OVAL Reference oval:org.opensuse.security:def:50705

Oval Definition:

oval:org.opensuse.security:def:50705

Revision Date:	2020-12-01	Version:	1
Title:	Security update for clamav (Moderate)
Description:	This update for clamav fixes the following issues: Security issue fixed: - CVE-2019-12625: Fixed a ZIP bomb issue by adding detection and heuristics for zips with overlapping files (bsc#1144504). - CVE-2019-12900: Fixed an out-of-bounds write in decompress.c with many selectors (bsc#1149458). Non-security issues fixed: - Added the --max-scantime clamscan option and MaxScanTime clamd configuration option (bsc#1144504). - Increased the startup timeout of clamd to 5 minutes to cater for the grown virus database as a workaround until clamd has learned to talk to systemd to extend the timeout as long as needed (bsc#1151839).
Family:	unix	Class:	patch
Status:		Reference(s):	1018371 1065697 1085240 1095508 1097108 1099258 1099306 1102682 1103203 1123304 1138459 1140709 1144504 1149458 1149841 1151021 1151839 1153163 1153164 1155784 1158709 1158798 1159692 1168669 1172175 1172176 1172177 1172225 1172356 1172402 1172405 1173032 1173948 1174543 1174628 1176072 1176382 CVE-2016-10030 CVE-2017-15566 CVE-2017-18344 CVE-2018-10853 CVE-2018-10995 CVE-2018-12904 CVE-2018-3646 CVE-2018-5390 CVE-2018-7033 CVE-2019-10160 CVE-2019-12625 CVE-2019-12838 CVE-2019-12900 CVE-2019-14835 CVE-2019-17177 CVE-2019-17178 CVE-2019-19727 CVE-2019-19728 CVE-2019-20807 CVE-2019-6438 CVE-2020-11076 CVE-2020-11077 CVE-2020-12402 CVE-2020-12405 CVE-2020-12406 CVE-2020-12410 CVE-2020-14344 CVE-2020-14386 CVE-2020-25212 CVE-2020-8022 CVE-2020-8164 SUSE-SU-2018:2474-1 SUSE-SU-2019:2064-1 SUSE-SU-2019:2572-1 SUSE-SU-2019:3053-1 SUSE-SU-2019:3079-1 SUSE-SU-2020:0443-1 SUSE-SU-2020:1551-1 SUSE-SU-2020:1789-1 SUSE-SU-2020:1850-1 SUSE-SU-2020:2197-1 SUSE-SU-2020:3186-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP2 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information gpg2-2.0.9-25.33.41 is installed OR gpg2-lang-2.0.9-25.33.41 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND libgadu3-1.11.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libgssglue1-0.4-3 is installed OR libgssglue1-32bit-0.4-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information bash-4.3-78 is installed OR bash-doc-4.3-78 is installed OR bash-lang-4.3-78 is installed OR libreadline6-6.3-78 is installed OR libreadline6-32bit-6.3-78 is installed OR readline-doc-6.3-78 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information glib2-lang-2.48.2-10 is installed OR glib2-tools-2.48.2-10 is installed OR libgio-2_0-0-2.48.2-10 is installed OR libgio-2_0-0-32bit-2.48.2-10 is installed OR libgio-fam-2.48.2-10 is installed OR libglib-2_0-0-2.48.2-10 is installed OR libglib-2_0-0-32bit-2.48.2-10 is installed OR libgmodule-2_0-0-2.48.2-10 is installed OR libgmodule-2_0-0-32bit-2.48.2-10 is installed OR libgobject-2_0-0-2.48.2-10 is installed OR libgobject-2_0-0-32bit-2.48.2-10 is installed OR libgthread-2_0-0-2.48.2-10 is installed OR libgthread-2_0-0-32bit-2.48.2-10 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND bogofilter-1.2.4-5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information clamav-0.100.3-3.14 is installed OR clamav-devel-0.100.3-3.14 is installed OR libclamav7-0.100.3-3.14 is installed OR libclammspack0-0.100.3-3.14 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-23-default-2-4 is installed OR kernel-livepatch-SLE15_Update_0-2-4 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_4-default-5-2 is installed OR kernel-livepatch-SLE15-SP1_Update_1-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed AND Package Information kernel-livepatch-5_3_18-24_12-default-2-2 is installed OR kernel-livepatch-SLE15-SP2_Update_2-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information freerdp-2.0.0~rc4-10.4 is installed OR freerdp-server-2.0.0~rc4-10.4 is installed OR freerdp-wayland-2.0.0~rc4-10.4 is installed OR libuwac0-0-2.0.0~rc4-10.4 is installed OR uwac0-0-devel-2.0.0~rc4-10.4 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information MozillaFirefox-78.0.2-3.97 