Oval Definition:oval:org.opensuse.security:def:50394
Revision Date:2020-12-01Version:1
Title:Security update for systemd (Important)
Description:

This update for systemd provides the following fixes:

Security issues fixed:

- CVE-2018-16864, CVE-2018-16865: Fixed two memory corruptions through attacker-controlled alloca()s (bsc#1120323) - CVE-2018-16866: Fixed an information leak in journald (bsc#1120323) - CVE-2018-6954: Fix mishandling of symlinks present in non-terminal path components (bsc#1080919) - Fixed an issue during system startup in relation to encrypted swap disks (bsc#1119971)

Non-security issues fixed:

- pam_systemd: Fix 'Cannot create session: Already running in a session' (bsc#1111498) - systemd-vconsole-setup: vconsole setup fails, fonts will not be copied to tty (bsc#1114933) - systemd-tmpfiles-setup: symlinked /tmp to /var/tmp breaking multiple units (bsc#1045723) - Fixed installation issue with /etc/machine-id during update (bsc#1117063) - btrfs: qgroups are assigned to parent qgroups after reboot (bsc#1093753) - logind: Stop managing VT switches if no sessions are registered on that VT. (bsc#1101591) - udev: Downgrade message when settting inotify watch up fails. (bsc#1005023) - udev: Ignore the exit code of systemd-detect-virt for memory hot-add. In SLE-12-SP3, 80-hotplug-cpu-mem.rules has a memory hot-add rule that uses systemd-detect-virt to detect non-zvm environment. The systemd-detect-virt returns exit failure code when it detected _none_ state. The exit failure code causes that the hot-add memory block can not be set to online. (bsc#1076696)
Family:unixClass:patch
Status:Reference(s):1005023
1045723
1046299
1046303
1046305
1050244
1050536
1050545
1050549
1051510
1055186
1061840
1064802
1065600
1065729
1066129
1071995
1073513
1076696
1080919
1082635
1083647
1086323
1087092
1088810
1089644
1090631
1093205
1093753
1096254
1097583
1097584
1097585
1097586
1097587
1097588
1098291
1100523
1101591
1101674
1105392
1109158
1111498
1111622
1111666
1112178
1112504
1113994
1114279
1114933
1115015
1115022
1115025
1115916
1115917
1117063
1117602
1117665
1117998
1118338
1119461
1119465
1119971
1120323
1123034
1123080
1127838
1133021
1133140
1133147
1134303
1135642
1135854
1135873
1135967
1137040
1137799
1137861
1138190
1139073
1140025
1140090
1140729
1140845
1140883
1141600
1142635
1142667
1142685
1143706
1144162
1144338
1144375
1144449
1144903
1145092
1145099
1145579
1145580
1145582
1146612
1148410
1149119
1149853
1150452
1150457
1150465
1150875
1151508
1151807
1152033
1152624
1152665
1152685
1152696
1152697
1152788
1152790
1152791
1153112
1153158
1153236
1153263
1153476
1153509
1153607
1153646
1153681
1153713
1153717
1153718
1153719
1153811
1153969
1154108
1154189
1154242
1154268
1154354
1154372
1154521
1154578
1154607
1154608
1154610
1154611
1154651
1154737
1154747
1154848
1154858
1154905
1154956
1155061
1155178
1155179
1155184
1155186
1155671
1157424
1157480
1157651
1157966
1158013
1159271
1160218
1160979
1161360
1161702
1161907
1162557
1162617
1162618
1162619
1162623
1162928
1162936
1162937
1162943
1163178
1163206
1163383
1163384
1163762
1163774
1163836
1163840
1163841
1163842
1163843
1163844
1163845
1163846
1163849
1163850
1163851
1163852
1163853
1163855
1163856
1163857
1163858
1163859
1163860
1163861
1163862
1163863
1163867
1163869
1163880
1163971
1164051
1164069
1164098
1164115
1164314
1164315
1164388
1164471
1164598
1164632
1164705
1164712
1164727
1164728
1164729
1164730
1164731
1164732
1164733
1164734
1164735
1171746
1172437
1173786
1174010
1175223
1177914
802154
814594
919448
987367
998153
CVE-2017-5731
CVE-2017-5732
CVE-2017-5733
CVE-2017-5734
CVE-2017-5735
CVE-2018-1000199
CVE-2018-12207
CVE-2018-13440
CVE-2018-16843
CVE-2018-16844
CVE-2018-16845
CVE-2018-16864
CVE-2018-16865
CVE-2018-16866
CVE-2018-17957
CVE-2018-18074
CVE-2018-3613
CVE-2018-6954
CVE-2019-0804
CVE-2019-10208
CVE-2019-10220
CVE-2019-11135
CVE-2019-16232
CVE-2019-16233
CVE-2019-16234
CVE-2019-16995
CVE-2019-17056
CVE-2019-17133
CVE-2019-17666
CVE-2019-18898
CVE-2019-9511
CVE-2019-9513
CVE-2019-9516
CVE-2020-10757
CVE-2020-15999
CVE-2020-2732
CVE-2020-7068
CVE-2020-8631
CVE-2020-8632
CVE-2020-8648
CVE-2020-8992
SUSE-SU-2018:4155-1
SUSE-SU-2018:4209-1
SUSE-SU-2019:0137-1
SUSE-SU-2019:0603-1
SUSE-SU-2019:0940-1
SUSE-SU-2019:1487-2
SUSE-SU-2019:2228-1
SUSE-SU-2019:2309-1
SUSE-SU-2019:2559-1
SUSE-SU-2019:3349-1
SUSE-SU-2020:0688-1
SUSE-SU-2020:0751-1
