Oval Definition:	oval:org.opensuse.security:def:50394
Revision Date: 2020-12-01 Version: 1 Title: Security update for systemd (Important) Description: This update for systemd provides the following fixes: Security issues fixed: - CVE-2018-16864, CVE-2018-16865: Fixed two memory corruptions through attacker-controlled alloca()s (bsc#1120323) - CVE-2018-16866: Fixed an information leak in journald (bsc#1120323) - CVE-2018-6954: Fix mishandling of symlinks present in non-terminal path components (bsc#1080919) - Fixed an issue during system startup in relation to encrypted swap disks (bsc#1119971) Non-security issues fixed: - pam_systemd: Fix 'Cannot create session: Already running in a session' (bsc#1111498) - systemd-vconsole-setup: vconsole setup fails, fonts will not be copied to tty (bsc#1114933) - systemd-tmpfiles-setup: symlinked /tmp to /var/tmp breaking multiple units (bsc#1045723) - Fixed installation issue with /etc/machine-id during update (bsc#1117063) - btrfs: qgroups are assigned to parent qgroups after reboot (bsc#1093753) - logind: Stop managing VT switches if no sessions are registered on that VT. (bsc#1101591) - udev: Downgrade message when settting inotify watch up fails. (bsc#1005023) - udev: Ignore the exit code of systemd-detect-virt for memory hot-add. In SLE-12-SP3, 80-hotplug-cpu-mem.rules has a memory hot-add rule that uses systemd-detect-virt to detect non-zvm environment. The systemd-detect-virt returns exit failure code when it detected _none_ state. The exit failure code causes that the hot-add memory block can not be set to online. (bsc#1076696) Family: unix Class: patch Status: Reference(s): 1005023 1045723 1046299 1046303 1046305 1050244 1050536 1050545 1050549 1051510 1055186 1061840 1064802 1065600 1065729 1066129 1071995 1073513 1076696 1080919 1082635 1083647 1086323 1087092 1088810 1089644 1090631 1093205 1093753 1096254 1097583 1097584 1097585 1097586 1097587 1097588 1098291 1100523 1101591 1101674 1105392 1109158 1111498 1111622 1111666 1112178 1112504 1113994 1114279 1114933 1115015 1115022 1115025 1115916 1115917 1117063 1117602 1117665 1117998 1118338 1119461 1119465 1119971 1120323 1123034 1123080 1127838 1133021 1133140 1133147 1134303 1135642 1135854 1135873 1135967 1137040 1137799 1137861 1138190 1139073 1140025 1140090 1140729 1140845 1140883 1141600 1142635 1142667 1142685 1143706 1144162 1144338 1144375 1144449 1144903 1145092 1145099 1145579 1145580 1145582 1146612 1148410 1149119 1149853 1150452 1150457 1150465 1150875 1151508 1151807 1152033 1152624 1152665 1152685 1152696 1152697 1152788 1152790 1152791 1153112 1153158 1153236 1153263 1153476 1153509 1153607 1153646 1153681 1153713 1153717 1153718 1153719 1153811 1153969 1154108 1154189 1154242 1154268 1154354 1154372 1154521 1154578 1154607 1154608 1154610 1154611 1154651 1154737 1154747 1154848 1154858 1154905 1154956 1155061 1155178 1155179 1155184 1155186 1155671 1157424 1157480 1157651 1157966 1158013 1159271 1160218 1160979 1161360 1161702 1161907 1162557 1162617 1162618 1162619 1162623 1162928 1162936 1162937 1162943 1163178 1163206 1163383 1163384 1163762 1163774 1163836 1163840 1163841 1163842 1163843 1163844 1163845 1163846 1163849 1163850 1163851 1163852 1163853 1163855 1163856 1163857 1163858 1163859 1163860 1163861 1163862 1163863 1163867 1163869 1163880 1163971 1164051 1164069 1164098 1164115 1164314 1164315 1164388 1164471 1164598 1164632 1164705 1164712 1164727 1164728 1164729 1164730 1164731 1164732 1164733 1164734 1164735 1171746 1172437 1173786 1174010 1175223 1177914 802154 814594 919448 987367 998153 CVE-2017-5731 CVE-2017-5732 CVE-2017-5733 CVE-2017-5734 CVE-2017-5735 CVE-2018-1000199 CVE-2018-12207 CVE-2018-13440 CVE-2018-16843 CVE-2018-16844 CVE-2018-16845 CVE-2018-16864 CVE-2018-16865 CVE-2018-16866 CVE-2018-17957 CVE-2018-18074 CVE-2018-3613 CVE-2018-6954 CVE-2019-0804 CVE-2019-10208 CVE-2019-10220 CVE-2019-11135 CVE-2019-16232 CVE-2019-16233 CVE-2019-16234 CVE-2019-16995 CVE-2019-17056 CVE-2019-17133 CVE-2019-17666 CVE-2019-18898 CVE-2019-9511 CVE-2019-9513 CVE-2019-9516 CVE-2020-10757 CVE-2020-15999 CVE-2020-2732 CVE-2020-7068 CVE-2020-8631 CVE-2020-8632 CVE-2020-8648 CVE-2020-8992 SUSE-SU-2018:4155-1 SUSE-SU-2018:4209-1 