR empathy-lang-3.10.3-1 is installed OR telepathy-mission-control-plugin-goa-3.10.3-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information alsa-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information ghostscript-9.15-22 is installed OR ghostscript-x11-9.15-22 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information cups-pk-helper-0.2.5-5 is installed OR cups-pk-helper-lang-0.2.5-5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND tiff-4.0.9-5.20 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information openslp-2.0.0-4 is installed OR openslp-32bit-2.0.0-4 is installed OR openslp-devel-2.0.0-4 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information cairo-devel-1.15.10-4.5 is installed OR libcairo-gobject2-1.15.10-4.5 is installed OR libcairo-script-interpreter2-1.15.10-4.5 is installed OR libcairo2-1.15.10-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND python-tk-2.7.14-5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information MozillaFirefox-68.2.0-3.59 is installed OR MozillaFirefox-branding-SLE-68-4.11 is installed OR MozillaFirefox-devel-68.2.0-3.59 is installed OR MozillaFirefox-translations-common-68.2.0-3.59 is installed OR MozillaFirefox-translations-other-68.2.0-3.59 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 is installed AND Package Information kernel-docs-4.12.14-25.22 is installed OR kernel-obs-build-4.12.14-25.22 is installed OR kernel-source-4.12.14-25.22 is installed OR kernel-syms-4.12.14-25.22 is installed OR kernel-vanilla-4.12.14-25.22 is installed OR kernel-vanilla-base-4.12.14-25.22 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information kernel-default-4.12.14-25.3 is installed OR reiserfs-kmp-default-4.12.14-25.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_3-default-10-2 is installed OR kernel-livepatch-SLE15_Update_1-10-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_10-default-6-2 is installed OR kernel-livepatch-SLE15-SP1_Update_3-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information webkit-jsc-4-2.24.1-3.24 is installed OR webkit2gtk3-2.24.1-3.24 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information elfutils-0.168-4.5 is installed OR libasm1-32bit-0.168-4.5 is installed OR libelf-devel-32bit-0.168-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.27 is installed OR kernel-azure-base-4.12.14-5.27 is installed OR kernel-azure-devel-4.12.14-5.27 is installed OR kernel-devel-azure-4.12.14-5.27 is installed OR kernel-source-azure-4.12.14-5.27 is installed OR kernel-syms-azure-4.12.14-5.27 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python-PyYAML-5.1.2-6.6 is installed OR python2-PyYAML-5.1.2-6.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Realtime packages 15 SP1 is installed AND Package Information cluster-md-kmp-rt-4.12.14-14.8 is installed OR dlm-kmp-rt-4.12.14-14.8 is installed OR gfs2-kmp-rt-4.12.14-14.8 is installed OR kernel-devel-rt-4.12.14-14.8 is installed OR kernel-rt-4.12.14-14.8 is installed OR kernel-rt-base-4.12.14-14.8 is installed OR kernel-rt-devel-4.12.14-14.8 is installed OR kernel-rt_debug-4.12.14-14.8 is installed OR kernel-rt_debug-devel-4.12.14-14.8 is installed OR kernel-source-rt-4.12.14-14.8 is installed OR kernel-syms-rt-4.12.14-14.8 is installed OR ocfs2-kmp-rt-4.12.14-14.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libvirglrenderer0-0.6.0-2 is installed OR virglrenderer-devel-0.6.0-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information bind-9.11.2-12.8 is installed OR bind-chrootenv-9.11.2-12.8 is installed OR bind-doc-9.11.2-12.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs8-8.16.1-3.20 is installed OR nodejs8-devel-8.16.1-3.20 is installed OR nodejs8-docs-8.16.1-3.20 is installed OR npm8-8.16.1-3.20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_85-default-5-2 is installed OR kgraft-patch-3_12_74-60_64_85-xen-5-2 is installed OR kgraft-patch-SLE12-SP1_Update_26-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND apache2-mod_jk-1.2.40-5 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP2-BCL is installed AND atftp-0.7.0-160.8 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP2-BCL is installed AND atftp-0.7.0-160.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information gnutls-3.2.15-18.6 is installed OR libgnutls-openssl27-3.2.15-18.6 is installed OR libgnutls28-3.2.15-18.6 is installed OR libgnutls28-32bit-3.2.15-18.6 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND libXvnc1-1.6.0-27 is installed OR tigervnc-1.6.0-27 is installed OR xorg-x11-Xvnc-1.6.0-27 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP2-ESPOS is installed AND libXvnc1-1.6.0-27 is installed OR tigervnc-1.6.0-27 is installed OR xorg-x11-Xvnc-1.6.0-27 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.30-38.