OVAL Reference oval:org.opensuse.security:def:50368

Oval Definition:

oval:org.opensuse.security:def:50368

Revision Date:	2020-12-01	Version:	1
Title:	Security update for gnutls (Important)
Description:	This update for gnutls fixes to version 3.6.7 the following issues: Security issued fixed: - CVE-2019-3836: Fixed an invalid pointer access via malformed TLS1.3 async messages (bsc#1130682). - CVE-2019-3829: Fixed a double free vulnerability in the certificate verification API (bsc#1130681). - CVE-2018-16868: Fixed Bleichenbacher-like side channel leakage in PKCS#1 v1.5 verification and padding oracle verification (bsc#1118087) Non-security issue fixed: - Update gnutls to support TLS 1.3 (fate#327114)
Family:	unix	Class:	patch
Status:		Reference(s):	1018371 1046299 1046303 1046305 1050244 1050536 1050545 1051510 1055186 1058115 1061840 1064802 1065600 1065697 1065729 1066129 1071995 1073513 1074701 1082555 1082635 1083548 1083647 1085030 1085235 1085240 1085308 1086323 1087078 1087092 1089644 1089895 1090036 1090631 1093205 1095508 1096254 1097583 1097584 1097585 1097586 1097587 1097588 1098291 1100394 1101674 1102640 1103320 1103990 1103991 1103992 1104745 1105412 1109158 1109837 1111666 1112178 1112374 1113956 1114279 1115375 1115722 1115723 1115724 1116833 1117665 1118087 1119461 1119465 1120163 1122193 1123034 1123080 1123304 1124278 1125494 1127354 1127355 1127371 1128189 1130681 1130682 1133021 1133140 1134303 1135642 1135854 1135873 1135966 1135967 1137040 1137325 1137799 1138190 1139073 1139937 1140090 1140709 1140729 1140845 1140883 1141600 1141780 1141782 1141783 1141784 1141785 1141786 1141787 1141789 1142635 1142667 1142685 1143706 1144333 1144338 1144375 1144449 1144903 1145099 1145929 1146612 1148410 1148868 1149119 1150452 1150457 1150465 1150660 1150875 1151508 1151794 1151927 1152489 1152624 1152685 1152788 1152791 1152930 1153108 1153112 1153158 1153236 1153263 1153476 1153509 1153646 1153713 1153717 1153718 1153719 1153811 1153969 1154036 1154037 1154108 1154189 1154354 1154372 1154578 1154607 1154608 1154610 1154611 1154651 1154737 1154747 1154824 1154848 1154858 1154905 1155178 1155179 1155184 1155186 1155671 1155784 1156321 1156334 1157169 1158095 1158265 1158709 1158798 1158983 1159037 1159058 1159199 1159692 1160388 1160947 1161016 1162002 1162063 1163309 1163403 1163897 1163985 1164284 1164780 1164871 1165183 1165478 1165741 1166780 1166860 1166861 1166862 1166864 1166866 1166867 1166868 1166870 1166940 1166969 1166978 1166985 1167104 1167288 1167574 1167851 1167867 1168081 1168202 1168332 1168486 1168670 1168760 1168762 1168763 1168764 1168765 1168789 1168881 1168884 1168952 1168959 1169020 1169057 1169194 1169390 1169514 1169525 1169625 1169762 1169771 1169790 1169795 1170011 1170056 1170125 1170145 1170284 1170345 1170442 1170457 1170522 1170592 1170617 1170618 1170620 1170621 1170770 1170778 1170791 1170901 1171078 1171098 1171118 1171124 1171189 1171191 1171195 1171202 1171205 1171214 1171217 1171218 1171219 1171220 1171244 1171293 1171417 1171424 1171527 1171529 1171530 1171558 1171599 1171600 1171601 1171602 1171604 1171605 1171606 1171607 1171608 1171609 1171610 1171611 1171612 1171613 1171614 1171615 1171616 1171617 1171618 1171619 1171620 1171621 1171622 1171623 1171624 1171625 1171626 1171662 1171679 1171688 1171691 1171692 1171694 1171695 1171732 1171736 1171739 1171743 1171753 1171759 1171817 1171835 1171841 1171868 1171904 1171948 1171949 1171951 1171952 1171979 1171982 1171983 1171988 1172017 1172096 1172097 1172098 1172099 1172101 1172102 1172103 1172104 