Oval Definition:	oval:org.opensuse.security:def:50323
Revision Date: 2020-12-01 Version: 1 Title: Security update for clamav (Moderate) Description: This update for clamav fixes the following issues: clamav was updated to version 0.100.2. Following security issues were fixed: - CVE-2018-15378: Vulnerability in ClamAV's MEW unpacking feature that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. (bsc#1110723) - CVE-2018-14680, CVE-2018-14681, CVE-2018-14682: more fixes for embedded libmspack. (bsc#1103040) Following non-security issues were addressed: - Make freshclam more robust against lagging signature mirrors. - On-Access 'Extra Scanning', an opt-in minor feature of OnAccess scanning on Linux systems, has been disabled due to a known issue with resource cleanup OnAccessExtraScanning will be re-enabled in a future release when the issue is resolved. In the mean-time, users who enabled the feature in clamd.conf will see a warning informing them that the feature is not active. For details, see: https://bugzilla.clamav.net/show_bug.cgi?id=12048 - Restore exit code compatibility of freshclam with versions before 0.100.0 when the virus database is already up to date (bsc#1104457) Family: unix Class: patch Status: Reference(s): 1033084 1033085 1033086 1033087 1033088 1033089 1033090 1050549 1051510 1052904 1053043 1055117 1055121 1055186 1061840 1065600 1065729 1070872 1071995 1082555 1083647 1085030 1085535 1085536 1088804 1094244 1097583 1097584 1097585 1097586 1097587 1097588 1099257 1100132 1103040 1103259 1104457 1106390 1107066 1107067 1110279 1110723 1111331 1111666 1111973 1112128 1112178 1112723 1112726 1113094 1113399 1113672 1113722 1113956 1114279 1114542 1114638 1116998 1119086 1119558 1119680 1120318 1120902 1122767 1123105 1123685 1125007 1125342 1126221 1126356 1126704 1126740 1127175 1127371 1127372 1127374 1127378 1127445 1128415 1128544 1129071 1129180 1129186 1129276 1129770 1130130 1130154 1130195 1130335 1130336 1130337 1130338 1130425 1130427 1130518 1130527 1130567 1131062 1131107 1131167 1131168 1131169 1131170 1131171 1131172 1131173 1131174 1131175 1131176 1131177 1131178 1131179 1131180 1131290 1131335 1131336 1131416 1131427 1131442 1131467 1131574 1131587 1131659 1131673 1131847 1131848 1131851 1131900 1131934 1131935 1132083 1132219 1132226 1132227 1132365 1132368 1132369 1132370 1132372 1132373 1132384 1132397 1132402 1132403 1132404 1132405 1132407 1132411 1132412 1132413 1132414 1132426 1132527 1132531 1132555 1132558 1132561 1132562 1132563 1132564 1132570 1132571 1132572 1132589 1132618 1132663 1132681 1132726 1132828 1132900 1132943 1133005 1133094 1133095 1133115 1133149 1133291 1133486 1133529 1133584 1133667 1133668 1133672 1133674 1133675 1133698 1133702 1133731 1133769 1133772 1133774 1133778 1133779 1133780 1133825 1133850 1133851 1133852 1134156 1135715 1136446 1137597 1140359 1140747 1141853 1144333 1146882 1146884 1148868 1150660 1151927 1152624 1153102 1154366 1154401 1155075 1156188 1158983 1159058 1161016 1162002 1162063 1163309 1166985 1167104 1167527 1168081 1168468 1168959 1169194 1169514 1169771 1169795 1169972 1170011 1170442 1170592 1170617 1170618 1171124 1171424 1171529 1171530 1171558 1171675 1171688 1171732 1171739 1171742 1171743 1171753 1171759 1171835 1171841 1171868 1171904 1172247 1172257 1172344 1172458 1172484 1172537 1172538 1172687 1172719 1172759 1172775 1172781 1172782 1172783 1172871 1172872 1172999 1173060 1173074 1173115 1173146 1173265 1173280 1173284 1173428 1173514 1173567 1173573 1173746 1173818 1173820 1173825 1173826 1173833 1173838 1173839 