OVAL Reference oval:org.opensuse.security:def:50467

Oval Definition:

oval:org.opensuse.security:def:50467

Revision Date:	2020-12-01	Version:	1
Title:	Security update for nghttp2 (Moderate)
Description:	This update for nghttp2 fixes the following issues: Security issues fixed: - CVE-2019-9513: Fixed HTTP/2 implementation that is vulnerable to resource loops, potentially leading to a denial of service (bsc#1146184). - CVE-2019-9511: Fixed HTTP/2 implementations that are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service (bsc#11461). Bug fixes and enhancements: - Fixed mistake in spec file (bsc#1125689) - Fixed build issue with boost 1.70.0 (bsc#1134616) - Feature: Add W&S module (FATE#326776, bsc#1112438)
Family:	unix	Class:	patch
Status:		Reference(s):	1046303 1047238 1048942 1050911 1051510 1054914 1055117 1056686 1060662 1061840 1061843 1064597 1064701 1065600 1065729 1066369 1071009 1071306 1071995 1078248 1082555 1082635 1083647 1085030 1085536 1085539 1086103 1087092 1089644 1090734 1090888 1091041 1091171 1092206 1093205 1102097 1103678 1104427 1104902 1106061 1106284 1106434 1108043 1108382 1109911 1111666 1112438 1112894 1112899 1112902 1112903 1112905 1112906 1112907 1113722 1113956 1114279 1114542 1115026 1117169 1118338 1118689 1119086 1120386 1120853 1120876 1120902 1120937 1122623 1123105 1123959 1124370 1125689 1126088 1127371 1127838 1128829 1128963 1129424 1129519 1129664 1131107 1131281 1131565 1132666 1133021 1133191 1134291 1134616 1134689 1134881 1134882 1135219 1135642 1135897 1136035 1136261 1136446 1136935 1137001 1137325 1137597 1137811 1137884 1138034 1138039 1138539 1139020 1139021 1139101 1139500 1140012 1140426 1140487 1140948 1141267 1141450 1141543 1141554 1142019 1142076 1142095 1142109 1142117 1142118 1142119 1142496 1142541 1142635 1142685 1142701 1142857 1143300 1143466 1143706 1143765 1143841 1143843 1143959 1144059 1144123 1144333 1144474 1144518 1144718 1144813 1144880 1144886 1144912 1144920 1144979 1145010 1145051 1145059 1145189 1145235 1145300 1145302 1145388 1145389 1145390 1145391 1145392 1145393 1145394 1145395 1145396 1145397 1145408 1145409 1145661 1145678 1145687 1145920 1145922 1145929 1145934 1145937 1145940 1145941 1145942 1146074 1146084 1146163 1146182 1146184 1146285 1146346 1146351 1146352 1146361 1146376 1146378 1146381 1146391 1146399 1146413 1146425 1146512 1146514 1146516 1146519 1146524 1146526 1146529 1146531 1146543 1146544 1146547 1146550 1146575 1146589 1146678 1146938 1148031 1148032 1148033 1148034 1148035 1148093 1148133 1148192 1148196 1148198 1148202 1148303 1148363 1148379 1148394 1148527 1148574 1148616 1148617 1148619 1148859 1148868 1149053 1149083 1149104 1149105 1149106 1149197 1149214 1149224 1149325 1149376 1149413 1149418 1149424 1149448 1149522 1149527 1149539 1149552 1149591 1149602 1149612 1149626 1149652 1149713 1149940 1149976 1150025 1150033 1150112 1150466 1150562 1150727 1150860 1150861 1150933 1151548 1151900 1152472 1152489 1152631 1152782 1153274 1153628 1153681 1153811 1154043 1154058 1154124 1154353 1154355 1154488 1154526 1154862 1154884 1154887 1154956 1155021 1155331 1155334 1155518 1155689 1155692 1155798 1155836 1155897 1155921 1156187 1156258 1156259 1156429 1156462 1156466 1156471 1156494 1156609 1156700 1156729 1156882 1157038 1157042 1157070 1157143 1157145 1157158 1157162 1157169 1157171 1157173 1157178 1157180 1157182 1157183 1157184 1157191 1157193 1157197 1157298 1157303 1157307 1157324 1157333 1157424 1157463 1157499 