OVAL Reference oval:org.opensuse.security:def:50622

Oval Definition:

oval:org.opensuse.security:def:50622

Revision Date:	2020-12-01	Version:	1
Title:	Security update for libu2f-host, pam_u2f (Moderate)
Description:	This update for libu2f-host and pam_u2f to version 1.0.8 fixes the following issues: Security issues fixed for libu2f-host: - CVE-2019-9578: Fixed a memory leak due to a wrong parse of init's response (bsc#1128140). Security issues fixed for pam_u2f: - CVE-2019-12209: Fixed an issue where symlinks in the user's directory were followed (bsc#1135729). - CVE-2019-12210: Fixed file descriptor leaks (bsc#1135727).
Family:	unix	Class:	patch
Status:		Reference(s):	1012382 1046303 1048942 1050242 1050244 1050549 1051510 1051858 1053043 1055186 1056787 1058115 1061840 1063638 1064802 1065600 1065729 1066129 1068546 1071995 1075020 1078248 1082387 1082635 1083647 1085030 1085535 1086301 1086313 1086314 1088810 1089524 1089644 1090888 1091041 1099658 1103989 1103990 1103991 1103992 1104353 1104427 1104745 1105392 1106011 1106284 1108043 1108193 1108838 1108937 1109837 1110946 1111666 1111696 1112063 1112178 1112374 1112504 1113722 1113956 1113994 1114279 1114427 1114685 1115026 1115688 1117158 1117169 1117561 1118139 1118338 1118661 1119113 1119843 1120091 1120423 1120566 1120843 1120853 1120902 1122776 1123328 1123454 1123663 1124503 1124839 1126206 1126356 1126390 1127354 1127371 1127611 1127616 1127682 1128052 1128106 1128140 1128904 1128979 1129138 1129273 1129497 1129551 1129693 1129770 1130579 1130699 1130972 1131107 1131326 1131451 1131488 1131565 1131673 1132044 1133021 1133031 1133147 1133176 1133188 1133190 1133320 1133612 1133616 1134078 1134160 1134162 1134199 1134200 1134201 1134202 1134203 1134204 1134205 1134354 1134393 1134459 1134460 1134461 1134537 1134597 1134651 1134671 1134689 1134760 1134806 1134810 1134813 1134848 1134883 1134936 1134973 1134983 1135006 1135007 1135008 1135056 1135100 1135120 1135210 1135278 1135281 1135309 1135312 1135314 1135315 1135316 1135320 1135323 1135330 1135492 1135542 1135556 1135603 1135642 1135661 1135727 1135729 1135758 1135902 1135966 1135967 1136206 1136424 1136428 1136430 1136432 1136434 1136435 1136438 1136439 1136477 1136478 1136540 1136572 1136573 1136586 1136778 1136881 1136935 1136990 1137151 1137152 1137153 1137162 1137223 1137236 1137372 1137444 1137586 1137739 1137752 1138034 1138039 1138534 1140025 1140402 1140948 1142095 1142635 1142685 1142924 1143706 1143794 1143959 1144087 1144162 1144333 1144903 1146519 1146544 1149448 1149792 1150466 1151067 1151548 1151900 1151910 1151927 1152107 1152631 1152782 1153108 1153158 1153161 1153535 1153628 1153811 1153917 1154043 1154058 1154124 1154212 1154243 1154355 1154526 1154601 1154768 1154916 1155021 1155331 1155334 1155689 1155692 1155836 1155897 1155921 1155982 1156187 1156258 1156259 1156275 1156286 1156429 1156462 1156466 1156471 1156494 1156609 1156700 1156729 1156882 1156928 1157032 1157038 1157042 1157044 1157045 1157046 1157049 1157070 1157115 1157143 1157145 1157155 1157157 1157158 1157160 1157162 1157169 1157171 1157173 1157178 1157180 1157182 1157183 1157184 1157191 1157193 1157197 1157298 1157303 1157304 1157307 1157324 1157333 1157386 1157424 1157463 1157480 1157499 1157678 1157692 1157698 1157778 1157853 1157895 1157908 1157966 1158013 1158021 1158026 1158049 1158063 1158064 1158065 1158066 1158067 1158068 1158071 1158082 1158094 1158132 1158381 1158394 1158398 1158407 1158410 1158413 1158417 1158427 1158442 1158445 1158533 1158637 1158638 1158639 1158640 1158641 1158643 1158644 1158645 1158646 1158647 1158649 1158651 1158652 1158819 1158823 1158824 1158827 1158834 1158893 1158900 1158903 1158904 1158954 1159024 1159028 1159271 1159297 1159352 1159377 1159394 1159483 1159484 1159500 1159569 1159588 1159841 1159908 1159909 1159910 1159911 1159955 1160147 1160195 1160210 1160211 1160218 1160433 1160442 1160469 1160470 1160476 1160560 1160618 1160678 1160755 1160756 1160784 1160787 1160802 1160803 1160804 1160917 1160966 1160968 1160979 1161087 1161243 1161360 1161472 1161514 1161518 1161522 1161523 1161549 1161552 1161674 1161702 1161907 1161931 1161933 1161934 1161935 1161936 1161937 1162028 1162067 1162109 1162139 1162557 1162617 1162618 1162619 1162623 1162928 1162943 1163206 1163383 1163384 1163762 1163774 1163836 1163840 1163841 1163842 1163843 