Oval Definition:	oval:org.opensuse.security:def:4906
Revision Date: 2020-12-02 Version: 1 Title: Security update for salt (Critical) Description: This update for salt fixes the following issues: - Avoid regression on 'salt-master': set passphrase for salt-ssh keys to empty string (bsc#1178485) - Properly validate eauth credentials and tokens on SSH calls made by Salt API (bsc#1178319, bsc#1178362, bsc#1178361, CVE-2020-25592, CVE-2020-17490, CVE-2020-16846) - Fix disk.blkid to avoid unexpected keyword argument '__pub_user'. (bsc#1177867) - Ensure virt.update stop_on_reboot is updated with its default value. - Do not break package building for systemd OSes. - Drop wrong mock from chroot unit test. - Support systemd versions with dot. (bsc#1176294) - Fix for grains.test_core unit test. - Fix file/directory user and group ownership containing UTF-8 characters. (bsc#1176024) - Several changes to virtualization: * Fix virt update when cpu and memory are changed. * Memory Tuning GSoC. * Properly fix memory setting regression in virt.update. * Expose libvirt on_reboot in virt states. - Support transactional systems (MicroOS). - zypperpkg module ignores retcode 104 for search(). (bsc#1159670) - Xen disk fixes. No longer generates volumes for Xen disks, but the corresponding file or block disk. (bsc#1175987) - Invalidate file list cache when cache file modified time is in the future. (bsc#1176397) - Prevent import errors when running test_btrfs unit tests Family: unix Class: patch Status: Reference(s): 1047238 1050305 1050549 1050911 1051510 1052904 1053043 1054914 1055117 1055121 1055186 1056686 1058115 1060662 1061840 1061843 1064597 1064701 1065600 1065729 1066369 1070872 1071009 1071306 1076907 1078248 1082555 1082635 1083647 1085030 1085535 1085536 1085539 1085780 1086103 1087092 1088263 1088804 1090734 1091171 1091376 1091606 1093205 1094244 1094779 1095601 1095639 1096360 1097583 1097584 1097585 1097586 1097587 1097588 1097975 1098891 1098998 1100079 1100081 1100082 1100132 1100780 1102097 1103200 1103206 1103259 1103990 1104353 1104427 1104745 1104876 1104902 1106061 1106284 1106434 1108382 1109837 1111331 1111666 1112128 1112178 1112374 1112894 1112899 1112902 1112903 1112905 1112906 1112907 1113399 1113722 1113994 1114279 1114542 1114638 1118689 1119086 1119113 1119680 1120046 1120318 1120876 1120902 1122767 1123105 1123959 1124370 1125342 1126221 1126356 1126704 1126740 1127175 1127371 1127372 1127374 1127378 1127445 1128415 1128544 1129276 1129424 1129519 1129664 1129770 1130130 1130154 1130195 1130335 1130336 1130337 1130338 1130425 1130427 1130518 1130527 1130567 1130694 1131062 1131107 1131167 1131168 1131169 1131170 1131171 1131172 1131173 1131174 1131175 1131176 1131177 1131178 1131179 1131180 1131281 1131290 1131335 1131336 1131416 1131427 1131442 1131467 1131489 1131565 1131574 1131587 1131659 1131673 1131847 1131848 1131851 1131900 1131934 1131935 1132083 1132219 1132226 1132227 1132365 1132368 1132369 1132370 1132372 1132373 1132384 1132397 1132402 1132403 1132404 1132405 1132407 1132411 1132412 1132413 1132414 1132426 1132527 1132531 1132555 1132558 1132561 1132562 1132563 1132564 1132570 1132571 1132572 1132589 1132618 1132681 1132726 1132828 1132943 1133005 1133021 1133094 1133095 1133115 1133149 1133267 1133486 1133529 1133584 1133667 1133668 1133672 1133674 1133675 1133698 1133702 1133731 1133769 1133772 1133774 1133778 1133779 1133780 1133825 1133850 1133851 1133852 1134291 1134476 1134881 1134882 1135219 1135642 1135824 1135897 1135990 1136039 1136261 1136346 1136349 1136352 1136496 1136498 1136502 1136666 1136682 1137322 1137323 1137884 1138099 1138100 1138539 1139020 1139021 1139101 1139500 1140012 1140426 1140487 1141340 