1172108 1172127 1172130 1172185 1172188 1172199 1172201 1172202 1172221 1172247 1172249 1172251 1172257 1172317 1172342 1172343 1172344 1172366 1172378 1172391 1172397 1172418 1172428 1172453 1172458 1172484 1172537 1172538 1172687 1172719 1172759 1172775 1172781 1172782 1172783 1172871 1172872 1172963 1172999 1173060 1173074 1173146 1173265 1173280 1173284 1173428 1173485 1173514 1173567 1173573 1173746 1173798 1173818 1173820 1173825 1173826 1173833 1173838 1173839 1173845 1173857 1173954 1174003 1174026 1174070 1174113 1174115 1174122 1174123 1174161 1174186 1174187 1174205 1174247 1174296 1174298 1174299 1174343 1174356 1174387 1174409 1174438 1174462 1174477 1174484 1174547 1174549 1174550 1174625 1174658 1174685 1174689 1174699 1174734 1174757 1174771 1174840 1174841 1174843 1174844 1174845 1174852 1174873 1174887 1174904 1174926 1174968 1175062 1175063 1175064 1175065 1175066 1175067 1175112 1175127 1175128 1175149 1175199 1175213 1175228 1175232 1175284 1175393 1175394 1175396 1175397 1175398 1175399 1175400 1175401 1175402 1175403 1175404 1175405 1175406 1175407 1175408 1175409 1175410 1175411 1175412 1175413 1175414 1175415 1175416 1175417 1175418 1175419 1175420 1175421 1175422 1175423 1175440 1175493 1175515 1175518 1175526 1175550 1175654 1175666 1175668 1175669 1175670 1175767 1175768 1175769 1175770 1175771 1175772 1175786 1175873 1175992 1176262 985657 CVE-2016-10030 CVE-2016-3189 CVE-2017-15566 CVE-2018-1000199 CVE-2018-10995 CVE-2018-12207 CVE-2018-16868 CVE-2018-19198 CVE-2018-19199 CVE-2018-19200 CVE-2018-20721 CVE-2018-20843 CVE-2018-7033 CVE-2019-0154 CVE-2019-0155 CVE-2019-10220 CVE-2019-11135 CVE-2019-12838 CVE-2019-13272 CVE-2019-14889 CVE-2019-1543 CVE-2019-15917 CVE-2019-16232 CVE-2019-16233 CVE-2019-16234 CVE-2019-16995 CVE-2019-17056 CVE-2019-17133 CVE-2019-17594 CVE-2019-17595 CVE-2019-17666 CVE-2019-19462 CVE-2019-19727 CVE-2019-19728 CVE-2019-20806 CVE-2019-20810 CVE-2019-20812 CVE-2019-20908 CVE-2019-20916 CVE-2019-2745 CVE-2019-2762 CVE-2019-2766 CVE-2019-2769 CVE-2019-2786 CVE-2019-2816 CVE-2019-2842 CVE-2019-3829 CVE-2019-3836 CVE-2019-6438 CVE-2019-7317 CVE-2019-9455 CVE-2020-0305 CVE-2020-0543 CVE-2020-10135 CVE-2020-10690 CVE-2020-10711 CVE-2020-10720 CVE-2020-10732 CVE-2020-10751 CVE-2020-10757 CVE-2020-10766 CVE-2020-10767 CVE-2020-10768 CVE-2020-10769 CVE-2020-10773 CVE-2020-10781 CVE-2020-11669 CVE-2020-12114 CVE-2020-12464 CVE-2020-12652 CVE-2020-12653 CVE-2020-12654 CVE-2020-12655 CVE-2020-12656 CVE-2020-12657 CVE-2020-12659 CVE-2020-12769 CVE-2020-12771 CVE-2020-12888 CVE-2020-13143 CVE-2020-13974 CVE-2020-14314 CVE-2020-14331 CVE-2020-14342 CVE-2020-14356 CVE-2020-14416 CVE-2020-15393 CVE-2020-15780 CVE-2020-16166 CVE-2020-1720 CVE-2020-24394 SUSE-SU-2019:0228-1 SUSE-SU-2019:0678-1 SUSE-SU-2019:1121-1 SUSE-SU-2019:1206-2 SUSE-SU-2019:1835-1 SUSE-SU-2019:2021-1 SUSE-SU-2019:2997-1 SUSE-SU-2019:3247-1 SUSE-SU-2019:3293-1 SUSE-SU-2020:0443-1 SUSE-SU-2020:0589-1 SUSE-SU-2020:2487-1 SUSE-SU-2020:2631-1 SUSE-SU-2020:2784-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Realtime packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libpoppler-glib4-0.12.3-1.8 is installed OR libpoppler-qt4-3-0.12.3-1.8 is installed OR libpoppler5-0.12.3-1.8 is installed OR poppler-tools-0.12.3-1.8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND foomatic-filters-3.0.2-269.39 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information bzip2-1.0.6-27 is installed OR libbz2-1-1.0.6-27 is installed OR libbz2-1-32bit-1.0.6-27 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND