Oval Definition:	oval:org.opensuse.security:def:50678
Revision Date: 2020-12-01 Version: 1 Title: Security update for tcpdump (Important) Description: This update for tcpdump fixes the following issues: - CVE-2017-16808: Fixed a heap-based buffer over-read related to aoe_print and lookup_emem (bsc#1068716 bsc#1153098). - CVE-2018-10103: Fixed a mishandling of the printing of SMB data (bsc#1153098). - CVE-2018-10105: Fixed a mishandling of the printing of SMB data (bsc#1153098). - CVE-2018-14461: Fixed a buffer over-read in print-ldp.c:ldp_tlv_print (bsc#1153098). - CVE-2018-14462: Fixed a buffer over-read in print-icmp.c:icmp_print (bsc#1153098). - CVE-2018-14463: Fixed a buffer over-read in print-vrrp.c:vrrp_print (bsc#1153098). - CVE-2018-14464: Fixed a buffer over-read in print-lmp.c:lmp_print_data_link_subobjs (bsc#1153098). - CVE-2018-14465: Fixed a buffer over-read in print-rsvp.c:rsvp_obj_print (bsc#1153098). - CVE-2018-14466: Fixed a buffer over-read in print-rx.c:rx_cache_find (bsc#1153098). - CVE-2018-14467: Fixed a buffer over-read in print-bgp.c:bgp_capabilities_print (bsc#1153098). - CVE-2018-14468: Fixed a buffer over-read in print-fr.c:mfr_print (bsc#1153098). - CVE-2018-14469: Fixed a buffer over-read in print-isakmp.c:ikev1_n_print (bsc#1153098). - CVE-2018-14470: Fixed a buffer over-read in print-babel.c:babel_print_v2 (bsc#1153098). - CVE-2018-14879: Fixed a buffer overflow in the command-line argument parser (bsc#1153098). - CVE-2018-14880: Fixed a buffer over-read in the OSPFv3 parser (bsc#1153098). - CVE-2018-14881: Fixed a buffer over-read in the BGP parser (bsc#1153098). - CVE-2018-14882: Fixed a buffer over-read in the ICMPv6 parser (bsc#1153098). - CVE-2018-16227: Fixed a buffer over-read in the IEEE 802.11 parser in print-802_11.c for the Mesh Flags subfield (bsc#1153098). - CVE-2018-16228: Fixed a buffer over-read in the HNCP parser (bsc#1153098). - CVE-2018-16229: Fixed a buffer over-read in the DCCP parser (bsc#1153098). - CVE-2018-16230: Fixed a buffer over-read in the BGP parser in print-bgp.c:bgp_attr_print (bsc#1153098). - CVE-2018-16300: Fixed an unlimited recursion in the BGP parser that allowed denial-of-service by stack consumption (bsc#1153098). - CVE-2018-16301: Fixed a buffer overflow (bsc#1153332 bsc#1153098). - CVE-2018-16451: Fixed several buffer over-reads in print-smb.c:print_trans() for \MAILSLOT\BROWSE and \PIPE\LANMAN (bsc#1153098). - CVE-2018-16452: Fixed a stack exhaustion in smbutil.c:smb_fdata (bsc#1153098). - CVE-2019-15166: Fixed a bounds check in lmp_print_data_link_subobjs (bsc#1153098). - CVE-2019-15167: Fixed a vulnerability in VRRP (bsc#1153098). Family: unix Class: patch Status: Reference(s): 1027282 1029377 1029902 1040164 1041090 1042670 1051510 1055014 1058115 1061843 1065600 1065729 1066382 1068664 1068716 1070853 1073269 1073748 1077428 1078326 1078485 1079300 1079761 1081750 1082555 1083507 1083647 1084650 1086001 1088004 1088009 1088573 1089895 1093447 1094814 1099358 1103990 1103991 1103992 1104745 1107030 1109663 1109837 1109847 1111666 1111793 1112178 1112374 1113755 1113956 1114279 1120644 1122191 1124278 1127354 1127355 1127371 1129124 1129346 1130840 1130847 1131277 1133021 1133035 1133452 1134157 1134760 1134853 1136440 1137942 1138459 