Oval Definition:	oval:org.opensuse.security:def:50924
Revision Date: 2020-12-01 Version: 1 Title: Security update for mutt (Important) Description: This update for mutt fixes the following issues: - CVE-2020-14954: Fixed a response injection due to a STARTTLS buffering issue which was affecting IMAP, SMTP, and POP3 (bsc#1173197). - CVE-2020-14093: Fixed a potential IMAP Man-in-the-Middle attack via a PREAUTH response (bsc#1172906, bsc#1172935). - CVE-2020-14154: Fixed an issue where Mutt was ignoring an expired certificate and was proceeding with a connection (bsc#1172906, bsc#1172935). Family: unix Class: patch Status: Reference(s): 1027519 1047962 1049826 1051510 1051979 1053177 1065022 1065600 1066110 1077761 1081917 1083647 1086274 1086288 1086314 1086315 1086317 1086327 1086331 1086906 1087081 1087092 1089343 1090638 1090888 1097104 1097577 1097808 1099019 1099811 1099813 1099844 1099845 1099846 1099849 1099858 1099863 1099864 1100132 1101116 1101331 1101669 1101822 1101828 1101832 1101833 1101837 1101839 1101841 1101843 1101844 1101845 1101847 1101852 1101853 1101867 1101872 1101874 1101875 1101882 1101883 1101885 1101887 1101890 1101891 1101893 1101895 1101896 1101900 1101902 1101903 1102261 1102633 1102658 1103097 1103203 1103269 1103277 1103356 1103363 1103421 1103445 1103517 1103723 1103724 1103725 1103726 1103727 1103728 1103729 1103730 1103886 1103917 1103920 1103948 1103949 1104066 1104111 1104174 1104211 1104319 1104353 1104365 1104427 1104494 1104495 1104708 1104777 1104897 1110542 1111319 1112020 1112911 1113296 1114908 1115341 1116840 1118758 1119373 1119820 1119873 1120263 1120463 1120629 1120630 1120631 1121611 1122062 1122471 1123137 1123681 1123843 1123865 1123967 1124897 1125415 1127026 1127155 1127220 1130161 1131823 1135749 1136666 1137977 1142825 1142832 1142835 1152148 1155798 1156015 1156395 1159670 1160467 1160468 1168422 1170232 1171000 1171073 1171558 1172419 1172873 1172906 1172935 1173060 1173197 1173267 1173477 1174029 1174110 1174111 1174154 1174484 1174486 1175263 1175667 1175787 1175952 1175987 1175996 1175997 1175998 1175999 1176000 1176001 1176022 1176024 1176063 1176069 1176086 1176181 1176294 1176397 1176671 1177867 1177950 1178319 1178361 1178362 1178485 1178512 1178591 663358 764147 965786 978193 993025 CVE-2017-17833 CVE-2017-18922 CVE-2018-10853 CVE-2018-10876 CVE-2018-10877 CVE-2018-10878 CVE-2018-10879 CVE-2018-10880 CVE-2018-10881 CVE-2018-10882 CVE-2018-10883 CVE-2018-14665 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2018-3620 CVE-2018-3646 CVE-2018-5391 CVE-2019-10181 CVE-2019-10182 CVE-2019-10185 CVE-2019-14896 CVE-2019-14897 CVE-2019-5068 CVE-2020-14093 CVE-2020-14154 CVE-2020-14386 CVE-2020-14954 CVE-2020-15719 CVE-2020-16846 CVE-2020-17490 CVE-2020-24659 CVE-2020-25592 CVE-2020-28196 CVE-2020-28368 CVE-2020-3898 SUSE-SU-2018:1917-1 SUSE-SU-2018:2450-1 SUSE-SU-2018:3680-1 SUSE-SU-2019:2030-1 SUSE-SU-2019:2033-1 SUSE-SU-2020:1083-1 SUSE-SU-2020:1771-1 SUSE-SU-2020:2581-1 SUSE-SU-2020:2864-1 SUSE-SU-2020:3243-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND kvm-1.4.2-37 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information dia-0.97.2-13 is installed OR dia-lang-0.97.2-13 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libXinerama1-1.1.3-3 is installed OR libXinerama1-32bit-1.1.3-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information grub2-2.02~beta2-104 is installed OR grub2-i386-pc-2.02~beta2-104 is installed OR grub2-snapper-plugin-2.02~beta2-104 is installed OR grub2-systemd-sleep-plugin-2.02~beta2-104 is installed OR grub2-x86_64-efi-2.02~beta2-104 is installed OR grub2-x86_64-xen-2.02~beta2-104 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND binutils-2.31-9.26 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information mutt-1.10.1-3.8 is installed OR mutt-doc-1.10.1-3.8 is installed OR mutt-lang-1.10.1-3.8 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information openldap2-2.4.46-9.34 is installed OR openldap2-back-meta-2.4.46-9.34 is installed OR openldap2-back-perl-2.4.46-9.34 is installed OR openldap2-ppolicy-check-password-1.2-9.34 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-195-default-9-25 is installed OR kernel-livepatch-SLE15-SP1_Update_0-9-25 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information krb5-1.16.3-3.15 is installed OR krb5-devel-32bit-1.16.3-3.15 is installed OR krb5-mini-1.16.3-3.15 is installed OR krb5-mini-devel-1.16.3-3.15 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information Mesa-drivers-18.3.2-34.9 is installed OR Mesa-gallium-18.3.2-34.9 is installed OR Mesa-libOpenCL-18.3.2-34.9 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.13 is installed OR kernel-azure-base-4.12.14-5.13 is installed OR kernel-azure-devel-4.12.14-5.13 is installed OR kernel-devel-azure-4.12.14-5.13 is installed OR kernel-source-azure-4.12.14-5.13 is installed OR kernel-syms-azure-4.12.14-5.13 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information openslp-2.0.0-6.3 is installed OR openslp-server-2.0.0-6.