OVAL Reference oval:org.opensuse.security:def:50258

Oval Definition:

oval:org.opensuse.security:def:50258

Revision Date:	2020-12-01	Version:	1
Title:	Security update for git (Important)
Description:	This update for git to version 2.16.4 fixes several issues. These security issues were fixed: - CVE-2018-11233: Path sanity-checks on NTFS allowed attackers to read arbitrary memory (bsc#1095218) - CVE-2018-11235: Arbitrary code execution when recursively cloning a malicious repository (bsc#1095219)
Family:	unix	Class:	patch
Status:		Reference(s):	1065729 1082007 1082008 1082009 1082010 1082011 1082014 1082058 1087433 1087434 1087436 1087437 1087440 1087441 1095218 1095219 1097158 1101470 1112530 1112532 1120489 1130028 1130165 1130611 1130617 1130620 1130622 1130623 1130627 1132091 1133790 1135350 1139083 1139210 1140683 1141132 1141689 1146111 1146115 1146123 1148742 1154401 1156188 1171252 1171254 1172004 1172538 1173477 1174415 1174748 1175520 1176400 1176946 1177027 1177340 1177511 1177685 1177724 1177725 CVE-2017-17742 CVE-2017-18594 CVE-2017-18922 CVE-2018-0732 CVE-2018-1000073 CVE-2018-1000074 CVE-2018-1000075 CVE-2018-1000076 CVE-2018-1000077 CVE-2018-1000078 CVE-2018-1000079 CVE-2018-11233 CVE-2018-11235 CVE-2018-15173 CVE-2018-16395 CVE-2018-16396 CVE-2018-20217 CVE-2018-6914 CVE-2018-8777 CVE-2018-8778 CVE-2018-8779 CVE-2018-8780 CVE-2019-11023 CVE-2019-12900 CVE-2019-13508 CVE-2019-14809 CVE-2019-18804 CVE-2019-8320 CVE-2019-8321 CVE-2019-8322 CVE-2019-8323 CVE-2019-8324 CVE-2019-8325 CVE-2019-9512 CVE-2019-9514 CVE-2019-9755 CVE-2020-12351 CVE-2020-12352 CVE-2020-12653 CVE-2020-12654 CVE-2020-12693 CVE-2020-15900 CVE-2020-25645 SUSE-SU-2018:1872-1 SUSE-SU-2018:2956-1 SUSE-SU-2019:1001-1 SUSE-SU-2019:1267-3 SUSE-SU-2019:1804-1 SUSE-SU-2019:1846-1 SUSE-SU-2019:2214-1 SUSE-SU-2019:2425-2 SUSE-SU-2019:3033-1 SUSE-SU-2020:1873-1 SUSE-SU-2020:2972-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libproxy0-0.3.1-2.6 is installed OR libproxy0-32bit-0.3.1-2.6 is installed OR libproxy0-config-gnome-0.3.1-2.6 is installed OR libproxy0-config-gnome-32bit-0.3.1-2.6 is installed OR libproxy0-config-kde4-0.3.1-2.6 is installed OR libproxy0-networkmanager-0.3.1-2.6 is installed OR libproxy0-networkmanager-32bit-0.3.1-2.6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information compat-wireless-kmp-default-3.13_3.0.101_0.31-0.9 is installed OR compat-wireless-kmp-pae-3.13_3.0.101_0.31-0.9 is installed OR compat-wireless-kmp-xen-3.13_3.0.101_0.31-0.9 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information xorg-x11-libX11-7.4-5.11.15 is installed OR xorg-x11-libX11-32bit-7.4-5.11.15 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information file-5.19-2 is installed OR file-magic-5.19-2 is installed OR libmagic1-5.19-2 is installed OR libmagic1-32bit-5.19-2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information cups-filters-1.0.58-8 is installed OR cups-filters-cups-browsed-1.0.58-8 is installed OR cups-filters-foomatic-rip-1.0.58-8 is installed OR cups-filters-ghostscript-1.0.58-8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libIlmImf-Imf_2_1-21-2.1.0-4 is installed OR libIlmImf-Imf_2_1-21-32bit-2.1.0-4 is installed OR openexr-2.1.0-4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information augeas-1.2.0-15 is installed OR augeas-lenses-1.2.0-15 is installed OR libaugeas0-1.2.0-15 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information lcms2-2.7-9.7 is installed OR liblcms2-2-2.7-9.7 is installed OR liblcms2-2-32bit-2.7-9.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information graphviz-addons-2.40.1-6.3 is installed OR graphviz-gnome-2.40.1-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed AND Package Information LibVNCServer-0.9.10-4.19 is installed OR libvncserver0-0.9.10-4.19 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information git-2.16.4-3.3 is installed OR git-core-2.16.4-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.64 is installed OR reiserfs-kmp-default-4.12.14-197.64 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_18-default-6-2 is installed OR kernel-livepatch-SLE15-SP1_Update_5-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information libntfs-3g-devel-2016.2.22-3.3 is installed OR ntfs-3g_ntfsprogs-2016.2.22-3.3 is installed OR ntfsprogs-extra-2016.2.22-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information