Oval Definition:	oval:org.opensuse.security:def:50525
Revision Date: 2020-12-01 Version: 1 Title: Security update for systemd (Important) Description: This update for systemd fixes the following issues: - CVE-2019-6454: Overlong DBUS messages could be used to crash systemd (bsc#1125352) - units: make sure initrd-cleanup.service terminates before switching to rootfs (bsc#1123333) - logind: fix bad error propagation - login: log session state 'closing' (as well as New/Removed) - logind: fix borked r check - login: don't remove all devices from PID1 when only one was removed - login: we only allow opening character devices - login: correct comment in session_device_free() - login: remember that fds received from PID1 need to be removed eventually - login: fix FDNAME in call to sd_pid_notify_with_fds() - logind: fd 0 is a valid fd - logind: rework sd_eviocrevoke() - logind: check file is device node before using .st_rdev - logind: use the new FDSTOREREMOVE=1 sd_notify() message (bsc#1124153) - core: add a new sd_notify() message for removing fds from the FD store again - logind: make sure we don't trip up on half-initialized session devices (bsc#1123727) - fd-util: accept that kcmp might fail with EPERM/EACCES - core: Fix use after free case in load_from_path() (bsc#1121563) - core: include Found state in device dumps - device: fix serialization and deserialization of DeviceFound - fix path in btrfs rule (#6844) - assemble multidevice btrfs volumes without external tools (#6607) (bsc#1117025) - Update systemd-system.conf.xml (bsc#1122000) - units: inform user that the default target is started after exiting from rescue or emergency mode - core: free lines after reading them (bsc#1123892) - sd-bus: if we receive an invalid dbus message, ignore and proceeed - automount: don't pass non-blocking pipe to kernel. Family: unix Class: patch Status: Reference(s): 1027282 1041090 1042670 1046303 1050244 1050549 1051510 1051858 1055186 1058115 1061840 1065600 1065729 1068664 1071995 1073269 1073748 1078326 1078485 1079300 1079603 1081750 1083507 1083647 1084650 1085030 1086001 1086301 1086313 1086314 1088004 1088009 1088810 1090888 1091109 1094244 1103989 1103990 1103991 1104353 1104427 1104745 1105392 1109837 1109847 1111666 1111793 1111966 1112178 1112374 1112504 1113755 1113956 1114279 1114685 1115026 1117025 1118338 1118661 1121563 1122000 1122191 1123328 1123333 1123727 1123892 1124153 1125352 1126206 1127371 1127611 1127682 1129346 1129551 1129770 1130840 1130847 1131055 1133021 1133147 1134973 1136085 1136666 1138459 1140025 1140683 1141132 1141853 1142685 1143959 1144162 1144333 1145093 1146519 1146544 1149792 1149955 1151548 1151910 1151927 1152107 1152148 1152631 1153108 1153238 1153535 1153830 1153917 1154243 1154366 1154601 1154768 1154916 1155331 1155334 1155689 1156259 1156286 1156321 1156334 1156402 1156462 1157155 1157157 1157169 1157303 1157424 1157480 1157692 1157853 1157895 1157908 1157966 1158013 1158021 1158026 1158071 1158094 1158132 1158381 1158533 1158637 1158638 1158639 1158640 1158641 1158643 1158644 1158645 1158646 1158647 1158649 1158651 1158652 1158819 1158823 1158824 1158827 1158834 1158893 1158900 1158903 1158904 1158954 1159024 1159028 1159035 1159271 1159297 1159377 1159394 1159483 1159484 1159500 1159569 1159588 1159841 1159908 1159909 1159910 1159911 1159955 1160147 1160195 1160210 1160211 1160218 1160433 1160442 1160469 1160470 1160476 1160560 1160618 1160678 1160755 1160756 1160784 1160787 1160802 1160803 1160804 1160917 1160966 1160979 1161087 1161243 1161360 1161472 1161514 1161518 1161522 1161523 1161549 1161552 1161674 1161702 1161907 1161931 1161933 1161934 1161935 1161936 1161937 1162028 1162067 1162109 1162139 1162557 1162617 1162618 1162619 1162623 1162928 1162943 1163206 1163368 1163383 1163384 1163524 1163762 1163774 1163836 1163840 1163841 1163842 1163843 1163844 1163845 1163846 1163849 1163850 1163851 1163852 1163853 1163855 1163856 1163857 1163858 1163859 1163860 1163861 1163862 1163863 1163867 1163869 