OVAL Reference oval:org.opensuse.security:def:4950

Oval Definition:

oval:org.opensuse.security:def:4950

Revision Date:	2020-12-02	Version:	1
Title:	Security update for salt (Critical)
Description:	This update for salt fixes the following issues: - Properly validate eauth credentials and tokens on SSH calls made by Salt API (bsc#1178319, bsc#1178362, bsc#1178361, CVE-2020-25592, CVE-2020-17490, CVE-2020-16846) - Fix disk.blkid to avoid unexpected keyword argument '__pub_user'. (bsc#1177867) - Ensure virt.update stop_on_reboot is updated with its default value. - Do not break package building for systemd OSes. - Drop wrong mock from chroot unit test. - Support systemd versions with dot. (bsc#1176294) - Fix for grains.test_core unit test. - Fix file/directory user and group ownership containing UTF-8 characters. (bsc#1176024) - Several changes to virtualization: * Fix virt update when cpu and memory are changed. * Memory Tuning GSoC. * Properly fix memory setting regression in virt.update. * Expose libvirt on_reboot in virt states. - Support transactional systems (MicroOS). - zypperpkg module ignores retcode 104 for search(). (bsc#1159670) - Xen disk fixes. No longer generates volumes for Xen disks, but the corresponding file or block disk. (bsc#1175987) - Invalidate file list cache when cache file modified time is in the future. (bsc#1176397) - Prevent import errors when running test_btrfs unit tests.
Family:	unix	Class:	patch
Status:		Reference(s):	1051510 1054914 1055117 1061840 1065600 1065729 1071995 1082555 1104967 1109158 1113722 1114279 1119086 1123034 1125330 1127988 1129821 1130262 1130694 1131304 1133267 1134209 1135824 1137069 1137865 1137959 1140155 1140290 1140683 1141013 1142076 1142635 1146042 1146519 1146540 1146664 1148133 1148712 1148868 1149313 1149446 1149555 1149651 1150381 1150423 1151350 1151610 1151667 1151680 1151891 1151955 1152024 1152025 1152026 1152161 1152325 1152457 1152460 1152466 1152972 1152974 1152975 1158194 1159670 1171186 1172538 1174748 1175520 1175987 1176024 1176294 1176397 1176400 1176946 1177027 1177340 1177511 1177685 1177724 1177725 1177867 1178319 1178361 1178362 CVE-2006-4484 CVE-2008-3825 CVE-2009-0037 CVE-2009-1384 CVE-2009-2285 CVE-2009-2347 CVE-2009-2417 CVE-2010-2065 CVE-2010-2067 CVE-2010-2233 CVE-2010-2547 CVE-2010-4665 CVE-2011-0192 CVE-2011-1167 CVE-2012-1173 CVE-2012-2113 CVE-2012-2673 CVE-2012-3401 CVE-2012-4564 CVE-2013-0249 CVE-2013-1944 CVE-2013-1960 CVE-2013-1961 CVE-2013-2174 CVE-2013-4231 CVE-2013-4232 CVE-2013-4243 CVE-2013-4244 CVE-2013-4351 CVE-2013-4402 CVE-2013-4545 CVE-2014-0015 CVE-2014-0138 CVE-2014-0139 CVE-2014-0250 CVE-2014-0791 CVE-2014-3613 CVE-2014-3620 CVE-2014-4617 CVE-2017-18595 CVE-2018-18335 CVE-2018-18356 CVE-2018-18506 CVE-2018-18509 CVE-2018-18511 CVE-2019-11691 CVE-2019-11692 CVE-2019-11693 CVE-2019-11694 CVE-2019-11698 CVE-2019-13173 CVE-2019-14821 CVE-2019-15291 CVE-2019-19451 CVE-2019-5785 CVE-2019-5798 CVE-2019-7317 CVE-2019-9506 CVE-2019-9788 CVE-2019-9790 CVE-2019-9791 CVE-2019-9792 CVE-2019-9793 CVE-2019-9794 CVE-2019-9795 CVE-2019-9796 CVE-2019-9797 CVE-2019-9800 CVE-2019-9801 CVE-2019-9810 CVE-2019-9813 CVE-2019-9815 CVE-2019-9816 CVE-2019-9817 CVE-2019-9818 CVE-2019-9819 CVE-2019-9820 CVE-2020-12351 CVE-2020-12352 CVE-2020-12387 CVE-2020-12392 CVE-2020-12393 CVE-2020-12395 CVE-2020-12397 CVE-2020-16846 CVE-2020-17490 CVE-2020-25592 CVE-2020-25645 CVE-2020-6831 SUSE-SU-2019:0853-1 SUSE-SU-2019:1458-1 SUSE-SU-2019:2055-1 SUSE-SU-2019:2706-1 