OVAL Reference oval:org.opensuse.security:def:50722

Oval Definition:

oval:org.opensuse.security:def:50722

Revision Date:	2020-12-01	Version:	1
Title:	Security update for trousers (Moderate)
Description:	This update for trousers fixes the following issues: - CVE-2019-18898: Fixed a local symlink attack where a rogue tss user could have gain ownership of arbitrary files in the system during installation/update of the trousers package (bsc#1157651).
Family:	unix	Class:	patch
Status:		Reference(s):	1027519 1051510 1065729 1071995 1085030 1100369 1104967 1107832 1109160 1110233 1111666 1112178 1113956 1114279 1118367 1118368 1118832 1119396 1126711 1126713 1126821 1126823 1126827 1127122 1128220 1128722 1128883 1128886 1128887 1128889 1128892 1129032 1132837 1132838 1134322 1144333 1148868 1150660 1151927 1152107 1152497 1152624 1153108 1156205 1157047 1157051 1157651 1157770 1157888 1158003 1158004 1158005 1158006 1158007 1158755 1158809 1158983 1159058 1160903 1160905 1161016 1161168 1162002 1162063 1163309 1166985 1167104 1168081 1168959 1169194 1169514 1169771 1169795 1170011 1170442 1170592 1170617 1170618 1170667 1170713 1171078 1171124 1171313 1171424 1171529 1171530 1171550 1171558 1171673 1171732 1171739 1171740 1171743 1171753 1171759 1171835 1171841 1171868 1171904 1172205 1172247 1172257 1172344 1172458 1172484 1172537 1172538 1172687 1172719 1172759 1172775 1172781 1172782 1172783 1172871 1172872 1172958 1172999 1173060 1173074 1173146 1173157 1173265 1173274 1173280 1173284 1173307 1173311 1173376 1173377 1173378 1173380 1173428 1173514 1173567 1173573 1173659 1173746 1173818 1173820 1173825 1173826 1173833 1173838 1173839 1173845 1173857 1173983 1173999 1174000 1174113 1174115 1174122 1174123 1174139 1174157 1174186 1174187 1174296 1174343 1174356 1174409 1174438 1174462 1174543 1174955 1175443 1175465 1176092 1176409 1176412 1176430 1176674 1177155 906079 CVE-2017-3136 CVE-2018-14633 CVE-2018-17182 CVE-2018-19935 CVE-2018-20783 CVE-2018-5741 CVE-2019-10220 CVE-2019-11034 CVE-2019-11035 CVE-2019-11036 CVE-2019-1551 CVE-2019-16746 CVE-2019-16746 CVE-2019-18898 CVE-2019-18902 CVE-2019-19577 CVE-2019-19578 CVE-2019-19579 CVE-2019-19580 CVE-2019-19581 CVE-2019-19582 CVE-2019-19583 CVE-2019-20810 CVE-2019-20908 CVE-2019-20908 CVE-2019-6477 CVE-2019-9020 CVE-2019-9021 CVE-2019-9022 CVE-2019-9023 CVE-2019-9024 CVE-2019-9637 CVE-2019-9638 CVE-2019-9639 CVE-2019-9640 CVE-2019-9641 CVE-2019-9675 CVE-2020-0305 CVE-2020-0305 CVE-2020-0543 CVE-2020-10766 CVE-2020-10766 CVE-2020-10767 CVE-2020-10767 CVE-2020-10768 CVE-2020-10768 CVE-2020-10769 CVE-2020-10769 CVE-2020-10773 CVE-2020-10773 CVE-2020-10781 CVE-2020-12771 CVE-2020-12771 CVE-2020-12888 CVE-2020-12888 CVE-2020-13249 CVE-2020-13974 CVE-2020-13974 CVE-2020-14392 CVE-2020-14393 CVE-2020-14416 CVE-2020-14416 CVE-2020-14422 CVE-2020-14556 CVE-2020-14562 CVE-2020-14573 CVE-2020-14577 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-15393 CVE-2020-15393 CVE-2020-15563 CVE-2020-15565 CVE-2020-15566 CVE-2020-15567 CVE-2020-15708 CVE-2020-15780 CVE-2020-15780 CVE-2020-25637 CVE-2020-2752 CVE-2020-2760 CVE-2020-2812 CVE-2020-2814 CVE-2020-7216 CVE-2020-8616 CVE-2020-8617 CVE-2020-8618 CVE-2020-8619 CVE-2020-8620 CVE-2020-8621 CVE-2020-8622 CVE-2020-8623 CVE-2020-8624 SUSE-SU-2019:1461-1 SUSE-SU-2019:3216-1 SUSE-SU-2019:3338-1 SUSE-SU-2019:3349-1 SUSE-SU-2020:0064-1 SUSE-SU-2020:0263-1 SUSE-SU-2020:1889-1 SUSE-SU-2020:1920-1 SUSE-SU-2020:2645-1 SUSE-SU-2020:2970-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information bind-libs-9.9.4P2-0.6 is installed OR bind-libs-32bit-9.9.4P2-0.6 is installed OR bind-utils-9.9.4P2-0.6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information krb5-1.6.3-133.49.68 is installed OR krb5-32bit-1.6.3-133.49.68 is installed OR krb5-client-1.6.3-133.49.68 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND libmspack0-0.4-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information accountsservice-0.6.35-3 