OVAL Reference oval:org.opensuse.security:def:51023

Oval Definition:

oval:org.opensuse.security:def:51023

Revision Date:	2020-12-01	Version:	1
Title:	Security update for libssh2_org (Moderate)
Description:	This update for libssh2_org fixes the following issues: - Version update to 1.9.0: [bsc#1178083, jsc#SLE-16922] Enhancements and bugfixes: * adds ECDSA keys and host key support when using OpenSSL * adds ED25519 key and host key support when using OpenSSL 1.1.1 * adds OpenSSH style key file reading * adds AES CTR mode support when using WinCNG * adds PEM passphrase protected file support for Libgcrypt and WinCNG * adds SHA256 hostkey fingerprint * adds libssh2_agent_get_identity_path() and libssh2_agent_set_identity_path() * adds explicit zeroing of sensitive data in memory * adds additional bounds checks to network buffer reads * adds the ability to use the server default permissions when creating sftp directories * adds support for building with OpenSSL no engine flag * adds support for building with LibreSSL * increased sftp packet size to 256k * fixed oversized packet handling in sftp * fixed building with OpenSSL 1.1 * fixed a possible crash if sftp stat gets an unexpected response * fixed incorrect parsing of the KEX preference string value * fixed conditional RSA and AES-CTR support * fixed a small memory leak during the key exchange process * fixed a possible memory leak of the ssh banner string * fixed various small memory leaks in the backends * fixed possible out of bounds read when parsing public keys from the server * fixed possible out of bounds read when parsing invalid PEM files * no longer null terminates the scp remote exec command * now handle errors when diffie hellman key pair generation fails * improved building instructions * improved unit tests - Version update to 1.8.2: [bsc#1130103] Bug fixes: * Fixed the misapplied userauth patch that broke 1.8.1 * moved the MAX size declarations from the public header
Family:	unix	Class:	patch
Status:		Reference(s):	1044231 1051510 1051858 1056686 1060463 1065600 1065729 1071995 1074701 1083548 1085030 1085235 1085308 1087078 1100394 1102640 1103990 1103992 1104353 1104745 1105412 1106514 1109837 1111666 1111974 1112178 1112374 1113956 1114279 1114685 1119680 1120163 1127611 1128106 1130103 1133021 1133031 1134090 1134883 1135210 1135902 1136157 1136540 1136666 1136778 1138534 1140402 1141895 1143794 1144087 1144333 1146539 1149841 1151021 1152148 1155075 1155798 1156395 1156510 1157268 1157424 1158187 1159285 1160659 1161561 1161951 1162629 1162632 1162928 1162929 1162931 1163985 1164078 1164507 1165111 1165280 1165289 1165404 1165488 1165527 1165741 1165813 1165873 1165929 1165950 1165980 1165984 1165985 1166003 1166101 1166102 1166103 1166104 1166632 1166658 1166730 1166731 1166732 1166733 1166734 1166735 1166751 1169790 1170232 1171000 1171073 1171558 1171688 1171862 1171889 1172108 1172247 1172418 1172419 1172428 1172781 1172782 1172783 1172871 1172872 1172873 1172963 1173060 1173267 1173485 1173798 1173954 1174003 1174026 1174029 1174070 1174110 1174111 1174154 1174161 1174205 1174247 1174298 1174299 1174387 1174484 1174486 1174547 1174549 1174550 1174625 1174658 1174685 1174689 1174699 1174734 1174757 1174771 1174840 1174841 1174843 1174844 1174845 1174852 1174873 1174887 1174904 1174926 1174968 1175062 1175063 1175064 1175065 1175066 1175067 1175070 1175071 1175112 1175127 1175128 1175149 1175199 1175213 1175228 1175232 1175263 1175284 1175393 1175394 1175396 1175397 1175398 1175399 1175400 1175401 1175402 1175403 1175404 1175405 1175406 1175407 1175408 1175409 1175410 1175411 1175412 1175413 1175414 1175415 1175416 1175417 1175418 1175419 1175420 1175421 1175422 1175423 1175440 1175493 1175515 1175518 1175526 1175550 1175654 1175666 1175667 1175668 1175669 1175670 1175767 1175768 1175769 1175770 1175771 1175772 1175786 1175787 1175873 1175952 1175992 1175996 1175997 1175998 1175999 1176000 1176001 1176022 1176063 1176069 1176410 1177143 1178074 1178083 CVE-2018-16056 CVE-2018-16057 CVE-2018-16058 CVE-2019-12155 CVE-2019-13164 CVE-2019-14378 CVE-2019-14835 CVE-2019-17498 CVE-2019-18934 CVE-2019-19768 CVE-2019-3691 CVE-2019-3855 CVE-2019-3856 CVE-2019-3857 CVE-2019-3858 CVE-2019-3859 CVE-2019-3860 CVE-2019-3861 CVE-2019-3862 CVE-2019-3863 CVE-2019-5008 CVE-2020-0556 CVE-2020-11993 CVE-2020-12662 CVE-2020-12663 CVE-2020-12823 CVE-2020-14314 CVE-2020-14331 CVE-2020-14356 CVE-2020-14386 CVE-2020-15719 CVE-2020-16166 CVE-2020-1720 CVE-2020-24394 CVE-2020-25219 CVE-2020-26154 CVE-2020-7059 CVE-2020-7060 CVE-2020-7062 CVE-2020-7063 CVE-2020-8647 CVE-2020-8648 CVE-2020-8649 CVE-2020-9383 CVE-2020-9490 SUSE-SU-2018:2889-1 SUSE-SU-2019:2192-1 SUSE-SU-2019:3190-1 SUSE-SU-2020:0589-1 SUSE-SU-2020:0622-1 SUSE-SU-2020:0836-1 SUSE-SU-2020:0918-1 SUSE-SU-2020:1930-1 SUSE-SU-2020:2581-1 SUSE-SU-2020:2631-1 SUSE-SU-2020:3067-1 SUSE-SU-2020:3551-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Realtime packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information flash-player-11.2.202.336-0.3 is installed OR flash-player-gnome-11.2.202.336-0.3 is installed OR flash-player-kde4-11.2.202.336-0.