Oval Definition:	oval:org.opensuse.security:def:50457
Revision Date: 2020-12-01 Version: 1 Title: Security update for util-linux and shadow (Moderate) Description: This update for util-linux and shadow fixes the following issues: util-linux: - Fixed an issue where PATH settings in /etc/default/su being ignored (bsc#1121197) - Prevent outdated pam files (bsc#1082293). - Do not trim read-only volumes (bsc#1106214). - Integrate pam_keyinit pam module to login (bsc#1081947). - Perform one-time reset of /etc/default/su (bsc#1121197). - Fix problems in reading of login.defs values (bsc#1121197) - libmount: To prevent incorrect behavior, recognize more pseudofs and netfs (bsc#1122417). - raw.service: Add RemainAfterExit=yes (bsc#1135534). - agetty: Return previous response of agetty for special characters (bsc#1085196, bsc#1125886) - Fix /etc/default/su comments and create /etc/default/runuser (bsc#1121197). shadow: - Fixed an issue where PATH settings in /etc/default/su being ignored (bsc#1121197) - Hardening for su wrappers (bsc#353876) Family: unix Class: patch Status: Reference(s): 1046299 1046303 1046305 1050244 1050536 1050545 1051510 1055186 1058115 1061840 1064802 1065600 1066129 1073513 1081947 1082293 1082635 1083647 1085196 1086323 1087092 1089644 1090631 1093205 1096254 1097583 1097584 1097585 1097586 1097587 1097588 1098291 1101674 1106214 1107832 1109158 1110233 1111666 1112178 1113994 1114279 1117665 1119461 1119465 1121086 1121197 1122417 1122838 1122839 1123034 1123080 1123919 1124194 1125886 1132657 1132728 1132729 1132732 1132879 1133135 1133140 1134303 1135247 1135534 1135642 1135708 1135854 1135873 1135967 1136666 1137040 1137799 1137861 1138190 1139073 1140090 1140709 1140729 1140845 1140883 1141122 1141600 1142635 1142667 1143706 1144338 1144375 1144449 1144903 1145099 1146612 1148410 1149119 1149853 1150452 1150457 1150465 1150875 1151508 1151807 1152033 1152624 1152665 1152685 1152696 1152697 1152788 1152790 1152791 1153095 1153112 1153158 1153236 1153245 1153263 1153476 1153509 1153607 1153646 1153681 1153713 1153717 1153718 1153719 1153811 1153969 1154108 1154189 1154242 1154268 1154354 1154372 1154460 1154464 1154521 1154578 1154607 1154608 1154610 1154611 1154651 1154737 1154747 1154848 1154858 1154905 1154956 1155061 1155178 1155179 1155184 1155186 1155671 1157119 1157888 1158003 1158004 1158005 1158006 1158007 1159478 1159479 1159482 1159486 1159646 1160673 1160922 1171558 1172377 1173060 1173466 1173467 1173469 1175691 1176069 353876 802154 814594 919448 987367 998153 CVE-2018-12207 CVE-2018-14633 CVE-2018-16838 CVE-2018-17182 CVE-2018-17189 CVE-2018-17199 CVE-2018-3639 CVE-2019-10220 CVE-2019-11135 CVE-2019-12838 CVE-2019-16232 CVE-2019-16233 CVE-2019-16234 CVE-2019-16995 CVE-2019-17056 CVE-2019-17133 CVE-2019-17571 CVE-2019-17666 CVE-2019-18388 CVE-2019-18389 CVE-2019-18390 CVE-2019-18391 CVE-2019-18422 CVE-2019-18423 CVE-2019-18904 CVE-2019-19577 CVE-2019-19578 CVE-2019-19579 CVE-2019-19580 CVE-2019-19581 CVE-2019-19582 CVE-2019-19583 CVE-2019-2602 CVE-2019-2684 CVE-2019-2698 CVE-2020-13401 CVE-2020-14386 CVE-2020-15304 CVE-2020-15305 CVE-2020-15306 SUSE-SU-2018:3331-1 SUSE-SU-2019:0504-1 SUSE-SU-2019:1211-1 SUSE-SU-2019:1476-1 SUSE-SU-2019:2229-1 SUSE-SU-2019:2392-1 SUSE-SU-2019:2947-1 SUSE-SU-2019:2989-1 SUSE-SU-2019:3087-1 SUSE-SU-2019:3309-1 SUSE-SU-2020:0017-1 SUSE-SU-2020:0053-1 SUSE-SU-2020:0260-1 SUSE-SU-2020:2579-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-24.8.0esr-0.8 is installed OR MozillaFirefox-translations-24.8.0esr-0.8 