Oval Definition:	oval:org.opensuse.security:def:4794
Revision Date: 2020-12-02 Version: 1 Title: Security update for nginx (Moderate) Description: This update for nginx fixes the following issues: Security issues fixed: - CVE-2019-9511: Fixed a denial of service by manipulating the window size and stream prioritization (bsc#1145579). - CVE-2019-9513: Fixed a denial of service caused by resource loops (bsc#1145580). - CVE-2019-9516: Fixed a denial of service caused by header leaks (bsc#1145582). Family: unix Class: patch Status: Reference(s): 1050244 1051510 1051858 1058115 1061840 1065600 1065729 1071995 1073627 1085030 1086301 1086313 1086314 1089811 1089895 1092206 1098447 1098649 1109911 1114279 1116451 1118338 1120386 1121874 1122623 1123131 1123455 1124062 1124869 1125330 1127760 1127857 1128845 1129821 1130262 1134157 1134853 1134973 1135189 1135228 1143463 1143777 1143817 1143818 1143819 1143820 1143821 1143823 1143824 1143825 1143827 1143828 1143830 1143831 1143959 1144333 1145579 1145580 1145582 1151178 1151910 1151927 1153917 1154243 1154824 1156286 1157155 1157157 1157692 1158013 1158021 1158026 1158265 1158819 1159028 1159198 1159271 1159285 1159394 1159483 1159484 1159569 1159588 1159841 1159908 1159909 1159910 1159911 1159955 1160195 1160210 1160211 1160218 1160433 1160442 1160476 1160560 1160755 1160756 1160784 1160787 1160802 1160803 1160804 1160917 1160966 1161087 1161514 1161518 1161522 1161523 1161549 1161552 1161555 1161674 1161931 1161933 1161934 1161935 1161936 1161937 1161951 1162067 1162109 1162139 1162198 1162928 1162929 1162931 1163971 1164051 1164069 1164078 1164705 1164712 1164727 1164728 1164729 1164730 1164731 1164732 1164733 1164734 1164735 1164871 1165111 1165741 1165873 1165881 1165984 1165985 1166969 1167209 1167421 1167423 1167629 1168075 1168276 1168295 1168424 1168670 1168829 1168854 1168994 1169390 1169514 1169625 1170056 1170345 1170617 1170618 1170621 1170778 1170901 1171098 1171189 1171191 1171195 1171202 1171205 1171217 1171218 1171219 1171220 1171689 1171982 1171983 1172221 1172317 1172453 1172458 1173274 1173376 1173377 1173378 1173380 1173812 1174463 1174570 1176590 CVE-2012-0804 CVE-2013-0221 CVE-2013-0222 CVE-2013-0223 CVE-2014-3555 CVE-2014-6414 CVE-2014-7821 CVE-2014-8153 CVE-2017-17789 CVE-2018-1000199 CVE-2018-16858 CVE-2018-18335 CVE-2018-18356 CVE-2018-18506 CVE-2018-18509 CVE-2019-11059 CVE-2019-11690 CVE-2019-13103 CVE-2019-14192 CVE-2019-14193 CVE-2019-14194 CVE-2019-14195 CVE-2019-14196 CVE-2019-14197 CVE-2019-14198 CVE-2019-14199 CVE-2019-14200 CVE-2019-14201 CVE-2019-14202 CVE-2019-14203 CVE-2019-14204 CVE-2019-14615 CVE-2019-14896 CVE-2019-14897 CVE-2019-16239 CVE-2019-16994 CVE-2019-19036 CVE-2019-19045 CVE-2019-19054 CVE-2019-19318 CVE-2019-19319 CVE-2019-19447 CVE-2019-19462 CVE-2019-19768 CVE-2019-19770 CVE-2019-19965 CVE-2019-19966 CVE-2019-20054 CVE-2019-20095 CVE-2019-20096 CVE-2019-20810 CVE-2019-20812 CVE-2019-3701 CVE-2019-3816 CVE-2019-3833 CVE-2019-5785 CVE-2019-9455 CVE-2019-9458 CVE-2019-9511 CVE-2019-9513 CVE-2019-9516 CVE-2019-9788 CVE-2019-9790 CVE-2019-9791 CVE-2019-9792 CVE-2019-9793 CVE-2019-9794 CVE-2019-9795 CVE-2019-9796 CVE-2019-9801 CVE-2019-9810 CVE-2019-9813 CVE-2020-0543 CVE-2020-10648 CVE-2020-10690 CVE-2020-10711 CVE-2020-10713 CVE-2020-10720 CVE-2020-10732 CVE-2020-10751 CVE-2020-10757 CVE-2020-10942 CVE-2020-11494 CVE-2020-11608 CVE-2020-11609 CVE-2020-11669 CVE-2020-12114 CVE-2020-12464 CVE-2020-12652 CVE-2020-12653 CVE-2020-12654 CVE-2020-12655 CVE-2020-12656 CVE-2020-12657 CVE-2020-12769 CVE-2020-13143 CVE-2020-14308 CVE-2020-14309 CVE-2020-14310 CVE-2020-14311 CVE-2020-14374 CVE-2020-14375 CVE-2020-14376 CVE-2020-14377 CVE-2020-14378 CVE-2020-14422 CVE-2020-15563 CVE-2020-15565 CVE-2020-15566 CVE-2020-15567 CVE-2020-15706 CVE-2020-15707 CVE-2020-2732 CVE-2020-7053 CVE-2020-8428 CVE-2020-8432 CVE-2020-8647 CVE-2020-8648 CVE-2020-8649 CVE-2020-8834 CVE-2020-8992 CVE-2020-9383 SUSE-SU-2019:0654-1 