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_80-default-2-2 is installed OR kgraft-patch-SLE12-SP2_Update_22-2-2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND gdk-pixbuf-loader-rsvg-2.40.18-5.3 is installed OR librsvg-2.40.18-5.3 is installed OR librsvg-2-2-2.40.18-5.3 is installed OR librsvg-2-2-32bit-2.40.18-5.3 is installed OR rsvg-view-2.40.18-5.3 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND gdk-pixbuf-loader-rsvg-2.40.18-5.3 is installed OR librsvg-2.40.18-5.3 is installed OR librsvg-2-2-2.40.18-5.3 is installed OR librsvg-2-2-32bit-2.40.18-5.3 is installed OR rsvg-view-2.40.18-5.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libgraphite2-3-1.3.1-9 is installed OR libgraphite2-3-32bit-1.3.1-9 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-BCL is installed AND git-2.12.3-27.22 is installed OR git-core-2.12.3-27.22 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-BCL is installed AND git-2.12.3-27.22 is installed OR git-core-2.12.3-27.22 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND kernel-default-4.4.180-94.116 is installed OR kernel-default-base-4.4.180-94.116 is installed OR kernel-default-devel-4.4.180-94.116 is installed OR kernel-default-kgraft-4.4.180-94.116 is installed OR kernel-devel-4.4.180-94.116 is installed OR kernel-macros-4.4.180-94.116 is installed OR kernel-source-4.4.180-94.116 is installed OR kernel-syms-4.4.180-94.116 is installed OR kgraft-patch-4_4_180-94_116-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_31-1-4.3 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS is installed AND kernel-default-4.4.180-94.116 is installed OR kernel-default-base-4.4.180-94.116 is installed OR kernel-default-devel-4.4.180-94.116 is installed OR kernel-default-kgraft-4.4.180-94.116 is installed OR kernel-devel-4.4.180-94.116 is installed OR kernel-macros-4.4.180-94.116 is installed OR kernel-source-4.4.180-94.116 is installed OR kernel-syms-4.4.180-94.116 is installed OR kgraft-patch-4_4_180-94_116-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_31-1-4.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND libpolkit0-0.113-5.18 is installed OR polkit-0.113-5.18 is installed OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-LTSS is installed AND libpolkit0-0.113-5.18 is installed OR polkit-0.113-5.18 is installed OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND libtiff5-4.0.9-44.21 is installed OR libtiff5-32bit-4.0.9-44.21 is installed OR tiff-4.0.9-44.21 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA is installed AND libtiff5-4.0.9-44.21 is installed OR libtiff5-32bit-4.0.9-44.21 is installed OR tiff-4.0.9-44.21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND libcares2-1.9.1-9.4 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND libtiff5-4.0.9-44.30 is installed OR libtiff5-32bit-4.0.9-44.30 is installed OR tiff-4.0.9-44.30 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND libtiff5-4.0.9-44.30 is installed OR libtiff5-32bit-4.0.9-44.30 is installed OR tiff-4.0.9-44.30 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND ghostscript-9.27-23.31 is installed OR ghostscript-x11-9.27-23.31 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND ghostscript-9.27-23.31 is installed OR ghostscript-x11-9.27-23.31 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information flash-player-11.2.202.460-83 is installed OR flash-player-gnome-11.2.202.460-83 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information ImageMagick-6.8.8.1-71.17 is installed OR libMagick++-6_Q16-3-6.8.8.1-71.17 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-71.17 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND Package Information gd-2.1.0-24.17 is installed OR gd-32bit-2.1.0-24.17 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND libmwaw-0_3-3-0.3.13-2 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND enigmail-2.1.5-3.22 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-devel-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information glib2-2.48.2-12.15 is installed OR glib2-lang-2.48.2-12.15 is installed OR glib2-tools-2.48.2-12.15 is installed OR libgio-2_0-0-2.48.2-12.15 is installed OR libgio-2_0-0-32bit-2.48.2-12.15 is installed OR libglib-2_0-0-2.48.2-12.15 is installed OR libglib-2_0-0-32bit-2.48.2-12.15 is installed OR libgmodule-2_0-0-2.48.2-12.15 is installed OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed OR libgobject-2_0-0-2.48.2-12.15 is installed OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed OR libgthread-2_0-0-2.48.2-12.15 is installed OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed

BACK