1157678 1157698 1157778 1157853 1157908 1158049 1158063 1158064 1158065 1158066 1158067 1158068 1158082 1158094 1158132 1158381 1158394 1158398 1158407 1158410 1158413 1158417 1158427 1158445 1158533 1158637 1158638 1158639 1158640 1158641 1158643 1158644 1158645 1158646 1158647 1158649 1158651 1158652 1158823 1158824 1158827 1158834 1158893 1158900 1158903 1158904 1158954 1158983 1159024 1159037 1159198 1159199 1159297 1161561 1161951 1162171 1163403 1163897 1164284 1164777 1164780 1164893 1165019 1165182 1165185 1165211 1165823 1165933 1165949 1166780 1166860 1166861 1166862 1166864 1166866 1166867 1166868 1166870 1166940 1166982 1167005 1167216 1167288 1167290 1167316 1167421 1167423 1167627 1167629 1167773 1168075 1168202 1168273 1168276 1168295 1168367 1168424 1168443 1168486 1168552 1168760 1168762 1168763 1168764 1168765 1168829 1168854 1168881 1168884 1168952 1168959 1169013 1169057 1169307 1169308 1169390 1169514 1169625 1169771 1171857 1171988 1172201 1173074 1173674 1173849 1173941 1174072 1174116 1174126 1174127 1174128 1174129 1174185 1174205 1174247 1174263 1174264 1174331 1174332 1174333 1174356 1174362 1174396 1174398 1174407 1174409 1174411 1174438 1174462 1174513 1174527 1174627 1174645 CVE-2016-1000031 CVE-2017-18551 CVE-2018-20976 CVE-2018-21008 CVE-2019-0804 CVE-2019-10130 CVE-2019-10164 CVE-2019-10197 CVE-2019-10207 CVE-2019-11477 CVE-2019-11478 CVE-2019-11487 CVE-2019-12290 CVE-2019-12450 CVE-2019-14814 CVE-2019-14815 CVE-2019-14816 CVE-2019-14835 CVE-2019-14895 CVE-2019-14901 CVE-2019-15030 CVE-2019-15031 CVE-2019-15090 CVE-2019-15098 CVE-2019-15117 CVE-2019-15118 CVE-2019-15211 CVE-2019-15212 CVE-2019-15213 CVE-2019-15214 CVE-2019-15215 CVE-2019-15216 CVE-2019-15217 CVE-2019-15218 CVE-2019-15219 CVE-2019-15220 CVE-2019-15221 CVE-2019-15222 CVE-2019-15239 CVE-2019-15290 CVE-2019-15292 CVE-2019-15538 CVE-2019-15666 CVE-2019-15902 CVE-2019-15916 CVE-2019-15917 CVE-2019-15919 CVE-2019-15920 CVE-2019-15921 CVE-2019-15924 CVE-2019-15926 CVE-2019-15927 CVE-2019-16231 CVE-2019-17055 CVE-2019-17498 CVE-2019-18224 CVE-2019-18660 CVE-2019-18683 CVE-2019-18805 CVE-2019-18808 CVE-2019-18809 CVE-2019-19049 CVE-2019-19051 CVE-2019-19052 CVE-2019-19056 CVE-2019-19057 CVE-2019-19058 CVE-2019-19060 CVE-2019-19062 CVE-2019-19063 CVE-2019-19065 CVE-2019-19066 CVE-2019-19067 CVE-2019-19068 CVE-2019-19073 CVE-2019-19074 CVE-2019-19075 CVE-2019-19077 CVE-2019-19227 CVE-2019-19332 CVE-2019-19338 CVE-2019-19523 CVE-2019-19524 CVE-2019-19525 CVE-2019-19526 CVE-2019-19527 CVE-2019-19528 CVE-2019-19529 CVE-2019-19530 CVE-2019-19531 CVE-2019-19532 CVE-2019-19533 CVE-2019-19534 CVE-2019-19535 CVE-2019-19536 CVE-2019-19537 CVE-2019-19543 CVE-2019-19767 CVE-2019-19770 CVE-2019-2614 CVE-2019-2627 CVE-2019-2628 CVE-2019-3701 CVE-2019-3816 CVE-2019-3833 CVE-2019-3846 CVE-2019-9456 CVE-2019-9458 CVE-2019-9511 CVE-2019-9513 CVE-2020-0305 CVE-2020-10135 CVE-2020-10781 CVE-2020-10942 CVE-2020-11494 CVE-2020-11669 CVE-2020-14331 CVE-2020-15503 CVE-2020-8834 SUSE-SU-2019:0603-1 SUSE-SU-2019:0654-1 SUSE-SU-2019:1212-2 SUSE-SU-2019:1588-1 SUSE-SU-2019:1594-1 SUSE-SU-2019:2012-1 SUSE-SU-2019:2020-1 SUSE-SU-2019:2473-1 SUSE-SU-2019:3086-1 SUSE-SU-2019:3381-1 SUSE-SU-2020:1146-1 SUSE-SU-2020:2102-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-38.2.1esr-19 is installed OR MozillaFirefox-branding-SLED-31.0-0.12 is installed OR MozillaFirefox-translations-38.2.1esr-19 is installed OR libfreebl3-3.19.2.0-0.16 is installed OR libfreebl3-32bit-3.19.2.0-0.16 