1141450 1141543 1141554 1142019 1142076 1142109 1142117 1142118 1142119 1142496 1142541 1142635 1142685 1142701 1142857 1143300 1143331 1143466 1143706 1143738 1143765 1143841 1143843 1143962 1144123 1144333 1144375 1144474 1144518 1144582 1144718 1144813 1144880 1144886 1144912 1144920 1144979 1145010 1145018 1145051 1145059 1145189 1145235 1145256 1145300 1145302 1145357 1145388 1145389 1145390 1145391 1145392 1145393 1145394 1145395 1145396 1145397 1145408 1145409 1145446 1145661 1145678 1145687 1145920 1145922 1145934 1145937 1145940 1145941 1145942 1145946 1146074 1146084 1146141 1146163 1146215 1146285 1146346 1146351 1146352 1146361 1146368 1146376 1146378 1146381 1146391 1146399 1146413 1146425 1146516 1146519 1146524 1146526 1146529 1146531 1146543 1146547 1146550 1146575 1146589 1146678 1146938 1148031 1148032 1148033 1148034 1148035 1148093 1148133 1148192 1148196 1148198 1148202 1148219 1148297 1148303 1148308 1148363 1148379 1148394 1148527 1148570 1148574 1148616 1148617 1148619 1148698 1148859 1148868 1149053 1149083 1149104 1149105 1149106 1149197 1149214 1149224 1149325 1149376 1149413 1149418 1149424 1149522 1149527 1149539 1149552 1149591 1149602 1149612 1149626 1149652 1149713 1149940 1149976 1150025 1150033 1150112 1150562 1150727 1150860 1150861 1150933 1152148 1152472 1152489 1153274 1154353 1155518 1155798 1156395 1159670 1167527 1168669 1170232 1170774 1171000 1171068 1171073 1171558 1171688 1171742 1172419 1172757 1172873 1173017 1173032 1173060 1173115 1173267 1173746 1174029 1174110 1174111 1174358 1174484 1174486 1174899 1175263 1175667 1175718 1175749 1175787 1175882 1175952 1175987 1175996 1175997 1175998 1175999 1176000 1176001 1176019 1176022 1176024 1176038 1176063 1176137 1176235 1176236 1176237 1176242 1176278 1176294 1176357 1176358 1176359 1176360 1176361 1176362 1176363 1176364 1176365 1176366 1176367 1176381 1176397 1176423 1176449 1176482 1176486 1176507 1176536 1176537 1176538 1176539 1176540 1176541 1176542 1176544 1176545 1176546 1176548 1176558 1176559 1176587 1176588 1176659 1176698 1176699 1176700 1176721 1176722 1176725 1176732 1176763 1176775 1176788 1176789 1176833 1176869 1176877 1176925 1176962 1176980 1176990 1177021 1177030 1177867 1178319 1178361 1178362 1178485 CVE-2009-0316 CVE-2009-0945 CVE-2010-0405 CVE-2010-1205 CVE-2011-1946 CVE-2011-2501 CVE-2011-2721 CVE-2011-3026 CVE-2011-3045 CVE-2011-3048 CVE-2011-3193 CVE-2011-3627 CVE-2011-3922 CVE-2012-1457 CVE-2012-1458 CVE-2012-1459 CVE-2012-3386 CVE-2012-4929 CVE-2012-6093 CVE-2013-0254 CVE-2013-2132 CVE-2013-4549 CVE-2013-7353 CVE-2013-7354 CVE-2014-0190 CVE-2017-18551 CVE-2018-10583 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-12359 CVE-2018-12360 CVE-2018-12362 CVE-2018-12363 CVE-2018-12364 CVE-2018-12365 CVE-2018-12366 CVE-2018-12372 CVE-2018-12373 CVE-2018-12374 CVE-2018-16880 CVE-2018-18511 CVE-2018-20976 CVE-2018-21008 CVE-2018-5188 CVE-2018-5804 CVE-2018-5813 CVE-2018-5815 CVE-2018-5816 CVE-2019-10207 CVE-2019-11091 CVE-2019-11691 CVE-2019-11692 CVE-2019-11693 CVE-2019-11694 CVE-2019-11698 CVE-2019-14814 CVE-2019-14815 CVE-2019-14816 CVE-2019-14835 CVE-2019-15030 CVE-2019-15031 CVE-2019-15090 CVE-2019-15098 CVE-2019-15099 CVE-2019-15117 CVE-2019-15118 CVE-2019-15211 CVE-2019-15212 CVE-2019-15214 CVE-2019-15215 CVE-2019-15216 CVE-2019-15217 CVE-2019-15218 CVE-2019-15219 CVE-2019-15220 CVE-2019-15221 CVE-2019-15222 CVE-2019-15239 CVE-2019-15290 CVE-2019-15292 CVE-2019-15538 CVE-2019-15666 CVE-2019-15902 CVE-2019-15917 CVE-2019-15919 CVE-2019-15920 CVE-2019-15921 CVE-2019-15924 CVE-2019-15926 CVE-2019-15927 CVE-2019-3882 CVE-2019-5798 CVE-2019-7317 CVE-2019-9003 CVE-2019-9456 CVE-2019-9500 CVE-2019-9503 CVE-2019-9797 CVE-2019-9800 