is installed OR libfreebl3-3.16.4-0.8 is installed OR libfreebl3-32bit-3.16.4-0.8 is installed OR libsoftokn3-3.16.4-0.8 is installed OR libsoftokn3-32bit-3.16.4-0.8 is installed OR mozilla-nspr-4.10.7-0.3 is installed OR mozilla-nspr-32bit-4.10.7-0.3 is installed OR mozilla-nss-3.16.4-0.8 is installed OR mozilla-nss-32bit-3.16.4-0.8 is installed OR mozilla-nss-tools-3.16.4-0.8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information flash-player-11.2.202.540-0.23 is installed OR flash-player-gnome-11.2.202.540-0.23 is installed OR flash-player-kde4-11.2.202.540-0.23 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND libfbembed2_5-2.5.2.26539-13 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information bash-4.2-75 is installed OR bash-doc-4.2-75 is installed OR bash-lang-4.2-75 is installed OR libreadline6-6.2-75 is installed OR libreadline6-32bit-6.2-75 is installed OR readline-doc-6.2-75 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information MozillaFirefox-45.4.0esr-81 is installed OR MozillaFirefox-translations-45.4.0esr-81 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND facter-2.4.6-11 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gvim-7.4.326-16 is installed OR vim-7.4.326-16 is installed OR vim-data-7.4.326-16 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information libblkid-devel-2.31.1-9.8 is installed OR libblkid-devel-static-2.31.1-9.8 is installed OR libblkid1-2.31.1-9.8 is installed OR libblkid1-32bit-2.31.1-9.8 is installed OR libfdisk-devel-2.31.1-9.8 is installed OR libfdisk1-2.31.1-9.8 is installed OR libmount-devel-2.31.1-9.8 is installed OR libmount1-2.31.1-9.8 is installed OR libmount1-32bit-2.31.1-9.8 is installed OR libsmartcols-devel-2.31.1-9.8 is installed OR libsmartcols1-2.31.1-9.8 is installed OR libuuid-devel-2.31.1-9.8 is installed OR libuuid-devel-static-2.31.1-9.8 is installed OR libuuid1-2.31.1-9.8 is installed OR libuuid1-32bit-2.31.1-9.8 is installed OR shadow-4.5-7.6 is installed OR util-linux-2.31.1-9.8 is installed OR util-linux-lang-2.31.1-9.8 is installed OR util-linux-systemd-2.31.1-9.8 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-openjdk-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.212-3.19 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_13-default-4-2 is installed OR kernel-livepatch-SLE15_Update_3-4-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.26 is installed OR kernel-default-livepatch-4.12.14-197.26 is installed OR kernel-default-livepatch-devel-4.12.14-197.26 is installed OR kernel-livepatch-4_12_14-197_26-default-1-3.5 is installed OR kernel-livepatch-SLE15-SP1_Update_7-1-3.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information apache2-2.4.33-3.9 is installed OR apache2-event-2.4.33-3.9 is installed OR apache2-example-pages-2.4.33-3.9 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libnfsidmap-sss-1.16.1-3.24 is installed OR python3-ipa_hbac-1.16.1-3.24 is installed OR python3-sss-murmur-1.16.1-3.24 is installed OR python3-sss_nss_idmap-1.16.1-3.24 is installed OR sssd-1.16.1-3.24 is installed OR sssd-winbind-idmap-1.16.1-3.24 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information libIlmImf-2_2-23-32bit-2.2.1-3.18 is installed OR libIlmImfUtil-2_2-23-32bit-2.2.1-3.18 is installed OR openexr-2.2.1-3.18 is installed OR openexr-doc-2.2.1-3.18 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information kernel-azure-4.12.14-8.44 is installed OR kernel-azure-base-4.12.14-8.44 is installed OR kernel-azure-devel-4.12.14-8.44 