OVAL Reference oval:org.opensuse.security:def:50327

Oval Definition:

oval:org.opensuse.security:def:50327

Revision Date:	2020-12-01	Version:	1
Title:	Security update for pam_pkcs11 (Moderate)
Description:	This update for pam_pkcs11 fixes the following security issues: - It was possible to replay an authentication by using a specially prepared smartcard or token (bsc#1105012) - Prevent buffer overflow if a user has a home directory with a length of more than 512 bytes (bsc#1105012) - Memory not cleaned properly before free() (bsc#1105012) This non-security issue was fixed: - Fix segfault and fetch problems when checking CRLs
Family:	unix	Class:	patch
Status:		Reference(s):	1018371 1024288 1024291 1055186 1065600 1065697 1065729 1071995 1081516 1085240 1094244 1095508 1102604 1104662 1105012 1106420 1108086 1108395 1112178 1112182 1113956 1114407 1114592 1117058 1118952 1120813 1123304 1123642 1124223 1124667 1125410 1125665 1126325 1126377 1127458 1130129 1130840 1131060 1131595 1131686 1134689 1135254 1136446 1136936 1137597 1138034 1140709 1140747 1141897 1142649 1142654 1144656 1144675 1144902 1148517 1148539 1149145 1149955 1151867 1152143 1153238 1154289 1154366 1154598 1155784 1158709 1158798 1159692 1167527 1169972 1171688 1171742 1173115 1174633 1174635 1174638 1174899 1175228 1175749 1175882 1176011 1176022 1176038 1176235 1176242 1176278 1176316 1176317 1176318 1176319 1176320 1176321 1176381 1176423 1176482 1176507 1176536 1176544 1176545 1176546 1176548 1176659 1176698 1176699 1176700 1176721 1176722 1176725 1176732 1176788 1176789 1176869 1176877 1176935 1176950 1176962 1176966 1176990 1177030 1177041 1177042 1177043 1177044 1177121 1177206 1177291 1177293 1177294 1177295 1177296 CVE-2016-10030 CVE-2017-15566 CVE-2017-2579 CVE-2017-2580 CVE-2018-10995 CVE-2018-7033 CVE-2019-10130 CVE-2019-10164 CVE-2019-10218 CVE-2019-11477 CVE-2019-11478 CVE-2019-12838 CVE-2019-13104 CVE-2019-13106 CVE-2019-14250 CVE-2019-14833 CVE-2019-14847 CVE-2019-15847 CVE-2019-16056 CVE-2019-16707 CVE-2019-16935 CVE-2019-19727 CVE-2019-19728 CVE-2019-3840 CVE-2019-3846 CVE-2019-3880 CVE-2019-3886 CVE-2019-6438 CVE-2019-9947 CVE-2020-0404 CVE-2020-0427 CVE-2020-0431 CVE-2020-0432 CVE-2020-14345 CVE-2020-14346 CVE-2020-14347 CVE-2020-14381 CVE-2020-14390 CVE-2020-25212 CVE-2020-25284 CVE-2020-25641 CVE-2020-25643 CVE-2020-26088 SUSE-SU-2018:3290-1 SUSE-SU-2019:0936-1 SUSE-SU-2019:1040-1 SUSE-SU-2019:1285-1 SUSE-SU-2019:1525-1 SUSE-SU-2019:1810-1 SUSE-SU-2019:2475-1 SUSE-SU-2019:2702-1 SUSE-SU-2019:2743-1 SUSE-SU-2019:2866-1 SUSE-SU-2019:3061-1 SUSE-SU-2020:0443-1 SUSE-SU-2020:2906-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information coreutils-8.12-6.25.29 is installed OR coreutils-lang-8.12-6.25.29 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information cups-1.3.9-8.46.52 is installed OR cups-client-1.3.9-8.46.52 is installed OR cups-libs-1.3.9-8.46.52 is installed OR cups-libs-32bit-1.3.9-8.46.52 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND bogofilter-1.2.4-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information cups-1.7.5-9 is installed OR cups-client-1.7.5-9 is installed OR cups-libs-1.7.5-9 is installed OR cups-libs-32bit-1.7.5-9 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND ft2demos-2.6.3-7.8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information finch-2.12.0-3.3 is installed OR libpurple-2.12.0-3.3 is installed OR libpurple-branding-upstream-2.12.0-3.3 is installed OR libpurple-lang-2.12.0-3.3 is installed OR libpurple-plugin-sametime-2.12.0-3.3 is installed OR libpurple-tcl-2.12.0-3.3 is installed OR pidgin-2.12.0-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information avahi-0.6.32-5.5 is installed OR python-avahi-0.6.32-5.5 is installed OR samba-4.7.11+git.153.b36ceaf2235-4.27 is installed OR samba-python-4.7.11+git.153.b36ceaf2235-4.27 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information pam_pkcs11-0.6.9-3.3 is installed OR pam_pkcs11-32bit-0.6.9-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information libpmi0_18_08-18.08.9-1.5 is installed OR libslurm33-18.08.9-1.5 is installed OR pdsh-2.33-7.6 is installed OR pdsh-dshgroup-2.33-7.6 is installed OR pdsh-genders-2.33-7.6 is installed OR pdsh-machines-2.33-7.6 is installed OR pdsh-netgroup-2.33-7.6 is installed OR pdsh-slurm-2.33-7.6 is installed OR pdsh-slurm_18_08-2.33-7.6 is installed OR perl-slurm_18_08-18.08.9-1.5 is installed OR slurm_18_08-18.08.9-1.5 is installed OR slurm_18_08-auth-none-18.08.9-1.5 is installed OR slurm_18_08-config-18.08.9-1.5 is installed OR slurm_18_08-devel-18.08.9-1.5 is installed OR slurm_18_08-doc-18.08.9-1.5 is installed OR slurm_18_08-lua-18.08.9-1.5 is installed OR slurm_18_08-munge-18.08.9-1.5 is installed OR slurm_18_08-node-18.08.9-1.5 is installed OR slurm_18_08-pam_slurm-18.08.9-1.5 is installed OR slurm_18_08-plugins-18.08.9-1.5 is installed OR slurm_18_08-slurmdbd-18.08.9-1.5 is installed OR slurm_18_08-sql-18.08.9-1.5 is installed OR slurm_18_08-torque-18.08.9-1.