1163844 1163845 1163846 1163849 1163850 1163851 1163852 1163853 1163855 1163856 1163857 1163858 1163859 1163860 1163861 1163862 1163863 1163867 1163869 1163880 1163971 1164051 1164069 1164098 1164115 1164314 1164315 1164388 1164471 1164598 1164632 1164705 1164712 1164727 1164728 1164729 1164730 1164731 1164732 1164733 1164734 1164735 1169511 1171352 1172277 1172491 1173786 1174010 1174117 1174121 1174157 1175223 CVE-2018-7191 CVE-2019-0154 CVE-2019-10124 CVE-2019-10130 CVE-2019-10164 CVE-2019-10220 CVE-2019-11085 CVE-2019-11477 CVE-2019-11478 CVE-2019-11479 CVE-2019-11486 CVE-2019-11487 CVE-2019-11815 CVE-2019-11833 CVE-2019-11884 CVE-2019-12155 CVE-2019-12209 CVE-2019-12210 CVE-2019-12382 CVE-2019-13164 CVE-2019-14378 CVE-2019-14615 CVE-2019-14869 CVE-2019-14895 CVE-2019-14896 CVE-2019-14897 CVE-2019-14901 CVE-2019-15213 CVE-2019-15916 CVE-2019-16231 CVE-2019-16746 CVE-2019-16775 CVE-2019-16776 CVE-2019-16777 CVE-2019-16994 CVE-2019-17055 CVE-2019-17133 CVE-2019-17631 CVE-2019-18660 CVE-2019-18683 CVE-2019-18805 CVE-2019-18808 CVE-2019-18809 CVE-2019-19036 CVE-2019-19045 CVE-2019-19046 CVE-2019-19049 CVE-2019-19051 CVE-2019-19052 CVE-2019-19054 CVE-2019-19056 CVE-2019-19057 CVE-2019-19058 CVE-2019-19060 CVE-2019-19062 CVE-2019-19063 CVE-2019-19065 CVE-2019-19066 CVE-2019-19067 CVE-2019-19068 CVE-2019-19073 CVE-2019-19074 CVE-2019-19075 CVE-2019-19077 CVE-2019-19078 CVE-2019-19080 CVE-2019-19081 CVE-2019-19082 CVE-2019-19083 CVE-2019-19227 CVE-2019-19318 CVE-2019-19319 CVE-2019-19332 CVE-2019-19338 CVE-2019-19447 CVE-2019-19523 CVE-2019-19524 CVE-2019-19525 CVE-2019-19526 CVE-2019-19527 CVE-2019-19528 CVE-2019-19529 CVE-2019-19530 CVE-2019-19531 CVE-2019-19532 CVE-2019-19533 CVE-2019-19534 CVE-2019-19535 CVE-2019-19536 CVE-2019-19537 CVE-2019-19543 CVE-2019-19767 CVE-2019-19927 CVE-2019-19965 CVE-2019-19966 CVE-2019-20054 CVE-2019-20095 CVE-2019-20096 CVE-2019-2933 CVE-2019-2945 CVE-2019-2949 CVE-2019-2958 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2975 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2988 CVE-2019-2989 CVE-2019-2992 CVE-2019-2996 CVE-2019-2999 CVE-2019-3846 CVE-2019-5008 CVE-2019-5489 CVE-2019-6470 CVE-2019-9578 CVE-2020-13790 CVE-2020-13934 CVE-2020-13935 CVE-2020-14556 CVE-2020-14562 CVE-2020-14573 CVE-2020-14577 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-2654 CVE-2020-2732 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 CVE-2020-7053 CVE-2020-7068 CVE-2020-8428 CVE-2020-8648 CVE-2020-8992 SUSE-SU-2019:1529-1 SUSE-SU-2019:1750-1 SUSE-SU-2019:2012-1 SUSE-SU-2019:2192-1 SUSE-SU-2019:2657-1 SUSE-SU-2019:2981-1 SUSE-SU-2019:3317-1 SUSE-SU-2020:0001-1 SUSE-SU-2020:0043-1 SUSE-SU-2020:2046-1 SUSE-SU-2020:2143-1 SUSE-SU-2020:2455-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information strongswan-4.4.0-6.25 is installed OR strongswan-doc-4.4.0-6.25 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information libsndfile-1.0.20-2.10 is installed OR libsndfile-32bit-1.0.20-2.10 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information cups-1.7.5-2 is installed OR cups-client-1.7.5-2 is installed OR cups-libs-1.7.5-2 is installed OR cups-libs-32bit-1.7.5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information ecryptfs-utils-103-5 is installed OR ecryptfs-utils-32bit-103-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-28 is installed OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information eog-3.20.4-7 is installed OR eog-lang-3.20.4-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information dhcp-4.3.3-10.14 is installed OR dhcp-client-4.3.3-10.14 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information java-11-openjdk-11.0.8.0-3.45 is installed OR java-11-openjdk-javadoc-11.0.8.0-3.45 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information libu2f-host-1.1.6-3.6 is installed OR libu2f-host-devel-1.1.6-3.6 is installed OR libu2f-host0-1.1.6-3.6 is installed OR pam_u2f-1.0.8-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information kernel-default-4.12.14-150.22 is installed OR reiserfs-kmp-default-4.12.14-150.22 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_38-default-2-2 is installed OR kernel-livepatch-SLE15_Update_15-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.29 is installed OR kernel-default-livepatch-4.12.14-197.29 is installed OR