Oval Definition:	oval:org.opensuse.security:def:50275
Revision Date: 2020-12-01 Version: 1 Title: Security update for rpm (Moderate) Description: This update for rpm fixes the following issues: This security vulnerability was fixed: - CVE-2017-7500: Fixed symlink attacks during RPM installation (bsc#943457) Family: unix Class: patch Status: Reference(s): 1012382 1027353 1031392 1043912 1044189 1046302 1046305 1046306 1046307 1046540 1046543 1050244 1050319 1050536 1050540 1051510 1051979 1054914 1055014 1055117 1055120 1055186 1055857 1058659 1059893 1060463 1061305 1061840 1061843 1065600 1065729 1066110 1066674 1067126 1067906 1068032 1069138 1071995 1076830 1077428 1077761 1077989 1078720 1079524 1080157 1081164 1081917 1082519 1082555 1083647 1083663 1084760 1084831 1084929 1085030 1085042 1085262 1086274 1086282 1086283 1086288 1086314 1086315 1086317 1086327 1086331 1086906 1087081 1087092 1089343 1089663 1090078 1090888 1091800 1092903 1094244 1094735 1094825 1095148 1095344 1095805 1096748 1097104 1097105 1097577 1097583 1097584 1097585 1097586 1097587 1097588 1097808 1098459 1098782 1098822 1099125 1099811 1099813 1099844 1099845 1099846 1099849 1099858 1099863 1099864 1099922 1099999 1100001 1100132 1101116 1101331 1101480 1101557 1101669 1101822 1101828 1101832 1101833 1101837 1101839 1101841 1101843 1101844 1101845 1101847 1101852 1101853 1101867 1101872 1101874 1101875 1101882 1101883 1101885 1101887 1101890 1101891 1101893 1101895 1101896 1101900 1101902 1101903 1102346 1102495 1102517 1102633 1102658 1102715 1102775 1102870 1102875 1102877 1102879 1102881 1102882 1102896 1103097 1103269 1103277 1103308 1103356 1103363 1103387 1103405 1103421 1103445 1103517 1103543 1103587 1103636 1103723 1103724 1103725 1103726 1103727 1103728 1103729 1103730 1103886 1103917 1103920 1103948 1103949 1103961 1104066 1104111 1104172 1104174 1104211 1104319 1104353 1104365 1104427 1104482 1104494 1104495 1104683 1104708 1104731 1104777 1104824 1104888 1104890 1104897 1105025 1105190 1105247 1105292 1105322 1105355 1105378 1105396 1105428 1105467 1105524 1105536 1105597 1105603 1105672 1105731 1105795 1105907 1106007 1106016 1106105 1106110 1106121 1106170 1106178 1106229 1106230 1106231 1106233 1106235 1106236 1106237 1106238 1106240 1106291 1106297 1106333 1106369 1106427 1106464 1106509 1106511 1106594 1106636 1106688 1106697 1106779 1106800 1106838 1106890 1106891 1106892 1106893 1106894 1106896 1106897 1106898 1106899 1106900 1106901 1106902 1106903 1106905 1106906 1106948 1106995 1107008 1107060 1107061 1107065 1107074 1107207 1107319 1107320 1107522 1107535 1107685 1107689 1107735 1107756 1107783 1107829 1107870 1107924 1107928 1107945 1107947 1107966 1108010 1108093 1108096 1108170 1108241 1108243 1108260 1108281 1108323 1108377 1108399 1108468 1108520 1108823 1108841 1108870 1109151 1109158 1109217 1109244 1109269 1109330 1109333 1109336 1109337 1109511 1109603 1109739 1109772 1109784 1109806 1109818 1109907 1109915 1109919 1109951 1109979 1109992 1110006 1110096 1110301 1110363 1110538 1110561 1110639 1110642 1110643 1110644 1110645 1110646 1110647 1110649 1110650 1111028 1111040 1111076 1111122 1111506 1111806 1111819 1111830 1111834 1111841 1111870 1111901 1111904 1111921 1111928 1111983 1112170 1112208 1112219 1112246 1112372 1112514 1112554 1112708 1112710 1112711 1112712 1112713 1112731 1112732 1112733 1112734 1112735 1112736 1112738 1112739 1112740 1112741 1112743 