CVE-2019-9815 CVE-2019-9816 CVE-2019-9817 CVE-2019-9818 CVE-2019-9819 CVE-2019-9820 CVE-2020-0404 CVE-2020-0427 CVE-2020-0431 CVE-2020-0432 CVE-2020-12402 CVE-2020-14385 CVE-2020-14390 CVE-2020-16846 CVE-2020-17490 CVE-2020-25212 CVE-2020-25284 CVE-2020-25592 CVE-2020-26088 SUSE-SU-2018:2174-1 SUSE-SU-2018:3683-1 SUSE-SU-2019:0005-1 SUSE-SU-2019:1458-1 SUSE-SU-2019:2424-1 SUSE-SU-2020:1850-1 SUSE-SU-2020:2879-1 SUSE-SU-2020:3243-1 Platform(s): SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for Rasperry Pi 12 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 5 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND python-pymongo-2.6.3-2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-38.5.0esr-28.2 is installed OR MozillaFirefox-translations-38.5.0esr-28.2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND clamav-0.98.4-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND cifs-utils-6.4-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information ImageMagick-6.8.8.1-33 is installed OR libMagick++-6_Q16-3-6.8.8.1-33 is installed OR libMagickCore-6_Q16-1-6.8.8.1-33 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-33 is installed OR libMagickWand-6_Q16-1-6.8.8.1-33 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information bind-utils-9.11.2-1 is installed OR libbind9-160-9.11.2-1 is installed OR libdns169-9.11.2-1 is installed OR libirs160-9.11.2-1 is installed OR libisc166-9.11.2-1 is installed OR libisc166-32bit-9.11.2-1 is installed OR libisccc160-9.11.2-1 is installed OR libisccfg160-9.11.2-1 is installed OR liblwres160-9.11.2-1 is installed OR python-bind-9.11.2-1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 is installed AND Package Information conntrack-tools-1.4.2-5.2 is installed OR libnetfilter_cthelper-1.0.0-7.1 is installed OR libnetfilter_cthelper0-1.0.0-7.1 is installed OR libnetfilter_cttimeout-1.0.0-9.1 is installed OR libnetfilter_cttimeout1-1.0.0-9.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP1 is installed AND hawk2-1.0.1+git.1456406635.49e230d-12.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND Package Information libpcreposix0-8.39-5.1 is installed OR pcre-8.39-5.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information libpacemaker3-1.1.16-4 is installed OR pacemaker-1.1.16-4 is installed OR pacemaker-cli-1.1.16-4 is installed OR pacemaker-cts-1.1.16-4 is installed OR pacemaker-remote-1.1.16-4 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND Package Information cluster-md-kmp-default-4.12.14-94.41 is installed OR dlm-kmp-default-4.12.14-94.41 is installed OR gfs2-kmp-default-4.12.14-94.41 is installed OR ocfs2-kmp-default-4.12.14-94.41 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP5 is installed AND fence-agents-4.4.0+git.1558595666.5f79f9e9-3.8 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_43-52_6-default-1-2.3 is installed OR kgraft-patch-3_12_43-52_6-xen-1-2.3 is installed OR kgraft-patch-SLE12_Update_5-1-2.3 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_73-5-default-2-2.3.2 is installed OR kgraft-patch-SLE12-SP3_Update_0-2-2.3.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 12 is installed AND python-setuptools-1.1.7-7.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information java-1_6_0-ibm-1.6.0_sr16.2-8.1 is installed OR java-1_6_0-ibm-fonts-1.6.0_sr16.2-8.1 is installed OR java-1_6_0-ibm-jdbc-1.6.0_sr16.2-8.1 is installed OR java-1_6_0-ibm-plugin-1.6.0_sr16.2-8.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.59-60.45.2 is installed OR kernel-ec2-devel-3.12.59-60.45.2 is installed OR kernel-ec2-extra-3.12.59-60.45.