OVAL Reference oval:org.opensuse.security:def:44859

Oval Definition:

oval:org.opensuse.security:def:44859

Revision Date:	2020-12-01	Version:	1
Title:	Security update for sudo (Important)
Description:	This update for sudo fixes the following issues: - CVE-2019-14287: Fixed an issue where a user with sudo privileges that allowed them to run commands with an arbitrary uid, could run commands as root, despite being forbidden to do so in sudoers (bsc#1153674).
Family:	unix	Class:	patch
Status:		Reference(s):	1013882 1049825 1051510 1084878 1085790 1101676 1101677 1101678 1103342 1109893 1110542 1111319 1112368 1112397 1112417 1112421 1112432 1112911 1113296 1116574 1116686 1116995 1117665 1118277 1118754 1119376 1119947 1120629 1120630 1120631 1123886 1127155 1129071 1130721 1131107 1131823 1132045 1132663 1132666 1132900 1133140 1133719 1134226 1135966 1135967 1136037 1136261 1137865 1137977 1138301 1138303 1138734 1139073 1140039 1140671 1141013 1141054 1141670 1142458 1143187 1144123 1144903 1145477 1145521 1146042 1146163 1146285 1146361 1146378 1146391 1146413 1146425 1146512 1146514 1146516 1146519 1146524 1146526 1146529 1146540 1146543 1146547 1146550 1146584 1146589 1147022 1147122 1148394 1148938 1149083 1149376 1149522 1149527 1149555 1149612 1150025 1150112 1150452 1150457 1150465 1150727 1150942 1151347 1151350 1152685 1152782 1152788 1153158 1153263 1153674 1154103 1154372 1155131 1155671 1155787 1160467 1160468 1160594 1160764 1161779 1163922 1163933 1173100 1173659 1173869 1173942 1173963 1174247 CVE-2015-9542 CVE-2016-10906 CVE-2016-9843 CVE-2017-10989 CVE-2017-18379 CVE-2017-18509 CVE-2017-18551 CVE-2017-18595 CVE-2017-2518 CVE-2018-12207 CVE-2018-13785 CVE-2018-16884 CVE-2018-19788 CVE-2018-20060 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2018-20976 CVE-2018-3058 CVE-2018-3063 CVE-2018-3064 CVE-2018-3066 CVE-2018-3136 CVE-2018-3139 CVE-2018-3143 CVE-2018-3149 CVE-2018-3156 CVE-2018-3169 CVE-2018-3174 CVE-2018-3180 CVE-2018-3214 CVE-2018-3251 CVE-2018-3282 CVE-2018-8740 CVE-2019-0154 CVE-2019-0155 CVE-2019-10161 CVE-2019-10167 CVE-2019-10220 CVE-2019-11135 CVE-2019-11236 CVE-2019-11324 CVE-2019-13272 CVE-2019-14287 CVE-2019-14814 CVE-2019-14815 CVE-2019-14816 CVE-2019-14821 CVE-2019-14835 CVE-2019-14895 CVE-2019-14896 CVE-2019-14897 CVE-2019-15098 CVE-2019-15211 CVE-2019-15212 CVE-2019-15214 CVE-2019-15215 CVE-2019-15216 CVE-2019-15217 CVE-2019-15218 CVE-2019-15219 CVE-2019-15220 CVE-2019-15221 CVE-2019-15239 CVE-2019-15290 CVE-2019-15291 CVE-2019-15505 CVE-2019-15666 CVE-2019-15807 CVE-2019-15902 CVE-2019-15924 CVE-2019-15926 CVE-2019-15927 CVE-2019-16232 CVE-2019-16233 CVE-2019-16234 CVE-2019-16413 CVE-2019-16746 CVE-2019-16995 CVE-2019-17055 CVE-2019-17056 CVE-2019-17133 CVE-2019-17666 CVE-2019-1787 CVE-2019-1788 CVE-2019-1789 CVE-2019-19447 CVE-2019-2529 CVE-2019-2537 CVE-2019-9456 CVE-2019-9458 CVE-2019-9506 CVE-2019-9740 CVE-2020-11668 CVE-2020-14331 CVE-2020-8013 SUSE-SU-2019:0019-1 SUSE-SU-2019:0897-1 SUSE-SU-2019:1208-1 SUSE-SU-2019:2265-1 SUSE-SU-2019:3050-1 SUSE-SU-2020:0204-1 SUSE-SU-2020:0545-1 SUSE-SU-2020:1117-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 42.3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Containers 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Development Tools 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP2-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP3-BCL SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP3-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP4-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SP5 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information bash-4.4-lp150.7 is installed OR bash-doc-4.4-lp150.7 is installed OR bash-lang-4.4-lp150.7 is installed OR libreadline7-7.0-lp150.7 is installed OR readline-doc-7.0-lp150.7 is installed
Definition Synopsis
openSUSE Leap 42.3 is installed AND Package Information accountsservice-0.6.42-6 is installed OR accountsservice-lang-0.6.42-6 is installed OR libaccountsservice0-0.6.42-6 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND fetchmail-6.3.26-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information dbus-1-1.8.16-19 is installed OR dbus-1-x11-1.8.16-19 is installed OR libdbus-1-3-1.8.16-19 is installed OR libdbus-1-3-32bit-1.8.16-19 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information cpio-2.11-36.3 is installed OR cpio-lang-2.11-36.