cifs-utils-6.4-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information curl-7.37.0-28 is installed OR libcurl4-7.37.0-28 is installed OR libcurl4-32bit-7.37.0-28 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND binutils-2.26.1-9.12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information postgresql10-10.12-4.19 is installed OR postgresql10-test-10.12-4.19 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information gnutls-3.6.7-6.8 is installed OR libgnutls-devel-3.6.7-6.8 is installed OR libgnutls30-3.6.7-6.8 is installed OR libgnutls30-32bit-3.6.7-6.8 is installed OR libgnutlsxx-devel-3.6.7-6.8 is installed OR libgnutlsxx28-3.6.7-6.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information kernel-default-4.12.14-150.41 is installed OR reiserfs-kmp-default-4.12.14-150.41 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_14-default-6-2 is installed OR kernel-livepatch-SLE15_Update_9-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information liburiparser1-0.8.5-3.5 is installed OR uriparser-0.8.5-3.5 is installed OR uriparser-devel-0.8.5-3.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information bzip2-1.0.6-5.3 is installed OR bzip2-doc-1.0.6-5.3 is installed OR libbz2-devel-32bit-1.0.6-5.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information cifs-utils-6.9-5.6 is installed OR pam_cifscreds-6.9-5.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python-pip-10.0.1-3.3 is installed OR python2-pip-10.0.1-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Realtime packages 15 SP1 is installed AND Package Information cluster-md-kmp-rt-4.12.14-14.28 is installed OR dlm-kmp-rt-4.12.14-14.28 is installed OR gfs2-kmp-rt-4.12.14-14.28 is installed OR kernel-devel-rt-4.12.14-14.28 is installed OR kernel-rt-4.12.14-14.28 is installed OR kernel-rt-base-4.12.14-14.28 is installed OR kernel-rt-devel-4.12.14-14.28 is installed OR kernel-rt_debug-4.12.14-14.28 is installed OR kernel-rt_debug-devel-4.12.14-14.28 is installed OR kernel-source-rt-4.12.14-14.28 is installed OR kernel-syms-rt-4.12.14-14.28 is installed OR ocfs2-kmp-rt-4.12.14-14.28 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information qemu-2.11.2-9.9 is installed OR qemu-arm-2.11.2-9.9 is installed OR qemu-block-curl-2.11.2-9.9 is installed OR qemu-block-iscsi-2.11.2-9.9 is installed OR qemu-block-rbd-2.11.2-9.9 is installed OR qemu-block-ssh-2.11.2-9.9 is installed OR qemu-guest-agent-2.11.2-9.9 is installed OR qemu-ipxe-1.0.0-9.9 is installed OR qemu-kvm-2.11.2-9.9 is installed OR qemu-lang-2.11.2-9.9 is installed OR qemu-ppc-2.11.2-9.9 is installed OR qemu-s390-2.11.2-9.9 is installed OR qemu-seabios-1.11.0-9.9 is installed OR qemu-sgabios-8-9.9 is installed OR qemu-vgabios-1.11.0-9.9 is installed OR qemu-x86-2.11.2-9.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information xen-4.12.3_06-3.25 is installed OR xen-devel-4.12.3_06-3.25 is installed OR xen-tools-4.12.3_06-3.25 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information icu-60.2-3.9 is installed OR libicu60_2-60.2-3.9 is installed OR libicu60_2-bedata-60.2-3.9 is installed OR libicu60_2-ledata-60.2-3.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libXxf86vm1-1.1.3-3 is installed OR libXxf86vm1-32bit-1.1.