1163880 1163971 1164051 1164069 1164098 1164115 1164314 1164315 1164388 1164471 1164598 1164632 1164705 1164712 1164727 1164728 1164729 1164730 1164731 1164732 1164733 1164734 1164735 1165629 1166965 1167527 1169972 1170232 1171558 1171688 1171742 1172073 1172538 1172698 1172704 1172873 1173060 1173115 1173455 1173786 1174010 1174748 1174899 1175223 1175228 1175476 1175520 1175568 1175664 1175665 1175667 1175671 1175674 1175691 1175749 1175882 1176011 1176022 1176038 1176069 1176235 1176242 1176278 1176316 1176317 1176318 1176319 1176320 1176321 1176381 1176395 1176400 1176410 1176423 1176482 1176507 1176536 1176544 1176545 1176546 1176548 1176659 1176698 1176699 1176700 1176721 1176722 1176725 1176732 1176788 1176789 1176869 1176877 1176935 1176946 1176950 1176962 1176966 1176990 1177027 1177030 1177041 1177042 1177043 1177044 1177121 1177206 1177258 1177291 1177293 1177294 1177295 1177296 1177340 1177511 214983 298378 346490 367853 379534 380942 399190 406051 425138 426563 430761 432677 436966 437293 441088 462375 525295 534721 551715 572673 577032 581765 603255 617751 637176 638233 658604 673071 682554 697251 707667 718009 747125 747794 751718 754447 766778 794139 804978 827982 831442 834601 836739 856835 856836 857470 863741 885882 898572 901715 935856 945401 964182 984751 985177 985348 989523 997436 CVE-2007-2052 CVE-2008-1721 CVE-2008-2315 CVE-2008-2316 CVE-2008-3142 CVE-2008-3143 CVE-2008-3144 CVE-2011-1521 CVE-2011-3389 CVE-2011-4944 CVE-2012-0845 CVE-2012-1150 CVE-2013-1752 CVE-2013-1753 CVE-2013-4238 CVE-2014-1912 CVE-2014-4650 CVE-2014-7185 CVE-2016-0772 CVE-2016-1000110 CVE-2016-5636 CVE-2016-5699 CVE-2017-1000158 CVE-2017-18207 CVE-2018-1000030 CVE-2018-1000802 CVE-2018-1060 CVE-2018-1061 CVE-2018-14647 CVE-2018-20852 CVE-2018-6942 CVE-2019-0199 CVE-2019-0221 CVE-2019-10160 CVE-2019-10220 CVE-2019-10222 CVE-2019-13272 CVE-2019-13508 CVE-2019-14562 CVE-2019-14615 CVE-2019-14896 CVE-2019-14897 CVE-2019-15213 CVE-2019-15917 CVE-2019-16056 CVE-2019-16746 CVE-2019-16935 CVE-2019-16994 CVE-2019-18808 CVE-2019-19036 CVE-2019-19045 CVE-2019-19051 CVE-2019-19054 CVE-2019-19066 CVE-2019-19318 CVE-2019-19319 CVE-2019-19332 CVE-2019-19338 CVE-2019-19447 CVE-2019-19523 CVE-2019-19526 CVE-2019-19527 CVE-2019-19532 CVE-2019-19533 CVE-2019-19535 CVE-2019-19537 CVE-2019-19767 CVE-2019-19927 CVE-2019-19965 CVE-2019-19966 CVE-2019-20054 CVE-2019-20095 CVE-2019-20096 CVE-2019-2201 CVE-2019-5010 CVE-2019-6454 CVE-2019-9636 CVE-2019-9947 CVE-2019-9948 CVE-2020-0404 CVE-2020-0427 CVE-2020-0431 CVE-2020-0432 CVE-2020-14381 CVE-2020-14386 CVE-2020-14390 CVE-2020-15049 CVE-2020-15810 CVE-2020-15811 CVE-2020-1749 CVE-2020-24606 CVE-2020-25212 CVE-2020-25284 CVE-2020-25641 CVE-2020-25643 CVE-2020-25645 CVE-2020-26088 CVE-2020-2732 CVE-2020-6796 CVE-2020-6797 CVE-2020-6798 CVE-2020-6799 CVE-2020-6800 CVE-2020-7053 CVE-2020-7068 CVE-2020-8023 CVE-2020-8027 CVE-2020-8428 CVE-2020-8648 CVE-2020-8992 SUSE-SU-2019:0426-1 SUSE-SU-2019:1895-1 SUSE-SU-2019:2247-1 SUSE-SU-2019:2971-1 SUSE-SU-2019:3247-1 SUSE-SU-2020:0234-1 SUSE-SU-2020:0383-1 SUSE-SU-2020:0560-1 SUSE-SU-2020:1417-1 SUSE-SU-2020:1856-1 SUSE-SU-2020:2442-1 SUSE-SU-2020:2713-1 SUSE-SU-2020:3014-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Legacy Software 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Realtime packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information lcms-1.17-77.16 is installed OR liblcms1-1.17-77.16 is installed OR liblcms1-32bit-1.17-77.16 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information gnutls-2.4.1-24.39.57 is installed OR libgnutls26-2.4.1-24.39.57 is installed OR libgnutls26-32bit-2.4.1-24.39.57 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information MozillaFirefox-31.1.0esr-1 is installed OR MozillaFirefox-translations-31.1.0esr-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information avahi-0.6.31-20 is installed OR avahi-lang-0.6.31-20 is installed OR libavahi-client3-0.6.31-20 is installed OR libavahi-client3-32bit-0.6.31-20 