OVAL Reference oval:org.opensuse.security:def:5067

Oval Definition:

oval:org.opensuse.security:def:5067

Revision Date:	2020-12-02	Version:	1
Title:	Security update for rubygem-puma (Moderate)
Description:	This update for rubygem-puma to version 4.3.5 fixes the following issues: - CVE-2020-11077: Fixed a HTTP smuggling issue related to proxy usage (bsc#1172175). - CVE-2020-11076: Fixed a HTTP smuggling issue when using an invalid transfer-encoding header (bsc#1172176). - Disabled TLSv1.0 and TLSv1.1 (jsc#SLE-6965).
Family:	unix	Class:	patch
Status:		Reference(s):	1051510 1055117 1055186 1058115 1065600 1065729 1071995 1083647 1083710 1094244 1102247 1103991 1103992 1104745 1109837 1111666 1112374 1119222 1123080 1127034 1127315 1127611 1129770 1130972 1133021 1134090 1134097 1134390 1134399 1135335 1135642 1136217 1136342 1136460 1136461 1136462 1136467 1136666 1137458 1137534 1137535 1137584 1137609 1137811 1137827 1138874 1139358 1139619 1140133 1140139 1140322 1140559 1140652 1140676 1140903 1140945 1140948 1141312 1141401 1141402 1141452 1141453 1141454 1141478 1141558 1142023 1142052 1142083 1142112 1142115 1142119 1142220 1142221 1142254 1142350 1142351 1142354 1142359 1142450 1142623 1142673 1142701 1142868 1143003 1143045 1143105 1143185 1143189 1143191 1143209 1143507 1152148 1152472 1152489 1153274 1154353 1155518 1155798 1156395 1167527 1170232 1170774 1171000 1171068 1171073 1171558 1171688 1171742 1172175 1172176 1172419 1172757 1172873 1173017 1173060 1173115 1173267 1173746 1174029 1174110 1174111 1174358 1174484 1174486 1174899 1175263 1175667 1175718 1175749 1175787 1175882 1175952 1175996 1175997 1175998 1175999 1176000 1176001 1176019 1176022 1176038 1176063 1176137 1176235 1176236 1176237 1176242 1176278 1176357 1176358 1176359 1176360 1176361 1176362 1176363 1176364 1176365 1176366 1176367 1176381 1176423 1176449 1176482 1176486 1176507 1176536 1176537 1176538 1176539 1176540 1176541 1176542 1176544 1176545 1176546 1176548 1176558 1176559 1176587 1176588 1176659 1176698 1176699 1176700 1176721 1176722 1176725 1176732 1176763 1176775 1176788 1176789 1176833 1176869 1176877 1176925 1176962 1176980 1176990 1177021 1177030 995932 996032 99606 996648 CVE-2007-3999 CVE-2009-0758 CVE-2009-2694 CVE-2009-2703 CVE-2009-3026 CVE-2009-3083 CVE-2009-3084 CVE-2009-3085 CVE-2009-3615 CVE-2010-0013 CVE-2010-0277 CVE-2010-0420 CVE-2010-0423 CVE-2010-1624 CVE-2010-2244 CVE-2010-2528 CVE-2010-2529 CVE-2010-3711 CVE-2010-4000 CVE-2010-4651 CVE-2011-0421 CVE-2011-1002 CVE-2011-1091 CVE-2011-3594 CVE-2011-3630 CVE-2011-3631 CVE-2011-3632 CVE-2012-0035 CVE-2012-0862 CVE-2012-1162 CVE-2012-1163 CVE-2012-2214 CVE-2012-3374 CVE-2012-6152 CVE-2013-0271 CVE-2013-0272 CVE-2013-0273 CVE-2013-0274 CVE-2013-2132 CVE-2013-4342 CVE-2013-6477 CVE-2013-6478 CVE-2013-6479 CVE-2013-6481 CVE-2013-6482 CVE-2013-6483 CVE-2013-6484 CVE-2013-6485 CVE-2013-6486 CVE-2013-6487 CVE-2014-0020 CVE-2014-3421 CVE-2014-3422 CVE-2014-3423 CVE-2014-3424 CVE-2016-5147 CVE-2016-5148 CVE-2016-5149 CVE-2016-5150 CVE-2016-5151 CVE-2016-5152 CVE-2016-5153 CVE-2016-5154 CVE-2016-5155 CVE-2016-5156 CVE-2016-5157 CVE-2016-5158 CVE-2016-5159 CVE-2016-5160 CVE-2016-5161 CVE-2016-5162 CVE-2016-5163 CVE-2016-5164 CVE-2016-5165 CVE-2016-5166 CVE-2018-20855 CVE-2019-1125 CVE-2019-11810 CVE-2019-13631 CVE-2019-13648 CVE-2019-14283 CVE-2019-14284 CVE-2020-0404 CVE-2020-0427 CVE-2020-0431 CVE-2020-0432 CVE-2020-11076 CVE-2020-11077 CVE-2020-14385 CVE-2020-14390 CVE-2020-25212 CVE-2020-25284 CVE-2020-26088 SUSE-SU-2016:2250-1 SUSE-SU-2019:2073-1 SUSE-SU-2020:1919-1 SUSE-SU-2020:2879-1