1173845 1173857 1174113 1174115 1174122 1174123 1174186 1174187 1174296 1174343 1174356 1174409 1174438 1174462 1174538 1174543 1174899 1175228 1175749 1175882 1176011 1176022 1176038 1176235 1176242 1176278 1176316 1176317 1176318 1176319 1176320 1176321 1176381 1176395 1176410 1176423 1176482 1176507 1176536 1176544 1176545 1176546 1176548 1176659 1176698 1176699 1176700 1176721 1176722 1176725 1176732 1176788 1176789 1176869 1176877 1176935 1176950 1176962 1176966 1176990 1177027 1177030 1177041 1177042 1177043 1177044 1177121 1177206 1177258 1177291 1177293 1177294 1177295 1177296 CVE-2017-7607 CVE-2017-7608 CVE-2017-7609 CVE-2017-7610 CVE-2017-7611 CVE-2017-7612 CVE-2017-7613 CVE-2018-11713 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-12900 CVE-2018-14680 CVE-2018-14681 CVE-2018-14682 CVE-2018-15378 CVE-2018-16062 CVE-2018-16402 CVE-2018-16403 CVE-2018-16880 CVE-2018-18310 CVE-2018-18520 CVE-2018-18521 CVE-2018-18557 CVE-2018-18661 CVE-2018-20852 CVE-2018-4162 CVE-2018-4163 CVE-2018-4165 CVE-2018-4191 CVE-2018-4197 CVE-2018-4207 CVE-2018-4208 CVE-2018-4209 CVE-2018-4210 CVE-2018-4212 CVE-2018-4213 CVE-2018-4299 CVE-2018-4306 CVE-2018-4309 CVE-2018-4312 CVE-2018-4314 CVE-2018-4315 CVE-2018-4316 CVE-2018-4317 CVE-2018-4318 CVE-2018-4319 CVE-2018-4323 CVE-2018-4328 CVE-2018-4345 CVE-2018-4358 CVE-2018-4359 CVE-2018-4361 CVE-2018-4372 CVE-2018-4373 CVE-2018-4375 CVE-2018-4376 CVE-2018-4378 CVE-2018-4382 CVE-2018-4386 CVE-2018-4392 CVE-2018-4416 CVE-2018-4437 CVE-2018-4438 CVE-2018-4441 CVE-2018-4442 CVE-2018-4443 CVE-2018-4464 CVE-2019-11091 CVE-2019-11236 CVE-2019-11324 CVE-2019-11477 CVE-2019-11478 CVE-2019-12973 CVE-2019-14811 CVE-2019-14812 CVE-2019-14813 CVE-2019-14817 CVE-2019-17113 CVE-2019-18804 CVE-2019-20810 CVE-2019-20908 CVE-2019-3691 CVE-2019-3835 CVE-2019-3839 CVE-2019-3846 CVE-2019-3882 CVE-2019-6237 CVE-2019-7150 CVE-2019-7665 CVE-2019-8571 CVE-2019-8583 CVE-2019-8584 CVE-2019-8586 CVE-2019-8587 CVE-2019-8594 CVE-2019-8595 CVE-2019-8596 CVE-2019-8597 CVE-2019-8601 CVE-2019-8607 CVE-2019-8608 CVE-2019-8609 CVE-2019-8610 CVE-2019-8611 CVE-2019-8615 CVE-2019-8619 CVE-2019-8622 CVE-2019-8623 CVE-2019-9003 CVE-2019-9500 CVE-2019-9503 CVE-2019-9740 CVE-2020-0305 CVE-2020-0404 CVE-2020-0427 CVE-2020-0431 CVE-2020-0432 CVE-2020-10766 CVE-2020-10767 CVE-2020-10768 CVE-2020-10769 CVE-2020-10773 CVE-2020-10781 CVE-2020-12771 CVE-2020-12888 CVE-2020-13974 CVE-2020-14381 CVE-2020-14390 CVE-2020-14416 CVE-2020-15393 CVE-2020-15652 CVE-2020-15659 CVE-2020-15780 CVE-2020-25212 CVE-2020-25284 CVE-2020-25641 CVE-2020-25643 CVE-2020-26088 CVE-2020-6463 CVE-2020-6514 SUSE-SU-2018:3250-1 SUSE-SU-2018:3925-1 SUSE-SU-2019:0092-1 SUSE-SU-2019:1486-1 SUSE-SU-2019:2114-1 SUSE-SU-2019:2332-1 SUSE-SU-2019:2460-1 SUSE-SU-2019:2622-1 SUSE-SU-2019:3033-1 SUSE-SU-2019:3190-1 SUSE-SU-2020:2103-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information bytefx-data-mysql-2.6.7-0.9 is installed OR ibm-data-db2-2.6.7-0.9 is installed OR mono-core-2.6.7-0.9 is installed OR mono-data-2.6.7-0.9 is installed OR mono-data-firebird-2.6.7-0.9 is installed OR mono-data-oracle-2.6.7-0.9 is installed OR mono-data-postgresql-2.6.7-0.9 is installed OR mono-data-sqlite-2.6.7-0.9 is installed OR mono-data-sybase-2.6.7-0.9 is installed OR mono-devel-2.6.7-0.9 is installed OR mono-extras-2.6.7-0.9 is installed OR mono-jscript-2.6.7-0.9 is installed OR mono-locale-extras-2.6.7-0.9 is installed OR mono-nunit-2.6.7-0.9 is installed OR mono-wcf-2.6.7-0.9 is installed OR mono-web-2.6.7-0.9 is installed OR mono-winforms-2.6.7-0.9 is installed