Oval Definition:	oval:org.opensuse.security:def:4807
Revision Date: 2020-12-02 Version: 1 Title: Security update for shibboleth-sp (Moderate) Description: This update for shibboleth-sp fixes the following issues: Security issue fixed: - CVE-2019-19191: Fixed escalation to root by fixing ownership of log files (bsc#1157471). Family: unix Class: patch Status: Reference(s): 1051510 1071995 1094555 1111666 1112374 1114279 1125330 1128432 1134730 1134738 1135153 1135296 1135642 1136156 1136157 1136271 1136333 1137103 1137194 1137366 1137884 1137985 1138263 1138336 1138374 1138375 1138589 1138681 1138719 1138732 1141122 1148643 1153163 1153164 1157119 1157471 1160673 1160922 1163102 1163103 1163104 1163985 1166751 1168669 1168994 1171924 1172745 1173032 1173786 1173812 1174421 1174463 1174570 1177351 1177352 CVE-2008-5984 CVE-2009-0758 CVE-2010-2244 CVE-2011-1002 CVE-2014-3248 CVE-2018-16871 CVE-2018-18335 CVE-2018-18356 CVE-2018-18509 CVE-2019-12614 CVE-2019-12817 CVE-2019-15604 CVE-2019-15605 CVE-2019-15606 CVE-2019-17177 CVE-2019-17178 CVE-2019-18904 CVE-2019-19191 CVE-2019-5785 CVE-2020-0556 CVE-2020-10713 CVE-2020-12402 CVE-2020-14308 CVE-2020-14309 CVE-2020-14310 CVE-2020-14311 CVE-2020-15705 CVE-2020-15706 CVE-2020-15707 CVE-2020-1720 CVE-2020-7069 CVE-2020-7070 SUSE-SU-2019:0469-1 SUSE-SU-2019:1744-1 SUSE-SU-2019:3079-1 SUSE-SU-2019:3386-1 SUSE-SU-2020:0260-1 SUSE-SU-2020:0455-1 SUSE-SU-2020:0918-1 SUSE-SU-2020:1850-1 SUSE-SU-2020:2073-1 SUSE-SU-2020:2149-1 SUSE-SU-2020:2303-1 SUSE-SU-2020:2997-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 5 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information cups-1.3.9-8.46.48.1 is installed OR cups-client-1.3.9-8.46.48.1 is installed OR cups-libs-1.3.9-8.46.48.1 is installed OR cups-libs-32bit-1.3.9-8.46.48.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information avahi-0.6.31-20 is installed OR avahi-lang-0.6.31-20 is installed OR libavahi-client3-0.6.31-20 is installed OR libavahi-client3-32bit-0.6.31-20 is installed OR libavahi-common3-0.6.31-20 is installed OR libavahi-common3-32bit-0.6.31-20 is installed OR libavahi-core7-0.6.31-20 is installed OR libdns_sd-0.6.31-20 is installed OR libdns_sd-32bit-0.6.31-20 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-9 is installed OR aaa_base-extras-13.2+git20140911.61c1681-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND bogofilter-1.2.4-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information glibc-2.22-61 is installed OR glibc-32bit-2.22-61 is installed OR glibc-devel-2.22-61 is installed OR glibc-devel-32bit-2.22-61 is installed OR glibc-i18ndata-2.22-61 is installed OR glibc-locale-2.22-61 is installed OR glibc-locale-32bit-2.22-61 is installed OR nscd-2.22-61 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information ImageMagick-6.8.8.1-71.85 is installed OR libMagick++-6_Q16-3-6.8.8.1-71.85 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.85 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-71.85 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.85 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 is installed AND Package Information conntrack-tools-1.4.2-5.2 is installed OR libnetfilter_cthelper-1.0.0-7.1 is installed OR libnetfilter_cthelper0-1.0.0-7.1 is installed OR libnetfilter_cttimeout-1.0.0-9.1 is installed OR libnetfilter_cttimeout1-1.0.0-9.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP1 is installed AND Package Information ctdb-4.2.4-26.2 is installed OR samba-4.2.4-26.2 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND ctdb-4.4.2-29 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND libpcreposix0-8.39-7 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information MozillaFirefox-68.1.0-109.92 is installed OR MozillaFirefox-translations-common-68.1.0-109.92 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_60-52_54-default-1-2.3 is installed OR kgraft-patch-3_12_60-52_54-xen-1-2.3 is installed OR kgraft-patch-SLE12_Update_15-1-2.