OVAL Reference oval:org.opensuse.security:def:50477

Oval Definition:

oval:org.opensuse.security:def:50477

Revision Date:	2020-12-01	Version:	1
Title:	Security update for tcpdump (Important)
Description:	This update for tcpdump fixes the following issues: - CVE-2017-16808: Fixed a heap-based buffer over-read related to aoe_print and lookup_emem (bsc#1068716 bsc#1153098). - CVE-2018-10103: Fixed a mishandling of the printing of SMB data (bsc#1153098). - CVE-2018-10105: Fixed a mishandling of the printing of SMB data (bsc#1153098). - CVE-2018-14461: Fixed a buffer over-read in print-ldp.c:ldp_tlv_print (bsc#1153098). - CVE-2018-14462: Fixed a buffer over-read in print-icmp.c:icmp_print (bsc#1153098). - CVE-2018-14463: Fixed a buffer over-read in print-vrrp.c:vrrp_print (bsc#1153098). - CVE-2018-14464: Fixed a buffer over-read in print-lmp.c:lmp_print_data_link_subobjs (bsc#1153098). - CVE-2018-14465: Fixed a buffer over-read in print-rsvp.c:rsvp_obj_print (bsc#1153098). - CVE-2018-14466: Fixed a buffer over-read in print-rx.c:rx_cache_find (bsc#1153098). - CVE-2018-14467: Fixed a buffer over-read in print-bgp.c:bgp_capabilities_print (bsc#1153098). - CVE-2018-14468: Fixed a buffer over-read in print-fr.c:mfr_print (bsc#1153098). - CVE-2018-14469: Fixed a buffer over-read in print-isakmp.c:ikev1_n_print (bsc#1153098). - CVE-2018-14470: Fixed a buffer over-read in print-babel.c:babel_print_v2 (bsc#1153098). - CVE-2018-14879: Fixed a buffer overflow in the command-line argument parser (bsc#1153098). - CVE-2018-14880: Fixed a buffer over-read in the OSPFv3 parser (bsc#1153098). - CVE-2018-14881: Fixed a buffer over-read in the BGP parser (bsc#1153098). - CVE-2018-14882: Fixed a buffer over-read in the ICMPv6 parser (bsc#1153098). - CVE-2018-16227: Fixed a buffer over-read in the IEEE 802.11 parser in print-802_11.c for the Mesh Flags subfield (bsc#1153098). - CVE-2018-16228: Fixed a buffer over-read in the HNCP parser (bsc#1153098). - CVE-2018-16229: Fixed a buffer over-read in the DCCP parser (bsc#1153098). - CVE-2018-16230: Fixed a buffer over-read in the BGP parser in print-bgp.c:bgp_attr_print (bsc#1153098). - CVE-2018-16300: Fixed an unlimited recursion in the BGP parser that allowed denial-of-service by stack consumption (bsc#1153098). - CVE-2018-16301: Fixed a buffer overflow (bsc#1153332 bsc#1153098). - CVE-2018-16451: Fixed several buffer over-reads in print-smb.c:print_trans() for \MAILSLOT\BROWSE and \PIPE\LANMAN (bsc#1153098). - CVE-2018-16452: Fixed a stack exhaustion in smbutil.c:smb_fdata (bsc#1153098). - CVE-2019-15166: Fixed a bounds check in lmp_print_data_link_subobjs (bsc#1153098). - CVE-2019-15167: Fixed a vulnerability in VRRP (bsc#1153098).
