OVAL Reference oval:org.opensuse.security:def:5108

Oval Definition:

oval:org.opensuse.security:def:5108

Revision Date:	2021-09-07	Version:	1
Title:	Security update for ntfs-3g_ntfsprogs (Important)
Description:	This update for ntfs-3g_ntfsprogs fixes the following issues: Update to version 2021.8.22 (bsc#1189720): Signalled support of UTIME_OMIT to external libfuse2 * Updated the repository change in the README * Fixed vulnerability threats caused by maliciously tampered NTFS partitions * Security fixes: CVE-2021-33285, CVE-2021-33286, CVE-2021-33287, CVE-2021-33289, CVE-2021-35266, CVE-2021-35267, CVE-2021-35268, CVE-2021-35269, CVE-2021-39251, CVE-2021-39252, CVE-2021-39253, CVE_2021-39254, CVE-2021-39255, CVE-2021-39256, CVE-2021-39257, CVE-2021-39258, CVE-2021-39259, CVE-2021-39260, CVE-2021-39261, CVE-2021-39262, CVE-2021-39263. Changes in version 2017.3.23: Delegated processing of special reparse points to external plugins * Allowed kernel cacheing by lowntfs-3g when not using Posix ACLs * Enabled fallback to read-only mount when the volume is hibernated * Made a full check for whether an extended attribute is allowed * Moved secaudit and usermap to ntfsprogs (now ntfssecaudit and ntfsusermap) * Enabled encoding broken UTF-16 into broken UTF-8 * Autoconfigured selecting vs * Allowed using the full library API on systems without extended attributes support * Fixed DISABLE_PLUGINS as the condition for not using plugins * Corrected validation of multi sector transfer protected records * Denied creating/removing files from $Extend * Returned the size of locale encoded target as the size of symlinks Changes in version 2016.2.22: - Changes to NTFS-3G driver: - Write as much data as possible in compressed attribute pwrite - Fixed getting space for making an index non resident - Alleviated constraints relative to reparse points - Fixed special case of decompressing a runlist - Fixed returning the trimming count to fstrim() - Fixed the range of valid subauthority counts in a SID - Updated the read-only flag even when the security attribute was cached - Defended against reusing data from an invalid MFT record - Simplified NTFS ACLs when group same as owner and same permission as world - Packed/unpacked st_rdev transported as 32-bits on Solaris 64-bits - Zero uninitialized bytes before writing compressed data - Clear the environment when starting mount or umount - Implemented rewinding a directory in lowntfs-3g - Use incremental offsets when reading a directory in lowntfs-3g - Changes to mkntfs: - Make installing mkntfs /sbin symlinks dependent on ENABLE_MOUNT_HELPER - Mention the starting sector when it overflows in mkntfs - Upgraded the upper-case table to same as Windows 7, 8 and 10 - Changes to ntfsresize: - Fixed relocating the MFT runlists - Decode the full list of bad clusters - Fixed resizing an extended bad cluster list - Changes to ntfsclone: - Decoded the full list of bad clusters - Changes to ntfsinfo: - Displayed reparse point information - Changes to ntfsdecrypt: - Fixed DESX decryption - Changes to ntfswipe: - Added clarifications about several options to the manual - New ntfsprogs tool: - Included ntfsrecover to recover the updates committed by Windows (experimental) - Overall: - Made a general cleanup of endianness types for easier checks Changes in version 2015.3.14: - ntfs-3g: Fixed inserting a new ACL after wiping out by chkdsk - ntfs-3g: Fixed Windows-type inheritance - ntfs-3g: Fixed ignoring the umask mount option when permissions are used - ntfs-3g: Fixed checking permissions when Posix ACLs are compiled in but not enabled - ntfs-3g: Disabled option remove_hiberfile on read-only mounts - ntfs-3g: Implemented an extended attribute to get/set EAs - ntfs-3g: Avoid full runlist updating in more situations - ntfs-3g: Update ctime after setting an ACL - ntfs-3g: Use MFT record 15 for the first extent to MFT:DATA - ntfs-3g: Ignore the sloppy mount option (-s) - ntfs-3g: Implemented FITRIM (fstrim) ioctl - ntfs-3g: Reengineered the compression algorithm - ntfsprogs: Added manuals for ntfsdecrypt, ntfswipe, ntfstruncate and ntfsfallocate