is installed OR libsoftokn3-3.19.2.0-0.16 is installed OR libsoftokn3-32bit-3.19.2.0-0.16 is installed OR mozilla-nss-3.19.2.0-0.16 is installed OR mozilla-nss-32bit-3.19.2.0-0.16 is installed OR mozilla-nss-tools-3.19.2.0-0.16 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information glibc-2.11.3-17.95 is installed OR glibc-32bit-2.11.3-17.95 is installed OR glibc-devel-2.11.3-17.95 is installed OR glibc-devel-32bit-2.11.3-17.95 is installed OR glibc-i18ndata-2.11.3-17.95 is installed OR glibc-locale-2.11.3-17.95 is installed OR glibc-locale-32bit-2.11.3-17.95 is installed OR nscd-2.11.3-17.95 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information libipa_hbac0-1.11.5.1-5 is installed OR libsss_idmap0-1.11.5.1-5 is installed OR python-sssd-config-1.11.5.1-5 is installed OR sssd-1.11.5.1-5 is installed OR sssd-32bit-1.11.5.1-5 is installed OR sssd-ad-1.11.5.1-5 is installed OR sssd-ipa-1.11.5.1-5 is installed OR sssd-krb5-1.11.5.1-5 is installed OR sssd-krb5-common-1.11.5.1-5 is installed OR sssd-ldap-1.11.5.1-5 is installed OR sssd-proxy-1.11.5.1-5 is installed OR sssd-tools-1.11.5.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information coreutils-8.22-9 is installed OR coreutils-lang-8.22-9 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information bash-4.3-78 is installed OR bash-doc-4.3-78 is installed OR bash-lang-4.3-78 is installed OR libreadline6-6.3-78 is installed OR libreadline6-32bit-6.3-78 is installed OR readline-doc-6.3-78 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information java-1_7_0-openjdk-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information libnghttp2-14-1.39.2-3.3 is installed OR libnghttp2-14-32bit-1.39.2-3.3 is installed OR libnghttp2-devel-1.39.2-3.3 is installed OR libnghttp2_asio-devel-1.39.2-3.3 is installed OR libnghttp2_asio1-1.39.2-3.3 is installed OR nghttp2-1.39.2-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information kernel-default-4.12.14-150.35 is installed OR reiserfs-kmp-default-4.12.14-150.35 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_17-default-2-2 is installed OR kernel-livepatch-SLE15_Update_10-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.40 is installed OR kernel-default-livepatch-4.12.14-197.40 is installed OR kernel-default-livepatch-devel-4.12.14-197.40 is installed OR kernel-livepatch-4_12_14-197_40-default-1-3.3 is installed OR kernel-livepatch-SLE15-SP1_Update_11-1-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information python-azure-agent-2.2.36-7.6 is installed OR python-azure-agent-test-2.2.36-7.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information jakarta-commons-fileupload-1.1.1-4.3 is installed OR jakarta-commons-fileupload-javadoc-1.1.1-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information libraw-0.18.9-3.11 is installed OR libraw-devel-static-0.18.9-3.11 is installed OR libraw-tools-0.18.9-3.11 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 SP2 is installed AND Package Information kernel-azure-5.3.18-18.12 is installed OR kernel-azure-devel-5.3.18-18.12 is installed OR kernel-devel-azure-5.3.18-18.12 is installed OR kernel-source-azure-5.3.18-18.12 is installed OR kernel-syms-azure-5.3.18-18.