SUSE-SU-2019:0137-1 SUSE-SU-2019:0603-1 SUSE-SU-2019:0940-1 SUSE-SU-2019:1487-2 SUSE-SU-2019:2228-1 SUSE-SU-2019:2309-1 SUSE-SU-2019:2559-1 SUSE-SU-2019:3349-1 SUSE-SU-2020:0688-1 SUSE-SU-2020:0751-1 SUSE-SU-2020:2455-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Realtime packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 6-LTSS SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND wireshark-1.8.12-0.2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information bash-3.2-147.22 is installed OR bash-doc-3.2-147.22 is installed OR libreadline5-5.2-147.22 is installed OR libreadline5-32bit-5.2-147.22 is installed OR readline-doc-5.2-147.22 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND facter-2.0.2-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information expat-2.1.0-13 is installed OR libexpat1-2.1.0-13 is installed OR libexpat1-32bit-2.1.0-13 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information gd-2.1.0-12 is installed OR gd-32bit-2.1.0-12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND dracut-044-113 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information cpio-2.11-36.3 is installed OR cpio-lang-2.11-36.3 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information php7-7.2.5-4.61 is installed OR php7-embed-7.2.5-4.61 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information libsystemd0-234-24.20 is installed OR libsystemd0-32bit-234-24.20 is installed OR libudev-devel-234-24.20 is installed OR libudev1-234-24.20 is installed OR libudev1-32bit-234-24.20 is installed OR systemd-234-24.20 is installed OR systemd-32bit-234-24.20 is installed OR systemd-bash-completion-234-24.20 is installed OR systemd-container-234-24.20 is installed OR systemd-coredump-234-24.20 is installed OR systemd-devel-234-24.20 is installed OR systemd-sysvinit-234-24.20 is installed OR udev-234-24.20 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.26 is installed OR reiserfs-kmp-default-4.12.14-197.26 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_35-default-7-2 is installed OR kernel-livepatch-SLE15_Update_14-7-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information nginx-1.14.2-3.6 is installed OR vim-plugin-nginx-1.14.2-3.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information python-requests-test-2.20.1-6.3 is installed OR python2-requests-test-2.20.1-6.3 is installed OR python3-requests-test-2.20.1-6.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information freetype2-2.10.1-4.8 is installed OR freetype2-devel-32bit-2.10.1-4.8 is installed OR freetype2-profile-tti35-2.10.1-4.8 is installed OR ft2demos-2.10.1-4.8 is installed OR ftbench-2.10.1-4.8 is installed OR ftdiff-2.10.1-4.8 is installed OR ftdump-2.10.1-4.8 is installed OR ftgamma-2.10.1-4.8 is installed OR ftgrid-2.10.1-4.8 is installed OR ftinspect-2.10.1-4.8 is installed OR ftlint-2.10.1-4.8 is installed OR ftmulti-2.10.1-4.8 is installed OR ftstring-2.10.1-4.8 is installed OR ftvalid-2.10.1-4.8 is installed OR ftview-2.10.1-4.8 is installed Definition Synopsis SUSE Linux Enterprise Module for Realtime packages 15 SP1 is installed AND Package Information cluster-md-kmp-rt-4.12.14-14.20 is installed OR dlm-kmp-rt-4.12.14-14.20 is installed OR gfs2-kmp-rt-4.12.14-14.20 is installed OR kernel-devel-rt-4.12.14-14.20 is installed OR kernel-rt-4.12.14-14.20 is installed OR kernel-rt-base-4.12.14-14.20 is installed OR kernel-rt-devel-4.12.14-14.20 is installed OR kernel-rt_debug-4.12.14-14.20 is installed OR kernel-rt_debug-devel-4.12.14-14.20 is installed OR kernel-source-rt-4.12.14-14.20 is installed OR kernel-syms-rt-4.12.14-14.20 is installed OR ocfs2-kmp-rt-4.12.14-14.20 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information ovmf-2017+git1510945757.b2662641d5-5.11 is installed OR ovmf-tools-2017+git1510945757.b2662641d5-5.11 is installed OR qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-5.11 is installed OR qemu-uefi-aarch64-2017+git1510945757.b2662641d5-5.11 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND apache2-mod_auth_openidc-2.3.8-3.7 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information tomcat-9.0.30-3.34 is installed OR tomcat-admin-webapps-9.0.30-3.34 is installed OR tomcat-el-3_0-api-9.0.30-3.34 is installed OR tomcat-jsp-2_3-api-9.0.30-3.34 is installed OR tomcat-lib-9.0.30-3.34 is installed OR tomcat-servlet-4_0-api-9.0.30-3.34 is installed OR tomcat-webapps-9.0.30-3.34 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libjpeg-turbo-1.3.1-30 is installed OR libjpeg62-62.1.0-30 is installed OR libjpeg62-32bit-62.1.0-30 is installed OR libjpeg62-turbo-1.3.1-30 is installed OR libjpeg8-8.0.2-30 is installed OR libjpeg8-32bit-8.0.2-30 is installed OR libturbojpeg0-8.0.2-30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND sudo-1.8.10p3-2.