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information salt-3000-6.51 is installed OR salt-api-3000-6.51 is installed OR salt-cloud-3000-6.51 is installed OR salt-fish-completion-3000-6.51 is installed OR salt-master-3000-6.51 is installed OR salt-proxy-3000-6.51 is installed OR salt-ssh-3000-6.51 is installed OR salt-standalone-formulas-configuration-3000-6.51 is installed OR salt-syndic-3000-6.51 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND libmms0-0.6.2-15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-branding-SLE-52-31 is installed OR MozillaFirefox-devel-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libipa_hbac0-1.13.4-18 is installed OR libsss_idmap0-1.13.4-18 is installed OR libsss_sudo-1.13.4-18 is installed OR python-sssd-config-1.13.4-18 is installed OR sssd-1.13.4-18 is installed OR sssd-32bit-1.13.4-18 is installed OR sssd-ad-1.13.4-18 is installed OR sssd-ipa-1.13.4-18 is installed OR sssd-krb5-1.13.4-18 is installed OR sssd-krb5-common-1.13.4-18 is installed OR sssd-ldap-1.13.4-18 is installed OR sssd-proxy-1.13.4-18 is installed OR sssd-tools-1.13.4-18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information res-signingkeys-3.0.38-52.26 is installed OR smt-3.0.38-52.26 is installed OR smt-support-3.0.38-52.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-devel-52.9.0esr-109.38 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_120-92_70-default-3-2 is installed OR kgraft-patch-SLE12-SP2_Update_20-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libpython2_7-1_0-2.7.13-28.31 is installed OR libpython2_7-1_0-32bit-2.7.13-28.31 is installed OR python-2.7.13-28.31 is installed OR python-32bit-2.7.13-28.31 is installed OR python-base-2.7.13-28.31 is installed OR python-base-32bit-2.7.13-28.31 is installed OR python-curses-2.7.13-28.31 is installed OR python-demo-2.7.13-28.31 is installed OR python-devel-2.7.13-28.31 is installed OR python-doc-2.7.13-28.31 is installed OR python-doc-pdf-2.7.13-28.31 is installed OR python-gdbm-2.7.13-28.31 is installed OR python-idle-2.7.13-28.31 is installed OR python-tk-2.7.13-28.31 is installed OR python-xml-2.7.13-28.31 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_155-94_50-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_17-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information python-cryptography-1.3.1-7.13 is installed OR python-pyOpenSSL-16.0.0-4.11 is installed OR python-setuptools-18.0.1-4.8 is installed OR python3-cryptography-1.3.1-7.13 is installed OR python3-pyOpenSSL-16.0.0-4.11 is installed OR python3-setuptools-18.0.1-4.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND syslog-service-2.0-778 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information cups-2.2.7-3.17 is installed OR cups-client-2.2.7-3.17 is installed OR cups-config-2.2.7-3.17 is installed OR cups-ddk-2.2.7-3.17 is installed OR cups-devel-2.2.7-3.17 is installed OR libcups2-2.2.7-3.17 is installed OR libcups2-32bit-2.2.7-3.17 is installed OR libcupscgi1-2.2.7-3.17 is installed OR libcupsimage2-2.2.7-3.17 is installed OR libcupsmime1-2.2.7-3.17 is installed OR libcupsppdc1-2.2.7-3.17 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information xorg-x11-server-1.19.6-8.3 is installed OR xorg-x11-server-wayland-1.19.6-8.3 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND ruby2.1-rubygem-rails-html-sanitizer-1.0.2-7 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-devel-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libpcap-1.8.1-10.3 is installed OR libpcap1-1.8.1-10.3 is installed OR tcpdump-4.9.2-14.14 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libfreebl3-3.47.1-58.34 is installed OR libfreebl3-32bit-3.47.1-58.34 is installed OR libfreebl3-hmac-3.47.1-58.34 is installed OR libfreebl3-hmac-32bit-3.47.1-58.34 is installed OR libsoftokn3-3.47.1-58.34 is installed OR libsoftokn3-32bit-3.47.1-58.34 is installed OR libsoftokn3-hmac-3.47.1-58.34 is installed OR libsoftokn3-hmac-32bit-3.47.1-58.34 is installed OR mozilla-nspr-4.23-19.12 is installed OR mozilla-nspr-32bit-4.23-19.12 is installed OR mozilla-nspr-devel-4.23-19.12 is installed OR mozilla-nss-3.47.1-58.34 is installed OR mozilla-nss-32bit-3.47.1-58.34 is installed OR mozilla-nss-certs-3.47.1-58.34 is installed OR mozilla-nss-certs-32bit-3.47.1-58.34 is installed OR mozilla-nss-devel-3.47.1-58.34 is installed OR mozilla-nss-sysinit-3.47.1-58.34 is installed OR mozilla-nss-sysinit-32bit-3.47.1-58.34 is installed OR mozilla-nss-tools-3.47.1-58.34 is installed
BACK