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information strongswan-4.4.0-6.25 is installed OR strongswan-doc-4.4.0-6.25 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information libpng12-0-1.2.50-8 is installed OR libpng12-0-32bit-1.2.50-8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information dbus-1-1.8.16-14 is installed OR dbus-1-x11-1.8.16-14 is installed OR libdbus-1-3-1.8.16-14 is installed OR libdbus-1-3-32bit-1.8.16-14 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information alsa-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information at-3.1.14-7 is installed OR libQtWebKit4-4.8.6+2.3.3-3 is installed OR libQtWebKit4-32bit-4.8.6+2.3.3-3 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information eog-3.20.4-7 is installed OR eog-lang-3.20.4-7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information postgresql10-10.12-4.19 is installed OR postgresql10-test-10.12-4.19 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information libssh2-1-1.9.0-4.13 is installed OR libssh2-1-32bit-1.9.0-4.13 is installed OR libssh2-devel-1.9.0-4.13 is installed OR libssh2_org-1.9.0-4.13 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information wireshark-2.4.9-3.9 is installed OR wireshark-devel-2.4.9-3.9 is installed OR wireshark-ui-qt-2.4.9-3.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information libmunge2-0.5.13-4.3 is installed OR munge-0.5.13-4.3 is installed OR munge-devel-0.5.13-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information openldap2-2.4.46-9.34 is installed OR openldap2-back-meta-2.4.46-9.34 is installed OR openldap2-back-perl-2.4.46-9.34 is installed OR openldap2-ppolicy-check-password-1.2-9.34 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_28-default-5-2 is installed OR kernel-livepatch-SLE15_Update_8-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information libunbound-devel-mini-1.6.8-10.3 is installed OR unbound-1.6.8-10.3 is installed OR unbound-munin-1.6.8-10.3 is installed OR unbound-python-1.6.8-10.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Realtime packages 15 SP1 is installed AND Package Information cluster-md-kmp-rt-4.12.14-14.31 is installed OR dlm-kmp-rt-4.12.14-14.31 is installed OR gfs2-kmp-rt-4.12.14-14.31 is installed OR kernel-devel-rt-4.12.14-14.31 is installed OR kernel-rt-4.12.14-14.31 is installed OR kernel-rt-base-4.12.14-14.31 is installed OR kernel-rt-devel-4.12.14-14.31 is installed OR kernel-rt_debug-4.12.14-14.31 is installed OR kernel-rt_debug-devel-4.12.14-14.31 is installed OR kernel-source-rt-4.12.14-14.31 is installed OR kernel-syms-rt-4.12.14-14.31 is installed OR ocfs2-kmp-rt-4.12.14-14.31 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information qemu-3.1.1-9.3 is installed OR qemu-arm-3.1.1-9.3 is installed OR qemu-audio-alsa-3.1.1-9.3 is installed OR qemu-audio-oss-3.1.1-9.3 is installed OR qemu-audio-pa-3.1.1-9.3 is installed OR qemu-block-curl-3.1.1-9.3 is installed OR qemu-block-iscsi-3.1.1-9.3 is installed OR qemu-block-rbd-3.1.1-9.3 is installed OR qemu-block-ssh-3.1.1-9.3 is installed OR qemu-guest-agent-3.1.1-9.3 is installed OR qemu-ipxe-1.0.0+-9.3 is installed OR qemu-kvm-3.1.1-9.3 is installed OR qemu-lang-3.1.1-9.3 is installed OR qemu-ppc-3.1.1-9.3 is installed OR qemu-s390-3.1.1-9.3 is installed OR qemu-seabios-1.12.0-9.3 is installed OR qemu-sgabios-8-9.3 is installed OR qemu-ui-curses-3.1.1-9.3 is installed OR qemu-ui-gtk-3.1.1-9.3 is installed OR qemu-vgabios-1.12.0-9.3 is installed OR qemu-x86-3.1.1-9.