OVAL Reference oval:org.opensuse.security:def:4815

Oval Definition:

oval:org.opensuse.security:def:4815

Revision Date:	2020-12-02	Version:	1
Title:	Security update for openwsman (Important)
Description:	This update for openwsman fixes the following issues: Security issues fixed: - CVE-2019-3816: Fixed a vulnerability in openwsmand deamon which could lead to arbitary file disclosure (bsc#1122623). - CVE-2019-3833: Fixed a vulnerability in process_connection() which could allow an attacker to trigger an infinite loop which leads to Denial of Service (bsc#1122623). Other issues addressed: - Added OpenSSL 1.1 compatibility - Compilation in debug mode fixed - Directory listing without authentication fixed (bsc#1092206).
Family:	unix	Class:	patch
Status:		Reference(s):	1051510 1065600 1065729 1071995 1083647 1085030 1092206 1109911 1111666 1113956 1114279 1118338 1120386 1122623 1128858 1129271 1129392 1132160 1132690 1134190 1134428 1135222 1136020 1136081 1137325 1138316 1140492 1140844 1140868 1141122 1141322 1142685 1145051 1145929 1148868 1149296 1149297 1149298 1149299 1149303 1149304 1150939 1152375 1152990 1152992 1152994 1152995 1157119 1157424 1158983 1159037 1159198 1159199 1160305 1160498 1160673 1160790 1160922 1160968 1161088 1161089 1161561 1161670 1161951 1162171 1162396 1163403 1163897 1164284 1164777 1164780 1164804 1164893 1165019 1165182 1165185 1165211 1165823 1165949 1166780 1166860 1166861 1166862 1166864 1166866 1166867 1166868 1166870 1166940 1166982 1167005 1167216 1167288 1167290 1167316 1167421 1167423 1167627 1167629 1168075 1168202 1168273 1168276 1168295 1168367 1168424 1168443 1168486 1168552 1168760 1168762 1168763 1168764 1168765 1168829 1168854 1168881 1168884 1168952 1169013 1169057 1169307 1169308 1169390 1169514 1169625 1173674 1174117 1174121 1174628 CVE-2007-4129 CVE-2008-4936 CVE-2012-6708 CVE-2014-3248 CVE-2015-9251 CVE-2019-11068 CVE-2019-11709 CVE-2019-11710 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11714 CVE-2019-11715 CVE-2019-11716 CVE-2019-11717 CVE-2019-11719 CVE-2019-11720 CVE-2019-11721 CVE-2019-11723 CVE-2019-11724 CVE-2019-11725 CVE-2019-11727 CVE-2019-11728 CVE-2019-11729 CVE-2019-11730 CVE-2019-11739 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11752 CVE-2019-11755 CVE-2019-15845 CVE-2019-16201 CVE-2019-16254 CVE-2019-16255 CVE-2019-16785 CVE-2019-16786 CVE-2019-16789 CVE-2019-16792 CVE-2019-17015 CVE-2019-17016 CVE-2019-17017 CVE-2019-17021 CVE-2019-17022 CVE-2019-17024 CVE-2019-17026 CVE-2019-18904 CVE-2019-19770 CVE-2019-3701 CVE-2019-3816 CVE-2019-3833 CVE-2019-5419 CVE-2019-9458 CVE-2020-10942 CVE-2020-11494 CVE-2020-11669 CVE-2020-13934 CVE-2020-13935 CVE-2020-14344 CVE-2020-15503 CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2654 CVE-2020-2659 CVE-2020-8130 CVE-2020-8834 SUSE-SU-2019:0654-1 SUSE-SU-2019:1973-1 SUSE-SU-2019:2515-1 SUSE-SU-2020:0142-1 SUSE-SU-2020:0231-1 SUSE-SU-2020:0260-1 SUSE-SU-2020:0737-1 SUSE-SU-2020:1146-1 SUSE-SU-2020:2029-1 SUSE-SU-2020:2045-1 SUSE-SU-2020:2197-1 SUSE-SU-2020:3269-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 5	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information MozillaFirefox-10.0.11-0.3.1 is installed OR MozillaFirefox-translations-10.0.11-0.3.1 is installed OR libfreebl3-3.14-0.3.1 is installed OR libfreebl3-32bit-3.14-0.3.1 is installed OR mozilla-nss-3.14-0.3.1 is installed OR mozilla-nss-32bit-3.14-0.3.1 is installed OR mozilla-nss-tools-3.14-0.3.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND coolkey-1.1.0-147 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information accountsservice-0.6.35-3 is installed OR accountsservice-lang-0.6.35-3 is installed OR libaccountsservice0-0.6.35-3 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information cpio-2.11-29 is installed OR cpio-lang-2.11-29 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND groff-1.22.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information alsa-1.0.27.2-15 is installed OR libasound2-1.0.27.2-15 is installed OR libasound2-32bit-1.0.27.2-15 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 is installed AND Package Information ctdb-4.2.4-18.30.1 is installed OR samba-4.2.4-18.30.