is installed OR libavahi-common3-0.6.31-20 is installed OR libavahi-common3-32bit-0.6.31-20 is installed OR libavahi-core7-0.6.31-20 is installed OR libdns_sd-0.6.31-20 is installed OR libdns_sd-32bit-0.6.31-20 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libXp6-1.0.2-3 is installed OR libXp6-32bit-1.0.2-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND libgc1-7.2d-5 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information libsystemd0-234-24.25 is installed OR libsystemd0-32bit-234-24.25 is installed OR libudev-devel-234-24.25 is installed OR libudev1-234-24.25 is installed OR libudev1-32bit-234-24.25 is installed OR systemd-234-24.25 is installed OR systemd-32bit-234-24.25 is installed OR systemd-bash-completion-234-24.25 is installed OR systemd-container-234-24.25 is installed OR systemd-coredump-234-24.25 is installed OR systemd-devel-234-24.25 is installed OR systemd-sysvinit-234-24.25 is installed OR udev-234-24.25 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP2 is installed AND Package Information openldap2-2.4.46-9.31 is installed OR openldap2-back-meta-2.4.46-9.31 is installed OR openldap2-back-perl-2.4.46-9.31 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_14-default-6-2 is installed OR kernel-livepatch-SLE15_Update_9-6-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.34 is installed OR kernel-default-livepatch-4.12.14-197.34 is installed OR kernel-default-livepatch-devel-4.12.14-197.34 is installed OR kernel-livepatch-4_12_14-197_34-default-1-3.5 is installed OR kernel-livepatch-SLE15-SP1_Update_9-1-3.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information MozillaFirefox-68.5.0-3.72 is installed OR MozillaFirefox-branding-upstream-68.5.0-3.72 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information tomcat-9.0.21-4.5 is installed OR tomcat-docs-webapp-9.0.21-4.5 is installed OR tomcat-embed-9.0.21-4.5 is installed OR tomcat-javadoc-9.0.21-4.5 is installed OR tomcat-jsvc-9.0.21-4.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information openldap2-2.4.46-9.37 is installed OR openldap2-back-sock-2.4.46-9.37 is installed OR openldap2-back-sql-2.4.46-9.37 is installed OR openldap2-contrib-2.4.46-9.37 is installed OR openldap2-doc-2.4.46-9.37 is installed Definition Synopsis SUSE Linux Enterprise Module for Realtime packages 15 SP1 is installed AND Package Information cluster-md-kmp-rt-4.12.14-14.36 is installed OR dlm-kmp-rt-4.12.14-14.36 is installed OR gfs2-kmp-rt-4.12.14-14.36 is installed OR kernel-devel-rt-4.12.14-14.36 is installed OR kernel-rt-4.12.14-14.36 is installed OR kernel-rt-base-4.12.14-14.36 is installed OR kernel-rt-devel-4.12.14-14.36 is installed OR kernel-rt_debug-4.12.14-14.36 is installed OR kernel-rt_debug-devel-4.12.14-14.36 is installed OR kernel-source-rt-4.12.14-14.36 is installed OR kernel-syms-rt-4.12.14-14.36 is installed OR ocfs2-kmp-rt-4.12.14-14.36 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information freetds-1.1.36-3.3 is installed OR libct4-1.1.36-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information apache-commons-daemon-1.0.15-4 is installed OR apache-commons-daemon-javadoc-1.0.15-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_48-default-4-4 is installed OR kgraft-patch-3_12_74-60_64_48-xen-4-4 is installed OR kgraft-patch-SLE12-SP1_Update_17-4-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information cracklib-2.9.0-7 is installed OR libcrack2-2.9.0-7 is installed OR libcrack2-32bit-2.9.0-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information openslp-2.0.0-18.15 is installed OR openslp-32bit-2.0.0-18.15 is installed OR openslp-server-2.0.0-18.