SUSE-SU-2020:2455-1
Platform(s):SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1
SUSE Linux Enterprise Module for Basesystem 15
SUSE Linux Enterprise Module for Legacy Software 15 SP1
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Realtime packages 15 SP1
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Workstation Extension 15
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 6-LTSS
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND wireshark-1.8.12-0.2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • bash-3.2-147.22 is installed
  • OR bash-doc-3.2-147.22 is installed
  • OR libreadline5-5.2-147.22 is installed
  • OR libreadline5-32bit-5.2-147.22 is installed
  • OR readline-doc-5.2-147.22 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND facter-2.0.2-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • expat-2.1.0-13 is installed
  • OR libexpat1-2.1.0-13 is installed
  • OR libexpat1-32bit-2.1.0-13 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • gd-2.1.0-12 is installed
  • OR gd-32bit-2.1.0-12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND dracut-044-113 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • cpio-2.11-36.3 is installed
  • OR cpio-lang-2.11-36.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed
  • AND Package Information
  • php7-7.2.5-4.61 is installed
  • OR php7-embed-7.2.5-4.61 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 is installed
  • AND Package Information
  • libsystemd0-234-24.20 is installed
  • OR libsystemd0-32bit-234-24.20 is installed
  • OR libudev-devel-234-24.20 is installed
  • OR libudev1-234-24.20 is installed
  • OR libudev1-32bit-234-24.20 is installed
  • OR systemd-234-24.20 is installed
  • OR systemd-32bit-234-24.20 is installed
  • OR systemd-bash-completion-234-24.20 is installed
  • OR systemd-container-234-24.20 is installed
  • OR systemd-coredump-234-24.20 is installed
  • OR systemd-devel-234-24.20 is installed
  • OR systemd-sysvinit-234-24.20 is installed
  • OR udev-234-24.20 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.26 is installed
  • OR reiserfs-kmp-default-4.12.14-197.26 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-150_35-default-7-2 is installed
  • OR kernel-livepatch-SLE15_Update_14-7-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • nginx-1.14.2-3.6 is installed
  • OR vim-plugin-nginx-1.14.2-3.6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • python-requests-test-2.20.1-6.3 is installed
  • OR python2-requests-test-2.20.1-6.3 is installed
  • OR python3-requests-test-2.20.1-6.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • freetype2-2.10.1-4.8 is installed
  • OR freetype2-devel-32bit-2.10.1-4.8 is installed
  • OR freetype2-profile-tti35-2.10.1-4.8 is installed
  • OR ft2demos-2.10.1-4.8 is installed
  • OR ftbench-2.10.1-4.8 is installed
  • OR ftdiff-2.10.1-4.8 is installed
  • OR ftdump-2.10.1-4.8 is installed
  • OR ftgamma-2.10.1-4.8 is installed
  • OR ftgrid-2.10.1-4.8 is installed
  • OR ftinspect-2.10.1-4.8 is installed
  • OR ftlint-2.10.1-4.8 is installed
  • OR ftmulti-2.10.1-4.8 is installed
  • OR ftstring-2.10.1-4.8 is installed
  • OR ftvalid-2.10.1-4.8 is installed
  • OR ftview-2.10.1-4.8 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Realtime packages 15 SP1 is installed
  • AND Package Information
  • cluster-md-kmp-rt-4.12.14-14.20 is installed
  • OR dlm-kmp-rt-4.12.14-14.20 is installed
  • OR gfs2-kmp-rt-4.12.14-14.20 is installed
  • OR kernel-devel-rt-4.12.14-14.20 is installed
  • OR kernel-rt-4.12.14-14.20 is installed
  • OR kernel-rt-base-4.12.14-14.20 is installed
  • OR kernel-rt-devel-4.12.14-14.20 is installed
  • OR kernel-rt_debug-4.12.14-14.20 is installed
  • OR kernel-rt_debug-devel-4.12.14-14.20 is installed
  • OR kernel-source-rt-4.12.14-14.20 is installed
  • OR kernel-syms-rt-4.12.14-14.20 is installed
  • OR ocfs2-kmp-rt-4.12.14-14.20 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • ovmf-2017+git1510945757.b2662641d5-5.11 is installed
  • OR ovmf-tools-2017+git1510945757.b2662641d5-5.11 is installed
  • OR qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-5.11 is installed
  • OR qemu-uefi-aarch64-2017+git1510945757.b2662641d5-5.11 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND apache2-mod_auth_openidc-2.3.8-3.7 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND Package Information