1112745 1112746 1112878 1112894 1112899 1112902 1112903 1112905 1112906 1112907 1113257 1113284 1113295 1113408 1113667 1113722 1113751 1113780 1113972 1114279 1120943 1128829 1128963 1129923 1133035 1134689 1134760 1135350 1138034 1139924 1148742 1152489 1157652 1158328 1159723 1159729 1160770 1161025 1171475 1171746 1171847 1172105 1172116 1172121 1172437 1174091 1174748 1174969 1175052 1175898 1176485 1176713 1177086 1177353 1177410 1177411 1177470 1177739 1177749 1177750 1177754 1177755 1177765 1177814 1177817 1177854 1177855 1177856 1177861 1178002 1178079 1178246 943457 971975 CVE-2016-1000031 CVE-2016-6328 CVE-2017-14988 CVE-2017-16533 CVE-2017-18224 CVE-2017-18594 CVE-2017-7500 CVE-2017-7544 CVE-2018-1000199 CVE-2018-10853 CVE-2018-10876 CVE-2018-10877 CVE-2018-10878 CVE-2018-10879 CVE-2018-10880 CVE-2018-10881 CVE-2018-10882 CVE-2018-10883 CVE-2018-10902 CVE-2018-10938 CVE-2018-10940 CVE-2018-1128 CVE-2018-1129 CVE-2018-12896 CVE-2018-13093 CVE-2018-13095 CVE-2018-14613 CVE-2018-14617 CVE-2018-14633 CVE-2018-15173 CVE-2018-15572 CVE-2018-16658 CVE-2018-17182 CVE-2018-18065 CVE-2018-18386 CVE-2018-18445 CVE-2018-18710 CVE-2018-20030 CVE-2018-3620 CVE-2018-3646 CVE-2018-5391 CVE-2018-6554 CVE-2018-6555 CVE-2018-9363 CVE-2019-10072 CVE-2019-10130 CVE-2019-10164 CVE-2019-11745 CVE-2019-12418 CVE-2019-13722 CVE-2019-17005 CVE-2019-17008 CVE-2019-17009 CVE-2019-17010 CVE-2019-17011 CVE-2019-17012 CVE-2019-17563 CVE-2019-20907 CVE-2019-3902 CVE-2019-9278 CVE-2020-0093 CVE-2020-10757 CVE-2020-12767 CVE-2020-13112 CVE-2020-13113 CVE-2020-13114 CVE-2020-14351 CVE-2020-16120 CVE-2020-25285 SUSE-SU-2018:2073-1 SUSE-SU-2018:2450-1 SUSE-SU-2018:3333-1 SUSE-SU-2018:3961-1 SUSE-SU-2019:1212-1 SUSE-SU-2019:2012-1 SUSE-SU-2019:2043-1 SUSE-SU-2019:2425-1 SUSE-SU-2019:3337-1 SUSE-SU-2020:0226-1 SUSE-SU-2020:1553-2 SUSE-SU-2020:3122-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Legacy Software 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libpython2_6-1_0-2.6.8-0.23 is installed OR libpython2_6-1_0-32bit-2.6.8-0.23 is installed OR python-2.6.8-0.23 is installed OR python-base-2.6.8-0.23 is installed OR python-base-32bit-2.6.8-0.23 is installed OR python-curses-2.6.8-0.23 is installed OR python-devel-2.6.8-0.23 is installed OR python-tk-2.6.8-0.23 is installed OR python-xml-2.6.8-0.23 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-17.0.10esr-0.7 is installed OR MozillaFirefox-branding-SLED-7-0.12 is installed OR MozillaFirefox-translations-17.0.10esr-0.7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information gnutls-3.2.15-1 is installed OR libgnutls28-3.2.15-1 is installed OR libgnutls28-32bit-3.2.15-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information DirectFB-1.7.1-4 is installed OR lib++dfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-32bit-1.7.1-4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information NetworkManager-1.0.12-8 is installed OR NetworkManager-lang-1.0.12-8 is installed OR libnm-glib-vpn1-1.0.12-8 is installed OR libnm-glib4-1.0.12-8 is installed OR libnm-util2-1.0.12-8 is installed OR libnm0-1.0.12-8 is installed OR typelib-1_0-NM-1_0-1.0.12-8 is installed OR typelib-1_0-NMClient-1_0-1.0.12-8 is installed OR typelib-1_0-NetworkManager-1_0-1.0.12-8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-38.8 is installed OR aaa_base-extras-13.2+git20140911.61c1681-38.8 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed AND Package Information libexif-0.6.22-5.6 is installed OR libexif12-32bit-0.6.22-5.