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information MozillaFirefox-52.8.1esr-109.34 is installed OR MozillaFirefox-devel-52.8.1esr-109.34 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information MozillaFirefox-60.4.0esr-109.55 is installed OR MozillaFirefox-devel-60.4.0esr-109.55 is installed OR MozillaFirefox-translations-common-60.4.0esr-109.55 is installed OR libfreebl3-3.40.1-58.18 is installed OR libfreebl3-32bit-3.40.1-58.18 is installed OR libsoftokn3-3.40.1-58.18 is installed OR libsoftokn3-32bit-3.40.1-58.18 is installed OR mozilla-nspr-4.20-19.6 is installed OR mozilla-nspr-32bit-4.20-19.6 is installed OR mozilla-nss-3.40.1-58.18 is installed OR mozilla-nss-32bit-3.40.1-58.18 is installed OR mozilla-nss-certs-3.40.1-58.18 is installed OR mozilla-nss-certs-32bit-3.40.1-58.18 is installed OR mozilla-nss-sysinit-3.40.1-58.18 is installed OR mozilla-nss-sysinit-32bit-3.40.1-58.18 is installed OR mozilla-nss-tools-3.40.1-58.18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_jk-1.2.40-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND squid-3.5.21-26.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_100-default-3-2 is installed OR kgraft-patch-SLE12-SP3_Update_27-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libprocps3-3.3.9-11.18 is installed OR procps-3.3.9-11.18 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information xen-4.10.4_10-3.31 is installed OR xen-devel-4.10.4_10-3.31 is installed OR xen-libs-4.10.4_10-3.31 is installed OR xen-tools-4.10.4_10-3.31 is installed OR xen-tools-domU-4.10.4_10-3.31 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information mutt-1.10.1-3.8 is installed OR mutt-doc-1.10.1-3.8 is installed OR mutt-lang-1.10.1-3.8 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information libixion-0.14.1-4.3 is installed OR libixion-0_14-0-0.14.1-4.3 is installed OR liborcus-0.14.1-3.3 is installed OR liborcus-0_14-0-0.14.1-3.3 is installed OR liborcus-devel-0.14.1-3.3 is installed OR myspell-af_ZA-20190423-3.9 is installed OR myspell-ar-20190423-3.9 is installed OR myspell-bg_BG-20190423-3.9 is installed OR myspell-bn_BD-20190423-3.9 is installed OR myspell-br_FR-20190423-3.9 is installed OR myspell-ca-20190423-3.9 is installed OR myspell-cs_CZ-20190423-3.9 is installed OR myspell-da_DK-20190423-3.9 is installed OR myspell-dictionaries-20190423-3.9 is installed OR myspell-el_GR-20190423-3.9 is installed OR myspell-et_EE-20190423-3.9 is installed OR myspell-fr_FR-20190423-3.9 is installed OR myspell-gl-20190423-3.9 is installed OR myspell-gu_IN-20190423-3.9 is installed OR myspell-he_IL-20190423-3.9 is installed OR myspell-hi_IN-20190423-3.9 is installed OR myspell-hr_HR-20190423-3.9 is installed OR myspell-it_IT-20190423-3.9 is installed OR myspell-lt_LT-20190423-3.9 is installed OR myspell-lv_LV-20190423-3.9 is installed OR myspell-nl_NL-20190423-3.9 is installed OR myspell-nn_NO-20190423-3.9 is installed OR myspell-pl_PL-20190423-3.9 is installed OR myspell-pt_PT-20190423-3.9 is installed OR myspell-si_LK-20190423-3.9 is installed OR myspell-sk_SK-20190423-3.9 is installed OR myspell-sl_SI-20190423-3.9 is installed OR myspell-sr-20190423-3.9 is installed OR myspell-sv_SE-20190423-3.9 is installed OR myspell-te_IN-20190423-3.9 is installed OR myspell-th_TH-20190423-3.9 is installed OR myspell-tr_TR-20190423-3.9 is installed OR myspell-uk_UA-20190423-3.9 is installed OR myspell-zu_ZA-20190423-3.9 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND couchdb-1.6.1-2 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information kernel-default-4.4.121-92.85 is installed OR kernel-default-base-4.4.121-92.85 is installed OR kernel-default-devel-4.4.121-92.85 is installed OR kernel-default-man-4.4.121-92.85 is installed OR kernel-devel-4.4.121-92.85 is installed OR kernel-macros-4.4.121-92.85 is installed OR kernel-source-4.4.121-92.85 is installed OR kernel-syms-4.4.121-92.85 is installed OR kgraft-patch-4_4_121-92_85-default-1-3.5 is installed OR kgraft-patch-SLE12-SP2_Update_23-1-3.5 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information curl-7.37.0-37.43 is installed OR libcurl4-7.37.0-37.43 is installed OR libcurl4-32bit-7.37.0-37.43 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ghostscript-9.27-23.28 is installed OR ghostscript-x11-9.27-23.28 is installed
BACK