Family:	unix	Class:	patch
Status:		Reference(s):	1093447 1176069 1189720 CVE-2002-2443 CVE-2007-6600 CVE-2009-0844 CVE-2009-0845 CVE-2009-0846 CVE-2009-0847 CVE-2009-3295 CVE-2009-4034 CVE-2009-4136 CVE-2009-4212 CVE-2010-0283 CVE-2010-0624 CVE-2010-0628 CVE-2010-1169 CVE-2010-1170 CVE-2010-1320 CVE-2010-1321 CVE-2010-1322 CVE-2010-1323 CVE-2010-1324 CVE-2010-3433 CVE-2010-4020 CVE-2010-4021 CVE-2010-4022 CVE-2011-0281 CVE-2011-0282 CVE-2011-0284 CVE-2011-0285 CVE-2011-1527 CVE-2011-1528 CVE-2011-1529 CVE-2011-1530 CVE-2011-1946 CVE-2011-3146 CVE-2012-0866 CVE-2012-0867 CVE-2012-0868 CVE-2012-1012 CVE-2012-1013 CVE-2012-1016 CVE-2012-1152 CVE-2012-1571 CVE-2012-2143 CVE-2012-2655 CVE-2012-3386 CVE-2012-3488 CVE-2012-3489 CVE-2012-4453 CVE-2013-0255 CVE-2013-1415 CVE-2013-1417 CVE-2013-1418 CVE-2013-1881 CVE-2013-1899 CVE-2013-1900 CVE-2013-1901 CVE-2013-1984 CVE-2013-1991 CVE-2013-1995 CVE-2013-1998 CVE-2013-2000 CVE-2013-3571 CVE-2014-0019 CVE-2014-0060 CVE-2014-0061 CVE-2014-0062 CVE-2014-0063 CVE-2014-0064 CVE-2014-0065 CVE-2014-0066 CVE-2014-0067 CVE-2014-4341 CVE-2014-4342 CVE-2014-4343 CVE-2014-4344 CVE-2014-4345 CVE-2014-5351 CVE-2014-5352 CVE-2014-5353 CVE-2014-5354 CVE-2014-5355 CVE-2014-9421 CVE-2014-9422 CVE-2014-9423 CVE-2015-2694 CVE-2015-2695 CVE-2015-2696 CVE-2015-2697 CVE-2015-3165 CVE-2015-3166 CVE-2015-3167 CVE-2015-3294 CVE-2015-5288 CVE-2015-5289 CVE-2017-0358 CVE-2018-10196 CVE-2019-9755 CVE-2020-14386 CVE-2021-33285 CVE-2021-33286 CVE-2021-33287 CVE-2021-33289 CVE-2021-35266 CVE-2021-35267 CVE-2021-35268 CVE-2021-35269 CVE-2021-39251 CVE-2021-39252 CVE-2021-39253 CVE-2021-39255 CVE-2021-39256 CVE-2021-39257 CVE-2021-39258 CVE-2021-39259 CVE-2021-39260 CVE-2021-39261 CVE-2021-39262 CVE-2021-39263 SUSE-SU-2020:2346-1 SUSE-SU-2020:2577-1 SUSE-SU-2021:2965-1
Platform(s):	openSUSE 13.1 SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Availability 15 SP1 SUSE Linux Enterprise High Availability 15 SP2 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for Rasperry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Software Development Kit 12 SP5 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE OpenStack Cloud 5	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information python-keystoneclient-1.0.0-16.1 is installed OR python-keystoneclient-doc-1.0.0-16.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-24.5.0esr-0.8.1 is installed OR MozillaFirefox-branding-SLED-24-0.7.36 is installed OR MozillaFirefox-translations-24.5.0esr-0.8.1 is installed OR libfreebl3-3.16-0.8.1 is installed OR libfreebl3-32bit-3.16-0.8.1 is installed OR libsoftokn3-3.16-0.8.1 is installed OR libsoftokn3-32bit-3.16-0.8.1 is installed OR mozilla-nspr-4.10.4-0.3.1 is installed OR mozilla-nspr-32bit-4.10.4-0.3.1 is installed OR mozilla-nss-3.16-0.8.1 is installed OR mozilla-nss-32bit-3.16-0.8.1 is installed OR mozilla-nss-tools-3.16-0.8.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information cpio-2.11-26 is installed OR cpio-lang-2.11-26 is installed OR tar-1.27.1-2 is installed OR tar-lang-1.27.1-2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND dnsmasq-2.71-8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information coreutils-8.25-12 is installed OR coreutils-lang-8.25-12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information bind-libs-9.9.9P1-62 is installed OR bind-libs-32bit-9.9.9P1-62 is installed OR bind-utils-9.9.9P1-62 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information cups-pk-helper-0.2.5-5 is installed OR cups-pk-helper-lang-0.2.5-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP1 is installed AND Package Information cluster-fs-1.0-35.3 is installed OR