OVAL Reference oval:org.opensuse.security:def:50425

Oval Definition:

oval:org.opensuse.security:def:50425

Revision Date:	2020-12-01	Version:	1
Title:	Security update for libgcrypt (Moderate)
Description:	This update for libgcrypt fixes the following issues: Security issues fixed: - CVE-2019-12904: The C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other processes. (The C implementation is used on platforms where an assembly-language implementation is unavailable.) (bsc#1138939) Other bugfixes: - Don't run full FIPS self-tests from constructor (bsc#1097073) - Skip all the self-tests except for binary integrity when called from the constructor (bsc#1097073) - Enforce the minimal RSA keygen size in fips mode (bsc#1125740) - avoid executing some tests twice. - Fixed a race condition in initialization. - Fixed env-script-interpreter in cavs_driver.pl - Fixed redundant fips tests in some situations causing failure to boot in fips mode. (bsc#1097073) This helps during booting of the system in FIPS mode with insufficient entropy.
Family:	unix	Class:	patch
Status:		Reference(s):	1051510 1054914 1055117 1061840 1065600 1065729 1071995 1082555 1085030 1088047 1089524 1094420 1097073 1098633 1100523 1102046 1102193 1103990 1103991 1103992 1104967 1106383 1109158 1109307 1109837 1111666 1112374 1113722 1113760 1113969 1114279 1114685 1114831 1117106 1118579 1118584 1119086 1119113 1119532 1120163 1120423 1123034 1125703 1125740 1127988 1128902 1130836 1131304 1131645 1132091 1132390 1133021 1133401 1133738 1134078 1134303 1134395 1135556 1135642 1135897 1136161 1136264 1136343 1136572 1136935 1137069 1137625 1137728 1137865 1137959 1138879 1138939 1139712 1139751 1139771 1139865 1140133 1140155 1140228 1140328 1140405 1140424 1140428 1140454 1140463 1140575 1140577 1140637 1140658 1140709 1140715 1140719 1140726 1140727 1140728 1140814 1140887 1140888 1140889 1140891 1140893 1140948 1140954 1140955 1140956 1140957 1140958 1140959 1140960 1140961 1140962 1140964 1140971 1140972 1140992 1141013 1142076 1142635 1146042 1146519 1146540 1146664 1148133 1148712 1148868 1149032 1149313 1149446 1149555 1149651 1150381 1150423 1151350 1151610 1151667 1151680 1151891 1151955 1152024 1152025 1152026 1152161 1152325 1152457 1152460 1152466 1152472 1152489 1152972 1152974 1152975 1153095 1153102 1153245 1153274 1154353 1154488 1154492 1154661 1155075 1155518 1156395 1159058 1159913 1160634 1162610 1165631 1167773 1169512 1169790 1171634 1171688 1172108 1172197 1172247 1172402 1172418 1172871 1172963 1173468 1173485 1173798 1173813 1173954 1174002 1174003 1174026 1174205 1174247 1174362 1174387 1174484 1174625 1174645 1174689 1174699 1174737 1174757 1174762 1174770 1174771 1174777 1174805 1174824 1174825 1174852 1174865 1174880 1174897 1174906 1174969 1175009 1175010 1175011 1175012 1175013 1175014 1175015 1175016 1175017 1175018 1175019 1175020 1175021 1175052 1175112 1175116 1175128 1175149 1175175 1175176 1175180 1175181 1175182 1175183 1175184 1175185 1175186 1175187 1175188 1175189 1175190 1175191 1175192 1175195 1175199 1175213 1175232 1175263 1175284 1175296 1175344 1175345 1175346 1175347 1175367 1175377 1175440 1175493 1175546 1175550 1175654 1175691 1175768 1175769 1175770 1175771 1175772 1175774 1175775 1175834 1175873 CVE-2017-18595 CVE-2018-13440 CVE-2018-14404 CVE-2018-16468 CVE-2018-16470 CVE-2018-20836 CVE-2019-10126 CVE-2019-10638 CVE-2019-10639 CVE-2019-11023 CVE-2019-11599 CVE-2019-12838 CVE-2019-12904 CVE-2019-13233 CVE-2019-14821 CVE-2019-15291 CVE-2019-17113 CVE-2019-18218 CVE-2019-3691 CVE-2019-5108 CVE-2019-6470 CVE-2019-9506 CVE-2020-12398 CVE-2020-12405 CVE-2020-12406 CVE-2020-12410 CVE-2020-14314 CVE-2020-14331 CVE-2020-14356 CVE-2020-16166 CVE-2020-1749 CVE-2020-8597 SUSE-SU-2018:1952-1 SUSE-SU-2019:0272-1 SUSE-SU-2019:0940-1 SUSE-SU-2019:1267-1 SUSE-SU-2019:1854-1 SUSE-SU-2019:1859-1 SUSE-SU-2019:2622-1 SUSE-SU-2019:2657-1 SUSE-SU-2019:2706-1 SUSE-SU-2019:2989-1 SUSE-SU-2019:3190-1 SUSE-SU-2020:0489-1 SUSE-SU-2020:1294-1 SUSE-SU-2020:2486-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for Legacy Software 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information bash-3.2-147.22 is installed OR bash-doc-3.2-147.22 is installed OR libreadline5-5.2-147.22 is installed OR libreadline5-32bit-5.2-147.22 is installed OR readline-doc-5.2-147.22 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information flash-player-11.2.202.521-0.17 is installed OR flash-player-gnome-11.2.202.521-0.17 is installed OR flash-player-kde4-11.2.202.521-0.17 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND kbd-1.15.5-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information DirectFB-1.7.1-4 is installed OR lib++dfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-32bit-1.7.