SUSE-SU-2019:3391-1 SUSE-SU-2020:1225-1 SUSE-SU-2020:2972-1 SUSE-SU-2020:3155-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for Rasperry Pi 12 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-24.7.0esr-0.8.2 is installed OR MozillaFirefox-translations-24.7.0esr-0.8.2 is installed OR libfreebl3-3.16.2-0.8.1 is installed OR libfreebl3-32bit-3.16.2-0.8.1 is installed OR libsoftokn3-3.16.2-0.8.1 is installed OR libsoftokn3-32bit-3.16.2-0.8.1 is installed OR mozilla-nss-3.16.2-0.8.1 is installed OR mozilla-nss-32bit-3.16.2-0.8.1 is installed OR mozilla-nss-tools-3.16.2-0.8.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information curl-7.37.0-2 is installed OR libcurl4-7.37.0-2 is installed OR libcurl4-32bit-7.37.0-2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information DirectFB-1.7.1-4 is installed OR lib++dfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-32bit-1.7.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information augeas-1.2.0-10 is installed OR augeas-lenses-1.2.0-10 is installed OR libaugeas0-1.2.0-10 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information file-5.19-9 is installed OR file-magic-5.19-9 is installed OR libmagic1-5.19-9 is installed OR libmagic1-32bit-5.19-9 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 is installed AND Package Information conntrack-tools-1.4.2-5.2 is installed OR libnetfilter_cthelper-1.0.0-7.1 is installed OR libnetfilter_cthelper0-1.0.0-7.1 is installed OR libnetfilter_cttimeout-1.0.0-9.1 is installed OR libnetfilter_cttimeout1-1.0.0-9.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP1 is installed AND Package Information libpcreposix0-8.39-5.1 is installed OR pcre-8.39-5.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND fence-agents-4.0.22+git.1455008135.15c5e92-8 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND ctdb-4.6.5+git.27.6afd48b1083-2 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP5 is installed AND haproxy-1.6.11-10 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND apache2-mod_perl-2.0.8-11 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_38-44-default-2-7.1 is installed OR kgraft-patch-3_12_38-44-xen-2-7.1 is installed OR kgraft-patch-SLE12_Update_3-2-7.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND portus-2.0.3-2.4 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information cups154-1.5.4-5.1 is installed OR cups154-client-1.5.4-5.1 is installed OR cups154-filters-1.5.4-5.1 is installed OR cups154-libs-1.5.4-5.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.32-33.1 is installed OR kernel-ec2-devel-3.12.32-33.1 is installed OR kernel-ec2-extra-3.12.32-33.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information salt-3000-4.20 is installed OR salt-api-3000-4.20 is installed OR salt-cloud-3000-4.20 is installed OR salt-fish-completion-3000-4.20 is installed OR salt-master-3000-4.20 is installed OR salt-proxy-3000-4.20 is installed OR salt-ssh-3000-4.20 is installed OR salt-standalone-formulas-configuration-3000-4.20 is installed OR salt-syndic-3000-4.20 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php7-7.0.7-20.1 is installed OR php7-7.0.7-20.1 is installed OR php7-bcmath-7.0.7-20.1 is installed OR php7-bz2-7.0.7-20.1 is installed OR php7-calendar-7.0.7-20.1 is installed OR php7-ctype-7.0.7-20.1 is installed OR php7-curl-7.0.7-20.1 is installed OR php7-dba-7.0.7-20.1 is installed OR php7-dom-7.0.7-20.1 is installed OR php7-enchant-7.0.7-20.1 is installed