Oval Definition:	oval:org.opensuse.security:def:50601
Revision Date: 2020-12-01 Version: 1 Title: Security update for systemd (Moderate) Description: This update for systemd fixes the following issues: Security issues fixed: - CVE-2019-3842: Fixed a privilege escalation in pam_systemd which could be exploited by a local user (bsc#1132348). - CVE-2019-6454: Fixed a denial of service via crafted D-Bus message (bsc#1125352). - CVE-2019-3843, CVE-2019-3844: Fixed a privilege escalation where services with DynamicUser could gain new privileges or create SUID/SGID binaries (bsc#1133506, bsc#1133509). Non-security issued fixed: - logind: fix killing of scopes (bsc#1125604) - namespace: make MountFlags=shared work again (bsc#1124122) - rules: load drivers only on 'add' events (bsc#1126056) - sysctl: Don't pass null directive argument to '%s' (bsc#1121563) - systemd-coredump: generate a stack trace of all core dumps and log into the journal (jsc#SLE-5933) - udevd: notify when max number value of children is reached only once per batch of events (bsc#1132400) - sd-bus: bump message queue size again (bsc#1132721) - Do not automatically online memory on s390x (bsc#1127557) - Removed sg.conf (bsc#1036463) Family: unix Class: patch Status: Reference(s): 1018371 1036463 1065697 1067720 1081947 1082293 1085196 1085240 1093697 1095508 1102379 1102400 1102410 1106214 1109412 1109413 1109414 1111996 1112534 1112535 1113247 1113252 1113255 1115375 1116827 1118644 1118830 1118831 1119947 1120470 1120502 1120503 1120504 1120584 1120589 1120640 1121034 1121035 1121056 1121197 1121563 1122417 1123304 1124122 1125352 1125604 1125886 1126056 1127557 1127701 1130230 1130840 1132348 1132400 1132721 1133131 1133232 1133506 1133509 1135534 1135708 1140461 1140709 1141113 1141780 1141781 1141782 1141783 1141784 1141785 1141787 1141788 1141789 1141913 1142772 1149841 1149955 1151021 1152590 1153163 1153164 1153238 1154016 1154025 1155784 1158709 1158798 1159692 1160682 1163102 1163103 1163104 1171550 1175193 1175194 353876 CVE-2016-10030 CVE-2017-15566 CVE-2018-1000876 CVE-2018-10995 CVE-2018-1336 CVE-2018-16884 CVE-2018-17358 CVE-2018-17359 CVE-2018-17360 CVE-2018-17985 CVE-2018-18309 CVE-2018-18483 CVE-2018-18484 CVE-2018-18605 CVE-2018-18606 CVE-2018-18607 CVE-2018-19931 CVE-2018-19932 CVE-2018-20544 CVE-2018-20545 CVE-2018-20546 CVE-2018-20547 CVE-2018-20548 CVE-2018-20549 CVE-2018-20623 CVE-2018-20651 CVE-2018-20671 CVE-2018-6323 CVE-2018-6543 CVE-2018-6759 CVE-2018-6872 CVE-2018-7033 CVE-2018-7208 CVE-2018-7568 CVE-2018-7569 CVE-2018-7570 CVE-2018-7642 CVE-2018-7643 CVE-2018-8014 CVE-2018-8034 CVE-2018-8037 CVE-2018-8945 CVE-2019-1010180 CVE-2019-12838 CVE-2019-14835 CVE-2019-15604 CVE-2019-15605 CVE-2019-15606 CVE-2019-16056 CVE-2019-16935 CVE-2019-17177 CVE-2019-17178 CVE-2019-19727 CVE-2019-19728 CVE-2019-20372 CVE-2019-2745 CVE-2019-2762 CVE-2019-2766 CVE-2019-2769 CVE-2019-2786 CVE-2019-2816 CVE-2019-2818 CVE-2019-2821 CVE-2019-3842 CVE-2019-3843 CVE-2019-3844 CVE-2019-6438 CVE-2019-6454 CVE-2019-7317 CVE-2019-9947 CVE-2020-13249 CVE-2020-14349 CVE-2020-14350 SUSE-SU-2018:3011-1 SUSE-SU-2019:0770-1 SUSE-SU-2019:1364-2 SUSE-SU-2019:2002-1 SUSE-SU-2019:2307-1 SUSE-SU-2019:2572-1 SUSE-SU-2019:2743-1 SUSE-SU-2019:2779-1 SUSE-SU-2019:3079-1 SUSE-SU-2020:0348-1 SUSE-SU-2020:0443-1 SUSE-SU-2020:0454-1 SUSE-SU-2020:0455-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information postgresql91-9.1.19-0.5 is installed OR postgresql91-docs-9.1.19-0.5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information java-1_7_0-openjdk-1.7.0.91-0.14 is installed OR java-1_7_0-openjdk-demo-1.7.0.91-0.14 is installed OR java-1_7_0-openjdk-devel-1.7.0.91-0.14 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND ft2demos-2.5.3-2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND cifs-utils-6.4-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND cvs-1.12.12-181 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND busybox-1.21.1-3 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information binutils-2.32-7.5 is installed OR binutils-gold-2.32-7.