  • tomcat-9.0.30-3.34 is installed
  • OR tomcat-admin-webapps-9.0.30-3.34 is installed
  • OR tomcat-el-3_0-api-9.0.30-3.34 is installed
  • OR tomcat-jsp-2_3-api-9.0.30-3.34 is installed
  • OR tomcat-lib-9.0.30-3.34 is installed
  • OR tomcat-servlet-4_0-api-9.0.30-3.34 is installed
  • OR tomcat-webapps-9.0.30-3.34 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libjpeg-turbo-1.3.1-30 is installed
  • OR libjpeg62-62.1.0-30 is installed
  • OR libjpeg62-32bit-62.1.0-30 is installed
  • OR libjpeg62-turbo-1.3.1-30 is installed
  • OR libjpeg8-8.0.2-30 is installed
  • OR libjpeg8-32bit-8.0.2-30 is installed
  • OR libturbojpeg0-8.0.2-30 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND sudo-1.8.10p3-2.19 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND kdump-0.8.15-28 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND ucode-intel-20180425-13.20 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND binutils-2.31-9.26 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_74-92_29-default-12-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_10-12-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND dnsmasq-2.76-17 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libopenssl-devel-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed
  • OR openssl-1.0.2j-60.55 is installed
  • OR openssl-doc-1.0.2j-60.55 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.35-30.50 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.35-30.50 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.35-30.50 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • nodejs10-10.21.0-1.21 is installed
  • OR nodejs10-devel-10.21.0-1.21 is installed
  • OR nodejs10-docs-10.21.0-1.21 is installed
  • OR npm10-10.21.0-1.21 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.28.4-3.60 is installed
  • OR libwebkit2gtk-4_0-37-2.28.4-3.60 is installed
  • OR libwebkit2gtk3-lang-2.28.4-3.60 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.28.4-3.60 is installed
  • OR webkit2gtk3-2.28.4-3.60 is installed
  • OR webkit2gtk3-devel-2.28.4-3.60 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • libraw-0.18.9-3.8 is installed
  • OR libraw-devel-0.18.9-3.8 is installed
  • OR libraw16-0.18.9-3.8 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • ruby2.1-rubygem-chef-10.32.2-3 is installed
  • OR ruby2.1-rubygem-chef-expander-10.32.2-1 is installed
  • OR ruby2.1-rubygem-chef-server-10.32.2-1 is installed
  • OR ruby2.1-rubygem-chef-server-api-10.32.2-4 is installed
  • OR ruby2.1-rubygem-chef-solr-10.32.2-1 is installed
  • OR rubygem-chef-10.32.2-3 is installed
  • OR rubygem-chef-expander-10.32.2-1 is installed
  • OR rubygem-chef-server-api-10.32.2-4 is installed
  • OR rubygem-chef-solr-10.32.2-1 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 6-LTSS is installed
  • AND python-setuptools-18.0.1-4.8 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • openslp-2.0.0-18.17 is installed
  • OR openslp-32bit-2.0.0-18.17 is installed
  • OR openslp-server-2.0.0-18.17 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • evince-3.20.2-6.27 is installed
  • OR evince-browser-plugin-3.20.2-6.27 is installed
  • OR evince-lang-3.20.2-6.27 is installed
  • OR evince-plugin-djvudocument-3.20.2-6.27 is installed
  • OR evince-plugin-dvidocument-3.20.2-6.27 is installed
  • OR evince-plugin-pdfdocument-3.20.2-6.27 is installed
  • OR evince-plugin-psdocument-3.20.2-6.27 is installed
  • OR evince-plugin-tiffdocument-3.20.2-6.27 is installed
  • OR evince-plugin-xpsdocument-3.20.2-6.27 is installed
  • OR libevdocument3-4-3.20.2-6.27 is installed
  • OR libevview3-3-3.20.2-6.27 is installed
  • OR nautilus-evince-3.20.2-6.27 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • glib2-2.48.2-12.15 is installed
  • OR glib2-lang-2.48.2-12.15 is installed
  • OR glib2-tools-2.48.2-12.15 is installed
  • OR libgio-2_0-0-2.48.2-12.15 is installed
  • OR libgio-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libglib-2_0-0-2.48.2-12.15 is installed
  • OR libglib-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgmodule-2_0-0-2.48.2-12.15 is installed
  • OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgobject-2_0-0-2.48.2-12.15 is installed
  • OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgthread-2_0-0-2.48.2-12.15 is installed
  • OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed
  • BACK