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND kbd-1.15.5-8.7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND cifs-utils-6.5-8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information freerdp-2.0.0~git.1463131968.4e66df7-12.3 is installed OR libfreerdp2-2.0.0~git.1463131968.4e66df7-12.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information libgcrypt-1.8.2-6.17 is installed OR libgcrypt-devel-1.8.2-6.17 is installed OR libgcrypt20-1.8.2-6.17 is installed OR libgcrypt20-32bit-1.8.2-6.17 is installed OR libgcrypt20-hmac-1.8.2-6.17 is installed OR libgcrypt20-hmac-32bit-1.8.2-6.17 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information libmunge2-0.5.13-4.3 is installed OR munge-0.5.13-4.3 is installed OR munge-devel-0.5.13-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 SP2 is installed AND Package Information kernel-default-5.3.18-24.12 is installed OR reiserfs-kmp-default-5.3.18-24.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_27-default-6-2 is installed OR kernel-livepatch-SLE15_Update_12-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information slurm-17.11.13-6.18 is installed OR slurm-openlava-17.11.13-6.18 is installed OR slurm-seff-17.11.13-6.18 is installed OR slurm-sjstat-17.11.13-6.18 is installed OR slurm-sview-17.11.13-6.18 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information dtb-aarch64-4.12.14-197.10 is installed OR dtb-al-4.12.14-197.10 is installed OR dtb-allwinner-4.12.14-197.10 is installed OR dtb-altera-4.12.14-197.10 is installed OR dtb-amd-4.12.14-197.10 is installed OR dtb-amlogic-4.12.14-197.10 is installed OR dtb-apm-4.12.14-197.10 is installed OR dtb-arm-4.12.14-197.10 is installed OR dtb-broadcom-4.12.14-197.10 is installed OR dtb-cavium-4.12.14-197.10 is installed OR dtb-exynos-4.12.14-197.10 is installed OR dtb-freescale-4.12.14-197.10 is installed OR dtb-hisilicon-4.12.14-197.10 is installed OR dtb-lg-4.12.14-197.10 is installed OR dtb-marvell-4.12.14-197.10 is installed OR dtb-mediatek-4.12.14-197.10 is installed OR dtb-nvidia-4.12.14-197.10 is installed OR dtb-qcom-4.12.14-197.10 is installed OR dtb-renesas-4.12.14-197.10 is installed OR dtb-rockchip-4.12.14-197.10 is installed OR dtb-socionext-4.12.14-197.10 is installed OR dtb-sprd-4.12.14-197.10 is installed OR dtb-xilinx-4.12.14-197.10 is installed OR dtb-zte-4.12.14-197.10 is installed OR kernel-debug-4.12.14-197.10 is installed OR kernel-debug-base-4.12.14-197.10 is installed OR kernel-debug-devel-4.12.14-197.10 is installed OR kernel-debug-livepatch-devel-4.12.14-197.10 is installed OR kernel-default-4.12.14-197.10 is installed OR kernel-default-livepatch-4.12.14-197.10 is installed OR kernel-docs-4.12.14-197.10 is installed OR kernel-docs-html-4.12.14-197.10 is installed OR kernel-kvmsmall-4.12.14-197.10 is installed OR kernel-kvmsmall-base-4.12.14-197.10 is installed OR kernel-kvmsmall-devel-4.12.14-197.10 is installed OR kernel-kvmsmall-livepatch-devel-4.12.14-197.10 is installed OR kernel-obs-qa-4.12.14-197.10 is installed OR kernel-source-4.12.14-197.10 is installed OR kernel-source-vanilla-4.12.14-197.10 is installed OR kernel-vanilla-4.12.14-197.10 is installed OR kernel-vanilla-base-4.12.14-197.10 is installed OR kernel-vanilla-devel-4.12.14-197.10 is installed OR kernel-vanilla-livepatch-devel-4.12.14-197.10 is installed OR kernel-zfcpdump-4.12.14-197.10 is installed OR kernel-zfcpdump-man-4.12.14-197.10 is installed OR kselftests-kmp-default-4.12.14-197.10 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information MozillaThunderbird-68.9.0-3.85 is installed OR MozillaThunderbird-translations-common-68.9.0-3.85 is installed OR MozillaThunderbird-translations-other-68.9.0-3.85 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.5 is installed OR kernel-azure-base-4.12.14-5.5 is installed OR kernel-azure-devel-4.12.14-5.5 is installed OR kernel-devel-azure-4.12.14-5.5 is installed OR kernel-source-azure-4.12.14-5.5 is installed OR kernel-syms-azure-4.12.14-5.