Platform(s):	SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise High Availability 15 SP1 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Toolchain 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 5 SUSE Package Hub for SUSE Linux Enterprise 12	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND python-pymongo-2.6.3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND openvpn-2.0.9-143.33.3.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND lxc-0.8.0-0.25.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information avahi-0.6.31-20 is installed OR avahi-lang-0.6.31-20 is installed OR libavahi-client3-0.6.31-20 is installed OR libavahi-client3-32bit-0.6.31-20 is installed OR libavahi-common3-0.6.31-20 is installed OR libavahi-common3-32bit-0.6.31-20 is installed OR libavahi-core7-0.6.31-20 is installed OR libdns_sd-0.6.31-20 is installed OR libdns_sd-32bit-0.6.31-20 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information emacs-24.3-14 is installed OR emacs-info-24.3-14 is installed OR emacs-x11-24.3-14 is installed OR etags-24.3-14 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-28 is installed OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information ImageMagick-6.8.8.1-70 is installed OR libMagick++-6_Q16-3-6.8.8.1-70 is installed OR libMagickCore-6_Q16-1-6.8.8.1-70 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-70 is installed OR libMagickWand-6_Q16-1-6.8.8.1-70 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information lcms-1.19-17 is installed OR liblcms1-1.19-17 is installed OR liblcms1-32bit-1.19-17 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 is installed AND python-PyYAML-3.10-15.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP1 is installed AND Package Information ctdb-4.2.4-26.2 is installed OR samba-4.2.4-26.2 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND haproxy-1.6.5-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information libpacemaker3-1.1.16-4 is installed OR pacemaker-1.1.16-4 is installed OR pacemaker-cli-1.1.16-4 is installed OR pacemaker-cts-1.1.16-4 is installed OR pacemaker-remote-1.1.16-4 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP4 is installed AND Package Information libpacemaker3-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-cli-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-cts-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-remote-1.1.19+20180928.0d2680780-1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP5 is installed AND Package Information cluster-md-kmp-default-4.12.14-120 is installed OR dlm-kmp-default-4.12.14-120 is installed OR gfs2-kmp-default-4.12.14-120 is installed OR ocfs2-kmp-default-4.12.14-120 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 is installed AND Package Information ruby2.5-rubygem-puma-4.3.5-3.3 is installed OR rubygem-puma-4.3.5-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP1 is installed AND Package Information cluster-md-kmp-default-4.12.14-197.15 is installed OR dlm-kmp-default-4.12.14-197.15 is installed OR gfs2-kmp-default-4.12.14-197.15 is installed OR kernel-default-4.12.14-197.15 is installed OR ocfs2-kmp-default-4.12.14-197.15 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information ImageMagick-config-6-SUSE-6.8.8.1-71.126 is installed OR ImageMagick-config-6-upstream-6.8.8.1-71.126 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.126 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.126 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_36-38-default-3-2.1 is installed OR kgraft-patch-3_12_36-38-xen-3-2.1 is installed OR kgraft-patch-SLE12_Update_2-3-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_73-5-default-2-2.3.2 is installed OR kgraft-patch-SLE12-SP3_Update_0-2-2.3.2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND python-pycrypto-2.6.1-10.3.