is installed OR accountsservice-lang-0.6.35-3 is installed OR libaccountsservice0-0.6.35-3 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information augeas-1.2.0-10 is installed OR augeas-lenses-1.2.0-10 is installed OR libaugeas0-1.2.0-10 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information gstreamer-plugins-good-1.8.3-15 is installed OR gstreamer-plugins-good-lang-1.8.3-15 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information curl-7.60.0-2 is installed OR libcurl4-7.60.0-2 is installed OR libcurl4-32bit-7.60.0-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information php7-7.2.5-4.32 is installed OR php7-embed-7.2.5-4.32 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information libtspi1-0.3.14-6.3 is installed OR trousers-0.3.14-6.3 is installed OR trousers-devel-0.3.14-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-23-default-5-13 is installed OR kernel-livepatch-SLE15_Update_0-5-13 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_18-default-3-2 is installed OR kernel-livepatch-SLE15-SP1_Update_5-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information xen-4.12.1_06-3.9 is installed OR xen-devel-4.12.1_06-3.9 is installed OR xen-doc-html-4.12.1_06-3.9 is installed OR xen-libs-4.12.1_06-3.9 is installed OR xen-libs-32bit-4.12.1_06-3.9 is installed OR xen-tools-4.12.1_06-3.9 is installed OR xen-tools-domU-4.12.1_06-3.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information java-11-openjdk-11.0.8.0-3.45 is installed OR java-11-openjdk-accessibility-11.0.8.0-3.45 is installed OR java-11-openjdk-javadoc-11.0.8.0-3.45 is installed OR java-11-openjdk-jmods-11.0.8.0-3.45 is installed OR java-11-openjdk-src-11.0.8.0-3.45 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND python-ipaddress-1.0.18-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information libvirt-6.0.0-13.8 is installed OR libvirt-admin-6.0.0-13.8 is installed OR libvirt-bash-completion-6.0.0-13.8 is installed OR libvirt-client-6.0.0-13.8 is installed OR libvirt-daemon-6.0.0-13.8 is installed OR libvirt-daemon-config-network-6.0.0-13.8 is installed OR libvirt-daemon-config-nwfilter-6.0.0-13.8 is installed OR libvirt-daemon-driver-interface-6.0.0-13.8 is installed OR libvirt-daemon-driver-libxl-6.0.0-13.8 is installed OR libvirt-daemon-driver-lxc-6.0.0-13.8 is installed OR libvirt-daemon-driver-network-6.0.0-13.8 is installed OR libvirt-daemon-driver-nodedev-6.0.0-13.8 is installed OR libvirt-daemon-driver-nwfilter-6.0.0-13.8 is installed OR libvirt-daemon-driver-qemu-6.0.0-13.8 is installed OR libvirt-daemon-driver-secret-6.0.0-13.8 is installed OR libvirt-daemon-driver-storage-6.0.0-13.8 is installed OR libvirt-daemon-driver-storage-core-6.0.0-13.8 is installed OR libvirt-daemon-driver-storage-disk-6.0.0-13.8 is installed OR libvirt-daemon-driver-storage-iscsi-6.0.0-13.8 is installed OR libvirt-daemon-driver-storage-logical-6.0.0-13.8 is installed OR libvirt-daemon-driver-storage-mpath-6.0.0-13.8 is installed OR libvirt-daemon-driver-storage-rbd-6.0.0-13.8 is installed OR libvirt-daemon-driver-storage-scsi-6.0.0-13.8 is installed OR libvirt-daemon-hooks-6.0.0-13.8 is installed OR libvirt-daemon-lxc-6.0.0-13.8 is installed OR libvirt-daemon-qemu-6.0.0-13.8 is installed OR libvirt-daemon-xen-6.0.0-13.8 is installed OR libvirt-devel-6.0.0-13.8 is installed OR libvirt-doc-6.0.0-13.8 is installed OR libvirt-lock-sanlock-6.0.0-13.8 is installed OR libvirt-nss-6.0.0-13.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information file-5.19-9 is installed OR file-magic-5.19-9 is installed OR libmagic1-5.19-9 is installed OR libmagic1-32bit-5.19-9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_35-default-7-2 is installed OR kgraft-patch-3_12_69-60_64_35-xen-7-2 is installed OR kgraft-patch-SLE12-SP1_Update_14-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND apache2-mod_jk-1.2.40-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_7_0-openjdk-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information perl-5.18.2-12.14 is installed OR perl-32bit-5.18.2-12.14 is installed OR perl-base-5.18.2-12.14 is installed OR perl-doc-5.18.2-12.