Oval Definition:	oval:org.opensuse.security:def:50413
Revision Date: 2020-12-01 Version: 1 Title: Security update for python-paramiko (Important) Description: This update for python-paramiko to version 2.4.2 fixes the following issues: Security issue fixed: - CVE-2018-1000805: Fixed an authentication bypass in auth_handler.py (bsc#1111151) Non-security issue fixed: - Disable experimental gssapi support (bsc#1115769) Family: unix Class: patch Status: Reference(s): 1001161 1027282 1041090 1042670 1065729 1068664 1073269 1073748 1078326 1078485 1079300 1081750 1083507 1084650 1086001 1088004 1088009 1109847 1111151 1111793 1112438 1112980 1113755 1114837 1115464 1115769 1118897 1118898 1118899 1118990 1120114 1120115 1120116 1120117 1120118 1120119 1120120 1120121 1120122 1121412 1121846 1122191 1125689 1128140 1129180 1129186 1129346 1130840 1130847 1134156 1134616 1135727 1135729 1138459 1140359 1140683 1140738 1141853 1142721 1142743 1146182 1146184 1146882 1146884 1149792 1149955 1153165 1153238 1153830 1154217 1155419 1159035 1160471 1165631 1167244 1168938 1170441 1172538 1173659 1173942 1174157 1174186 1174247 1174748 1175520 1176400 1176946 1177027 1177340 1177511 1177685 1177724 1177725 1177943 214983 298378 346490 367853 379534 380942 399190 406051 425138 426563 430761 432677 436966 437293 441088 462375 525295 534721 551715 572673 577032 581765 603255 617751 637176 638233 658604 673071 682554 697251 707667 718009 747125 747794 751718 754447 766778 794139 804978 827982 831442 834601 836739 856835 856836 857470 863741 885882 898572 901715 935856 945401 964182 984751 985177 985348 989523 997436 CVE-2007-2052 CVE-2008-1721 CVE-2008-2315 CVE-2008-2316 CVE-2008-3142 CVE-2008-3143 CVE-2008-3144 CVE-2011-1521 CVE-2011-3389 CVE-2011-4944 CVE-2012-0845 CVE-2012-1150 CVE-2013-1752 CVE-2013-1753 CVE-2013-4238 CVE-2014-1912 CVE-2014-4650 CVE-2014-7185 CVE-2016-0772 CVE-2016-1000110 CVE-2016-5636 CVE-2016-5699 CVE-2017-1000158 CVE-2017-18207 CVE-2018-1000030 CVE-2018-1000802 CVE-2018-1000805 CVE-2018-1060 CVE-2018-1061 CVE-2018-11782 CVE-2018-14647 CVE-2018-15126 CVE-2018-15127 CVE-2018-16850 CVE-2018-16873 CVE-2018-16874 CVE-2018-16875 CVE-2018-20019 CVE-2018-20020 CVE-2018-20021 CVE-2018-20022 CVE-2018-20023 CVE-2018-20024 CVE-2018-20852 CVE-2018-6307 CVE-2019-0203 CVE-2019-10160 CVE-2019-12209 CVE-2019-12210 CVE-2019-12973 CVE-2019-13345 CVE-2019-14811 CVE-2019-14812 CVE-2019-14813 CVE-2019-14817 CVE-2019-14853 CVE-2019-14859 CVE-2019-15681 CVE-2019-15690 CVE-2019-16056 CVE-2019-16746 CVE-2019-16935 CVE-2019-20788 CVE-2019-3835 CVE-2019-3839 CVE-2019-5010 CVE-2019-9511 CVE-2019-9513 CVE-2019-9578 CVE-2019-9636 CVE-2019-9947 CVE-2019-9948 CVE-2020-10663 CVE-2020-10933 CVE-2020-11668 CVE-2020-12351 CVE-2020-12352 CVE-2020-14331 CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-14779 CVE-2020-14781 CVE-2020-14782 CVE-2020-14792 CVE-2020-14796 CVE-2020-14797 CVE-2020-14798 CVE-2020-14803 CVE-2020-15780 CVE-2020-1749 CVE-2020-25645 SUSE-SU-2018:3942-1 SUSE-SU-2019:0080-1 SUSE-SU-2019:0174-1 SUSE-SU-2019:0286-1 SUSE-SU-2019:1750-1 SUSE-SU-2019:2031-1 SUSE-SU-2019:2092-1 SUSE-SU-2019:2460-1 SUSE-SU-2019:2473-1 SUSE-SU-2019:2891-2 SUSE-SU-2020:0234-1 SUSE-SU-2020:0995-1 SUSE-SU-2020:1164-1 SUSE-SU-2020:2524-1 SUSE-SU-2020:2972-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-24.6.0esr-0.8 is installed OR MozillaFirefox-branding-SLED-24-0.7 is installed OR MozillaFirefox-translations-24.6.0esr-0.8 is installed OR libfreebl3-3.16.1-0.8 is installed OR libfreebl3-32bit-3.16.1-0.8 is installed OR libsoftokn3-3.16.1-0.8 is installed OR