is installed OR MozillaFirefox-branding-upstream-78.0.2-3.97 is installed OR MozillaFirefox-buildsymbols-78.0.2-3.97 is installed OR MozillaFirefox-devel-78.0.2-3.97 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python-2.7.14-7.14 is installed OR python-base-2.7.14-7.14 is installed OR python-curses-2.7.14-7.14 is installed OR python-devel-2.7.14-7.14 is installed OR python-gdbm-2.7.14-7.14 is installed OR python-xml-2.7.14-7.14 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information libfreebl3-hmac-3.53.1-3.45 is installed OR libsoftokn3-hmac-3.53.1-3.45 is installed OR mozilla-nss-3.53.1-3.45 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information curl-7.37.0-15 is installed OR libcurl4-7.37.0-15 is installed OR libcurl4-32bit-7.37.0-15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_60-default-2-4 is installed OR kgraft-patch-3_12_74-60_64_60-xen-2-4 is installed OR kgraft-patch-SLE12-SP1_Update_21-2-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information bash-4.3-78 is installed OR bash-doc-4.3-78 is installed OR libreadline6-6.3-78 is installed OR libreadline6-32bit-6.3-78 is installed OR readline-doc-6.3-78 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information xen-4.7.6_04-43.39 is installed OR xen-doc-html-4.7.6_04-43.39 is installed OR xen-libs-4.7.6_04-43.39 is installed OR xen-libs-32bit-4.7.6_04-43.39 is installed OR xen-tools-4.7.6_04-43.39 is installed OR xen-tools-domU-4.7.6_04-43.39 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information glibc-2.22-62.13 is installed OR glibc-32bit-2.22-62.13 is installed OR glibc-devel-2.22-62.13 is installed OR glibc-devel-32bit-2.22-62.13 is installed OR glibc-html-2.22-62.13 is installed OR glibc-i18ndata-2.22-62.13 is installed OR glibc-info-2.22-62.13 is installed OR glibc-locale-2.22-62.13 is installed OR glibc-locale-32bit-2.22-62.13 is installed OR glibc-profile-2.22-62.13 is installed OR glibc-profile-32bit-2.22-62.13 is installed OR nscd-2.22-62.13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_59-92_24-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_9-11-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information curl-7.37.0-36 is installed OR libcurl4-7.37.0-36 is installed OR libcurl4-32bit-7.37.0-36 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libjpeg-turbo-1.5.3-31.19 is installed OR libjpeg62-62.2.0-31.19 is installed OR libjpeg62-32bit-62.2.0-31.19 is installed OR libjpeg62-turbo-1.5.3-31.19 is installed OR libjpeg8-8.1.2-31.19 is installed OR libjpeg8-32bit-8.1.2-31.19 is installed OR libturbojpeg0-8.1.2-31.19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libzypp-16.17.20-2.33 is installed OR zypper-1.13.45-21.21 is installed OR zypper-log-1.13.45-21.21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libXinerama1-1.1.3-3 is installed OR libXinerama1-32bit-1.1.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information tomcat-9.0.35-3.57 is installed OR tomcat-admin-webapps-9.0.35-3.57 is installed OR tomcat-el-3_0-api-9.0.35-3.57 is installed OR tomcat-jsp-2_3-api-9.0.35-3.57 is installed OR tomcat-lib-9.0.35-3.57 is installed OR tomcat-servlet-4_0-api-9.0.35-3.57 is installed OR tomcat-webapps-9.0.35-3.57 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information nodejs10-10.22.1-1.27 is installed OR nodejs10-devel-10.22.1-1.27 is installed OR nodejs10-docs-10.22.1-1.27 is installed OR npm10-10.22.1-1.27 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information gnome-shell-3.26.2+20180130.0d9c74212-4.19 is installed OR gnome-shell-calendar-3.26.2+20180130.0d9c74212-4.19 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-68.7.0-3.77 is installed OR MozillaThunderbird-translations-common-68.7.0-3.77 is installed OR MozillaThunderbird-translations-other-68.7.0-3.77 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND mailman-2.1.17-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND python-Django-1.11.11-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information MozillaFirefox-68.2.0-109.95 is installed OR MozillaFirefox-translations-common-68.2.0-109.95 is installed

BACK