Oval Definition:	oval:org.opensuse.security:def:51001
Revision Date: 2020-12-01 Version: 1 Title: Security update for salt (Critical) Description: This update for salt fixes the following issues: - Properly validate eauth credentials and tokens on SSH calls made by Salt API (bsc#1178319, bsc#1178362, bsc#1178361, CVE-2020-25592, CVE-2020-17490, CVE-2020-16846) - Fix disk.blkid to avoid unexpected keyword argument '__pub_user'. (bsc#1177867) - Ensure virt.update stop_on_reboot is updated with its default value. - Do not break package building for systemd OSes. - Drop wrong mock from chroot unit test. - Support systemd versions with dot. (bsc#1176294) - Fix for grains.test_core unit test. - Fix file/directory user and group ownership containing UTF-8 characters. (bsc#1176024) - Several changes to virtualization: * Fix virt update when cpu and memory are changed. * Memory Tuning GSoC. * Properly fix memory setting regression in virt.update. * Expose libvirt on_reboot in virt states. - Support transactional systems (MicroOS). - zypperpkg module ignores retcode 104 for search(). (bsc#1159670) - Xen disk fixes. No longer generates volumes for Xen disks, but the corresponding file or block disk. (bsc#1175987) - Invalidate file list cache when cache file modified time is in the future. (bsc#1176397) - Prevent import errors when running test_btrfs unit tests. Family: unix Class: patch Status: Reference(s): 1013712 1026236 1027519 1051510 1055117 1071995 1083647 1083710 1084929 1102247 1103991 1103992 1104745 1109837 1111666 1112374 1114988 1119222 1123080 1123823 1123828 1123832 1126140 1126141 1126192 1126195 1126196 1126197 1126198 1126201 1126325 1127034 1127315 1127400 1127611 1127620 1129770 1130972 1133021 1134090 1134097 1134390 1134399 1135335 1135642 1136217 1136342 1136446 1136460 1136461 1136462 1136467 1137458 1137534 1137535 1137584 1137597 1137609 1137811 1137827 1138874 1139358 1139619 1140133 1140139 1140322 1140559 1140652 1140676 1140747 1140903 1140945 1140948 1141132 1141312 1141401 1141402 1141452 1141453 1141454 1141478 1141558 1142023 1142052 1142083 1142112 1142115 1142119 1142220 1142221 1142254 1142350 1142351 1142354 1142359 1142450 1142623 1142673 1142701 1142868 1143003 1143045 1143105 1143185 1143189 1143191 1143209 1143507 1144919 1146090 1146091 1146093 1146094 1146095 1146097 1146099 1146100 1159670 1168994 1171862 1172410 1173674 1174091 1174157 1175626 1175656 1175987 1176024 1176294 1176397 1177867 1177943 1178319 1178361 1178362 1178485 CVE-2016-9798 CVE-2018-19967 CVE-2018-20748 CVE-2018-20749 CVE-2018-20750 CVE-2018-20855 CVE-2019-1125 CVE-2019-11477 CVE-2019-11478 CVE-2019-11810 CVE-2019-13508 CVE-2019-13631 CVE-2019-13648 CVE-2019-14283 CVE-2019-14284 CVE-2019-20907 CVE-2019-3846 CVE-2019-9511 CVE-2019-9512 CVE-2019-9513 CVE-2019-9514 CVE-2019-9515 CVE-2019-9516 CVE-2019-9517 CVE-2019-9518 CVE-2020-10713 CVE-2020-10749 CVE-2020-12823 CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-14779 CVE-2020-14781 CVE-2020-14782 CVE-2020-14792 CVE-2020-14796 CVE-2020-14797 CVE-2020-14798 CVE-2020-14803 CVE-2020-15503 CVE-2020-16846 CVE-2020-16846 CVE-2020-17490 CVE-2020-17490 CVE-2020-25592 CVE-2020-25592 SUSE-SU-2019:0283-1 SUSE-SU-2019:0875-1 SUSE-SU-2019:2073-1 SUSE-SU-2019:2260-1 SUSE-SU-2019:3046-1 SUSE-SU-2020:1930-1 SUSE-SU-2020:1957-1 SUSE-SU-2020:2029-1 SUSE-SU-2020:2626-1 SUSE-SU-2020:3155-1 SUSE-SU-2020:3243-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Containers 15 SP2 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information acroread-9.5.5-0.5.5 is installed OR acroread-cmaps-9.4.6-0.4.5 is installed OR acroread-fonts-ja-9.4.6-0.4.5 is installed OR acroread-fonts-ko-9.4.6-0.4.5 is installed OR acroread-fonts-zh_CN-9.4.6-0.4.5 is installed OR acroread-fonts-zh_TW-9.4.6-0.4.5 is installed OR acroread_ja-9.4.2-0.4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information postgresql91-9.1.18-0.3 is installed OR postgresql91-docs-9.1.18-0.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libgnomesu-1.0.0-352 is installed OR libgnomesu-lang-1.0.0-352 is installed OR libgnomesu0-1.0.0-352 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND autofs-5.0.9-8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND cifs-utils-6.5-8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information apparmor-docs-2.8.2-49 is installed OR apparmor-parser-2.8.2-49 is installed OR apparmor-profiles-2.8.2-49 is installed OR apparmor-utils-2.8.2-49 is installed OR libapparmor1-2.8.2-49 is installed OR libapparmor1-32bit-2.8.2-49 is installed OR pam_apparmor-2.8.2-49 is installed OR pam_apparmor-32bit-2.8.2-49 is installed OR perl-apparmor-2.8.2-49 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information cpp48-4.8.5-31.17 is installed OR gcc48-4.8.5-31.17 is installed OR gcc48-32bit-4.8.5-31.17 is installed OR gcc48-c++-4.8.5-31.17 is installed OR gcc48-gij-4.8.5-31.17 is installed OR gcc48-gij-32bit-4.8.5-31.17 is installed OR gcc48-info-4.8.5-31.17 is installed OR libasan0-4.8.5-31.17 is installed OR libasan0-32bit-4.8.5-31.17 is installed OR libgcj48-4.8.5-31.17 is installed OR libgcj48-32bit-4.8.5-31.17 is installed OR libgcj48-jar-4.8.5-31.17 is installed OR libgcj_bc1-4.8.5-31.17 is installed OR libstdc++48-devel-4.8.5-31.17 is installed OR libstdc++48-devel-32bit-4.8.5-31.17 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information LibVNCServer-0.9.10-4.6 is installed OR libvncserver0-0.9.10-4.