libsoftokn3-32bit-3.16.1-0.8 is installed OR mozilla-nspr-4.10.6-0.3 is installed OR mozilla-nspr-32bit-4.10.6-0.3 is installed OR mozilla-nss-3.16.1-0.8 is installed OR mozilla-nss-32bit-3.16.1-0.8 is installed OR mozilla-nss-tools-3.16.1-0.8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information curl-7.19.7-1.46 is installed OR libcurl4-7.19.7-1.46 is installed OR libcurl4-32bit-7.19.7-1.46 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information gnutls-3.2.15-1 is installed OR libgnutls28-3.2.15-1 is installed OR libgnutls28-32bit-3.2.15-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-9 is installed OR aaa_base-extras-13.2+git20140911.61c1681-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libdcerpc-binding0-4.4.2-36 is installed OR libdcerpc-binding0-32bit-4.4.2-36 is installed OR libdcerpc0-4.4.2-36 is installed OR libdcerpc0-32bit-4.4.2-36 is installed OR libndr-krb5pac0-4.4.2-36 is installed OR libndr-krb5pac0-32bit-4.4.2-36 is installed OR libndr-nbt0-4.4.2-36 is installed OR libndr-nbt0-32bit-4.4.2-36 is installed OR libndr-standard0-4.4.2-36 is installed OR libndr-standard0-32bit-4.4.2-36 is installed OR libndr0-4.4.2-36 is installed OR libndr0-32bit-4.4.2-36 is installed OR libnetapi0-4.4.2-36 is installed OR libnetapi0-32bit-4.4.2-36 is installed OR libsamba-credentials0-4.4.2-36 is installed OR libsamba-credentials0-32bit-4.4.2-36 is installed OR libsamba-errors0-4.4.2-36 is installed OR libsamba-errors0-32bit-4.4.2-36 is installed OR libsamba-hostconfig0-4.4.2-36 is installed OR libsamba-hostconfig0-32bit-4.4.2-36 is installed OR libsamba-passdb0-4.4.2-36 is installed OR libsamba-passdb0-32bit-4.4.2-36 is installed OR libsamba-util0-4.4.2-36 is installed OR libsamba-util0-32bit-4.4.2-36 is installed OR libsamdb0-4.4.2-36 is installed OR libsamdb0-32bit-4.4.2-36 is installed OR libsmbclient0-4.4.2-36 is installed OR libsmbclient0-32bit-4.4.2-36 is installed OR libsmbconf0-4.4.2-36 is installed OR libsmbconf0-32bit-4.4.2-36 is installed OR libsmbldap0-4.4.2-36 is installed OR libsmbldap0-32bit-4.4.2-36 is installed OR libtevent-util0-4.4.2-36 is installed OR libtevent-util0-32bit-4.4.2-36 is installed OR libwbclient0-4.4.2-36 is installed OR libwbclient0-32bit-4.4.2-36 is installed OR samba-4.4.2-36 is installed OR samba-client-4.4.2-36 is installed OR samba-client-32bit-4.4.2-36 is installed OR samba-doc-4.4.2-36 is installed OR samba-libs-4.4.2-36 is installed OR samba-libs-32bit-4.4.2-36 is installed OR samba-winbind-4.4.2-36 is installed OR samba-winbind-32bit-4.4.2-36 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND argyllcms-1.6.3-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information ecryptfs-utils-103-8.3 is installed OR ecryptfs-utils-32bit-103-8.3 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed AND Package Information python-ecdsa-0.13.3-3.3 is installed OR python2-ecdsa-0.13.3-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information python-paramiko-2.4.2-3.3 is installed OR python2-paramiko-2.4.2-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.64 is installed OR reiserfs-kmp-default-4.12.14-197.64 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_52-default-2-2 is installed OR kernel-livepatch-SLE15_Update_18-2-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information containerd-1.1.2-5.6 is installed OR containerd-ctr-1.1.2-5.6 is installed OR containerd-test-1.1.2-5.6 is installed OR docker-18.09.0_ce-6.11 is installed OR docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.6 is installed OR docker-runc-test-1.0.0rc5+gitr3562_69663f0bd4b6-6.6 is installed OR docker-test-18.09.0_ce-6.11 is installed OR docker-zsh-completion-18.09.0_ce-6.11 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2704_6da50d197830-4.