OR monodoc-core-2.6.7-0.9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information compat-openssl097g-0.9.7g-146.22.31 is installed OR compat-openssl097g-32bit-0.9.7g-146.22.31 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND argyllcms-1.6.3-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information coreutils-8.22-9 is installed OR coreutils-lang-8.22-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information file-5.19-9 is installed OR file-magic-5.19-9 is installed OR libmagic1-5.19-9 is installed OR libmagic1-32bit-5.19-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND groff-1.22.2-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information expat-2.1.0-21.3 is installed OR libexpat1-2.1.0-21.3 is installed OR libexpat1-32bit-2.1.0-21.3 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND tiff-4.0.9-5.17 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information clamav-0.100.2-3.6 is installed OR clamav-devel-0.100.2-3.6 is installed OR libclamav7-0.100.2-3.6 is installed OR libclammspack0-0.100.2-3.6 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information libmunge2-0.5.13-4.3 is installed OR munge-0.5.13-4.3 is installed OR munge-devel-0.5.13-4.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_13-default-8-2 is installed OR kernel-livepatch-SLE15_Update_3-8-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information webkit-jsc-4-2.24.2-3.27 is installed OR webkit2gtk3-2.24.2-3.27 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information elfutils-0.168-4.5 is installed OR libasm1-32bit-0.168-4.5 is installed OR libelf-devel-32bit-0.168-4.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information MozillaThunderbird-68.11.0-3.91 is installed OR MozillaThunderbird-translations-common-68.11.0-3.91 is installed OR MozillaThunderbird-translations-other-68.11.0-3.91 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information kernel-azure-4.12.14-8.38 is installed OR kernel-azure-base-4.12.14-8.38 is installed OR kernel-azure-devel-4.12.14-8.38 is installed OR kernel-devel-azure-4.12.14-8.38 is installed OR kernel-source-azure-4.12.14-8.38 is installed OR kernel-syms-azure-4.12.14-8.38 is installed Definition Synopsis SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python-2.7.14-7.17 is installed OR python-base-2.7.14-7.17 is installed OR python-curses-2.7.14-7.17 is installed OR python-devel-2.7.14-7.17 is installed OR python-gdbm-2.7.14-7.17 is installed OR python-xml-2.7.14-7.17 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information qemu-3.1.1-9.3 is installed OR qemu-arm-3.1.1-9.3 is installed OR qemu-audio-alsa-3.1.1-9.3 is installed OR qemu-audio-oss-3.1.1-9.3 is installed OR qemu-audio-pa-3.1.1-9.3 is installed OR qemu-block-curl-3.1.1-9.3 is installed OR qemu-block-iscsi-3.1.1-9.3 is installed OR qemu-block-rbd-3.1.1-9.3 is installed OR qemu-block-ssh-3.1.1-9.3 is installed OR qemu-guest-agent-3.1.1-9.3 is installed OR qemu-ipxe-1.0.0+-9.3 is installed OR qemu-kvm-3.1.1-9.3 is installed OR qemu-lang-3.1.1-9.3 is installed OR qemu-ppc-3.1.1-9.3 is installed OR qemu-s390-3.1.1-9.3 is installed OR qemu-seabios-1.12.0-9.3 is installed OR qemu-sgabios-8-9.3 is installed OR qemu-ui-curses-3.1.1-9.3 is installed OR qemu-ui-gtk-3.1.1-9.3 is installed OR qemu-vgabios-1.12.0-9.3 is installed OR qemu-x86-3.1.1-9.