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information bash-4.4-7 is installed OR bash-devel-4.4-7 is installed OR bash-doc-4.4-7 is installed OR bash-lang-4.4-7 is installed OR libreadline7-7.0-7 is installed OR readline-devel-7.0-7 is installed OR readline-doc-7.0-7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information librsync-devel-1.0.0-1 is installed OR librsync2-1.0.0-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 15 is installed AND Package Information containerd-1.2.2-5.9 is installed OR docker-18.09.1_ce-6.14 is installed OR docker-bash-completion-18.09.1_ce-6.14 is installed OR docker-libnetwork-0.7.0.1+gitr2711_2cfbf9b1f981-4.9 is installed OR docker-runc-1.0.0rc6+gitr3748_96ec2177ae84-6.12 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2711_2cfbf9b1f981-4.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information accountsservice-0.6.45-6.10 is installed OR accountsservice-devel-0.6.45-6.10 is installed OR accountsservice-lang-0.6.45-6.10 is installed OR libaccountsservice0-0.6.45-6.10 is installed OR typelib-1_0-AccountsService-1_0-0.6.45-6.10 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 is installed AND Package Information perl-5.26.1-7.6 is installed OR perl-doc-5.26.1-7.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND ocaml-libguestfs-devel-1.38.0-3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_6-default-4-2 is installed OR kernel-livepatch-SLE15_Update_2-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_7-default-4-2 is installed OR kernel-livepatch-SLE15-SP1_Update_2-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information gio-branding-upstream-2.54.3-4.15 is installed OR glib2-2.54.3-4.15 is installed OR glib2-devel-static-2.54.3-4.15 is installed OR libgio-fam-2.54.3-4.15 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information bzip2-1.0.6-5.3 is installed OR bzip2-doc-1.0.6-5.3 is installed OR libbz2-devel-32bit-1.0.6-5.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python-numpy-1.16.1-4.8 is installed OR python2-numpy-1.16.1-4.8 is installed OR python2-numpy-devel-1.16.1-4.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libshibsp-lite7-2.6.1-1 is installed OR libshibsp7-2.6.1-1 is installed OR shibboleth-sp-2.6.1-1 is installed OR shibboleth-sp-devel-2.6.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND skopeo-0.1.41-4.11 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs10-10.15.2-1.6 is installed OR nodejs10-devel-10.15.2-1.6 is installed OR nodejs10-docs-10.15.2-1.6 is installed OR npm10-10.15.2-1.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libldb1-1.1.26-10 is installed OR libldb1-32bit-1.1.26-10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_7_0-openjdk-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND sudo-1.8.10p3-10.23 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP2-ESPOS is installed AND sudo-1.8.10p3-10.23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_7_0-openjdk-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information xen-4.7.5_04-43.33 is installed OR xen-doc-html-4.7.5_04-43.33 is installed OR xen-libs-4.7.5_04-43.33 is installed OR xen-libs-32bit-4.7.5_04-43.33 is installed OR xen-tools-4.7.5_04-43.33 is installed OR xen-tools-domU-4.7.5_04-43.33 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND libsqlite3-0-3.8.10.2-9.6 is installed OR libsqlite3-0-32bit-3.8.10.2-9.6 is installed OR sqlite3-3.8.10.2-9.6 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND libsqlite3-0-3.8.10.2-9.6 is installed OR libsqlite3-0-32bit-3.8.10.2-9.6 is installed OR sqlite3-3.8.10.2-9.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information coreutils-8.25-12 is installed OR coreutils-lang-8.25-12 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-BCL is installed AND pam_radius-1.3.16-239.4 is installed OR pam_radius-32bit-1.3.16-239.4 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-BCL is installed AND pam_radius-1.3.16-239.4 is installed OR pam_radius-32bit-1.3.16-239.4 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND kernel-default-4.4.180-94.107 is installed OR kernel-default-base-4.4.180-94.107 is installed OR kernel-default-devel-4.4.180-94.107 is installed OR kernel-default-kgraft-4.4.180-94.107 is installed OR kernel-devel-4.4.180-94.107 is installed OR kernel-macros-4.4.180-94.107 is installed OR kernel-source-4.4.180-94.107 is installed OR kernel-syms-4.4.180-94.107 is installed OR kgraft-patch-4_4_180-94_107-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_29-1-4.3 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS is installed AND kernel-default-4.4.180-94.107 is installed OR kernel-default-base-4.4.180-94.107 is installed OR kernel-default-devel-4.4.180-94.107 is installed OR kernel-default-kgraft-4.4.180-94.107 is installed OR kernel-devel-4.4.180-94.107 is installed OR kernel-macros-4.4.180-94.107 is installed OR kernel-source-4.4.180-94.107 is installed OR kernel-syms-4.4.180-94.107 is installed OR kgraft-patch-4_4_180-94_107-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_29-1-4.