Family:	unix	Class:	patch
Status:		Reference(s):	1004220 1013708 1013712 1013893 1015171 1027519 1051510 1061840 1065600 1068716 1071995 1087320 1088047 1092125 1094555 1098633 1106383 1106751 1109137 1111666 1112374 1114279 1117951 1118367 1118368 1119532 1120423 1120489 1120852 1121759 1124167 1125277 1127080 1127155 1128432 1128902 1128910 1131645 1132154 1132390 1133401 1133624 1133625 1133738 1134303 1134395 1134730 1134738 1135153 1135296 1135556 1135642 1136156 1136157 1136271 1136333 1136598 1136922 1136935 1137103 1137194 1137366 1137429 1137625 1137728 1137884 1137985 1137995 1137996 1137998 1137999 1138000 1138002 1138003 1138005 1138006 1138007 1138008 1138009 1138010 1138011 1138012 1138013 1138014 1138015 1138016 1138017 1138018 1138019 1138263 1138291 1138293 1138336 1138374 1138375 1138589 1138681 1138687 1138719 1138732 1139751 1139771 1139782 1139865 1140133 1140328 1140405 1140424 1140428 1140575 1140577 1140637 1140658 1140715 1140719 1140726 1140727 1140728 1140814 1141267 1144059 1145559 1150011 1153098 1153332 1158095 1171252 1171254 1172205 1173376 1173377 1173378 1173380 1174538 CVE-2016-9797 CVE-2016-9798 CVE-2016-9802 CVE-2016-9917 CVE-2017-16808 CVE-2018-10103 CVE-2018-10105 CVE-2018-10733 CVE-2018-14461 CVE-2018-14462 CVE-2018-14463 CVE-2018-14464 CVE-2018-14465 CVE-2018-14466 CVE-2018-14467 CVE-2018-14468 CVE-2018-14469 CVE-2018-14470 CVE-2018-14879 CVE-2018-14880 CVE-2018-14881 CVE-2018-14882 CVE-2018-16227 CVE-2018-16228 CVE-2018-16229 CVE-2018-16230 CVE-2018-16300 CVE-2018-16301 CVE-2018-16451 CVE-2018-16452 CVE-2018-16871 CVE-2018-16871 CVE-2018-20217 CVE-2018-20836 CVE-2019-1010220 CVE-2019-10126 CVE-2019-10197 CVE-2019-10638 CVE-2019-10639 CVE-2019-11478 CVE-2019-11494 CVE-2019-11499 CVE-2019-11500 CVE-2019-11599 CVE-2019-12380 CVE-2019-12456 CVE-2019-12614 CVE-2019-12614 CVE-2019-12817 CVE-2019-12818 CVE-2019-12819 CVE-2019-14822 CVE-2019-14889 CVE-2019-15166 CVE-2019-15167 CVE-2019-1559 CVE-2019-3811 CVE-2019-6471 CVE-2020-0543 CVE-2020-12653 CVE-2020-12654 CVE-2020-15563 CVE-2020-15565 CVE-2020-15566 CVE-2020-15567 CVE-2020-15652 CVE-2020-15653 CVE-2020-15654 CVE-2020-15655 CVE-2020-15656 CVE-2020-15657 CVE-2020-15658 CVE-2020-15659 CVE-2020-6463 CVE-2020-6514 SUSE-SU-2019:0542-1 SUSE-SU-2019:0600-1 SUSE-SU-2019:0720-1 SUSE-SU-2019:1353-2 SUSE-SU-2019:1744-1 SUSE-SU-2019:2427-1 SUSE-SU-2019:2514-1 SUSE-SU-2019:2550-1 SUSE-SU-2019:2674-1 SUSE-SU-2019:3267-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information flash-player-11.2.202.554-0.29 is installed OR flash-player-gnome-11.2.202.554-0.29 is installed OR flash-player-kde4-11.2.202.554-0.29 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information java-1_7_0-openjdk-1.7.0.91-0.14 is installed OR java-1_7_0-openjdk-demo-1.7.0.91-0.14 is installed OR java-1_7_0-openjdk-devel-1.7.0.91-0.14 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND libmspack0-0.4-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information dbus-1-1.8.16-14 is installed OR dbus-1-x11-1.8.16-14 is installed OR libdbus-1-3-1.8.16-14 is installed OR libdbus-1-3-32bit-1.8.16-14 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information coreutils-8.25-12 is installed OR coreutils-lang-8.25-12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information bind-libs-9.9.9P1-62 is installed OR bind-libs-32bit-9.9.9P1-62 is installed OR bind-utils-9.9.9P1-62 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information lcms2-2.7-9.7 is installed OR liblcms2-2-2.7-9.7 is installed OR liblcms2-2-32bit-2.7-9.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND tcpdump-4.9.2-3.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information libopenssl-1_0_0-devel-1.0.2p-3.14 is installed OR libopenssl1_0_0-1.0.2p-3.14 is installed OR openssl-1_0_0-1.0.2p-3.14 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-150.27 is installed OR kernel-default-livepatch-4.12.14-150.27 is installed OR kernel-livepatch-4_12_14-150_27-default-1-1.5 is installed OR kernel-livepatch-SLE15_Update_12-1-1.