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information python-rpm-4.14.1-10.3 is installed OR python2-rpm-4.14.1-10.3 is installed OR python3-rpm-4.14.1-10.3 is installed OR rpm-4.14.1-10.3 is installed OR rpm-32bit-4.14.1-10.3 is installed OR rpm-devel-4.14.1-10.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP2 is installed AND Package Information kernel-default-5.3.18-24.34 is installed OR reiserfs-kmp-default-5.3.18-24.34 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_21-default-7-2 is installed OR kernel-livepatch-SLE15-SP1_Update_6-7-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information jakarta-commons-fileupload-1.1.1-4.3 is installed OR jakarta-commons-fileupload-javadoc-1.1.1-4.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libecpg6-32bit-10.9-8.3 is installed OR libpq5-32bit-10.9-8.3 is installed OR postgresql10-10.9-8.3 is installed OR postgresql10-test-10.9-8.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information mercurial-4.5.2-3.9 is installed OR mercurial-lang-4.5.2-3.9 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.13 is installed OR kernel-azure-base-4.12.14-5.13 is installed OR kernel-azure-devel-4.12.14-5.13 is installed OR kernel-devel-azure-4.12.14-5.13 is installed OR kernel-source-azure-4.12.14-5.13 is installed OR kernel-syms-azure-4.12.14-5.13 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND nginx-1.14.2-3.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information dovecot23-2.3.3-8 is installed OR dovecot23-backend-mysql-2.3.3-8 is installed OR dovecot23-backend-pgsql-2.3.3-8 is installed OR dovecot23-backend-sqlite-2.3.3-8 is installed OR dovecot23-devel-2.3.3-8 is installed OR dovecot23-fts-2.3.3-8 is installed OR dovecot23-fts-lucene-2.3.3-8 is installed OR dovecot23-fts-solr-2.3.3-8 is installed OR dovecot23-fts-squat-2.3.3-8 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information apache2-mod_php7-7.2.5-4.6 is installed OR php7-7.2.5-4.6 is installed OR php7-bcmath-7.2.5-4.6 is installed OR php7-bz2-7.2.5-4.6 is installed OR php7-calendar-7.2.5-4.6 is installed OR php7-ctype-7.2.5-4.6 is installed OR php7-curl-7.2.5-4.6 is installed OR php7-dba-7.2.5-4.6 is installed OR php7-devel-7.2.5-4.6 is installed OR php7-dom-7.2.5-4.6 is installed OR php7-enchant-7.2.5-4.6 is installed OR php7-exif-7.2.5-4.6 is installed OR php7-fastcgi-7.2.5-4.6 is installed OR php7-fileinfo-7.2.5-4.6 is installed OR php7-fpm-7.2.5-4.6 is installed OR php7-ftp-7.2.5-4.6 is installed OR php7-gd-7.2.5-4.6 is installed OR php7-gettext-7.2.5-4.6 is installed OR php7-gmp-7.2.5-4.6 is installed OR php7-iconv-7.2.5-4.6 is installed OR php7-intl-7.2.5-4.6 is installed OR php7-json-7.2.5-4.6 is installed OR php7-ldap-7.2.5-4.6 is installed OR php7-mbstring-7.2.5-4.6 is installed OR php7-mysql-7.2.5-4.6 is installed OR php7-odbc-7.2.5-4.6 is installed OR php7-opcache-7.2.5-4.6 is installed OR php7-openssl-7.2.5-4.6 is installed OR php7-pcntl-7.2.5-4.6 is installed OR php7-pdo-7.2.5-4.6 is installed OR php7-pear-7.2.5-4.6 is installed OR php7-pear-Archive_Tar-7.2.5-4.6 is installed OR php7-pgsql-7.2.5-4.6 is installed OR php7-phar-7.2.5-4.6 is installed OR php7-posix-7.2.5-4.6 is installed OR php7-shmop-7.2.5-4.6 is installed OR php7-snmp-7.2.5-4.6 is installed OR php7-soap-7.2.5-4.6 is installed OR php7-sockets-7.2.5-4.6 is installed OR php7-sqlite-7.2.5-4.6 is installed OR php7-sysvmsg-7.2.5-4.6 is installed OR php7-sysvsem-7.2.5-4.6 is installed OR php7-sysvshm-7.2.5-4.6 is installed OR php7-tokenizer-7.2.5-4.6 is installed OR php7-wddx-7.2.5-4.6 is installed OR php7-xmlreader-7.2.5-4.6 is installed OR php7-xmlrpc-7.2.5-4.6 is installed OR php7-xmlwriter-7.2.5-4.6 is installed OR php7-xsl-7.2.5-4.6 is installed OR php7-zip-7.2.5-4.6 is installed OR php7-zlib-7.2.5-4.