Oval Definition:oval:org.opensuse.security:def:4767
Revision Date:2020-12-02Version:1
Title:Security update for freeradius-server (Important)
Description:

This update for freeradius-server fixes the following issues:

Security issues fixed:

- CVE-2019-11235: Fixed an authentication bypass related to the EAP-PWD Commit frame and insufficent validation of elliptic curve points (bsc#1132549). - CVE-2019-11234: Fixed an authentication bypass caused by reflecting privous values back to the server (bsc#1132664).
Family:unixClass:patch
Status:Reference(s):1079730
1098403
1100352
1111025
1118935
1119115
1129715
1132549
1132664
1134883
1135902
1136540
1136778
1137526
1140402
1142825
1142832
1142835
1143794
1154064
1158095
1158194
1166916
1170595
1171550
1172442
1172443
1173477
1173691
1173694
1173700
1173701
1173743
1173874
1173875
1173876
1173880
1174628
1175568
995932
996032
99606
996648
CVE-2012-2417
CVE-2013-1445
CVE-2016-5147
CVE-2016-5148
CVE-2016-5149
CVE-2016-5150
CVE-2016-5151
CVE-2016-5152
CVE-2016-5153
CVE-2016-5154
CVE-2016-5155
CVE-2016-5156
CVE-2016-5157
CVE-2016-5158
CVE-2016-5159
CVE-2016-5160
CVE-2016-5161
CVE-2016-5162
CVE-2016-5163
CVE-2016-5164
CVE-2016-5165
CVE-2016-5166
CVE-2017-18922
CVE-2018-13301
CVE-2018-21247
CVE-2019-10181
CVE-2019-10182
CVE-2019-10185
CVE-2019-11234
CVE-2019-11235
CVE-2019-12155
CVE-2019-12730
CVE-2019-13164
CVE-2019-14378
CVE-2019-14889
CVE-2019-17542
CVE-2019-19451
CVE-2019-20839
CVE-2019-20840
CVE-2019-9718
CVE-2020-11080
CVE-2020-11651
CVE-2020-11652
CVE-2020-13249
CVE-2020-14344
CVE-2020-14397
CVE-2020-14398
CVE-2020-14399
CVE-2020-14400
CVE-2020-14401
CVE-2020-14402
CVE-2020-7598
CVE-2020-8027
CVE-2020-8174
SUSE-SU-2016:2250-1
SUSE-SU-2018:4215-1
SUSE-SU-2019:1086-1
SUSE-SU-2019:2033-1
SUSE-SU-2019:2246-1
SUSE-SU-2019:3184-1
SUSE-SU-2019:3391-1
SUSE-SU-2020:0130-1
SUSE-SU-2020:1151-1
SUSE-SU-2020:1423-1
SUSE-SU-2020:1576-1
SUSE-SU-2020:1922-1
SUSE-SU-2020:2116-1
SUSE-SU-2020:2712-2
Platform(s):SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Availability 12
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 12 SP5
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE Linux Enterprise Workstation Extension 15 SP2
SUSE OpenStack Cloud 5
SUSE Package Hub for SUSE Linux Enterprise 12
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND python-pycrypto-2.6.1-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • cpp48-4.8.3+r212056-6 is installed
  • OR gcc48-4.8.3+r212056-6 is installed
  • OR gcc48-32bit-4.8.3+r212056-6 is installed
  • OR gcc48-c++-4.8.3+r212056-6 is installed
  • OR gcc48-gij-4.8.3+r212056-6 is installed
  • OR gcc48-gij-32bit-4.8.3+r212056-6 is installed
  • OR gcc48-info-4.8.3+r212056-6 is installed
  • OR libasan0-4.8.3+r212056-6 is installed
  • OR libasan0-32bit-4.8.3+r212056-6 is installed
  • OR libatomic1-4.8.3+r212056-6 is installed
  • OR libatomic1-32bit-4.8.3+r212056-6 is installed
  • OR libffi4-4.8.3+r212056-6 is installed
  • OR libffi4-32bit-4.8.3+r212056-6 is installed
  • OR libgcc_s1-4.8.3+r212056-6 is installed
  • OR libgcc_s1-32bit-4.8.3+r212056-6 is installed
  • OR libgcj48-4.8.3+r212056-6 is installed
  • OR libgcj48-32bit-4.8.3+r212056-6 is installed
  • OR libgcj48-jar-4.8.3+r212056-6 is installed
  • OR libgcj_bc1-4.8.3+r212056-6 is installed
  • OR libgfortran3-4.8.3+r212056-6 is installed
  • OR libgomp1-4.8.3+r212056-6 is installed
  • OR libgomp1-32bit-4.8.3+r212056-6 is installed
  • OR libitm1-4.8.3+r212056-6 is installed
  • OR libitm1-32bit-4.8.3+r212056-6 is installed
  • OR libquadmath0-4.8.3+r212056-6 is installed
  • OR libstdc++48-devel-4.8.3+r212056-6 is installed
  • OR libstdc++48-devel-32bit-4.8.3+r212056-6 is installed
  • OR libstdc++6-4.8.3+r212056-6 is installed
  • OR libstdc++6-32bit-4.8.3+r212056-6 is installed
  • OR libtsan0-4.8.3+r212056-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND argyllcms-1.6.3-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • MozillaFirefox-45.4.0esr-81 is installed
  • OR MozillaFirefox-translations-45.4.0esr-81 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • cron-4.2-58 is installed
  • OR cronie-1.4.11-58 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 is installed
  • AND Package Information
  • ctdb-4.2.4-18.17.1 is installed
  • OR samba-4.2.4-18.17.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND Package Information
  • libpacemaker3-1.1.15-19 is installed
  • OR pacemaker-1.1.15-19 is installed
  • OR pacemaker-cli-1.1.15-19 is installed
  • OR pacemaker-cts-1.1.15-19 is installed
  • OR pacemaker-remote-1.1.15-19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND ctdb-4.6.5+git.27.6afd48b1083-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND Package Information
  • libpacemaker3-1.1.19+20180928.0d2680780-1 is installed