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libu2f-host-1.1.6-3.6 is installed OR libu2f-host-doc-1.1.6-3.6 is installed OR u2f-host-1.1.6-3.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information java-1_8_0-openj9-1.8.0.272-3.7 is installed OR java-1_8_0-openj9-accessibility-1.8.0.272-3.7 is installed OR java-1_8_0-openj9-demo-1.8.0.272-3.7 is installed OR java-1_8_0-openj9-devel-1.8.0.272-3.7 is installed OR java-1_8_0-openj9-headless-1.8.0.272-3.7 is installed OR java-1_8_0-openj9-javadoc-1.8.0.272-3.7 is installed OR java-1_8_0-openj9-src-1.8.0.272-3.7 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libecpg6-10.6-4.8 is installed OR postgresql10-10.6-4.8 is installed OR postgresql10-contrib-10.6-4.8 is installed OR postgresql10-devel-10.6-4.8 is installed OR postgresql10-docs-10.6-4.8 is installed OR postgresql10-plperl-10.6-4.8 is installed OR postgresql10-plpython-10.6-4.8 is installed OR postgresql10-pltcl-10.6-4.8 is installed OR postgresql10-server-10.6-4.8 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information ovmf-201911-7.5 is installed OR ovmf-tools-201911-7.5 is installed OR qemu-ovmf-x86_64-201911-7.5 is installed OR qemu-uefi-aarch64-201911-7.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs8-8.17.0-3.32 is installed OR nodejs8-devel-8.17.0-3.32 is installed OR nodejs8-docs-8.17.0-3.32 is installed OR npm8-8.17.0-3.32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libpng16-16-1.6.8-5 is installed OR libpng16-16-32bit-1.6.8-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_67-60_64_24-default-7-2 is installed OR kgraft-patch-3_12_67-60_64_24-xen-7-2 is installed OR kgraft-patch-SLE12-SP1_Update_11-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libXrandr2-1.5.0-6 is installed OR libXrandr2-32bit-1.5.0-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND ucode-intel-20180807-13.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_38-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_13-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information gdk-pixbuf-lang-2.34.0-18 is installed OR gdk-pixbuf-query-loaders-2.34.0-18 is installed OR gdk-pixbuf-query-loaders-32bit-2.34.0-18 is installed OR libgdk_pixbuf-2_0-0-2.34.0-18 is installed OR libgdk_pixbuf-2_0-0-32bit-2.34.0-18 is installed OR typelib-1_0-GdkPixbuf-2_0-2.34.0-18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information MozillaFirefox-60.8.0-109.83 is installed OR MozillaFirefox-translations-common-60.8.0-109.83 is installed OR libfreebl3-3.44.1-58.28 is installed OR libfreebl3-32bit-3.44.1-58.28 is installed OR libfreebl3-hmac-3.44.1-58.28 is installed OR libfreebl3-hmac-32bit-3.44.1-58.28 is installed OR libsoftokn3-3.44.1-58.28 is installed OR libsoftokn3-32bit-3.44.1-58.28 is installed OR libsoftokn3-hmac-3.44.1-58.28 is installed OR libsoftokn3-hmac-32bit-3.44.1-58.28 is installed OR mozilla-nss-3.44.1-58.28 is installed OR mozilla-nss-32bit-3.44.1-58.28 is installed OR mozilla-nss-certs-3.44.1-58.28 is installed OR mozilla-nss-certs-32bit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-32bit-3.44.1-58.28 is installed OR mozilla-nss-tools-3.44.1-58.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND binutils-2.32-9.