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_25-default-5-2 is installed OR kernel-livepatch-SLE15_Update_7-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information libpq5-32bit-10.9-4.13 is installed OR postgresql10-10.9-4.13 is installed OR postgresql10-test-10.9-4.13 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libnetpbm11-32bit-10.80.1-3.8 is installed OR netpbm-10.80.1-3.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information xorg-x11-server-1.20.3-22.5 is installed OR xorg-x11-server-source-1.20.3-22.5 is installed OR xorg-x11-server-wayland-1.20.3-22.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information kernel-azure-4.12.14-8.47 is installed OR kernel-azure-base-4.12.14-8.47 is installed OR kernel-azure-devel-4.12.14-8.47 is installed OR kernel-devel-azure-4.12.14-8.47 is installed OR kernel-source-azure-4.12.14-8.47 is installed OR kernel-syms-azure-4.12.14-8.47 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python-2.7.14-7.24 is installed OR python-base-2.7.14-7.24 is installed OR python-curses-2.7.14-7.24 is installed OR python-devel-2.7.14-7.24 is installed OR python-gdbm-2.7.14-7.24 is installed OR python-xml-2.7.14-7.24 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND skopeo-0.1.32-4.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs8-8.17.0-3.25 is installed OR nodejs8-devel-8.17.0-3.25 is installed OR nodejs8-docs-8.17.0-3.25 is installed OR npm8-8.17.0-3.25 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs8-8.17.0-3.25 is installed OR nodejs8-devel-8.17.0-3.25 is installed OR nodejs8-docs-8.17.0-3.25 is installed OR npm8-8.17.0-3.25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information groff-1.22.2-5 is installed OR groff-full-1.22.2-5 is installed OR gxditview-1.22.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information xen-4.5.5_12-22.18 is installed OR xen-doc-html-4.5.5_12-22.18 is installed OR xen-kmp-default-4.5.5_12_k3.12.74_60.64.45-22.18 is installed OR xen-libs-4.5.5_12-22.18 is installed OR xen-libs-32bit-4.5.5_12-22.18 is installed OR xen-tools-4.5.5_12-22.18 is installed OR xen-tools-domU-4.5.5_12-22.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information cpio-2.11-29 is installed OR cpio-lang-2.11-29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND ucode-intel-20180703-13.25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information res-signingkeys-3.0.37-52.23 is installed OR smt-3.0.37-52.23 is installed OR smt-support-3.0.37-52.23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_120-92_70-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_20-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libdcerpc-binding0-4.6.16+git.169.064abe062be-3.46 is installed OR libdcerpc-binding0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libdcerpc0-4.6.16+git.169.064abe062be-3.46 is installed OR libdcerpc0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libndr-krb5pac0-4.6.16+git.169.064abe062be-3.46 is installed OR libndr-krb5pac0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libndr-nbt0-4.6.16+git.169.064abe062be-3.46 is installed OR libndr-nbt0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libndr-standard0-4.6.16+git.169.064abe062be-3.46 is installed OR libndr-standard0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libndr0-4.6.16+git.169.064abe062be-3.46 is installed OR libndr0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libnetapi0-4.6.16+git.169.064abe062be-3.46 is installed OR libnetapi0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libsamba-credentials0-4.6.16+git.169.064abe062be-3.46 is installed OR libsamba-credentials0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libsamba-errors0-4.6.16+git.169.064abe062be-3.46 is installed OR libsamba-errors0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libsamba-hostconfig0-4.6.16+git.169.064abe062be-3.46 is installed OR libsamba-hostconfig0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libsamba-passdb0-4.6.16+git.169.064abe062be-3.46 is installed OR