cluster-network-1.4-27.2 is installed OR cluster-network-kmp-default-1.4_k3.12.74_60.64.93-27.2 is installed OR cluster-network-kmp-xen-1.4_k3.12.74_60.64.93-27.2 is installed OR dlm-kmp-default-4.0.2_k3.12.74_60.64.93-35.3 is installed OR dlm-kmp-xen-4.0.2_k3.12.74_60.64.93-35.3 is installed OR drbd-8.4.6-7.2 is installed OR drbd-kmp-default-8.4.6_k3.12.74_60.64.93-7.2 is installed OR drbd-kmp-xen-8.4.6_k3.12.74_60.64.93-7.2 is installed OR gfs2-kmp-default-3.1.6_k3.12.74_60.64.93-35.3 is installed OR gfs2-kmp-xen-3.1.6_k3.12.74_60.64.93-35.3 is installed OR ocfs2-kmp-default-1.8.2_k3.12.74_60.64.93-35.3 is installed OR ocfs2-kmp-xen-1.8.2_k3.12.74_60.64.93-35.3 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND ruby2.1-rubygem-bundler-1.7.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND ctdb-4.6.5+git.27.6afd48b1083-2 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP5 is installed AND conntrack-tools-1.4.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP1 is installed AND Package Information graphviz-addons-2.40.1-6.6 is installed OR graphviz-gd-2.40.1-6.6 is installed OR graphviz-python-2.40.1-6.6 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP2 is installed AND Package Information cluster-md-kmp-default-5.3.18-24.15 is installed OR dlm-kmp-default-5.3.18-24.15 is installed OR gfs2-kmp-default-5.3.18-24.15 is installed OR kernel-default-5.3.18-24.15 is installed OR ocfs2-kmp-default-5.3.18-24.15 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information MozillaFirefox-68.1.0-109.92 is installed OR MozillaFirefox-translations-common-68.1.0-109.92 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_38-44-default-1-2.2 is installed OR kgraft-patch-3_12_38-44-xen-1-2.2 is installed OR kgraft-patch-SLE12_Update_3-1-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_82-6_6-default-1-2.1 is installed OR kgraft-patch-SLE12-SP3_Update_2-1-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND Package Information ruby2.1-rubygem-rack-1_4-1.4.5-8.10 is installed OR rubygem-rack-1_4-1.4.5-8.10 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information libopenssl0_9_8-0.9.8j-59 is installed OR libopenssl0_9_8-32bit-0.9.8j-59 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.38-44.1 is installed OR kernel-ec2-devel-3.12.38-44.1 is installed OR kernel-ec2-extra-3.12.38-44.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php5-5.5.14-33.2 is installed OR php5-5.5.14-33.2 is installed OR php5-bcmath-5.5.14-33.2 is installed OR php5-bz2-5.5.14-33.2 is installed OR php5-calendar-5.5.14-33.2 is installed OR php5-ctype-5.5.14-33.2 is installed OR php5-curl-5.5.14-33.2 is installed OR php5-dba-5.5.14-33.2 is installed OR php5-dom-5.5.14-33.2 is installed OR php5-enchant-5.5.14-33.2 is installed OR php5-exif-5.5.14-33.2 is installed OR php5-fastcgi-5.5.14-33.2 is installed OR php5-fileinfo-5.5.14-33.2 is installed OR php5-fpm-5.5.14-33.2 is installed OR php5-ftp-5.5.14-33.2 is installed OR php5-gd-5.5.14-33.2 is installed OR php5-gettext-5.5.14-33.2 is installed OR php5-gmp-5.5.14-33.2 is installed OR php5-iconv-5.5.14-33.2 is installed OR php5-intl-5.5.14-33.2 is installed OR php5-json-5.5.14-33.2 is installed OR php5-ldap-5.5.14-33.2 is installed OR php5-mbstring-5.5.14-33.2 is installed OR php5-mcrypt-5.5.14-33.2 is installed OR php5-mysql-5.5.14-33.2 is installed OR php5-odbc-5.5.14-33.2 is installed OR php5-opcache-5.5.14-33.2 is installed OR php5-openssl-5.5.14-33.2 is installed OR php5-pcntl-5.5.14-33.2 is installed OR php5-pdo-5.5.14-33.2 is installed OR php5-pear-5.5.14-33.2 is installed OR php5-pgsql-5.5.14-33.2 is installed OR php5-posix-5.5.14-33.2 is installed OR php5-pspell-5.5.14-33.2 is installed OR php5-shmop-5.5.14-33.2 is installed OR php5-snmp-5.5.14-33.2 is installed OR php5-soap-5.5.14-33.2 is installed OR php5-sockets-5.5.14-33.2 is installed OR php5-sqlite-5.5.14-33.2 is installed OR php5-suhosin-5.5.14-33.2 is installed OR php5-sysvmsg-5.5.14-33.2 is installed OR php5-sysvsem-5.5.14-33.2 is installed OR php5-sysvshm-5.5.14-33.2 is installed OR php5-tokenizer-5.5.14-33.2 is installed OR php5-wddx-5.5.14-33.2 is installed OR php5-xmlreader-5.5.14-33.2 is installed OR php5-xmlrpc-5.5.14-33.2 is installed OR php5-xmlwriter-5.5.14-33.2 is installed OR php5-xsl-5.5.14-33.2 is installed OR php5-zip-5.5.14-33.2 is installed OR php5-zlib-5.5.14-33.2 is installed