is installed OR kernel-devel-azure-4.12.14-8.44 is installed OR kernel-source-azure-4.12.14-8.44 is installed OR kernel-syms-azure-4.12.14-8.44 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information xen-4.10.4_08-3.28 is installed OR xen-devel-4.10.4_08-3.28 is installed OR xen-tools-4.10.4_08-3.28 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information apache2-2.4.33-3.21 is installed OR apache2-devel-2.4.33-3.21 is installed OR apache2-doc-2.4.33-3.21 is installed OR apache2-prefork-2.4.33-3.21 is installed OR apache2-utils-2.4.33-3.21 is installed OR apache2-worker-2.4.33-3.21 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs8-8.15.1-3.17 is installed OR nodejs8-devel-8.15.1-3.17 is installed OR nodejs8-docs-8.15.1-3.17 is installed OR npm8-8.15.1-3.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information openvpn-2.3.8-16.3 is installed OR openvpn-auth-pam-plugin-2.3.8-16.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_29-default-5-3 is installed OR kgraft-patch-3_12_69-60_64_29-xen-5-3 is installed OR kgraft-patch-SLE12-SP1_Update_12-5-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information augeas-1.2.0-10 is installed OR augeas-lenses-1.2.0-10 is installed OR libaugeas0-1.2.0-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_120-92_70-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_20-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_50-default-12-2 is installed OR kgraft-patch-SLE12-SP2_Update_15-12-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libFLAC++6-1.3.0-11 is installed OR libFLAC8-1.3.0-11 is installed OR libFLAC8-32bit-1.3.0-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND clamav-0.100.3-33.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND squid-3.5.21-26.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND nmap-6.46-3.6 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libmariadb-devel-3.1.8-3.18 is installed OR libmariadb3-3.1.8-3.18 is installed OR libmariadb_plugins-3.1.8-3.18 is installed OR libmariadbprivate-3.1.8-3.18 is installed OR mariadb-connector-c-3.1.8-3.18 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.25 is installed OR kernel-default-extra-4.12.14-25.25 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information openconnect-7.08-6.3 is installed OR openconnect-devel-7.08-6.3 is installed OR openconnect-lang-7.08-6.3 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information kernel-default-3.12.74-60.64.66 is installed OR kernel-default-base-3.12.74-60.64.66 is installed OR kernel-default-devel-3.12.74-60.64.66 is installed OR kernel-devel-3.12.74-60.64.66 is installed OR kernel-macros-3.12.74-60.64.66 is installed OR kernel-source-3.12.74-60.64.66 is installed OR kernel-syms-3.12.74-60.64.66 is installed OR kernel-xen-3.12.74-60.64.66 is installed OR kernel-xen-base-3.12.74-60.64.66 is installed OR kernel-xen-devel-3.12.74-60.64.66 is installed OR kgraft-patch-3_12_74-60_64_66-default-1-2 is installed OR kgraft-patch-3_12_74-60_64_66-xen-1-2 is installed OR kgraft-patch-SLE12-SP1_Update_23-1-2 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information kernel-firmware-20170530-21.22 is installed OR ucode-amd-20170530-21.22 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libmysqlclient18-10.0.38-29.27 is installed OR mariadb-10.0.38-29.27 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information curl-7.37.0-37.43 is installed OR libcurl4-7.37.0-37.43 is installed OR libcurl4-32bit-7.37.0-37.43 is installed
BACK