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libshibsp-lite7-2.6.1-3.3 is installed OR libshibsp7-2.6.1-3.3 is installed OR shibboleth-sp-2.6.1-3.3 is installed OR shibboleth-sp-devel-2.6.1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed AND Package Information bind-9.9.9P1-63.12 is installed OR bind-chrootenv-9.9.9P1-63.12 is installed OR bind-doc-9.9.9P1-63.12 is installed OR bind-libs-9.9.9P1-63.12 is installed OR bind-utils-9.9.9P1-63.12 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information g3utils-1.1.36-26.31 is installed OR mgetty-1.1.36-26.31 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND dhcpcd-3.2.3-45.5.3 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND dhcpcd-3.2.3-45.5.3 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information OpenEXR-1.6.1-83.17.1 is installed OR OpenEXR-32bit-1.6.1-83.17.1 is installed OR OpenEXR-x86-1.6.1-83.17.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information tigervnc-1.3.0-22.3 is installed OR xorg-x11-Xvnc-1.3.0-22.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libsmi-0.4.8-18 is installed OR libsmi2-0.4.8-18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information alsa-1.0.27.2-11 is installed OR alsa-docs-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_51-52_31-default-5-2.2 is installed OR kgraft-patch-3_12_51-52_31-xen-5-2.2 is installed OR kgraft-patch-SLE12_Update_9-5-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information libpcre1-8.39-5 is installed OR libpcre16-0-8.39-5 is installed OR pcre-8.39-5 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libfreebl3-3.53.1-3.45 is installed OR libfreebl3-32bit-3.53.1-3.45 is installed OR libfreebl3-hmac-3.53.1-3.45 is installed OR libfreebl3-hmac-32bit-3.53.1-3.45 is installed OR libsoftokn3-3.53.1-3.45 is installed OR libsoftokn3-32bit-3.53.1-3.45 is installed OR libsoftokn3-hmac-3.53.1-3.45 is installed OR libsoftokn3-hmac-32bit-3.53.1-3.45 is installed OR mozilla-nss-3.53.1-3.45 is installed OR mozilla-nss-32bit-3.53.1-3.45 is installed OR mozilla-nss-certs-3.53.1-3.45 is installed OR mozilla-nss-certs-32bit-3.53.1-3.45 is installed OR mozilla-nss-devel-3.53.1-3.45 is installed OR mozilla-nss-sysinit-3.53.1-3.45 is installed OR mozilla-nss-tools-3.53.1-3.45 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information libQtWebKit-devel-4.6.3-5.32.1 is installed OR libQtWebKit4-32bit-4.6.3-5.32.1 is installed OR libQtWebKit4-x86-4.6.3-5.32.1 is installed OR libqt4-devel-4.6.3-5.32.1 is installed OR libqt4-devel-doc-4.6.3-5.32.1 is installed OR libqt4-devel-doc-data-4.6.3-5.32.1 is installed OR libqt4-sql-mysql-32bit-4.6.3-5.32.1 is installed OR libqt4-sql-mysql-x86-4.6.3-5.32.1 is installed OR libqt4-sql-postgresql-4.6.3-5.32.1 is installed OR libqt4-sql-postgresql-32bit-4.6.3-5.32.1 is installed OR libqt4-sql-postgresql-x86-4.6.3-5.32.1 is installed OR libqt4-sql-sqlite-32bit-4.6.3-5.32.1 is installed OR libqt4-sql-sqlite-x86-4.6.3-5.32.1 is installed OR libqt4-sql-unixODBC-4.6.3-5.32.1 is installed OR libqt4-sql-unixODBC-32bit-4.6.3-5.32.1 is installed OR libqt4-sql-unixODBC-x86-4.6.3-5.32.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information bind-9.9.6P1-0.12.1 is installed OR bind-devel-9.9.6P1-0.12.1 is installed OR bind-devel-32bit-9.9.6P1-0.12.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information libapr1-1.5.1-2 is installed OR libapr1-devel-1.5.1-2 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information DirectFB-devel-1.7.1-4 is installed OR lib++dfb-devel-1.7.1-4 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND alsa-devel-1.0.27.2-11 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-60.5.1-3.24 is installed OR MozillaThunderbird-translations-common-60.5.1-3.24 is installed OR MozillaThunderbird-translations-other-60.5.1-3.24 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.7 is installed OR kernel-default-extra-4.12.14-197.7 is installed
BACK