kernel-default-livepatch-devel-4.12.14-197.29 is installed OR kernel-livepatch-4_12_14-197_29-default-1-3.3 is installed OR kernel-livepatch-SLE15-SP1_Update_8-1-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information qemu-3.1.1-9.3 is installed OR qemu-arm-3.1.1-9.3 is installed OR qemu-audio-alsa-3.1.1-9.3 is installed OR qemu-audio-oss-3.1.1-9.3 is installed OR qemu-audio-pa-3.1.1-9.3 is installed OR qemu-block-dmg-3.1.1-9.3 is installed OR qemu-extra-3.1.1-9.3 is installed OR qemu-linux-user-3.1.1-9.3 is installed OR qemu-ppc-3.1.1-9.3 is installed OR qemu-s390-3.1.1-9.3 is installed OR qemu-seabios-1.12.0-9.3 is installed OR qemu-sgabios-8-9.3 is installed OR qemu-testsuite-3.1.1-9.3 is installed OR qemu-ui-curses-3.1.1-9.3 is installed OR qemu-ui-gtk-3.1.1-9.3 is installed OR qemu-x86-3.1.1-9.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information libecpg6-10.9-8.3 is installed OR postgresql10-10.9-8.3 is installed OR postgresql10-contrib-10.9-8.3 is installed OR postgresql10-devel-10.9-8.3 is installed OR postgresql10-docs-10.9-8.3 is installed OR postgresql10-plperl-10.9-8.3 is installed OR postgresql10-plpython-10.9-8.3 is installed OR postgresql10-pltcl-10.9-8.3 is installed OR postgresql10-server-10.9-8.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs8-8.17.0-3.25 is installed OR nodejs8-devel-8.17.0-3.25 is installed OR nodejs8-docs-8.17.0-3.25 is installed OR npm8-8.17.0-3.25 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information tomcat-9.0.36-4.41 is installed OR tomcat-admin-webapps-9.0.36-4.41 is installed OR tomcat-el-3_0-api-9.0.36-4.41 is installed OR tomcat-jsp-2_3-api-9.0.36-4.41 is installed OR tomcat-lib-9.0.36-4.41 is installed OR tomcat-servlet-4_0-api-9.0.36-4.41 is installed OR tomcat-webapps-9.0.36-4.41 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP2 is installed AND Package Information nodejs8-8.17.0-10.3 is installed OR nodejs8-devel-8.17.0-10.3 is installed OR nodejs8-docs-8.17.0-10.3 is installed OR npm8-8.17.0-10.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information bash-4.2-75 is installed OR bash-doc-4.2-75 is installed OR libreadline6-6.2-75 is installed OR libreadline6-32bit-6.2-75 is installed OR readline-doc-6.2-75 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND dstat-0.7.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libopenssl-devel-1.0.2j-60.39 is installed OR libopenssl1_0_0-1.0.2j-60.39 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.39 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.39 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.39 is installed OR openssl-1.0.2j-60.39 is installed OR openssl-doc-1.0.2j-60.39 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-devel-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_64-default-5-2 is installed OR kgraft-patch-SLE12-SP2_Update_18-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND sudo-1.8.20p2-3.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information nfs-client-1.3.0-34.22 is installed OR nfs-doc-1.3.0-34.22 is installed OR nfs-kernel-server-1.3.0-34.22 is installed OR nfs-utils-1.3.0-34.22 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ImageMagick-6.8.8.1-71.79 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.79 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.79 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information dovecot22-2.2.31-19.11 is installed OR dovecot22-backend-mysql-2.2.31-19.11 is installed OR dovecot22-backend-pgsql-2.2.31-19.11 is installed OR dovecot22-backend-sqlite-2.2.31-19.11 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND permissions-20180125-3.21 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-60.3.0-3.17 is installed OR MozillaThunderbird-translations-common-60.3.0-3.17 is installed OR MozillaThunderbird-translations-other-60.3.0-3.17 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information dnsmasq-2.78-18.3 is installed OR dnsmasq-utils-2.78-18.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND python-oslo.middleware-3.19.0-3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libshibsp-lite6-2.5.5-6.6 is installed OR libshibsp6-2.5.5-6.6 is installed OR shibboleth-sp-2.5.5-6.6 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-loofah-2.0.2-3.8 is installed OR rubygem-loofah-2.0.2-3.8 is installed

BACK