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_7-default-9-2 is installed OR kernel-livepatch-SLE15-SP1_Update_2-9-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information libgxps-0.3.0-4.3 is installed OR libgxps-tools-0.3.0-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information bluez-5.48-5.16 is installed OR bluez-auto-enable-devices-5.48-5.16 is installed OR bluez-devel-32bit-5.48-5.16 is installed OR bluez-test-5.48-5.16 is installed OR libbluetooth3-32bit-5.48-5.16 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information MozillaFirefox-78.1.0-3.100 is installed OR MozillaFirefox-branding-upstream-78.1.0-3.100 is installed OR MozillaFirefox-buildsymbols-78.1.0-3.100 is installed OR MozillaFirefox-devel-78.1.0-3.100 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information libsamba-policy0-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-ad-dc-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-dsdb-modules-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-libs-python-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-python-4.9.5+git.187.71edee57d5a-3.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information krb5-1.15.2-6.3 is installed OR krb5-plugin-kdb-ldap-1.15.2-6.3 is installed OR krb5-server-1.15.2-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information dovecot23-2.3.3-8 is installed OR dovecot23-backend-mysql-2.3.3-8 is installed OR dovecot23-backend-pgsql-2.3.3-8 is installed OR dovecot23-backend-sqlite-2.3.3-8 is installed OR dovecot23-devel-2.3.3-8 is installed OR dovecot23-fts-2.3.3-8 is installed OR dovecot23-fts-lucene-2.3.3-8 is installed OR dovecot23-fts-solr-2.3.3-8 is installed OR dovecot23-fts-squat-2.3.3-8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information tomcat-9.0.30-4.10 is installed OR tomcat-admin-webapps-9.0.30-4.10 is installed OR tomcat-el-3_0-api-9.0.30-4.10 is installed OR tomcat-jsp-2_3-api-9.0.30-4.10 is installed OR tomcat-lib-9.0.30-4.10 is installed OR tomcat-servlet-4_0-api-9.0.30-4.10 is installed OR tomcat-webapps-9.0.30-4.10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND ppc64-diag-2.6.9-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kernel-default-3.12.74-60.64.54 is installed OR kernel-default-base-3.12.74-60.64.54 is installed OR kernel-default-devel-3.12.74-60.64.54 is installed OR kernel-default-man-3.12.74-60.64.54 is installed OR kernel-devel-3.12.74-60.64.54 is installed OR kernel-macros-3.12.74-60.64.54 is installed OR kernel-source-3.12.74-60.64.54 is installed OR kernel-syms-3.12.74-60.64.54 is installed OR kernel-xen-3.12.74-60.64.54 is installed OR kernel-xen-base-3.12.74-60.64.54 is installed OR kernel-xen-devel-3.12.74-60.64.54 is installed OR kgraft-patch-3_12_74-60_64_54-default-1-2 is installed OR kgraft-patch-3_12_74-60_64_54-xen-1-2 is installed OR kgraft-patch-SLE12-SP1_Update_19-1-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information MozillaFirefox-45.4.0esr-81 is installed OR MozillaFirefox-translations-45.4.0esr-81 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information xen-4.7.6_02-43.36 is installed OR xen-doc-html-4.7.6_02-43.36 is installed OR xen-libs-4.7.6_02-43.36 is installed OR xen-libs-32bit-4.7.6_02-43.36 is installed OR xen-tools-4.7.6_02-43.36 is installed OR xen-tools-domU-4.7.6_02-43.36 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-30.33 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND clamav-0.100.2-33.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libXv1-1.0.10-7 is installed OR libXv1-32bit-1.0.10-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND ucode-intel-20190618-13.47 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libgcrypt-1.6.1-16.68 is installed OR libgcrypt20-1.6.1-16.68 is installed OR libgcrypt20-32bit-1.6.1-16.68 is installed OR libgcrypt20-hmac-1.6.1-16.68 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libcaca-0.99.beta18-14.3 is installed OR libcaca0-0.99.beta18-14.