SUSE-SU-2019:0853-1 SUSE-SU-2019:1894-1 SUSE-SU-2019:2559-1 SUSE-SU-2019:2737-1 SUSE-SU-2020:1663-1 SUSE-SU-2020:1822-1 SUSE-SU-2020:1888-1 SUSE-SU-2020:2073-1 SUSE-SU-2020:2604-1 SUSE-SU-2020:2767-1 SUSE-SU-2020:3283-1 Platform(s): SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 5 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information openstack-neutron-2014.2.2.dev26-3 is installed OR openstack-neutron-dhcp-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-ha-tool-2014.2.2.dev26-3 is installed OR openstack-neutron-l3-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-lbaas-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-linuxbridge-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-metadata-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-metering-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-openvswitch-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-vpn-agent-2014.2.2.dev26-3 is installed OR python-neutron-2014.2.2.dev26-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information coreutils-8.22-5 is installed OR coreutils-lang-8.22-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information avahi-0.6.31-20 is installed OR avahi-lang-0.6.31-20 is installed OR libavahi-client3-0.6.31-20 is installed OR libavahi-client3-32bit-0.6.31-20 is installed OR libavahi-common3-0.6.31-20 is installed OR libavahi-common3-32bit-0.6.31-20 is installed OR libavahi-core7-0.6.31-20 is installed OR libdns_sd-0.6.31-20 is installed OR libdns_sd-32bit-0.6.31-20 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information MozillaFirefox-45.4.0esr-81 is installed OR MozillaFirefox-translations-45.4.0esr-81 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information finch-2.12.0-1 is installed OR libpurple-2.12.0-1 is installed OR libpurple-branding-upstream-2.12.0-1 is installed OR libpurple-lang-2.12.0-1 is installed OR libpurple-plugin-sametime-2.12.0-1 is installed OR libpurple-tcl-2.12.0-1 is installed OR pidgin-2.12.0-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND clamav-0.100.2-33.18 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 is installed AND haproxy-1.5.4-2.4.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP1 is installed AND hawk2-1.0.1+git.1456406635.49e230d-12.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND fence-agents-4.0.22+git.1455008135.15c5e92-8 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP5 is installed AND conntrack-tools-1.4.2-5 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_48-52_27-default-1-2.6 is installed OR kgraft-patch-3_12_48-52_27-xen-1-2.6 is installed OR kgraft-patch-SLE12_Update_8-1-2.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND nginx-1.14.2-3.6 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed AND Package Information java-1_8_0-openjdk-1.8.0.212-27.32 is installed OR java-1_8_0-openjdk-demo-1.8.0.212-27.32 is installed OR java-1_8_0-openjdk-devel-1.8.0.212-27.32 is installed OR java-1_8_0-openjdk-headless-1.8.0.212-27.32 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND enscript-1.6.4-152.22.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND mono-core-2.6.7-0.13.1 is installed OR mono-data-2.6.7-0.13.1 is installed OR mono-data-postgresql-2.6.7-0.13.1 is installed OR mono-data-sqlite-2.6.7-0.13.1 is installed OR mono-locale-extras-2.6.7-0.13.1 is installed OR mono-nunit-2.6.7-0.13.1 is installed OR mono-web-2.6.7-0.13.1 is installed OR mono-winforms-2.6.7-0.13.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND mono-core-2.6.7-0.13.1 is installed OR mono-data-2.6.7-0.13.1 is installed OR mono-data-postgresql-2.6.7-0.13.1 is installed OR mono-data-sqlite-2.6.7-0.13.1 is installed OR mono-locale-extras-2.6.7-0.13.1 is installed OR mono-nunit-2.6.7-0.13.1 is installed OR mono-web-2.6.7-0.13.1 is installed OR mono-winforms-2.6.7-0.13.