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information apache2-mod_php7-7.2.5-4.52 is installed OR php7-7.2.5-4.52 is installed OR php7-bcmath-7.2.5-4.52 is installed OR php7-bz2-7.2.5-4.52 is installed OR php7-calendar-7.2.5-4.52 is installed OR php7-ctype-7.2.5-4.52 is installed OR php7-curl-7.2.5-4.52 is installed OR php7-dba-7.2.5-4.52 is installed OR php7-devel-7.2.5-4.52 is installed OR php7-dom-7.2.5-4.52 is installed OR php7-enchant-7.2.5-4.52 is installed OR php7-exif-7.2.5-4.52 is installed OR php7-fastcgi-7.2.5-4.52 is installed OR php7-fileinfo-7.2.5-4.52 is installed OR php7-fpm-7.2.5-4.52 is installed OR php7-ftp-7.2.5-4.52 is installed OR php7-gd-7.2.5-4.52 is installed OR php7-gettext-7.2.5-4.52 is installed OR php7-gmp-7.2.5-4.52 is installed OR php7-iconv-7.2.5-4.52 is installed OR php7-intl-7.2.5-4.52 is installed OR php7-json-7.2.5-4.52 is installed OR php7-ldap-7.2.5-4.52 is installed OR php7-mbstring-7.2.5-4.52 is installed OR php7-mysql-7.2.5-4.52 is installed OR php7-odbc-7.2.5-4.52 is installed OR php7-opcache-7.2.5-4.52 is installed OR php7-openssl-7.2.5-4.52 is installed OR php7-pcntl-7.2.5-4.52 is installed OR php7-pdo-7.2.5-4.52 is installed OR php7-pear-7.2.5-4.52 is installed OR php7-pear-Archive_Tar-7.2.5-4.52 is installed OR php7-pgsql-7.2.5-4.52 is installed OR php7-phar-7.2.5-4.52 is installed OR php7-posix-7.2.5-4.52 is installed OR php7-shmop-7.2.5-4.52 is installed OR php7-snmp-7.2.5-4.52 is installed OR php7-soap-7.2.5-4.52 is installed OR php7-sockets-7.2.5-4.52 is installed OR php7-sodium-7.2.5-4.52 is installed OR php7-sqlite-7.2.5-4.52 is installed OR php7-sysvmsg-7.2.5-4.52 is installed OR php7-sysvsem-7.2.5-4.52 is installed OR php7-sysvshm-7.2.5-4.52 is installed OR php7-tokenizer-7.2.5-4.52 is installed OR php7-wddx-7.2.5-4.52 is installed OR php7-xmlreader-7.2.5-4.52 is installed OR php7-xmlrpc-7.2.5-4.52 is installed OR php7-xmlwriter-7.2.5-4.52 is installed OR php7-xsl-7.2.5-4.52 is installed OR php7-zip-7.2.5-4.52 is installed OR php7-zlib-7.2.5-4.52 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND squashfs-4.3-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_67-60_64_18-default-12-2 is installed OR kgraft-patch-3_12_67-60_64_18-xen-12-2 is installed OR kgraft-patch-SLE12-SP1_Update_9-12-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND autofs-5.0.9-21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information MozillaFirefox-60.9.0-109.86 is installed OR MozillaFirefox-devel-60.9.0-109.86 is installed OR MozillaFirefox-translations-common-60.9.0-109.86 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND yast2-smt-3.0.14-17.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_103-92_56-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_17-9-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information ecryptfs-utils-103-7 is installed OR ecryptfs-utils-32bit-103-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information MozillaFirefox-60.9.0-109.86 is installed OR MozillaFirefox-translations-common-60.9.0-109.86 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_156-94_64-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_20-8-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libsolv-0.6.36-2.27.19 is installed OR libsolv-tools-0.6.36-2.27.19 is installed OR libzypp-16.20.2-27.60 is installed OR perl-solv-0.6.36-2.27.19 is installed OR python-solv-0.6.36-2.27.19 is installed OR zypper-1.13.54-18.40 is installed OR zypper-log-1.13.54-18.40 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information cron-4.2-59.10 is installed OR cronie-1.4.11-59.10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND gzip-1.6-9.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information apache2-2.4.33-3.41 is installed OR apache2-devel-2.4.33-3.41 is installed OR apache2-doc-2.4.33-3.41 is installed OR apache2-prefork-2.4.33-3.41 is installed OR apache2-utils-2.4.33-3.41 is installed OR apache2-worker-2.4.33-3.41 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information openconnect-7.08-6.9 is installed OR openconnect-devel-7.08-6.9 is installed OR openconnect-lang-7.08-6.9 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information xorg-x11-server-1.20.3-22.5.5 is installed OR xorg-x11-server-wayland-1.20.3-22.5.5 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information xen-4.5.5_14-22.25 is installed OR xen-doc-html-4.5.5_14-22.25 is installed OR xen-kmp-default-4.5.5_14_k3.12.74_60.64.54-22.25 is installed OR xen-libs-4.5.5_14-22.25 is installed OR xen-libs-32bit-4.5.5_14-22.25 is installed OR xen-tools-4.5.5_14-22.25 is installed OR xen-tools-domU-4.5.5_14-22.25 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-30.33 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND python-Django-1.11.11-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND python-urllib3-1.22-5.6 is installed

BACK