1141853 1142685 1142988 1143463 1143777 1143817 1143818 1143819 1143820 1143821 1143823 1143824 1143825 1143827 1143828 1143830 1143831 1144333 1144363 1149121 1149792 1149955 1151488 1151490 1151794 1152308 1152489 1153098 1153238 1153332 1153830 1154092 1154824 1154862 1157169 1158265 1159035 1159622 1160388 1160947 1160968 1162198 1164780 1164871 1165183 1165478 1165741 1166969 1166978 1167209 1167574 1167851 1167867 1168332 1168670 1168789 1169020 1169511 1169514 1169525 1169762 1170056 1170125 1170145 1170284 1170345 1170415 1170457 1170522 1170592 1170603 1170617 1170618 1170620 1170621 1170770 1170778 1170791 1170901 1171078 1171098 1171118 1171189 1171191 1171195 1171202 1171205 1171214 1171217 1171218 1171219 1171220 1171244 1171293 1171352 1171417 1171527 1171558 1171599 1171600 1171601 1171602 1171604 1171605 1171606 1171607 1171608 1171609 1171610 1171611 1171612 1171613 1171614 1171615 1171616 1171617 1171618 1171619 1171620 1171621 1171622 1171623 1171624 1171625 1171626 1171662 1171679 1171691 1171692 1171694 1171695 1171736 1171817 1171948 1171949 1171951 1171952 1171979 1171982 1171983 1172017 1172096 1172097 1172098 1172099 1172101 1172102 1172103 1172104 1172127 1172130 1172185 1172188 1172199 1172201 1172202 1172221 1172249 1172251 1172277 1172317 1172342 1172343 1172344 1172366 1172378 1172391 1172397 1172453 1173432 1174748 1175992 1176012 1176072 1176354 1176382 1176485 1176560 1176713 1176723 1176896 1177086 1177101 1177271 1177281 1177410 1177411 1177470 1177687 1177719 1177740 1177749 1177750 1177753 1177754 1177755 1177766 1177855 1177856 1177861 1178003 1178027 1178166 1178185 1178187 1178188 1178202 1178234 1178330 214983 298378 346490 367853 379534 380942 399190 406051 425138 426563 430761 432677 436966 437293 441088 462375 525295 534721 551715 572673 577032 581765 603255 617751 637176 638233 658604 673071 682554 697251 707667 709442 718009 743787 747125 747794 751718 754447 754677 766778 787526 794139 804978 809831 827982 831442 831629 834601 836739 856835 856836 857470 863741 871152 885662 885882 898572 901715 917607 935856 942751 945401 951166 964182 983582 984751 985177 985348 989523 997436 CVE-2007-2052 CVE-2008-1721 CVE-2008-2315 CVE-2008-2316 CVE-2008-3142 CVE-2008-3143 CVE-2008-3144 CVE-2011-1521 CVE-2011-3389 CVE-2011-4944 CVE-2012-0845 CVE-2012-1150 CVE-2013-1752 CVE-2013-1753 CVE-2013-4238 CVE-2014-1912 CVE-2014-2667 CVE-2014-4650 CVE-2014-7185 CVE-2016-0772 CVE-2016-1000110 CVE-2016-5636 CVE-2016-5699 CVE-2017-1000158 CVE-2017-16808 CVE-2017-18207 CVE-2018-1000030 CVE-2018-1000199 CVE-2018-1000802 CVE-2018-10103 CVE-2018-10105 CVE-2018-10196 CVE-2018-1060 CVE-2018-1061 CVE-2018-14461 CVE-2018-14462 CVE-2018-14463 CVE-2018-14464 CVE-2018-14465 CVE-2018-14466 CVE-2018-14467 CVE-2018-14468 CVE-2018-14469 CVE-2018-14470 CVE-2018-14647 CVE-2018-14879 CVE-2018-14880 CVE-2018-14881 CVE-2018-14882 CVE-2018-16227 CVE-2018-16228 CVE-2018-16229 CVE-2018-16230 CVE-2018-16300 CVE-2018-16301 CVE-2018-16451 CVE-2018-16452 CVE-2018-20406 CVE-2018-20852 CVE-2019-0816 CVE-2019-1010220 CVE-2019-10160 CVE-2019-11059 CVE-2019-11690 CVE-2019-13103 CVE-2019-14192 CVE-2019-14193 CVE-2019-14194 CVE-2019-14195 CVE-2019-14196 CVE-2019-14197 CVE-2019-14198 CVE-2019-14199 CVE-2019-14200 