Definition Synopsis
SUSE Linux Enterprise Point of Sale 12 SP2 is installed AND python-pycrypto-2.6.1-10.3.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2 is installed AND aaa_base-11-6.65.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information pam_krb5-2.3.1-47.12.1 is installed OR pam_krb5-32bit-2.3.1-47.12.1 is installed OR pam_krb5-x86-2.3.1-47.12.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information OpenEXR-1.6.1-83.17.1 is installed OR OpenEXR-32bit-1.6.1-83.17.1 is installed OR OpenEXR-x86-1.6.1-83.17.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information avahi-0.6.31-20 is installed OR avahi-lang-0.6.31-20 is installed OR avahi-utils-0.6.31-20 is installed OR libavahi-client3-0.6.31-20 is installed OR libavahi-client3-32bit-0.6.31-20 is installed OR libavahi-common3-0.6.31-20 is installed OR libavahi-common3-32bit-0.6.31-20 is installed OR libavahi-core7-0.6.31-20 is installed OR libdns_sd-0.6.31-20 is installed OR libdns_sd-32bit-0.6.31-20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libxerces-c-3_1-3.1.1-12.3 is installed OR libxerces-c-3_1-32bit-3.1.1-12.3 is installed OR xerces-c-3.1.1-12.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND libraptor2-0-2.0.10-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-36 is installed OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND apache2-mod_perl-2.0.8-11 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND Package Information libntfs-3g-devel-2021.8.22-5.9.1 is installed OR libntfs-3g84-2021.8.22-5.9.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information apache2-2.4.10-14.17.1 is installed OR apache2-doc-2.4.10-14.17.1 is installed OR apache2-example-pages-2.4.10-14.17.1 is installed OR apache2-prefork-2.4.10-14.17.1 is installed OR apache2-utils-2.4.10-14.17.1 is installed OR apache2-worker-2.4.10-14.17.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information jasper-1.900.14-184 is installed OR libjasper1-1.900.14-184 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information wireshark-1.12.13-0.23.1 is installed OR wireshark-devel-1.12.13-0.23.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information libmysqlclient-devel-10.0.29-22.1 is installed OR libmysqlclient_r18-10.0.29-22.1 is installed OR libmysqld-devel-10.0.29-22.1 is installed OR libmysqld18-10.0.29-22.1 is installed OR mariadb-10.0.29-22.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND MozillaFirefox-devel-45.4.0esr-81 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND LibVNCServer-devel-0.9.9-16 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND Package Information ImageMagick-6.8.8.1-71.85 is installed OR ImageMagick-devel-6.8.8.1-71.85 is installed OR libMagick++-6_Q16-3-6.8.8.1-71.85 is installed OR libMagick++-devel-6.8.8.1-71.85 is installed OR perl-PerlMagick-6.8.8.1-71.85 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information finch-2.10.9-8.1 is installed OR libpurple-2.10.9-8.1 is installed OR libpurple-lang-2.10.9-8.1 is installed OR libpurple-meanwhile-2.10.9-8.1 is installed OR libpurple-tcl-2.10.9-8.1 is installed OR pidgin-2.10.9-8.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information ImageMagick-6.8.8.1-30.2 is installed OR libMagick++-6_Q16-3-6.8.8.1-30.2 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information libcares2-1.9.1-5.1 is installed OR libcares2-32bit-1.9.1-5.1 is installed

BACK