libsamba-passdb0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libsamba-util0-4.6.16+git.169.064abe062be-3.46 is installed OR libsamba-util0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libsamdb0-4.6.16+git.169.064abe062be-3.46 is installed OR libsamdb0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libsmbclient0-4.6.16+git.169.064abe062be-3.46 is installed OR libsmbclient0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libsmbconf0-4.6.16+git.169.064abe062be-3.46 is installed OR libsmbconf0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libsmbldap0-4.6.16+git.169.064abe062be-3.46 is installed OR libsmbldap0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libtevent-util0-4.6.16+git.169.064abe062be-3.46 is installed OR libtevent-util0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR libwbclient0-4.6.16+git.169.064abe062be-3.46 is installed OR libwbclient0-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR samba-4.6.16+git.169.064abe062be-3.46 is installed OR samba-client-4.6.16+git.169.064abe062be-3.46 is installed OR samba-client-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR samba-doc-4.6.16+git.169.064abe062be-3.46 is installed OR samba-libs-4.6.16+git.169.064abe062be-3.46 is installed OR samba-libs-32bit-4.6.16+git.169.064abe062be-3.46 is installed OR samba-winbind-4.6.16+git.169.064abe062be-3.46 is installed OR samba-winbind-32bit-4.6.16+git.169.064abe062be-3.46 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information qemu-2.9.1-6.22 is installed OR qemu-block-curl-2.9.1-6.22 is installed OR qemu-block-iscsi-2.9.1-6.22 is installed OR qemu-block-rbd-2.9.1-6.22 is installed OR qemu-block-ssh-2.9.1-6.22 is installed OR qemu-guest-agent-2.9.1-6.22 is installed OR qemu-ipxe-1.0.0+-6.22 is installed OR qemu-kvm-2.9.1-6.22 is installed OR qemu-lang-2.9.1-6.22 is installed OR qemu-seabios-1.10.2-6.22 is installed OR qemu-sgabios-8-6.22 is installed OR qemu-tools-2.9.1-6.22 is installed OR qemu-vgabios-1.10.2-6.22 is installed OR qemu-x86-2.9.1-6.22 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information glibc-2.26-13.45 is installed OR glibc-32bit-2.26-13.45 is installed OR glibc-devel-2.26-13.45 is installed OR glibc-devel-32bit-2.26-13.45 is installed OR glibc-devel-static-2.26-13.45 is installed OR glibc-extra-2.26-13.45 is installed OR glibc-i18ndata-2.26-13.45 is installed OR glibc-info-2.26-13.45 is installed OR glibc-locale-2.26-13.45 is installed OR glibc-locale-base-2.26-13.45 is installed OR glibc-locale-base-32bit-2.26-13.45 is installed OR glibc-profile-2.26-13.45 is installed OR glibc-utils-2.26-13.45 is installed OR glibc-utils-src-2.26-13.45 is installed OR nscd-2.26-13.45 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information curl-7.60.0-3.29 is installed OR libcurl-devel-7.60.0-3.29 is installed OR libcurl4-7.60.0-3.29 is installed OR libcurl4-32bit-7.60.0-3.29 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information freerdp-2.1.2-10.18 is installed OR freerdp-devel-2.1.2-10.18 is installed OR libfreerdp2-2.1.2-10.18 is installed OR libwinpr2-2.1.2-10.18 is installed OR winpr2-devel-2.1.2-10.18 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information ruby2.1-rubygem-actionmailer-4_2-4.2.9-3.3 is installed OR ruby2.1-rubygem-actionpack-4_2-4.2.9-7.3 is installed OR ruby2.1-rubygem-actionview-4_2-4.2.9-9.3 is installed OR ruby2.1-rubygem-activejob-4_2-4.2.9-3.3 is installed OR ruby2.1-rubygem-activemodel-4_2-4.2.9-6.3 is installed OR ruby2.1-rubygem-activerecord-4_2-4.2.9-6.3 is installed OR ruby2.1-rubygem-activesupport-4_2-4.2.9-7.3 is installed OR ruby2.1-rubygem-rails-4_2-4.2.9-3.3 is installed OR ruby2.1-rubygem-rails-html-sanitizer-1.0.3-8.3 is installed OR ruby2.1-rubygem-railties-4_2-4.2.9-3.3 is installed OR rubygem-actionmailer-4_2-4.2.9-3.3 is installed OR rubygem-actionpack-4_2-4.2.9-7.3 is installed OR rubygem-actionview-4_2-4.2.9-9.3 is installed OR rubygem-activejob-4_2-4.2.9-3.3 is installed OR rubygem-activemodel-4_2-4.2.9-6.3 is installed OR rubygem-activerecord-4_2-4.2.9-6.3 is installed OR rubygem-activesupport-4_2-4.2.9-7.3 is installed OR rubygem-rails-4_2-4.2.9-3.3 is installed OR rubygem-rails-html-sanitizer-1.0.3-8.3 is installed OR rubygem-railties-4_2-4.2.9-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-devel-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information bzip2-1.0.6-30.5 is installed OR bzip2-doc-1.0.6-30.5 is installed OR libbz2-1-1.0.6-30.5 is installed OR libbz2-1-32bit-1.0.6-30.5 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND slf4j-1.7.12-3.3 is installed

BACK