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information graphviz-addons-2.40.1-6.3 is installed OR graphviz-tcl-2.40.1-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs8-8.11.3-3.5 is installed OR nodejs8-devel-8.11.3-3.5 is installed OR nodejs8-docs-8.11.3-3.5 is installed OR npm8-8.11.3-3.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs10-10.19.0-1.18 is installed OR nodejs10-devel-10.19.0-1.18 is installed OR nodejs10-docs-10.19.0-1.18 is installed OR npm10-10.19.0-1.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libsndfile1-1.0.25-21 is installed OR libsndfile1-32bit-1.0.25-21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_67-60_64_24-default-8-2 is installed OR kgraft-patch-3_12_67-60_64_24-xen-8-2 is installed OR kgraft-patch-SLE12-SP1_Update_11-8-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libasan2-5.3.1+r233831-9 is installed OR libasan2-32bit-5.3.1+r233831-9 is installed OR libffi4-5.3.1+r233831-9 is installed OR libffi4-32bit-5.3.1+r233831-9 is installed OR libmpx0-5.3.1+r233831-9 is installed OR libmpx0-32bit-5.3.1+r233831-9 is installed OR libmpxwrappers0-5.3.1+r233831-9 is installed OR libmpxwrappers0-32bit-5.3.1+r233831-9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information perl-5.18.2-12.14 is installed OR perl-32bit-5.18.2-12.14 is installed OR perl-base-5.18.2-12.14 is installed OR perl-doc-5.18.2-12.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.30-38.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information gpg2-2.0.24-8 is installed OR gpg2-lang-2.0.24-8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information kernel-default-4.4.180-94.103 is installed OR kernel-default-base-4.4.180-94.103 is installed OR kernel-default-devel-4.4.180-94.103 is installed OR kernel-devel-4.4.180-94.103 is installed OR kernel-macros-4.4.180-94.103 is installed OR kernel-source-4.4.180-94.103 is installed OR kernel-syms-4.4.180-94.103 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_97-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_26-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information kernel-default-4.12.14-150.55 is installed OR kernel-default-base-4.12.14-150.55 is installed OR kernel-default-devel-4.12.14-150.55 is installed OR kernel-default-man-4.12.14-150.55 is installed OR kernel-devel-4.12.14-150.55 is installed OR kernel-docs-4.12.14-150.55 is installed OR kernel-macros-4.12.14-150.55 is installed OR kernel-obs-build-4.12.14-150.55 is installed OR kernel-source-4.12.14-150.55 is installed OR kernel-syms-4.12.14-150.55 is installed OR kernel-vanilla-4.12.14-150.55 is installed OR kernel-vanilla-base-4.12.14-150.55 is installed OR kernel-zfcpdump-4.12.14-150.55 is installed OR reiserfs-kmp-default-4.12.14-150.55 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libsystemd0-234-24.39 is installed OR libsystemd0-32bit-234-24.39 is installed OR libudev-devel-234-24.39 is installed OR libudev1-234-24.39 is installed OR libudev1-32bit-234-24.39 is installed OR systemd-234-24.39 is installed OR systemd-32bit-234-24.39 is installed OR systemd-bash-completion-234-24.39 is installed OR systemd-container-234-24.39 is installed OR systemd-coredump-234-24.39 is installed OR systemd-devel-234-24.39 is installed OR systemd-sysvinit-234-24.39 is installed OR udev-234-24.39 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND transfig-3.2.6a-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.26 is installed OR kernel-default-extra-4.12.14-197.26 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information libsoup-2.44.2-2.3 is installed OR libsoup-2_4-1-2.44.2-2.3 is installed OR libsoup-2_4-1-32bit-2.44.2-2.3 is installed OR libsoup-lang-2.44.2-2.3 is installed OR typelib-1_0-Soup-2_4-2.44.2-2.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND python-oslo.middleware-3.19.0-3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information nfs-client-1.3.0-34.22 is installed OR nfs-doc-1.3.0-34.22 is installed OR nfs-kernel-server-1.3.0-34.22 is installed OR nfs-utils-1.3.0-34.22 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-activejob-4_2-4.2.9-3.6 is installed OR rubygem-activejob-4_2-4.2.9-3.6 is installed

BACK