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information python3-salt-3000-4.20 is installed OR salt-3000-4.20 is installed OR salt-bash-completion-3000-4.20 is installed OR salt-doc-3000-4.20 is installed OR salt-minion-3000-4.20 is installed OR salt-zsh-completion-3000-4.20 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 15 SP2 is installed AND cni-plugins-0.8.6-3.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.15 is installed OR reiserfs-kmp-default-4.12.14-197.15 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_28-default-4-2 is installed OR kernel-livepatch-SLE15_Update_8-4-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information freetds-1.1.36-3.3 is installed OR freetds-config-1.1.36-3.3 is installed OR freetds-devel-1.1.36-3.3 is installed OR freetds-doc-1.1.36-3.3 is installed OR freetds-tools-1.1.36-3.3 is installed OR libsybdb5-1.1.36-3.3 is installed OR libtdsodbc0-1.1.36-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python2-salt-3000-6.51 is installed OR salt-3000-6.51 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information xen-4.10.3_02-3.14 is installed OR xen-devel-4.10.3_02-3.14 is installed OR xen-tools-4.10.3_02-3.14 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs8-8.16.1-3.20 is installed OR nodejs8-devel-8.16.1-3.20 is installed OR nodejs8-docs-8.16.1-3.20 is installed OR npm8-8.16.1-3.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND ppp-2.4.7-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_35-default-6-4 is installed OR kgraft-patch-3_12_69-60_64_35-xen-6-4 is installed OR kgraft-patch-SLE12-SP1_Update_14-6-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND coolkey-1.1.0-147 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libpolkit0-0.113-5.18 is installed OR polkit-0.113-5.18 is installed OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND ucode-intel-20180703-13.25 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_64-default-5-2 is installed OR kgraft-patch-SLE12-SP2_Update_18-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cpio-2.11-35 is installed OR cpio-lang-2.11-35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information glib2-2.48.2-12.15 is installed OR glib2-lang-2.48.2-12.15 is installed OR glib2-tools-2.48.2-12.15 is installed OR libgio-2_0-0-2.48.2-12.15 is installed OR libgio-2_0-0-32bit-2.48.2-12.15 is installed OR libglib-2_0-0-2.48.2-12.15 is installed OR libglib-2_0-0-32bit-2.48.2-12.15 is installed OR libgmodule-2_0-0-2.48.2-12.15 is installed OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed OR libgobject-2_0-0-2.48.2-12.15 is installed OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed OR libgthread-2_0-0-2.48.2-12.15 is installed OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libopenssl-devel-1.0.2j-60.55 is installed OR libopenssl1_0_0-1.0.2j-60.55 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed OR openssl-1.0.2j-60.55 is installed OR openssl-doc-1.0.2j-60.55 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_162-94_69-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_21-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information postgresql96-9.6.13-3.25 is installed OR postgresql96-contrib-9.6.13-3.25 is installed OR postgresql96-docs-9.6.13-3.25 is installed OR postgresql96-libs-9.6.13-3.25 is installed OR postgresql96-server-9.6.13-3.25 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information giflib-progs-5.0.5-12 is installed OR libgif6-5.0.5-12 is installed OR libgif6-32bit-5.0.5-12 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND shim-15+git47-7.15 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information bluez-5.48-5.19 is installed OR bluez-cups-5.48-5.19 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information ruby2.1-rubygem-actionview-4_2-4.2.2-8 is installed OR rubygem-actionview-4_2-4.2.2-8 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND python-pycrypto-2.6.1-10.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND squid-3.5.21-26.17 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information glibc-2.22-62.22 is installed OR glibc-32bit-2.22-62.22 is installed OR glibc-devel-2.22-62.22 is installed OR glibc-devel-32bit-2.22-62.22 is installed OR glibc-html-2.22-62.22 is installed OR glibc-i18ndata-2.22-62.22 is installed OR glibc-info-2.22-62.22 is installed OR glibc-locale-2.22-62.22 is installed OR glibc-locale-32bit-2.22-62.22 is installed OR glibc-profile-2.22-62.22 is installed OR glibc-profile-32bit-2.22-62.22 is installed OR nscd-2.22-62.22 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND haproxy-1.6.11-11.3 is installed
BACK