CVE-2019-14201 CVE-2019-14202 CVE-2019-14203 CVE-2019-14204 CVE-2019-15166 CVE-2019-15167 CVE-2019-15903 CVE-2019-16056 CVE-2019-16884 CVE-2019-16935 CVE-2019-17498 CVE-2019-19462 CVE-2019-20806 CVE-2019-20812 CVE-2019-2949 CVE-2019-3902 CVE-2019-5010 CVE-2019-9455 CVE-2019-9636 CVE-2019-9947 CVE-2019-9948 CVE-2020-0430 CVE-2020-0431 CVE-2020-0543 CVE-2020-10648 CVE-2020-10690 CVE-2020-10711 CVE-2020-10720 CVE-2020-10732 CVE-2020-10751 CVE-2020-10757 CVE-2020-12114 CVE-2020-12268 CVE-2020-12268 CVE-2020-12464 CVE-2020-12652 CVE-2020-12653 CVE-2020-12654 CVE-2020-12655 CVE-2020-12656 CVE-2020-12657 CVE-2020-12659 CVE-2020-12768 CVE-2020-12769 CVE-2020-13143 CVE-2020-14351 CVE-2020-14381 CVE-2020-14386 CVE-2020-16120 CVE-2020-24394 CVE-2020-25212 CVE-2020-25285 CVE-2020-25656 CVE-2020-2654 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-27673 CVE-2020-27675 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 CVE-2020-8432 CVE-2020-8694 SUSE-SU-2019:2674-1 SUSE-SU-2019:2786-1 SUSE-SU-2019:2900-2 SUSE-SU-2019:3096-1 SUSE-SU-2020:0114-1 SUSE-SU-2020:0234-1 SUSE-SU-2020:1220-1 SUSE-SU-2020:1684-1 SUSE-SU-2020:2346-1 SUSE-SU-2020:3180-1 SUSE-SU-2020:3272-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 6-LTSS SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information curl-7.19.7-1.46 is installed OR libcurl4-7.19.7-1.46 is installed OR libcurl4-32bit-7.19.7-1.46 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libXRes1-1.0.7-3 is installed OR libXRes1-32bit-1.0.7-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libXi6-1.7.4-9 is installed OR libXi6-32bit-1.7.4-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information NetworkManager-1.0.12-8 is installed OR NetworkManager-lang-1.0.12-8 is installed OR libnm-glib-vpn1-1.0.12-8 is installed OR libnm-glib4-1.0.12-8 is installed OR libnm-util2-1.0.12-8 is installed OR libnm0-1.0.12-8 is installed OR typelib-1_0-NM-1_0-1.0.12-8 is installed OR typelib-1_0-NMClient-1_0-1.0.12-8 is installed OR typelib-1_0-NetworkManager-1_0-1.0.12-8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND procmail-3.22-267 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND bogofilter-1.2.4-5 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND tcpdump-4.9.2-3.9 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.67 is installed OR reiserfs-kmp-default-4.12.14-197.67 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_55-default-3-2 is installed OR kernel-livepatch-SLE15_Update_19-3-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_26-default-7-2 is installed OR kernel-livepatch-SLE15-SP1_Update_7-7-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-6.24 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information mercurial-4.5.2-3.9 is installed OR mercurial-lang-4.5.2-3.9 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information cloud-init-19.2-8.11 is installed OR cloud-init-config-suse-19.2-8.11 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information graphviz-addons-2.40.1-6.6 is installed OR graphviz-tcl-2.40.1-6.