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libunbound2-1.6.8-3.6 is installed OR unbound-1.6.8-3.6 is installed OR unbound-anchor-1.6.8-3.6 is installed OR unbound-devel-1.6.8-3.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information tomcat-9.0.35-3.52 is installed OR tomcat-admin-webapps-9.0.35-3.52 is installed OR tomcat-el-3_0-api-9.0.35-3.52 is installed OR tomcat-jsp-2_3-api-9.0.35-3.52 is installed OR tomcat-lib-9.0.35-3.52 is installed OR tomcat-servlet-4_0-api-9.0.35-3.52 is installed OR tomcat-webapps-9.0.35-3.52 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND enigmail-2.0.11-3.16 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.4 is installed OR kernel-default-extra-4.12.14-197.4 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information libraw-0.18.9-3.11 is installed OR libraw-devel-0.18.9-3.11 is installed OR libraw16-0.18.9-3.11 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information openstack-neutron-7.0.4~a0~dev18-1 is installed OR openstack-neutron-dhcp-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-ha-tool-7.0.4~a0~dev18-1 is installed OR openstack-neutron-l3-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-linuxbridge-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-metadata-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-metering-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-mlnx-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-nvsd-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-openvswitch-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-plugin-cisco-7.0.2~a0~dev63-1 is installed OR openstack-neutron-restproxy-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-server-7.0.4~a0~dev18-1 is installed OR python-neutron-7.0.4~a0~dev18-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information libdcerpc-binding0-4.4.2-38.20 is installed OR libdcerpc-binding0-32bit-4.4.2-38.20 is installed OR libdcerpc0-4.4.2-38.20 is installed OR libdcerpc0-32bit-4.4.2-38.20 is installed OR libndr-krb5pac0-4.4.2-38.20 is installed OR libndr-krb5pac0-32bit-4.4.2-38.20 is installed OR libndr-nbt0-4.4.2-38.20 is installed OR libndr-nbt0-32bit-4.4.2-38.20 is installed OR libndr-standard0-4.4.2-38.20 is installed OR libndr-standard0-32bit-4.4.2-38.20 is installed OR libndr0-4.4.2-38.20 is installed OR libndr0-32bit-4.4.2-38.20 is installed OR libnetapi0-4.4.2-38.20 is installed OR libnetapi0-32bit-4.4.2-38.20 is installed OR libsamba-credentials0-4.4.2-38.20 is installed OR libsamba-credentials0-32bit-4.4.2-38.20 is installed OR libsamba-errors0-4.4.2-38.20 is installed OR libsamba-errors0-32bit-4.4.2-38.20 is installed OR libsamba-hostconfig0-4.4.2-38.20 is installed OR libsamba-hostconfig0-32bit-4.4.2-38.20 is installed OR libsamba-passdb0-4.4.2-38.20 is installed OR libsamba-passdb0-32bit-4.4.2-38.20 is installed OR libsamba-util0-4.4.2-38.20 is installed OR libsamba-util0-32bit-4.4.2-38.20 is installed OR libsamdb0-4.4.2-38.20 is installed OR libsamdb0-32bit-4.4.2-38.20 is installed OR libsmbclient0-4.4.2-38.20 is installed OR libsmbclient0-32bit-4.4.2-38.20 is installed OR libsmbconf0-4.4.2-38.20 is installed OR libsmbconf0-32bit-4.4.2-38.20 is installed OR libsmbldap0-4.4.2-38.20 is installed OR libsmbldap0-32bit-4.4.2-38.20 is installed OR libtevent-util0-4.4.2-38.20 is installed OR libtevent-util0-32bit-4.4.2-38.20 is installed OR libwbclient0-4.4.2-38.20 is installed OR libwbclient0-32bit-4.4.2-38.20 is installed OR samba-4.4.2-38.20 is installed OR samba-client-4.4.2-38.20 is installed OR samba-client-32bit-4.4.2-38.20 is installed OR samba-doc-4.4.2-38.20 is installed OR samba-libs-4.4.2-38.20 is installed OR samba-libs-32bit-4.4.2-38.20 is installed OR samba-winbind-4.4.2-38.20 is installed OR samba-winbind-32bit-4.4.2-38.20 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND python-cryptography-2.0.3-3.3 is installed

BACK