OR php7-exif-7.0.7-20.1 is installed OR php7-fastcgi-7.0.7-20.1 is installed OR php7-fileinfo-7.0.7-20.1 is installed OR php7-fpm-7.0.7-20.1 is installed OR php7-ftp-7.0.7-20.1 is installed OR php7-gd-7.0.7-20.1 is installed OR php7-gettext-7.0.7-20.1 is installed OR php7-gmp-7.0.7-20.1 is installed OR php7-iconv-7.0.7-20.1 is installed OR php7-imap-7.0.7-20.1 is installed OR php7-intl-7.0.7-20.1 is installed OR php7-json-7.0.7-20.1 is installed OR php7-ldap-7.0.7-20.1 is installed OR php7-mbstring-7.0.7-20.1 is installed OR php7-mcrypt-7.0.7-20.1 is installed OR php7-mysql-7.0.7-20.1 is installed OR php7-odbc-7.0.7-20.1 is installed OR php7-opcache-7.0.7-20.1 is installed OR php7-openssl-7.0.7-20.1 is installed OR php7-pcntl-7.0.7-20.1 is installed OR php7-pdo-7.0.7-20.1 is installed OR php7-pear-7.0.7-20.1 is installed OR php7-pear-Archive_Tar-7.0.7-20.1 is installed OR php7-pgsql-7.0.7-20.1 is installed OR php7-phar-7.0.7-20.1 is installed OR php7-posix-7.0.7-20.1 is installed OR php7-pspell-7.0.7-20.1 is installed OR php7-shmop-7.0.7-20.1 is installed OR php7-snmp-7.0.7-20.1 is installed OR php7-soap-7.0.7-20.1 is installed OR php7-sockets-7.0.7-20.1 is installed OR php7-sqlite-7.0.7-20.1 is installed OR php7-sysvmsg-7.0.7-20.1 is installed OR php7-sysvsem-7.0.7-20.1 is installed OR php7-sysvshm-7.0.7-20.1 is installed OR php7-tokenizer-7.0.7-20.1 is installed OR php7-wddx-7.0.7-20.1 is installed OR php7-xmlreader-7.0.7-20.1 is installed OR php7-xmlrpc-7.0.7-20.1 is installed OR php7-xmlwriter-7.0.7-20.1 is installed OR php7-xsl-7.0.7-20.1 is installed OR php7-zip-7.0.7-20.1 is installed OR php7-zlib-7.0.7-20.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs8-8.15.1-3.17 is installed OR nodejs8-devel-8.15.1-3.17 is installed OR nodejs8-docs-8.15.1-3.17 is installed OR npm8-8.15.1-3.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2 is installed AND yast2-2.17.119-0.5.25 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND libmysql55client18-5.5.46-0.14.1 is installed OR libmysql55client18-32bit-5.5.46-0.14.1 is installed OR libmysql55client18-x86-5.5.46-0.14.1 is installed OR libmysql55client_r18-5.5.46-0.14.1 is installed OR mysql-5.5.46-0.14.1 is installed OR mysql-client-5.5.46-0.14.1 is installed OR mysql-tools-5.5.46-0.14.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND libmysql55client18-5.5.46-0.14.1 is installed OR libmysql55client18-32bit-5.5.46-0.14.1 is installed OR libmysql55client18-x86-5.5.46-0.14.1 is installed OR libmysql55client_r18-5.5.46-0.14.1 is installed OR mysql-5.5.46-0.14.1 is installed OR mysql-client-5.5.46-0.14.1 is installed OR mysql-tools-5.5.46-0.14.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information cvs-1.12.12-144.23.5.1 is installed OR cvs-doc-1.12.12-144.23.5.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information MozillaFirefox-31.7.0esr-0.8.1 is installed OR MozillaFirefox-translations-31.7.0esr-0.8.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information ImageMagick-6.8.8.1-8.2 is installed OR libMagickCore-6_Q16-1-6.8.8.1-8.2 is installed OR libMagickWand-6_Q16-1-6.8.8.1-8.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information bind-9.9.6P1-32.1 is installed OR bind-chrootenv-9.9.6P1-32.1 is installed OR bind-doc-9.9.6P1-32.1 is installed OR bind-libs-9.9.6P1-32.1 is installed OR bind-libs-32bit-9.9.6P1-32.1 is installed OR bind-utils-9.9.6P1-32.