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND kdump-0.8.15-28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND ucode-intel-20180425-13.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND binutils-2.31-9.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_29-default-12-2 is installed OR kgraft-patch-SLE12-SP2_Update_10-12-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND dnsmasq-2.76-17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libopenssl-devel-1.0.2j-60.55 is installed OR libopenssl1_0_0-1.0.2j-60.55 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed OR openssl-1.0.2j-60.55 is installed OR openssl-doc-1.0.2j-60.55 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.35-30.50 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.35-30.50 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.35-30.50 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information nodejs10-10.21.0-1.21 is installed OR nodejs10-devel-10.21.0-1.21 is installed OR nodejs10-docs-10.21.0-1.21 is installed OR npm10-10.21.0-1.21 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.4-3.60 is installed OR libwebkit2gtk-4_0-37-2.28.4-3.60 is installed OR libwebkit2gtk3-lang-2.28.4-3.60 is installed OR webkit2gtk-4_0-injected-bundles-2.28.4-3.60 is installed OR webkit2gtk3-2.28.4-3.60 is installed OR webkit2gtk3-devel-2.28.4-3.60 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information libraw-0.18.9-3.8 is installed OR libraw-devel-0.18.9-3.8 is installed OR libraw16-0.18.9-3.8 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information ruby2.1-rubygem-chef-10.32.2-3 is installed OR ruby2.1-rubygem-chef-expander-10.32.2-1 is installed OR ruby2.1-rubygem-chef-server-10.32.2-1 is installed OR ruby2.1-rubygem-chef-server-api-10.32.2-4 is installed OR ruby2.1-rubygem-chef-solr-10.32.2-1 is installed OR rubygem-chef-10.32.2-3 is installed OR rubygem-chef-expander-10.32.2-1 is installed OR rubygem-chef-server-api-10.32.2-4 is installed OR rubygem-chef-solr-10.32.2-1 is installed Definition Synopsis SUSE OpenStack Cloud 6-LTSS is installed AND python-setuptools-18.0.1-4.8 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information openslp-2.0.0-18.17 is installed OR openslp-32bit-2.0.0-18.17 is installed OR openslp-server-2.0.0-18.17 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information evince-3.20.2-6.27 is installed OR evince-browser-plugin-3.20.2-6.27 is installed OR evince-lang-3.20.2-6.27 is installed OR evince-plugin-djvudocument-3.20.2-6.27 is installed OR evince-plugin-dvidocument-3.20.2-6.27 is installed OR evince-plugin-pdfdocument-3.20.2-6.27 is installed OR evince-plugin-psdocument-3.20.2-6.27 is installed OR evince-plugin-tiffdocument-3.20.2-6.27 is installed OR evince-plugin-xpsdocument-3.20.2-6.27 is installed OR libevdocument3-4-3.20.2-6.27 is installed OR libevview3-3-3.20.2-6.27 is installed OR nautilus-evince-3.20.2-6.27 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information glib2-2.48.2-12.15 is installed OR glib2-lang-2.48.2-12.15 is installed OR glib2-tools-2.48.2-12.15 is installed OR libgio-2_0-0-2.48.2-12.15 is installed OR libgio-2_0-0-32bit-2.48.2-12.15 is installed OR libglib-2_0-0-2.48.2-12.15 is installed OR libglib-2_0-0-32bit-2.48.2-12.15 is installed OR libgmodule-2_0-0-2.48.2-12.15 is installed OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed OR libgobject-2_0-0-2.48.2-12.15 is installed OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed OR libgthread-2_0-0-2.48.2-12.15 is installed OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed
BACK