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information libsystemd0-234-24.30 is installed OR libsystemd0-32bit-234-24.30 is installed OR libudev-devel-234-24.30 is installed OR libudev1-234-24.30 is installed OR libudev1-32bit-234-24.30 is installed OR systemd-234-24.30 is installed OR systemd-32bit-234-24.30 is installed OR systemd-bash-completion-234-24.30 is installed OR systemd-container-234-24.30 is installed OR systemd-coredump-234-24.30 is installed OR systemd-devel-234-24.30 is installed OR systemd-sysvinit-234-24.30 is installed OR udev-234-24.30 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information pdsh-2.33-7.6 is installed OR pdsh-dshgroup-2.33-7.6 is installed OR pdsh-genders-2.33-7.6 is installed OR pdsh-machines-2.33-7.6 is installed OR pdsh-netgroup-2.33-7.6 is installed OR pdsh-slurm-2.33-7.6 is installed OR pdsh-slurm_18_08-2.33-7.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_22-default-3-2 is installed OR kernel-livepatch-SLE15_Update_6-3-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_4-default-5-2 is installed OR kernel-livepatch-SLE15-SP1_Update_1-5-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information java-11-openjdk-11.0.4.0-3.33 is installed OR java-11-openjdk-accessibility-11.0.4.0-3.33 is installed OR java-11-openjdk-javadoc-11.0.4.0-3.33 is installed OR java-11-openjdk-jmods-11.0.4.0-3.33 is installed OR java-11-openjdk-src-11.0.4.0-3.33 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libcaca-0.99.beta19.git20171003-3.3 is installed OR libcaca-devel-0.99.beta19.git20171003-3.3 is installed OR libcaca0-0.99.beta19.git20171003-3.3 is installed OR libcaca0-plugins-0.99.beta19.git20171003-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information tomcat-9.0.10-3.7 is installed OR tomcat-admin-webapps-9.0.10-3.7 is installed OR tomcat-el-3_0-api-9.0.10-3.7 is installed OR tomcat-jsp-2_3-api-9.0.10-3.7 is installed OR tomcat-lib-9.0.10-3.7 is installed OR tomcat-servlet-4_0-api-9.0.10-3.7 is installed OR tomcat-webapps-9.0.10-3.7 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs10-10.21.0-1.21 is installed OR nodejs10-devel-10.21.0-1.21 is installed OR nodejs10-docs-10.21.0-1.21 is installed OR npm10-10.21.0-1.21 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information fuse-2.9.3-5 is installed OR libfuse2-2.9.3-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information apache2-2.4.16-20.13 is installed OR apache2-doc-2.4.16-20.13 is installed OR apache2-example-pages-2.4.16-20.13 is installed OR apache2-prefork-2.4.16-20.13 is installed OR apache2-utils-2.4.16-20.13 is installed OR apache2-worker-2.4.16-20.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND coolkey-1.1.0-147 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND shadow-4.2.1-27.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information glibc-2.22-62.13 is installed OR glibc-32bit-2.22-62.13 is installed OR glibc-devel-2.22-62.13 is installed OR glibc-devel-32bit-2.22-62.13 is installed OR glibc-html-2.22-62.13 is installed OR glibc-i18ndata-2.22-62.13 is installed OR glibc-info-2.22-62.13 is installed OR glibc-locale-2.22-62.13 is installed OR glibc-locale-32bit-2.22-62.13 is installed OR glibc-profile-2.22-62.13 is installed OR glibc-profile-32bit-2.22-62.13 is installed OR nscd-2.22-62.