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information apache2-2.4.16-20.10 is installed OR apache2-doc-2.4.16-20.10 is installed OR apache2-example-pages-2.4.16-20.10 is installed OR apache2-prefork-2.4.16-20.10 is installed OR apache2-utils-2.4.16-20.10 is installed OR apache2-worker-2.4.16-20.10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libQt5Concurrent5-5.6.1-11 is installed OR libQt5Core5-5.6.1-11 is installed OR libQt5DBus5-5.6.1-11 is installed OR libQt5Gui5-5.6.1-11 is installed OR libQt5Network5-5.6.1-11 is installed OR libQt5OpenGL5-5.6.1-11 is installed OR libQt5PrintSupport5-5.6.1-11 is installed OR libQt5Sql5-5.6.1-11 is installed OR libQt5Sql5-mysql-5.6.1-11 is installed OR libQt5Sql5-postgresql-5.6.1-11 is installed OR libQt5Sql5-sqlite-5.6.1-11 is installed OR libQt5Sql5-unixODBC-5.6.1-11 is installed OR libQt5Test5-5.6.1-11 is installed OR libQt5Widgets5-5.6.1-11 is installed OR libQt5Xml5-5.6.1-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information kernel-firmware-20170530-21.22 is installed OR ucode-amd-20170530-21.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information openslp-2.0.0-18.17 is installed OR openslp-32bit-2.0.0-18.17 is installed OR openslp-server-2.0.0-18.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_120-92_70-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_20-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_perl-2.0.8-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information kernel-default-4.4.180-94.103 is installed OR kernel-default-base-4.4.180-94.103 is installed OR kernel-default-devel-4.4.180-94.103 is installed OR kernel-devel-4.4.180-94.103 is installed OR kernel-macros-4.4.180-94.103 is installed OR kernel-source-4.4.180-94.103 is installed OR kernel-syms-4.4.180-94.103 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libsndfile-1.0.25-36.16 is installed OR libsndfile1-1.0.25-36.16 is installed OR libsndfile1-32bit-1.0.25-36.16 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information ghostscript-9.52-3.27 is installed OR ghostscript-devel-9.52-3.27 is installed OR ghostscript-x11-9.52-3.27 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libX11-1.6.5-3.9 is installed OR libX11-6-1.6.5-3.9 is installed OR libX11-6-32bit-1.6.5-3.9 is installed OR libX11-data-1.6.5-3.9 is installed OR libX11-devel-1.6.5-3.9 is installed OR libX11-xcb1-1.6.5-3.9 is installed OR libX11-xcb1-32bit-1.6.5-3.9 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.6 is installed OR kernel-default-extra-4.12.14-25.6 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-60.7.0-3.33 is installed OR MozillaThunderbird-translations-common-60.7.0-3.33 is installed OR MozillaThunderbird-translations-other-60.7.0-3.33 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND crowbar-openstack-3.0+git.1521471181.2b39130da-39.10 is installed Definition Synopsis SUSE OpenStack Cloud 6-LTSS is installed AND python-setuptools-18.0.1-4.8 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information libecpg6-10.5-1.3 is installed OR libpq5-10.5-1.3 is installed OR libpq5-32bit-10.5-1.3 is installed OR postgresql-init-10-17.20 is installed OR postgresql10-10.5-1.3 is installed OR postgresql10-contrib-10.5-1.3 is installed OR postgresql10-docs-10.5-1.3 is installed OR postgresql10-libs-10.5-1.3 is installed OR postgresql10-server-10.5-1.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND python-Django-1.11.23-3.12 is installed
BACK