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information cups-1.3.9-8.46.46.1 is installed OR cups-client-1.3.9-8.46.46.1 is installed OR cups-libs-1.3.9-8.46.46.1 is installed OR cups-libs-32bit-1.3.9-8.46.46.1 is installed OR cups-libs-x86-1.3.9-8.46.46.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11-SECURITY is installed AND wget-openssl1-1.11.4-1.32.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information ImageMagick-6.8.8.1-8.2 is installed OR libMagickCore-6_Q16-1-6.8.8.1-8.2 is installed OR libMagickWand-6_Q16-1-6.8.8.1-8.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libpng12-0-1.2.50-8 is installed OR libpng12-0-32bit-1.2.50-8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-36 is installed OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND apache2-mod_nss-1.0.14-10.14.3 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information libpython3_4m1_0-3.4.5-19 is installed OR python3-3.4.5-19 is installed OR python3-base-3.4.5-19 is installed OR python3-curses-3.4.5-19 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information kernel-default-4.12.14-150.52 is installed OR kernel-default-base-4.12.14-150.52 is installed OR kernel-default-devel-4.12.14-150.52 is installed OR kernel-devel-4.12.14-150.52 is installed OR kernel-docs-4.12.14-150.52 is installed OR kernel-macros-4.12.14-150.52 is installed OR kernel-obs-build-4.12.14-150.52 is installed OR kernel-source-4.12.14-150.52 is installed OR kernel-syms-4.12.14-150.52 is installed OR kernel-vanilla-4.12.14-150.52 is installed OR kernel-vanilla-base-4.12.14-150.52 is installed OR reiserfs-kmp-default-4.12.14-150.52 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information libksba-1.0.4-1.20.1 is installed OR libksba-devel-1.0.4-1.20.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information MozillaFirefox-38.5.0esr-28.2 is installed OR MozillaFirefox-devel-38.5.0esr-28.2 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND libXi-devel-1.7.2-3 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND augeas-devel-1.2.0-3 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND LibVNCServer-devel-0.9.9-16 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information openconnect-7.08-6.3 is installed OR openconnect-devel-7.08-6.3 is installed OR openconnect-lang-7.08-6.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information libixion-0.14.1-4.3 is installed OR libixion-0_14-0-0.14.1-4.3 is installed OR liborcus-0.14.1-3.3 is installed OR liborcus-0_14-0-0.14.1-3.3 is installed OR liborcus-devel-0.14.1-3.3 is installed OR myspell-af_ZA-20190423-3.9 is installed OR myspell-ar-20190423-3.9 is installed OR myspell-bg_BG-20190423-3.9 is installed OR myspell-bn_BD-20190423-3.9 is installed OR myspell-br_FR-20190423-3.9 is installed OR myspell-ca-20190423-3.9 is installed OR myspell-cs_CZ-20190423-3.9 is installed OR myspell-da_DK-20190423-3.9 is installed OR myspell-dictionaries-20190423-3.9 is installed OR myspell-el_GR-20190423-3.9 is installed OR myspell-et_EE-20190423-3.9 is installed OR myspell-fr_FR-20190423-3.9 is installed OR myspell-gl-20190423-3.9 is installed OR myspell-gu_IN-20190423-3.9 is installed OR myspell-he_IL-20190423-3.9 is installed OR myspell-hi_IN-20190423-3.9 is installed OR myspell-hr_HR-20190423-3.9 is installed OR myspell-it_IT-20190423-3.9 is installed OR myspell-lt_LT-20190423-3.9 is installed OR myspell-lv_LV-20190423-3.9 is installed OR myspell-nl_NL-20190423-3.9 is installed OR myspell-nn_NO-20190423-3.9 is installed OR myspell-pl_PL-20190423-3.9 is installed OR myspell-pt_PT-20190423-3.9 is installed OR myspell-si_LK-20190423-3.9 is installed OR myspell-sk_SK-20190423-3.9 is installed OR myspell-sl_SI-20190423-3.9 is installed OR myspell-sr-20190423-3.9 is installed OR myspell-sv_SE-20190423-3.9 is installed OR myspell-te_IN-20190423-3.9 is installed OR myspell-th_TH-20190423-3.9 is installed OR myspell-tr_TR-20190423-3.9 is installed OR myspell-uk_UA-20190423-3.9 is installed OR myspell-zu_ZA-20190423-3.9 is installed
BACK