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information cracklib-2.9.0-7 is installed OR libcrack2-2.9.0-7 is installed OR libcrack2-32bit-2.9.0-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_51-52_39-default-4-2.2 is installed OR kgraft-patch-3_12_51-52_39-xen-4-2.2 is installed OR kgraft-patch-SLE12_Update_11-4-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND gd-2.1.0-20 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information bind-9.9.6P1-0.15.1 is installed OR bind-devel-9.9.6P1-0.15.1 is installed OR bind-devel-32bit-9.9.6P1-0.15.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information gimp-devel-2.8.10-1 is installed OR libgimp-2_0-0-2.8.10-1 is installed OR libgimpui-2_0-0-2.8.10-1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND alsa-devel-1.0.27.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND bind-devel-9.9.9P1-62 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information libreoffice-4.3.5.2-10.1 is installed OR libreoffice-base-4.3.5.2-10.1 is installed OR libreoffice-base-drivers-mysql-4.3.5.2-10.1 is installed OR libreoffice-base-drivers-postgresql-4.3.5.2-10.1 is installed OR libreoffice-calc-4.3.5.2-10.1 is installed OR libreoffice-calc-extensions-4.3.5.2-10.1 is installed OR libreoffice-draw-4.3.5.2-10.1 is installed OR libreoffice-filters-optional-4.3.5.2-10.1 is installed OR libreoffice-gnome-4.3.5.2-10.1 is installed OR libreoffice-icon-theme-tango-4.3.5.2-10.1 is installed OR libreoffice-impress-4.3.5.2-10.1 is installed OR libreoffice-l10n-af-4.3.5.2-10.1 is installed OR libreoffice-l10n-ar-4.3.5.2-10.1 is installed OR libreoffice-l10n-ca-4.3.5.2-10.1 is installed OR libreoffice-l10n-cs-4.3.5.2-10.1 is installed OR libreoffice-l10n-da-4.3.5.2-10.1 is installed OR libreoffice-l10n-de-4.3.5.2-10.1 is installed OR libreoffice-l10n-en-4.3.5.2-10.1 is installed OR libreoffice-l10n-es-4.3.5.2-10.1 is installed OR libreoffice-l10n-fi-4.3.5.2-10.1 is installed OR libreoffice-l10n-fr-4.3.5.2-10.1 is installed OR libreoffice-l10n-gu-4.3.5.2-10.1 is installed OR libreoffice-l10n-hi-4.3.5.2-10.1 is installed OR libreoffice-l10n-hu-4.3.5.2-10.1 is installed OR libreoffice-l10n-it-4.3.5.2-10.1 is installed OR libreoffice-l10n-ja-4.3.5.2-10.1 is installed OR libreoffice-l10n-ko-4.3.5.2-10.1 is installed OR libreoffice-l10n-nb-4.3.5.2-10.1 is installed OR libreoffice-l10n-nl-4.3.5.2-10.1 is installed OR libreoffice-l10n-nn-4.3.5.2-10.1 is installed OR libreoffice-l10n-pl-4.3.5.2-10.1 is installed OR libreoffice-l10n-pt-BR-4.3.5.2-10.1 is installed OR libreoffice-l10n-pt-PT-4.3.5.2-10.1 is installed OR libreoffice-l10n-ru-4.3.5.2-10.1 is installed OR libreoffice-l10n-sk-4.3.5.2-10.1 is installed OR libreoffice-l10n-sv-4.3.5.2-10.1 is installed OR libreoffice-l10n-xh-4.3.5.2-10.1 is installed OR libreoffice-l10n-zh-Hans-4.3.5.2-10.1 is installed OR libreoffice-l10n-zh-Hant-4.3.5.2-10.1 is installed OR libreoffice-l10n-zu-4.3.5.2-10.1 is installed OR libreoffice-mailmerge-4.3.5.2-10.1 is installed OR libreoffice-math-4.3.5.2-10.1 is installed OR libreoffice-officebean-4.3.5.2-10.1 is installed OR libreoffice-pyuno-4.3.5.2-10.1 is installed OR libreoffice-writer-4.3.5.2-10.1 is installed OR libreoffice-writer-extensions-4.3.5.2-10.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-150.38 is installed OR kernel-default-extra-4.12.14-150.38 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-60.7.0-3.33 is installed OR MozillaThunderbird-translations-common-60.7.0-3.33 is installed OR MozillaThunderbird-translations-other-60.7.0-3.33 is installed

BACK