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information automake-1.13.4-4 is installed OR m4-1.4.16-15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-30.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-28 is installed OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information xen-4.7.5_04-43.33 is installed OR xen-doc-html-4.7.5_04-43.33 is installed OR xen-libs-4.7.5_04-43.33 is installed OR xen-libs-32bit-4.7.5_04-43.33 is installed OR xen-tools-4.7.5_04-43.33 is installed OR xen-tools-domU-4.7.5_04-43.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_120-92_70-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_20-9-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_45-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_14-9-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND hyper-v-7-13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libpython3_4m1_0-3.4.6-25.29 is installed OR python3-3.4.6-25.29 is installed OR python3-base-3.4.6-25.29 is installed OR python3-curses-3.4.6-25.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ImageMagick-6.8.8.1-71.79 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.79 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.79 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information java-11-openjdk-11.0.8.0-3.45 is installed OR java-11-openjdk-demo-11.0.8.0-3.45 is installed OR java-11-openjdk-devel-11.0.8.0-3.45 is installed OR java-11-openjdk-headless-11.0.8.0-3.45 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information dovecot23-2.3.10-4.22 is installed OR dovecot23-backend-mysql-2.3.10-4.22 is installed OR dovecot23-backend-pgsql-2.3.10-4.22 is installed OR dovecot23-backend-sqlite-2.3.10-4.22 is installed OR dovecot23-devel-2.3.10-4.22 is installed OR dovecot23-fts-2.3.10-4.22 is installed OR dovecot23-fts-lucene-2.3.10-4.22 is installed OR dovecot23-fts-solr-2.3.10-4.22 is installed OR dovecot23-fts-squat-2.3.10-4.22 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information evolution-3.26.6-4.3 is installed OR evolution-devel-3.26.6-4.3 is installed OR evolution-lang-3.26.6-4.3 is installed OR evolution-plugin-bogofilter-3.26.6-4.3 is installed OR evolution-plugin-pst-import-3.26.6-4.3 is installed OR evolution-plugin-spamassassin-3.26.6-4.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information MozillaThunderbird-68.10.0-3.88 is installed OR MozillaThunderbird-translations-common-68.10.0-3.88 is installed OR MozillaThunderbird-translations-other-68.10.0-3.88 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND ruby2.1-rubygem-activesupport-4_2-4.2.2-2 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND ucode-intel-20180425-13.20 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information grafana-4.5.1-4.3 is installed OR kafka-0.9.0.1-5.3 is installed OR logstash-2.4.1-5.4 is installed OR openstack-monasca-installer-20180622_15.06-3.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed
BACK