Oval Definition:	oval:org.opensuse.security:def:51272
Revision Date: 2020-12-01 Version: 1 Title: Security update for fwupd (Important) Description: This update for fwupd fixes the following issues: - CVE-2020-10759: Fixed a potential PGP signature bypass, which could have led to installation of unsigned firmware (bsc#1172643) Family: unix Class: patch Status: Reference(s): 1051510 1058115 1065729 1082555 1083647 1089895 1103990 1103991 1103992 1104745 1109837 1111666 1112178 1112374 1113956 1114279 1120281 1124278 1127354 1127355 1127371 1129537 1133021 1133191 1135280 1136446 1136935 1137597 1142685 1144333 1149792 1149841 1151021 1151794 1152489 1154063 1154824 1157169 1158265 1159329 1159352 1159812 1160388 1160947 1161719 1163809 1164780 1164871 1165183 1165478 1165741 1166969 1166978 1167574 1167851 1167867 1168332 1168670 1168789 1169020 1169514 1169525 1169762 1170056 1170125 1170145 1170284 1170345 1170457 1170522 1170592 1170617 1170618 1170620 1170621 1170770 1170778 1170791 1170901 1171078 1171098 1171118 1171189 1171191 1171195 1171202 1171205 1171214 1171217 1171218 1171219 1171220 1171244 1171293 1171417 1171433 1171527 1171599 1171600 1171601 1171602 1171604 1171605 1171606 1171607 1171608 1171609 1171610 1171611 1171612 1171613 1171614 1171615 1171616 1171617 1171618 1171619 1171620 1171621 1171622 1171623 1171624 1171625 1171626 1171662 1171679 1171691 1171692 1171694 1171695 1171736 1171746 1171817 1171948 1171949 1171951 1171952 1171979 1171982 1171983 1172017 1172096 1172097 1172098 1172099 1172101 1172102 1172103 1172104 1172127 1172130 1172140 1172185 1172188 1172199 1172201 1172202 1172221 1172249 1172251 1172317 1172342 1172343 1172344 1172366 1172378 1172391 1172397 1172437 1172453 1172643 1173942 1174538 1176012 1176382 1176896 CVE-2009-0790 CVE-2010-2240 CVE-2011-2895 CVE-2011-3630 CVE-2011-3631 CVE-2011-3632 CVE-2012-2388 CVE-2013-1940 CVE-2013-2944 CVE-2013-4396 CVE-2013-5018 CVE-2013-6075 CVE-2013-6076 CVE-2013-6424 CVE-2014-2338 CVE-2018-1000199 CVE-2018-1000845 CVE-2019-11085 CVE-2019-11477 CVE-2019-11478 CVE-2019-11487 CVE-2019-14835 CVE-2019-15666 CVE-2019-16775 CVE-2019-16776 CVE-2019-16777 CVE-2019-19462 CVE-2019-20806 CVE-2019-20812 CVE-2019-3846 CVE-2019-8835 CVE-2019-8844 CVE-2019-8846 CVE-2019-9455 CVE-2019-9628 CVE-2020-0431 CVE-2020-0543 CVE-2020-10690 CVE-2020-10711 CVE-2020-10720 CVE-2020-10732 CVE-2020-10751 CVE-2020-10757 CVE-2020-10759 CVE-2020-11668 CVE-2020-12114 CVE-2020-12464 CVE-2020-12652 CVE-2020-12653 CVE-2020-12654 CVE-2020-12655 CVE-2020-12656 CVE-2020-12657 CVE-2020-12659 CVE-2020-12768 CVE-2020-12769 CVE-2020-13143 CVE-2020-14381 CVE-2020-15652 CVE-2020-15653 CVE-2020-15654 CVE-2020-15655 CVE-2020-15656 CVE-2020-15657 CVE-2020-15658 CVE-2020-15659 CVE-2020-25212 CVE-2020-3862 CVE-2020-3864 CVE-2020-3865 CVE-2020-3867 CVE-2020-3868 CVE-2020-6463 CVE-2020-6514 SUSE-SU-2019:0285-1 SUSE-SU-2019:0929-1 SUSE-SU-2020:0104-1 SUSE-SU-2020:0468-1 SUSE-SU-2020:1671-1 SUSE-SU-2020:1681-1 SUSE-SU-2020:2147-1 SUSE-SU-2020:2583-1 SUSE-SU-2020:3178-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SP2 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libecpg6-9.1.9-0.3 is installed OR libpq5-9.1.9-0.3 is installed OR libpq5-32bit-9.1.9-0.3 is installed OR postgresql91-9.1.9-0.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information flash-player-11.2.202.418-0.3 is installed OR flash-player-gnome-11.2.202.418-0.3 is installed OR flash-player-kde4-11.2.202.418-0.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND hardlink-1.0-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND binutils-2.25.0-13 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information bind-libs-9.9.9P1-46 is installed OR bind-libs-32bit-9.9.9P1-46 is installed OR bind-utils-9.9.9P1-46 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libXp6-1.0.2-3 is installed OR libXp6-32bit-1.0.2-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND bogofilter-1.2.4-5 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information avahi-0.6.32-5.3 is installed OR python-avahi-0.6.32-5.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information fwupd-1.0.9-6.3 is installed OR fwupd-devel-1.0.9-6.3 is installed OR fwupd-lang-1.0.9-6.3 is installed OR libfwupd2-1.0.9-6.3 is installed OR typelib-1_0-Fwupd-2_0-1.0.9-6.