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information salt-3000-6.51 is installed OR salt-api-3000-6.51 is installed OR salt-cloud-3000-6.51 is installed OR salt-fish-completion-3000-6.51 is installed OR salt-master-3000-6.51 is installed OR salt-proxy-3000-6.51 is installed OR salt-ssh-3000-6.51 is installed OR salt-standalone-formulas-configuration-3000-6.51 is installed OR salt-syndic-3000-6.51 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information libfreebl3-hmac-3.53.1-3.45 is installed OR libsoftokn3-hmac-3.53.1-3.45 is installed OR mozilla-nss-3.53.1-3.45 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed AND ucode-intel-20190312-13.38 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information perl-5.10.0-64.55.1 is installed OR perl-32bit-5.10.0-64.55.1 is installed OR perl-base-5.10.0-64.55.1 is installed OR perl-doc-5.10.0-64.55.1 is installed OR perl-x86-5.10.0-64.55.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND libjasper-1.900.1-134.13.1 is installed OR libjasper-32bit-1.900.1-134.13.1 is installed OR libjasper-x86-1.900.1-134.13.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND libjasper-1.900.1-134.13.1 is installed OR libjasper-32bit-1.900.1-134.13.1 is installed OR libjasper-x86-1.900.1-134.13.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND NetworkManager-gnome-0.7.1-5.22.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND mailx-12.5-22.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND wpa_supplicant-2.2-8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND binutils-2.26.1-9.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache-commons-daemon-1.0.15-6 is installed OR apache-commons-daemon-javadoc-1.0.15-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information libgudev-1_0-0-210-70.58.1 is installed OR libgudev-1_0-0-32bit-210-70.58.1 is installed OR libudev1-210-70.58.1 is installed OR libudev1-32bit-210-70.58.1 is installed OR systemd-210-70.58.1 is installed OR systemd-32bit-210-70.58.1 is installed OR systemd-bash-completion-210-70.58.1 is installed OR systemd-sysvinit-210-70.58.1 is installed OR udev-210-70.58.1 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information libdcerpc-atsvc0-4.2.4-28.3 is installed OR samba-4.2.4-28.3 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND xen-devel-4.2.3_08-0.7.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information libmysql55client_r18-32bit-5.5.46-0.14.1 is installed OR libmysql55client_r18-x86-5.5.46-0.14.1 is installed OR mysql-5.5.46-0.14.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND xorg-x11-server-sdk-7.6_1.15.2-12 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information ImageMagick-6.8.8.1-8 is installed OR ImageMagick-devel-6.8.8.1-8 is installed OR libMagick++-6_Q16-3-6.8.8.1-8 is installed OR libMagick++-devel-6.8.8.1-8 is installed OR perl-PerlMagick-6.8.8.1-8 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information DirectFB-devel-1.7.1-6 is installed OR lib++dfb-devel-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information DirectFB-devel-1.7.1-6 is installed OR lib++dfb-devel-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information flash-player-11.2.202.425-19.1 is installed OR flash-player-gnome-11.2.202.425-19.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-52.9.1-3.7 is installed OR MozillaThunderbird-devel-52.9.1-3.7 is installed OR MozillaThunderbird-translations-common-52.9.1-3.7 is installed OR MozillaThunderbird-translations-other-52.9.1-3.7 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.18 is installed OR kernel-default-extra-4.12.14-197.18 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information kernel-default-5.3.18-24.24 is installed OR kernel-default-extra-5.3.18-24.24 is installed
BACK