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND ucode-intel-20190618-13.47 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libfreebl3-3.53.1-3.45 is installed OR libfreebl3-32bit-3.53.1-3.45 is installed OR libfreebl3-hmac-3.53.1-3.45 is installed OR libfreebl3-hmac-32bit-3.53.1-3.45 is installed OR libsoftokn3-3.53.1-3.45 is installed OR libsoftokn3-32bit-3.53.1-3.45 is installed OR libsoftokn3-hmac-3.53.1-3.45 is installed OR libsoftokn3-hmac-32bit-3.53.1-3.45 is installed OR mozilla-nss-3.53.1-3.45 is installed OR mozilla-nss-32bit-3.53.1-3.45 is installed OR mozilla-nss-certs-3.53.1-3.45 is installed OR mozilla-nss-certs-32bit-3.53.1-3.45 is installed OR mozilla-nss-devel-3.53.1-3.45 is installed OR mozilla-nss-sysinit-3.53.1-3.45 is installed OR mozilla-nss-tools-3.53.1-3.45 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libQt5Concurrent-devel-5.9.4-8.24 is installed OR libQt5Concurrent5-5.9.4-8.24 is installed OR libQt5Core-devel-5.9.4-8.24 is installed OR libQt5Core-private-headers-devel-5.9.4-8.24 is installed OR libQt5Core5-5.9.4-8.24 is installed OR libQt5DBus-devel-5.9.4-8.24 is installed OR libQt5DBus-private-headers-devel-5.9.4-8.24 is installed OR libQt5DBus5-5.9.4-8.24 is installed OR libQt5Gui-devel-5.9.4-8.24 is installed OR libQt5Gui-private-headers-devel-5.9.4-8.24 is installed OR libQt5Gui5-5.9.4-8.24 is installed OR libQt5KmsSupport-devel-static-5.9.4-8.24 is installed OR libQt5KmsSupport-private-headers-devel-5.9.4-8.24 is installed OR libQt5Network-devel-5.9.4-8.24 is installed OR libQt5Network-private-headers-devel-5.9.4-8.24 is installed OR libQt5Network5-5.9.4-8.24 is installed OR libQt5OpenGL-devel-5.9.4-8.24 is installed OR libQt5OpenGL-private-headers-devel-5.9.4-8.24 is installed OR libQt5OpenGL5-5.9.4-8.24 is installed OR libQt5PlatformHeaders-devel-5.9.4-8.24 is installed OR libQt5PlatformSupport-devel-static-5.9.4-8.24 is installed OR libQt5PlatformSupport-private-headers-devel-5.9.4-8.24 is installed OR libQt5PrintSupport-devel-5.9.4-8.24 is installed OR libQt5PrintSupport-private-headers-devel-5.9.4-8.24 is installed OR libQt5PrintSupport5-5.9.4-8.24 is installed OR libQt5Sql-devel-5.9.4-8.24 is installed OR libQt5Sql-private-headers-devel-5.9.4-8.24 is installed OR libQt5Sql5-5.9.4-8.24 is installed OR libQt5Sql5-sqlite-5.9.4-8.24 is installed OR libQt5Test-devel-5.9.4-8.24 is installed OR libQt5Test-private-headers-devel-5.9.4-8.24 is installed OR libQt5Test5-5.9.4-8.24 is installed OR libQt5Widgets-devel-5.9.4-8.24 is installed OR libQt5Widgets-private-headers-devel-5.9.4-8.24 is installed OR libQt5Widgets5-5.9.4-8.24 is installed OR libQt5Xml-devel-5.9.4-8.24 is installed OR libQt5Xml5-5.9.4-8.24 is installed OR libqt5-qtbase-5.9.4-8.24 is installed OR libqt5-qtbase-common-devel-5.9.4-8.24 is installed OR libqt5-qtbase-devel-5.9.4-8.24 is installed OR libqt5-qtbase-private-headers-devel-5.9.4-8.24 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-60.2.1-3.13 is installed OR MozillaThunderbird-translations-common-60.2.1-3.13 is installed OR MozillaThunderbird-translations-other-60.2.1-3.13 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.7 is installed OR kernel-default-extra-4.12.14-197.7 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-branding-SLE-52-31 is installed OR MozillaFirefox-devel-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND python-tablib-0.9.11-3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libopenssl-devel-1.0.2j-60.55 is installed OR libopenssl1_0_0-1.0.2j-60.55 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed OR openssl-1.0.2j-60.55 is installed OR openssl-doc-1.0.2j-60.55 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-sprockets-2_12-2.12.5-1.4 is installed OR rubygem-sprockets-2_12-2.12.5-1.4 is installed
BACK