ruby2.5-2.5.5-4.3 is installed OR ruby2.5-doc-2.5.5-4.3 is installed OR ruby2.5-doc-ri-2.5.5-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information freetds-1.1.36-3.3 is installed OR freetds-config-1.1.36-3.3 is installed OR freetds-devel-1.1.36-3.3 is installed OR freetds-doc-1.1.36-3.3 is installed OR freetds-tools-1.1.36-3.3 is installed OR libsybdb5-1.1.36-3.3 is installed OR libtdsodbc0-1.1.36-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.8 is installed OR kernel-azure-base-4.12.14-5.8 is installed OR kernel-azure-devel-4.12.14-5.8 is installed OR kernel-devel-azure-4.12.14-5.8 is installed OR kernel-source-azure-4.12.14-5.8 is installed OR kernel-syms-azure-4.12.14-5.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information bind-9.11.2-12.11 is installed OR bind-chrootenv-9.11.2-12.11 is installed OR bind-doc-9.11.2-12.11 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information 389-ds-1.4.0.3-4.7 is installed OR 389-ds-devel-1.4.0.3-4.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information grub2-2.04-9.7 is installed OR grub2-x86_64-xen-2.04-9.7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND apache2-mod_nss-1.0.8-13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_66-default-5-2 is installed OR kgraft-patch-3_12_74-60_64_66-xen-5-2 is installed OR kgraft-patch-SLE12-SP1_Update_23-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information gnome-shell-3.20.4-70 is installed OR gnome-shell-browser-plugin-3.20.4-70 is installed OR gnome-shell-lang-3.20.4-70 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information gnutls-3.2.15-18.6 is installed OR libgnutls-openssl27-3.2.15-18.6 is installed OR libgnutls28-3.2.15-18.6 is installed OR libgnutls28-32bit-3.2.15-18.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_114-92_64-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_18-9-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information git-2.12.3-27.14 is installed OR git-core-2.12.3-27.14 is installed OR git-doc-2.12.3-27.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information gnutls-3.3.27-1 is installed OR libgnutls-openssl27-3.3.27-1 is installed OR libgnutls28-3.3.27-1 is installed OR libgnutls28-32bit-3.3.27-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_155-94_50-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_17-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information gnutls-3.3.27-3.3 is installed OR libgnutls-openssl27-3.3.27-3.3 is installed OR libgnutls28-3.3.27-3.3 is installed OR libgnutls28-32bit-3.3.27-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND ntp-4.2.8p15-4.10 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.1-3.49 is installed OR libwebkit2gtk-4_0-37-2.28.1-3.49 is installed OR libwebkit2gtk3-lang-2.28.1-3.49 is installed OR webkit2gtk-4_0-injected-bundles-2.28.1-3.49 is installed OR webkit2gtk3-2.28.1-3.49 is installed OR webkit2gtk3-devel-2.28.1-3.49 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information freerdp-2.0.0~rc4-3.10 is installed OR freerdp-devel-2.0.0~rc4-3.10 is installed OR libfreerdp2-2.0.0~rc4-3.10 is installed OR libwinpr2-2.0.0~rc4-3.10 is installed OR winpr2-devel-2.0.0~rc4-3.10 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information bluez-5.48-5.19 is installed OR bluez-cups-5.48-5.19 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information openstack-swift-2.1.0-4 is installed OR openstack-swift-account-2.1.0-4 is installed OR openstack-swift-container-2.1.0-4 is installed OR openstack-swift-object-2.1.0-4 is installed OR openstack-swift-proxy-2.1.0-4 is installed OR python-swift-2.1.0-4 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND python-pycrypto-2.6.1-10.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information glibc-2.22-62.22 is installed OR glibc-32bit-2.22-62.22 is installed OR glibc-devel-2.22-62.22 is installed OR glibc-devel-32bit-2.22-62.22 is installed OR glibc-html-2.22-62.22 is installed OR glibc-i18ndata-2.22-62.22 is installed OR glibc-info-2.22-62.22 is installed OR glibc-locale-2.22-62.22 is installed OR glibc-locale-32bit-2.22-62.22 is installed OR glibc-profile-2.22-62.22 is installed OR glibc-profile-32bit-2.22-62.22 is installed OR nscd-2.22-62.22 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND python-cryptography-2.0.3-3.3 is installed

BACK