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed AND Package Information MozillaFirefox-78.1.0-8.3 is installed OR MozillaFirefox-branding-SLE-78-9.2 is installed OR MozillaFirefox-devel-78.1.0-8.3 is installed OR MozillaFirefox-translations-common-78.1.0-8.3 is installed OR MozillaFirefox-translations-other-78.1.0-8.3 is installed OR libpipewire-0_3-0-0.3.6-3.3 is installed OR pipewire-0.3.6-3.3 is installed OR pipewire-modules-0.3.6-3.3 is installed OR pipewire-spa-plugins-0_2-0.3.6-3.3 is installed OR pipewire-spa-tools-0.3.6-3.3 is installed OR pipewire-tools-0.3.6-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.45 is installed OR reiserfs-kmp-default-4.12.14-197.45 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_13-default-7-2 is installed OR kernel-livepatch-SLE15_Update_3-7-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_15-default-8-2 is installed OR kernel-livepatch-SLE15-SP1_Update_4-8-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libxmltooling-devel-1.6.4-3.3 is installed OR libxmltooling7-1.6.4-3.3 is installed OR xmltooling-1.6.4-3.3 is installed OR xmltooling-schemas-1.6.4-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs10-10.18.0-1.15 is installed OR nodejs10-devel-10.18.0-1.15 is installed OR nodejs10-docs-10.18.0-1.15 is installed OR npm10-10.18.0-1.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libHX28-3.18-1 is installed OR libHX28-32bit-3.18-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information bind-9.9.9P1-62 is installed OR bind-chrootenv-9.9.9P1-62 is installed OR bind-devel-9.9.9P1-62 is installed OR bind-doc-9.9.9P1-62 is installed OR bind-libs-9.9.9P1-62 is installed OR bind-libs-32bit-9.9.9P1-62 is installed OR bind-utils-9.9.9P1-62 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information grub2-2.02~beta2-104 is installed OR grub2-arm64-efi-2.02~beta2-104 is installed OR grub2-i386-pc-2.02~beta2-104 is installed OR grub2-powerpc-ieee1275-2.02~beta2-104 is installed OR grub2-s390x-emu-2.02~beta2-104 is installed OR grub2-snapper-plugin-2.02~beta2-104 is installed OR grub2-systemd-sleep-plugin-2.02~beta2-104 is installed OR grub2-x86_64-efi-2.02~beta2-104 is installed OR grub2-x86_64-xen-2.02~beta2-104 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information qemu-2.6.2-41.43 is installed OR qemu-block-curl-2.6.2-41.43 is installed OR qemu-block-rbd-2.6.2-41.43 is installed OR qemu-block-ssh-2.6.2-41.43 is installed OR qemu-guest-agent-2.6.2-41.43 is installed OR qemu-ipxe-1.0.0-41.43 is installed OR qemu-kvm-2.6.2-41.43 is installed OR qemu-lang-2.6.2-41.43 is installed OR qemu-seabios-1.9.1-41.43 is installed OR qemu-sgabios-8-41.43 is installed OR qemu-tools-2.6.2-41.43 is installed OR qemu-vgabios-1.9.1-41.43 is installed OR qemu-x86-2.6.2-41.43 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information java-1_7_0-openjdk-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND clamav-0.100.3-33.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_178-94_91-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_25-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_162-94_69-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_21-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information openssh-7.2p2-74.23 is installed OR openssh-askpass-gnome-7.2p2-74.23 is installed OR openssh-fips-7.2p2-74.23 is installed OR openssh-helpers-7.2p2-74.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information gpg2-2.0.24-9.3 is installed OR gpg2-lang-2.0.24-9.3 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information avahi-0.6.32-5.8 is installed OR avahi-compat-howl-devel-0.6.32-5.8 is installed OR avahi-compat-mDNSResponder-devel-0.6.32-5.8 is installed OR avahi-glib2-0.6.32-5.8 is installed OR avahi-lang-0.6.32-5.8 is installed OR avahi-utils-0.6.32-5.8 is installed OR libavahi-client3-0.6.32-5.8 is installed OR libavahi-client3-32bit-0.6.32-5.8 is installed OR libavahi-common3-0.6.32-5.8 is installed OR libavahi-common3-32bit-0.6.32-5.8 is installed OR libavahi-core7-0.6.32-5.8 is installed OR libavahi-devel-0.6.32-5.8 is installed OR libavahi-glib-devel-0.6.32-5.8 is installed OR libavahi-glib1-0.6.32-5.8 is installed OR libavahi-gobject0-0.6.32-5.8 is installed OR libavahi-ui-gtk3-0-0.6.32-5.8 is installed OR libavahi-ui0-0.6.32-5.8 is installed OR libdns_sd-0.6.32-5.8 is installed OR libhowl0-0.6.32-5.8 is installed OR typelib-1_0-Avahi-0_6-0.6.32-5.8 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.26.4-3.43 is installed OR libwebkit2gtk-4_0-37-2.26.4-3.43 is installed OR libwebkit2gtk3-lang-2.26.4-3.43 is installed OR webkit2gtk-4_0-injected-bundles-2.26.4-3.43 is installed OR webkit2gtk3-2.26.4-3.43 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information postgresql96-9.6.15-3.29 is installed OR postgresql96-contrib-9.6.15-3.29 is installed OR postgresql96-docs-9.6.15-3.29 is installed OR postgresql96-libs-9.6.15-3.29 is installed OR postgresql96-plperl-9.6.15-3.29 is installed OR postgresql96-plpython-9.6.15-3.29 is installed OR postgresql96-pltcl-9.6.15-3.29 is installed OR postgresql96-server-9.6.15-3.29 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information grafana-4.5.1-4.3 is installed OR kafka-0.9.0.1-5.3 is installed OR logstash-2.4.1-5.4 is installed OR openstack-monasca-installer-20180622_15.06-3.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.14.3-11.15 is installed
BACK