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP1 is installed AND Package Information ctdb-4.2.4-26.2 is installed OR samba-4.2.4-26.2 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND conntrack-tools-1.4.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information cluster-md-kmp-default-4.4.73-5 is installed OR dlm-kmp-default-4.4.73-5 is installed OR gfs2-kmp-default-4.4.73-5 is installed OR ocfs2-kmp-default-4.4.73-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP4 is installed AND fence-agents-4.2.1+git.1537269352.7b1fd536-1 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information apache-commons-daemon-1.0.15-6 is installed OR apache-commons-daemon-javadoc-1.0.15-6 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_36-38-default-3-2.1 is installed OR kgraft-patch-3_12_36-38-xen-3-2.1 is installed OR kgraft-patch-SLE12_Update_2-3-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libwsman-devel-2.6.7-3.3 is installed OR libwsman3-2.6.7-3.3 is installed OR openwsman-2.6.7-3.3 is installed OR openwsman-server-2.6.7-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information rmt-server-2.3.1-3.3 is installed OR rmt-server-config-2.3.1-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed AND Package Information dbus-1-1.8.22-24.19 is installed OR dbus-1-x11-1.8.22-24.19 is installed OR libdbus-1-3-1.8.22-24.19 is installed OR libdbus-1-3-32bit-1.8.22-24.19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information gpg2-2.0.9-25.33.27.1 is installed OR gpg2-lang-2.0.9-25.33.27.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND file-4.24-43.27.1 is installed OR file-32bit-4.24-43.27.1 is installed OR file-x86-4.24-43.27.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND file-4.24-43.27.1 is installed OR file-32bit-4.24-43.27.1 is installed OR file-x86-4.24-43.27.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information NetworkManager-0.7.1_git20090811-3.28.2 is installed OR NetworkManager-glib-0.7.1_git20090811-3.28.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information openvpn-2.3.2-11.1 is installed OR openvpn-auth-pam-plugin-2.3.2-11.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libtasn1-3.7-4 is installed OR libtasn1-6-3.7-4 is installed OR libtasn1-6-32bit-3.7-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_60-52_49-default-2-2.2 is installed OR kgraft-patch-3_12_60-52_49-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_14-2-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information tomcat-8.0.36-17 is installed OR tomcat-admin-webapps-8.0.36-17 is installed OR tomcat-docs-webapp-8.0.36-17 is installed OR tomcat-el-3_0-api-8.0.36-17 is installed OR tomcat-javadoc-8.0.36-17 is installed OR tomcat-jsp-2_3-api-8.0.36-17 is installed OR tomcat-lib-8.0.36-17 is installed OR tomcat-servlet-3_1-api-8.0.36-17 is installed OR tomcat-webapps-8.0.36-17 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information tomcat-9.0.36-3.65 is installed OR tomcat-admin-webapps-9.0.36-3.65 is installed OR tomcat-el-3_0-api-9.0.36-3.65 is installed OR tomcat-jsp-2_3-api-9.0.36-3.65 is installed OR tomcat-lib-9.0.36-3.65 is installed OR tomcat-servlet-4_0-api-9.0.36-3.65 is installed OR tomcat-webapps-9.0.36-3.65 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND libssh2-0.2-5.20.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information bsh2-2.0-318.1 is installed OR bsh2-classgen-2.0-318.1 is installed OR bsh2-javadoc-2.0-318.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND libdmx-devel-1.1.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND apache2-devel-2.4.16-5 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND MozillaFirefox-devel-45.4.0esr-81 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-68.4.1-3.66 is installed OR MozillaThunderbird-translations-common-68.4.1-3.66 is installed OR MozillaThunderbird-translations-other-68.4.1-3.66 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-68.1.1-3.51 is installed OR MozillaThunderbird-translations-common-68.1.1-3.51 is installed OR MozillaThunderbird-translations-other-68.1.1-3.51 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information libraw-0.18.9-3.11 is installed OR libraw-devel-0.18.9-3.11 is installed OR libraw16-0.18.9-3.11 is installed

BACK