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information glibc-2.22-62.13 is installed OR glibc-32bit-2.22-62.13 is installed OR glibc-devel-2.22-62.13 is installed OR glibc-devel-32bit-2.22-62.13 is installed OR glibc-html-2.22-62.13 is installed OR glibc-i18ndata-2.22-62.13 is installed OR glibc-info-2.22-62.13 is installed OR glibc-locale-2.22-62.13 is installed OR glibc-locale-32bit-2.22-62.13 is installed OR glibc-profile-2.22-62.13 is installed OR glibc-profile-32bit-2.22-62.13 is installed OR nscd-2.22-62.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information guestfs-data-1.32.4-19 is installed OR guestfs-tools-1.32.4-19 is installed OR guestfsd-1.32.4-19 is installed OR libguestfs0-1.32.4-19 is installed OR perl-Sys-Guestfs-1.32.4-19 is installed OR python-libguestfs-1.32.4-19 is installed OR virt-p2v-1.32.4-19 is installed OR virt-v2v-1.32.4-19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libpython3_4m1_0-3.4.6-25.29 is installed OR python3-3.4.6-25.29 is installed OR python3-base-3.4.6-25.29 is installed OR python3-curses-3.4.6-25.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libopenssl-devel-1.0.2j-60.55 is installed OR libopenssl1_0_0-1.0.2j-60.55 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed OR openssl-1.0.2j-60.55 is installed OR openssl-doc-1.0.2j-60.55 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information strongswan-5.1.3-26.13 is installed OR strongswan-doc-5.1.3-26.13 is installed OR strongswan-hmac-5.1.3-26.13 is installed OR strongswan-ipsec-5.1.3-26.13 is installed OR strongswan-libs0-5.1.3-26.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libXcursor-1.1.14-4.6 is installed OR libXcursor1-1.1.14-4.6 is installed OR libXcursor1-32bit-1.1.14-4.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information colord-gtk-lang-0.1.26-6 is installed OR libcolord-gtk1-0.1.26-6 is installed OR libcolord2-1.3.3-12 is installed OR libcolord2-32bit-1.3.3-12 is installed OR libcolorhug2-1.3.3-12 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information nodejs10-10.19.0-1.18 is installed OR nodejs10-devel-10.19.0-1.18 is installed OR nodejs10-docs-10.19.0-1.18 is installed OR npm10-10.19.0-1.18 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libfreebl3-3.53.1-3.45 is installed OR libfreebl3-32bit-3.53.1-3.45 is installed OR libfreebl3-hmac-3.53.1-3.45 is installed OR libfreebl3-hmac-32bit-3.53.1-3.45 is installed OR libsoftokn3-3.53.1-3.45 is installed OR libsoftokn3-32bit-3.53.1-3.45 is installed OR libsoftokn3-hmac-3.53.1-3.45 is installed OR libsoftokn3-hmac-32bit-3.53.1-3.45 is installed OR mozilla-nss-3.53.1-3.45 is installed OR mozilla-nss-32bit-3.53.1-3.45 is installed OR mozilla-nss-certs-3.53.1-3.45 is installed OR mozilla-nss-certs-32bit-3.53.1-3.45 is installed OR mozilla-nss-devel-3.53.1-3.45 is installed OR mozilla-nss-sysinit-3.53.1-3.45 is installed OR mozilla-nss-tools-3.53.1-3.45 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND transfig-3.2.6a-4.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information libproxy-plugins-0.4.15-4.3 is installed OR libproxy1-config-gnome3-0.4.15-4.3 is installed OR libproxy1-networkmanager-0.4.15-4.3 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information xorg-x11-server-7.6_1.15.2-53.3 is installed OR xorg-x11-server-extra-7.6_1.15.2-53.3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information git-2.12.3-27.14 is installed OR git-core-2.12.3-27.14 is installed OR git-doc-2.12.3-27.14 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND ucode-intel-20191112-13.53 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-activejob-4_2-4.2.9-3.6 is installed OR rubygem-activejob-4_2-4.2.9-3.6 is installed
BACK