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND python-setuptools-1.1.7-7.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.39-47.1 is installed OR kernel-ec2-devel-3.12.39-47.1 is installed OR kernel-ec2-extra-3.12.39-47.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Toolchain 12 is installed AND Package Information cpp5-5.3.1+r233831-9.1 is installed OR gcc5-5.3.1+r233831-9.1 is installed OR gcc5-32bit-5.3.1+r233831-9.1 is installed OR gcc5-ada-5.3.1+r233831-9.1 is installed OR gcc5-ada-32bit-5.3.1+r233831-9.1 is installed OR gcc5-c++-5.3.1+r233831-9.1 is installed OR gcc5-c++-32bit-5.3.1+r233831-9.1 is installed OR gcc5-fortran-5.3.1+r233831-9.1 is installed OR gcc5-fortran-32bit-5.3.1+r233831-9.1 is installed OR gcc5-info-5.3.1+r233831-9.1 is installed OR gcc5-locale-5.3.1+r233831-9.1 is installed OR libada5-5.3.1+r233831-9.1 is installed OR libada5-32bit-5.3.1+r233831-9.1 is installed OR libffi-devel-gcc5-5.3.1+r233831-9.1 is installed OR libffi-devel-gcc5-32bit-5.3.1+r233831-9.1 is installed OR libffi-gcc5-5.3.1+r233831-9.1 is installed OR libstdc++6-devel-gcc5-5.3.1+r233831-9.1 is installed OR libstdc++6-devel-gcc5-32bit-5.3.1+r233831-9.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information libpython3_4m1_0-3.4.1-2 is installed OR python3-base-3.4.1-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information libpoppler-glib4-0.12.3-1.8.1 is installed OR libpoppler-qt4-3-0.12.3-1.8.1 is installed OR libpoppler5-0.12.3-1.8.1 is installed OR poppler-tools-0.12.3-1.8.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND acpid-1.0.6-91.25.20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information bind-9.9.5P1-1 is installed OR bind-chrootenv-9.9.5P1-1 is installed OR bind-doc-9.9.5P1-1 is installed OR bind-libs-9.9.5P1-1 is installed OR bind-libs-32bit-9.9.5P1-1 is installed OR bind-utils-9.9.5P1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information LibVNCServer-0.9.9-16.1 is installed OR libvncclient0-0.9.9-16.1 is installed OR libvncserver0-0.9.9-16.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libidn-tools-1.28-4 is installed OR libidn11-1.28-4 is installed OR libidn11-32bit-1.28-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND ant-1.9.4-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_55-52_42-default-2-2.2 is installed OR kgraft-patch-3_12_55-52_42-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_12-2-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information libpoppler44-0.24.4-14.13 is installed OR poppler-0.24.4-14.13 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information php53-5.3.17-45.1 is installed OR php53-devel-5.3.17-45.1 is installed OR php53-imap-5.3.17-45.1 is installed OR php53-posix-5.3.17-45.1 is installed OR php53-readline-5.3.17-45.1 is installed OR php53-sockets-5.3.17-45.1 is installed OR php53-sqlite-5.3.17-45.1 is installed OR php53-tidy-5.3.17-45.