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libwsman-devel-2.6.7-3.3 is installed OR libwsman3-2.6.7-3.3 is installed OR openwsman-2.6.7-3.3 is installed OR openwsman-server-2.6.7-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information libecpg6-10.9-8.3 is installed OR postgresql10-10.9-8.3 is installed OR postgresql10-contrib-10.9-8.3 is installed OR postgresql10-devel-10.9-8.3 is installed OR postgresql10-docs-10.9-8.3 is installed OR postgresql10-plperl-10.9-8.3 is installed OR postgresql10-plpython-10.9-8.3 is installed OR postgresql10-pltcl-10.9-8.3 is installed OR postgresql10-server-10.9-8.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information tomcat-9.0.35-4.30 is installed OR tomcat-admin-webapps-9.0.35-4.30 is installed OR tomcat-el-3_0-api-9.0.35-4.30 is installed OR tomcat-jsp-2_3-api-9.0.35-4.30 is installed OR tomcat-lib-9.0.35-4.30 is installed OR tomcat-servlet-4_0-api-9.0.35-4.30 is installed OR tomcat-webapps-9.0.35-4.30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information perl-5.18.2-3 is installed OR perl-32bit-5.18.2-3 is installed OR perl-base-5.18.2-3 is installed OR perl-doc-5.18.2-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_62-60_62-default-10-2 is installed OR kgraft-patch-3_12_62-60_62-xen-10-2 is installed OR kgraft-patch-SLE12-SP1_Update_7-10-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND cifs-utils-6.5-8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-30.33 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information xen-4.7.6_05-43.42 is installed OR xen-doc-html-4.7.6_05-43.42 is installed OR xen-libs-4.7.6_05-43.42 is installed OR xen-libs-32bit-4.7.6_05-43.42 is installed OR xen-tools-4.7.6_05-43.42 is installed OR xen-tools-domU-4.7.6_05-43.42 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_67-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_19-8-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libXfixes3-5.0.1-7 is installed OR libXfixes3-32bit-5.0.1-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libvirglrenderer0-0.5.0-12.3 is installed OR virglrenderer-0.5.0-12.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed OR libwebkit2gtk3-lang-2.24.4-2.47 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed OR webkit2gtk3-2.24.4-2.47 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information curl-7.37.0-37.34 is installed OR libcurl4-7.37.0-37.34 is installed OR libcurl4-32bit-7.37.0-37.34 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information xen-4.10.4_10-3.31 is installed OR xen-devel-4.10.4_10-3.31 is installed OR xen-libs-4.10.4_10-3.31 is installed OR xen-tools-4.10.4_10-3.31 is installed OR xen-tools-domU-4.10.4_10-3.31 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND nginx-1.16.1-3.12 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information evolution-3.26.6-4.3 is installed OR evolution-devel-3.26.6-4.3 is installed OR evolution-lang-3.26.6-4.3 is installed OR evolution-plugin-bogofilter-3.26.6-4.3 is installed OR evolution-plugin-pst-import-3.26.6-4.3 is installed OR evolution-plugin-spamassassin-3.26.6-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information dia-0.97.3-4.3 is installed OR dia-lang-0.97.3-4.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND memcached-1.4.15-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information MozillaFirefox-52.8.1esr-109.34 is installed OR MozillaFirefox-devel-52.8.1esr-109.34 is installed OR MozillaFirefox-translations-52.8.1esr-109.34 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND python-SQLAlchemy-1.1.12-3.5 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ghostscript-9.27-23.28 is installed OR ghostscript-x11-9.27-23.28 is installed

BACK