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_32-default-4-3 is installed OR kgraft-patch-3_12_69-60_64_32-xen-4-3 is installed OR kgraft-patch-SLE12-SP1_Update_13-4-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information glibc-2.22-49 is installed OR glibc-32bit-2.22-49 is installed OR glibc-devel-2.22-49 is installed OR glibc-devel-32bit-2.22-49 is installed OR glibc-html-2.22-49 is installed OR glibc-i18ndata-2.22-49 is installed OR glibc-info-2.22-49 is installed OR glibc-locale-2.22-49 is installed OR glibc-locale-32bit-2.22-49 is installed OR glibc-profile-2.22-49 is installed OR glibc-profile-32bit-2.22-49 is installed OR nscd-2.22-49 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information MozillaFirefox-52.8.1esr-109.34 is installed OR MozillaFirefox-devel-52.8.1esr-109.34 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information openslp-2.0.0-18.15 is installed OR openslp-32bit-2.0.0-18.15 is installed OR openslp-server-2.0.0-18.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_80-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_22-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information bind-9.9.9P1-62 is installed OR bind-chrootenv-9.9.9P1-62 is installed OR bind-doc-9.9.9P1-62 is installed OR bind-libs-9.9.9P1-62 is installed OR bind-libs-32bit-9.9.9P1-62 is installed OR bind-utils-9.9.9P1-62 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_176-94_88-default-3-2 is installed OR kgraft-patch-SLE12-SP3_Update_24-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.45-38.37 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.45-38.37 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.45-38.37 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.45-38.37 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information freeradius-server-3.0.16-3.6 is installed OR freeradius-server-devel-3.0.16-3.6 is installed OR freeradius-server-krb5-3.0.16-3.6 is installed OR freeradius-server-ldap-3.0.16-3.6 is installed OR freeradius-server-libs-3.0.16-3.6 is installed OR freeradius-server-mysql-3.0.16-3.6 is installed OR freeradius-server-perl-3.0.16-3.6 is installed OR freeradius-server-postgresql-3.0.16-3.6 is installed OR freeradius-server-python-3.0.16-3.6 is installed OR freeradius-server-sqlite-3.0.16-3.6 is installed OR freeradius-server-utils-3.0.16-3.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information mutt-1.10.1-3.8 is installed OR mutt-doc-1.10.1-3.8 is installed OR mutt-lang-1.10.1-3.8 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.16 is installed OR kernel-default-extra-4.12.14-25.16 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information openstack-heat-5.0.2~a0~dev9-1 is installed OR openstack-heat-api-5.0.2~a0~dev9-1 is installed OR openstack-heat-api-cfn-5.0.2~a0~dev9-1 is installed OR openstack-heat-api-cloudwatch-5.0.2~a0~dev9-1 is installed OR openstack-heat-engine-5.0.2~a0~dev9-1 is installed OR openstack-heat-plugin-heat_docker-5.0.2~a0~dev9-1 is installed OR python-heat-5.0.2~a0~dev9-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND clamav-0.100.1-33.15 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND cobbler-2.6.6-49.14 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information evince-3.20.2-6.27 is installed OR evince-browser-plugin-3.20.2-6.27 is installed OR evince-lang-3.20.2-6.27 is installed OR evince-plugin-djvudocument-3.20.2-6.27 is installed OR evince-plugin-dvidocument-3.20.2-6.27 is installed OR evince-plugin-pdfdocument-3.20.2-6.27 is installed OR evince-plugin-psdocument-3.20.2-6.27 is installed OR evince-plugin-tiffdocument-3.20.2-6.27 is installed OR evince-plugin-xpsdocument-3.20.2-6.27 is installed OR libevdocument3-4-3.20.2-6.27 is installed OR libevview3-3-3.20.2-6.27 is installed OR nautilus-evince-3.20.2-6.27 is installed

BACK