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND mozilla-nss-devel-3.19.2.1-29 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information ImageMagick-6.8.8.1-33 is installed OR ImageMagick-devel-6.8.8.1-33 is installed OR libMagick++-6_Q16-3-6.8.8.1-33 is installed OR libMagick++-devel-6.8.8.1-33 is installed OR perl-PerlMagick-6.8.8.1-33 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information FastCGI-2.4.0-168 is installed OR FastCGI-devel-2.4.0-168 is installed OR perl-FastCGI-2.4.0-168 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information libreoffice-4.3.5.2-10.1 is installed OR libreoffice-base-4.3.5.2-10.1 is installed OR libreoffice-base-drivers-mysql-4.3.5.2-10.1 is installed OR libreoffice-base-drivers-postgresql-4.3.5.2-10.1 is installed OR libreoffice-calc-4.3.5.2-10.1 is installed OR libreoffice-calc-extensions-4.3.5.2-10.1 is installed OR libreoffice-draw-4.3.5.2-10.1 is installed OR libreoffice-filters-optional-4.3.5.2-10.1 is installed OR libreoffice-gnome-4.3.5.2-10.1 is installed OR libreoffice-icon-theme-tango-4.3.5.2-10.1 is installed OR libreoffice-impress-4.3.5.2-10.1 is installed OR libreoffice-l10n-af-4.3.5.2-10.1 is installed OR libreoffice-l10n-ar-4.3.5.2-10.1 is installed OR libreoffice-l10n-ca-4.3.5.2-10.1 is installed OR libreoffice-l10n-cs-4.3.5.2-10.1 is installed OR libreoffice-l10n-da-4.3.5.2-10.1 is installed OR libreoffice-l10n-de-4.3.5.2-10.1 is installed OR libreoffice-l10n-en-4.3.5.2-10.1 is installed OR libreoffice-l10n-es-4.3.5.2-10.1 is installed OR libreoffice-l10n-fi-4.3.5.2-10.1 is installed OR libreoffice-l10n-fr-4.3.5.2-10.1 is installed OR libreoffice-l10n-gu-4.3.5.2-10.1 is installed OR libreoffice-l10n-hi-4.3.5.2-10.1 is installed OR libreoffice-l10n-hu-4.3.5.2-10.1 is installed OR libreoffice-l10n-it-4.3.5.2-10.1 is installed OR libreoffice-l10n-ja-4.3.5.2-10.1 is installed OR libreoffice-l10n-ko-4.3.5.2-10.1 is installed OR libreoffice-l10n-nb-4.3.5.2-10.1 is installed OR libreoffice-l10n-nl-4.3.5.2-10.1 is installed OR libreoffice-l10n-nn-4.3.5.2-10.1 is installed OR libreoffice-l10n-pl-4.3.5.2-10.1 is installed OR libreoffice-l10n-pt-BR-4.3.5.2-10.1 is installed OR libreoffice-l10n-pt-PT-4.3.5.2-10.1 is installed OR libreoffice-l10n-ru-4.3.5.2-10.1 is installed OR libreoffice-l10n-sk-4.3.5.2-10.1 is installed OR libreoffice-l10n-sv-4.3.5.2-10.1 is installed OR libreoffice-l10n-xh-4.3.5.2-10.1 is installed OR libreoffice-l10n-zh-Hans-4.3.5.2-10.1 is installed OR libreoffice-l10n-zh-Hant-4.3.5.2-10.1 is installed OR libreoffice-l10n-zu-4.3.5.2-10.1 is installed OR libreoffice-mailmerge-4.3.5.2-10.1 is installed OR libreoffice-math-4.3.5.2-10.1 is installed OR libreoffice-officebean-4.3.5.2-10.1 is installed OR libreoffice-pyuno-4.3.5.2-10.1 is installed OR libreoffice-writer-4.3.5.2-10.1 is installed OR libreoffice-writer-extensions-4.3.5.2-10.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information kernel-default-3.12.51-60.20.2 is installed OR kernel-default-extra-3.12.51-60.20.2 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information libmysqlclient_r18-10.0.28-17.2 is installed OR libmysqlclient_r18-32bit-10.0.28-17.2 is installed OR mariadb-10.0.28-17.2 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information kernel-default-5.3.18-24.24 is installed OR kernel-default-extra-5.3.18-24.24 is installed
Definition Synopsis
SUSE Package Hub for SUSE Linux Enterprise 12 is installed AND Package Information chromedriver-53.0.2785.89-96 is installed OR chromium-53.0.2785.89-96 is installed OR chromium-desktop-gnome-53.0.2785.89-96 is installed OR chromium-desktop-kde-53.0.2785.89-96 is installed OR chromium-ffmpegsumo-53.0.2785.89-96 is installed

BACK