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND libsolv-0.6.36-2.27.19 is installed OR libsolv-tools-0.6.36-2.27.19 is installed OR libzypp-16.20.2-27.60 is installed OR perl-solv-0.6.36-2.27.19 is installed OR python-solv-0.6.36-2.27.19 is installed OR zypper-1.13.54-18.40 is installed OR zypper-log-1.13.54-18.40 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-LTSS is installed AND libsolv-0.6.36-2.27.19 is installed OR libsolv-tools-0.6.36-2.27.19 is installed OR libzypp-16.20.2-27.60 is installed OR perl-solv-0.6.36-2.27.19 is installed OR python-solv-0.6.36-2.27.19 is installed OR zypper-1.13.54-18.40 is installed OR zypper-log-1.13.54-18.40 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND java-1_7_1-ibm-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.35-38.29 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA is installed AND java-1_7_1-ibm-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.35-38.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND shadow-4.2.1-27.19 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND libncurses5-5.9-61 is installed OR libncurses5-32bit-5.9-61 is installed OR libncurses6-5.9-61 is installed OR libncurses6-32bit-5.9-61 is installed OR ncurses-5.9-61 is installed OR ncurses-devel-5.9-61 is installed OR ncurses-devel-32bit-5.9-61 is installed OR ncurses-utils-5.9-61 is installed OR tack-5.9-61 is installed OR terminfo-5.9-61 is installed OR terminfo-base-5.9-61 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND libncurses5-5.9-61 is installed OR libncurses5-32bit-5.9-61 is installed OR libncurses6-5.9-61 is installed OR libncurses6-32bit-5.9-61 is installed OR ncurses-5.9-61 is installed OR ncurses-devel-5.9-61 is installed OR ncurses-devel-32bit-5.9-61 is installed OR ncurses-utils-5.9-61 is installed OR tack-5.9-61 is installed OR terminfo-5.9-61 is installed OR terminfo-base-5.9-61 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND squid-3.5.21-26.29 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4-ESPOS is installed AND squid-3.5.21-26.29 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND java-1_7_0-openjdk-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-demo-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-devel-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-headless-1.7.0.241-43.30 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND java-1_7_0-openjdk-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-demo-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-devel-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-headless-1.7.0.241-43.30 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND ipmitool-1.8.18-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information libzmq3-4.0.4-13 is installed OR zeromq-4.0.4-13 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information gd-2.1.0-17 is installed OR gd-32bit-2.1.0-17 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information gimp-2.8.18-9.3 is installed OR gimp-lang-2.8.18-9.3 is installed OR gimp-plugins-python-2.8.18-9.3 is installed OR libgimp-2_0-0-2.8.18-9.3 is installed OR libgimpui-2_0-0-2.8.18-9.3 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND Package Information libpodofo0_9_2-0.9.2-3.6 is installed OR podofo-0.9.2-3.6 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND Package Information libEMF-1.0.7-11.3 is installed OR libEMF1-1.0.7-11.3 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-150.22 is installed OR kernel-default-extra-4.12.14-150.22 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.10 is installed OR kernel-default-extra-4.12.14-197.10 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information ImageMagick-6.8.8.1-71.108 is installed OR ImageMagick-config-6-SUSE-6.8.8.1-71.108 is installed OR ImageMagick-config-6-upstream-6.8.8.1-71.108 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.108 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.108 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND ucode-intel-20190618-13.47 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libpolkit0-0.113-5.18 is installed OR polkit-0.113-5.18 is installed OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed

BACK