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs8-8.15.1-3.14 is installed OR nodejs8-devel-8.15.1-3.14 is installed OR nodejs8-docs-8.15.1-3.14 is installed OR npm8-8.15.1-3.14 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs10-10.22.1-1.27 is installed OR nodejs10-devel-10.22.1-1.27 is installed OR nodejs10-docs-10.22.1-1.27 is installed OR npm10-10.22.1-1.27 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information gnome-shell-3.10.4-40 is installed OR gnome-shell-browser-plugin-3.10.4-40 is installed OR gnome-shell-lang-3.10.4-40 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND clamav-0.99.2-32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND clamav-0.99.2-25 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libmysqlclient18-10.0.35-29.20 is installed OR libmysqlclient18-32bit-10.0.35-29.20 is installed OR mariadb-10.0.35-29.20 is installed OR mariadb-client-10.0.35-29.20 is installed OR mariadb-errormessages-10.0.35-29.20 is installed OR mariadb-tools-10.0.35-29.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information apache2-2.4.23-29.24 is installed OR apache2-doc-2.4.23-29.24 is installed OR apache2-example-pages-2.4.23-29.24 is installed OR apache2-prefork-2.4.23-29.24 is installed OR apache2-utils-2.4.23-29.24 is installed OR apache2-worker-2.4.23-29.24 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information gpg2-2.0.24-9.3 is installed OR gpg2-lang-2.0.24-9.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_jk-1.2.40-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_100-default-3-2 is installed OR kgraft-patch-SLE12-SP3_Update_27-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ghostscript-9.26-23.16 is installed OR ghostscript-x11-9.26-23.16 is installed OR libspectre-0.2.7-12.4 is installed OR libspectre1-0.2.7-12.4 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libmaxminddb-1.4.2-1.3 is installed OR libmaxminddb-devel-1.4.2-1.3 is installed OR libmaxminddb0-1.4.2-1.3 is installed OR libmaxminddb0-32bit-1.4.2-1.3 is installed OR libspandsp2-0.0.6-3.2 is installed OR libwireshark13-3.2.2-3.35 is installed OR libwiretap10-3.2.2-3.35 is installed OR libwsutil11-3.2.2-3.35 is installed OR mmdblookup-1.4.2-1.3 is installed OR spandsp-0.0.6-3.2 is installed OR wireshark-3.2.2-3.35 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.10-3.38 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.10-3.38 is installed OR java-1_8_0-ibm-devel-1.8.0_sr6.10-3.38 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.10-3.38 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.48 is installed OR kernel-default-extra-4.12.14-197.48 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information emacs-24.3-25.3 is installed OR emacs-el-24.3-25.3 is installed OR emacs-info-24.3-25.3 is installed OR emacs-nox-24.3-25.3 is installed OR emacs-x11-24.3-25.3 is installed OR etags-24.3-25.3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND shadow-4.2.1-27.9 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information kernel-default-4.4.180-94.100 is installed OR kernel-default-base-4.4.180-94.100 is installed OR kernel-default-devel-4.4.180-94.100 is installed OR kernel-devel-4.4.180-94.100 is installed OR kernel-macros-4.4.180-94.100 is installed OR kernel-source-4.4.180-94.100 is installed OR kernel-syms-4.4.180-94.100 is installed OR kgraft-patch-4_4_180-94_100-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_27-1-4.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libjpeg-turbo-1.5.3-31.19 is installed OR libjpeg62-62.2.0-31.19 is installed OR libjpeg62-32bit-62.2.0-31.19 is installed OR libjpeg62-turbo-1.5.3-31.19 is installed OR libjpeg8-8.1.2-31.19 is installed OR libjpeg8-32bit-8.1.2-31.19 is installed OR libturbojpeg0-8.1.2-31.19 is installed
BACK