  • OR pacemaker-1.1.19+20180928.0d2680780-1 is installed
  • OR pacemaker-cli-1.1.19+20180928.0d2680780-1 is installed
  • OR pacemaker-cts-1.1.19+20180928.0d2680780-1 is installed
  • OR pacemaker-remote-1.1.19+20180928.0d2680780-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP5 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-120 is installed
  • OR dlm-kmp-default-4.12.14-120 is installed
  • OR gfs2-kmp-default-4.12.14-120 is installed
  • OR ocfs2-kmp-default-4.12.14-120 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-38.13 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-38.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_43-52_6-default-1-2.3 is installed
  • OR kgraft-patch-3_12_43-52_6-xen-1-2.3 is installed
  • OR kgraft-patch-SLE12_Update_5-1-2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • freeradius-server-3.0.16-3.3 is installed
  • OR freeradius-server-devel-3.0.16-3.3 is installed
  • OR freeradius-server-krb5-3.0.16-3.3 is installed
  • OR freeradius-server-ldap-3.0.16-3.3 is installed
  • OR freeradius-server-libs-3.0.16-3.3 is installed
  • OR freeradius-server-mysql-3.0.16-3.3 is installed
  • OR freeradius-server-perl-3.0.16-3.3 is installed
  • OR freeradius-server-postgresql-3.0.16-3.3 is installed
  • OR freeradius-server-python-3.0.16-3.3 is installed
  • OR freeradius-server-sqlite-3.0.16-3.3 is installed
  • OR freeradius-server-utils-3.0.16-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.25-30.39 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.25-30.39 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.25-30.39 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.25-30.39 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND aaa_base-11-6.65.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND LibVNCServer-0.9.1-154.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3-LTSS is installed
  • AND Package Information
  • MozillaFirefox-45.3.0esr-50.1 is installed
  • OR MozillaFirefox-translations-45.3.0esr-50.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND tcpdump-4.5.1-4.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libgoa-1_0-0-3.10.5-1 is installed
  • OR libgoa-backend-1_0-1-3.10.5-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND coolkey-1.1.0-147 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND binutils-2.26.1-9.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND cifs-utils-6.5-9.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_60-52_54-default-2-2.2 is installed
  • OR kgraft-patch-3_12_60-52_54-xen-2-2.2 is installed
  • OR kgraft-patch-SLE12_Update_15-2-2.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • python2-salt-2019.2.0-5.67 is installed
  • OR python3-salt-2019.2.0-5.67 is installed
  • OR salt-2019.2.0-5.67 is installed
  • OR salt-api-2019.2.0-5.67 is installed
  • OR salt-bash-completion-2019.2.0-5.67 is installed
  • OR salt-cloud-2019.2.0-5.67 is installed
  • OR salt-doc-2019.2.0-5.67 is installed
  • OR salt-fish-completion-2019.2.0-5.67 is installed
  • OR salt-master-2019.2.0-5.67 is installed
  • OR salt-minion-2019.2.0-5.67 is installed
  • OR salt-proxy-2019.2.0-5.67 is installed
  • OR salt-ssh-2019.2.0-5.67 is installed
  • OR salt-standalone-formulas-configuration-2019.2.0-5.67 is installed
  • OR salt-syndic-2019.2.0-5.67 is installed
  • OR salt-zsh-completion-2019.2.0-5.67 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
  • AND java-1_7_0-ibm-devel-1.7.0_sr8.0-0.5.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND Package Information
  • xen-4.4.3_02-26.2 is installed
  • OR xen-devel-4.4.3_02-26.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND freeradius-server-devel-3.0.3-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-8 is installed
  • OR ImageMagick-devel-6.8.8.1-8 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-8 is installed
  • OR libMagick++-devel-6.8.8.1-8 is installed
  • OR perl-PerlMagick-6.8.8.1-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND LibVNCServer-devel-0.9.9-16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND enigmail-2.0.9-3.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • dia-0.97.3-4.3 is installed
  • OR dia-lang-0.97.3-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
  • AND Package Information
  • LibVNCServer-0.9.10-4.22 is installed
  • OR libvncclient0-0.9.10-4.22 is installed
  • OR libvncserver0-0.9.10-4.22 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 is installed
  • AND Package Information
  • chromedriver-53.0.2785.89-96 is installed
  • OR chromium-53.0.2785.89-96 is installed
  • OR chromium-desktop-gnome-53.0.2785.89-96 is installed
  • OR chromium-desktop-kde-53.0.2785.89-96 is installed
  • OR chromium-ffmpegsumo-53.0.2785.89-96 is installed
    • BACK