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information ntp-4.2.8p11-64.5 is installed OR ntp-doc-4.2.8p11-64.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information evince-3.20.1-5 is installed OR evince-browser-plugin-3.20.1-5 is installed OR evince-lang-3.20.1-5 is installed OR evince-plugin-djvudocument-3.20.1-5 is installed OR evince-plugin-dvidocument-3.20.1-5 is installed OR evince-plugin-pdfdocument-3.20.1-5 is installed OR evince-plugin-psdocument-3.20.1-5 is installed OR evince-plugin-tiffdocument-3.20.1-5 is installed OR evince-plugin-xpsdocument-3.20.1-5 is installed OR libevdocument3-4-3.20.1-5 is installed OR libevview3-3-3.20.1-5 is installed OR nautilus-evince-3.20.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.0-30.60 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.0-30.60 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.0-30.60 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information cups-1.7.5-20.26 is installed OR cups-client-1.7.5-20.26 is installed OR cups-libs-1.7.5-20.26 is installed OR cups-libs-32bit-1.7.5-20.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libkpathsea6-6.2.0dev-22.3 is installed OR texlive-2013.20130620-22.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libblkid1-2.29.2-7 is installed OR libblkid1-32bit-2.29.2-7 is installed OR libfdisk1-2.29.2-7 is installed OR libmount1-2.29.2-7 is installed OR libmount1-32bit-2.29.2-7 is installed OR libsmartcols1-2.29.2-7 is installed OR libuuid1-2.29.2-7 is installed OR libuuid1-32bit-2.29.2-7 is installed OR python-libmount-2.29.2-7 is installed OR util-linux-2.29.2-7 is installed OR util-linux-lang-2.29.2-7 is installed OR util-linux-systemd-2.29.2-7 is installed OR uuidd-2.29.2-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information kernel-default-4.12.14-150.55 is installed OR kernel-default-base-4.12.14-150.55 is installed OR kernel-default-devel-4.12.14-150.55 is installed OR kernel-default-man-4.12.14-150.55 is installed OR kernel-devel-4.12.14-150.55 is installed OR kernel-docs-4.12.14-150.55 is installed OR kernel-macros-4.12.14-150.55 is installed OR kernel-obs-build-4.12.14-150.55 is installed OR kernel-source-4.12.14-150.55 is installed OR kernel-syms-4.12.14-150.55 is installed OR kernel-vanilla-4.12.14-150.55 is installed OR kernel-vanilla-base-4.12.14-150.55 is installed OR kernel-zfcpdump-4.12.14-150.55 is installed OR reiserfs-kmp-default-4.12.14-150.55 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information nodejs10-10.19.0-1.18 is installed OR nodejs10-devel-10.19.0-1.18 is installed OR nodejs10-docs-10.19.0-1.18 is installed OR npm10-10.19.0-1.18 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information openconnect-7.08-6.3 is installed OR openconnect-devel-7.08-6.3 is installed OR openconnect-lang-7.08-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information freerdp-2.1.2-10.15 is installed OR freerdp-devel-2.1.2-10.15 is installed OR libfreerdp2-2.1.2-10.15 is installed OR libwinpr2-2.1.2-10.15 is installed OR winpr2-devel-2.1.2-10.15 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information libraw-0.18.9-3.11 is installed OR libraw-devel-0.18.9-3.11 is installed OR libraw16-0.18.9-3.11 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information icu-52.1-8.7 is installed OR libicu-doc-52.1-8.7 is installed OR libicu52_1-52.1-8.7 is installed OR libicu52_1-32bit-52.1-8.7 is installed OR libicu52_1-data-52.1-8.7 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information bzip2-1.0.6-30.8 is installed OR bzip2-doc-1.0.6-30.8 is installed OR libbz2-1-1.0.6-30.8 is installed OR libbz2-1-32bit-1.0.6-30.8 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND clamav-0.100.3-33.29 is installed

BACK