OVAL Reference oval:org.opensuse.security:def:5137

Oval Definition:

oval:org.opensuse.security:def:5137

Revision Date:	2020-12-02	Version:	1
Title:	Security update for pacemaker (Important)
Description:	This update for pacemaker fixes the following issues: Update to 2.0.4: - based: use crm_exit to free qb-logging - cibsecret: don't use pssh -q option unless supported - crm_error: use g_free for a proper match - crm_mon: NULL output-pointer when buffer is freed - crm_resource: avoid unnecessary issus with dynamic allocation - crm_ticket: avoid unnecessary issues with dynamic allocation - executor: restrict certain IPC requests to Pacemaker daemons (CVE-2020-25654, bsc#1177916) - fencer: avoid infinite loop if device is removed during operation - fencer: restrict certain IPC requests to privileged users (CVE-2020-25654, bsc#1177916) - libcrmcommon: free basename after setting prgname - libcrmcommon: return ENOMEM directly instead of errno - libpe_status: Modify filtering of inactive resources. - libreplace: closedir when bailing out dir traversal - move bcond_with/without up front for e.g. pcmk_release - pacemakerd: ignore shutdown requests from unprivileged users (CVE-2020-25654, bsc#1177916) - resources: attribute name parameter doesn't have to be unique - rpm: add spec option for enabling CIB secrets - rpm: put user-configurable items at top of spec - rpm: use the user/group ID 90 for haclient/hacluster to be consistent with cluster-glue (bsc#1167171) - scheduler: Add the node name back to bundle instances. - silence some false positives static analysis stumbled over - tools: check resource separately from managing parameter in cibsecret - tools: free IPC memory after closing connection - tools: improve cibsecret help - tools: verify newly created CIB connection is not NULL
Family:	unix	Class:	patch
Status:		Reference(s):	1167171 1171928 1173668 1175557 1177916 CVE-2007-5970 CVE-2008-7247 CVE-2009-1886 CVE-2009-1888 CVE-2009-2813 CVE-2009-2906 CVE-2009-2948 CVE-2009-4019 CVE-2009-4028 CVE-2009-4030 CVE-2009-5044 CVE-2009-5080 CVE-2009-5081 CVE-2010-0547 CVE-2010-0728 CVE-2010-0787 CVE-2010-2547 CVE-2010-4341 CVE-2010-5298 CVE-2011-0460 CVE-2011-1758 CVE-2011-3389 CVE-2011-4944 CVE-2012-0845 CVE-2012-1150 CVE-2012-1586 CVE-2012-5615 CVE-2013-0219 CVE-2013-0220 CVE-2013-0287 CVE-2013-1752 CVE-2013-1976 CVE-2013-1992 CVE-2013-2003 CVE-2013-4238 CVE-2013-4351 CVE-2013-4402 CVE-2014-0011 CVE-2014-0195 CVE-2014-0198 CVE-2014-0221 CVE-2014-0224 CVE-2014-2494 CVE-2014-2497 CVE-2014-2667 CVE-2014-2977 CVE-2014-2978 CVE-2014-3470 CVE-2014-4207 CVE-2014-4258 CVE-2014-4260 CVE-2014-4274 CVE-2014-4287 CVE-2014-4617 CVE-2014-4650 CVE-2014-5461 CVE-2014-6463 CVE-2014-6464 CVE-2014-6469 CVE-2014-6474 CVE-2014-6478 CVE-2014-6484 CVE-2014-6489 CVE-2014-6491 CVE-2014-6494 CVE-2014-6495 CVE-2014-6496 CVE-2014-6500 CVE-2014-6505 CVE-2014-6507 CVE-2014-6520 CVE-2014-6530 CVE-2014-6551 CVE-2014-6555 CVE-2014-6559 CVE-2014-6564 CVE-2014-6568 CVE-2014-8964 CVE-2015-0374 CVE-2015-0381 CVE-2015-0382 CVE-2015-0391 CVE-2015-0411 CVE-2015-0432 CVE-2015-0433 CVE-2015-0441 CVE-2015-0499 CVE-2015-0501 CVE-2015-0505 CVE-2015-2325 CVE-2015-2326 CVE-2015-2568 CVE-2015-2571 CVE-2015-2573 CVE-2015-3152 CVE-2020-25654 CVE-2020-9484 SUSE-SU-2020:1364-1 SUSE-SU-2020:3054-1
Platform(s):	openSUSE 13.1 SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Availability 15 SP2 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE OpenStack Cloud 5	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND python-Jinja2-2.7.3-4.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information dhcp-4.2.4.P2-0.24.1 is installed OR dhcp-client-4.2.4.P2-0.24.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information gd-2.1.0-3 is installed OR gd-32bit-2.1.0-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information DirectFB-1.7.1-4 is installed OR lib++dfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-32bit-1.7.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND autofs-5.0.9-21 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information ImageMagick-6.8.8.1-70 is installed OR libMagick++-6_Q16-3-6.8.8.1-70 is installed OR libMagickCore-6_Q16-1-6.8.8.1-70 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-70 is installed OR libMagickWand-6_Q16-1-6.8.8.1-70 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gdk-pixbuf-lang-2.34.0-19.17 is installed OR gdk-pixbuf-query-loaders-2.34.0-19.17 is installed OR gdk-pixbuf-query-loaders-32bit-2.34.0-19.17 is installed OR libgdk_pixbuf-2_0-0-2.34.0-19.17 is installed OR libgdk_pixbuf-2_0-0-32bit-2.34.0-19.17 is installed OR typelib-1_0-GdkPixbuf-2_0-2.34.0-19.17 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND conntrack-tools-1.4.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND libpcreposix0-8.39-7 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP5 is installed AND libpcreposix0-8.39-8.3 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP2 is installed AND Package Information libpacemaker-devel-2.0.4+20200616.2deceaa3a-3.3 is installed OR libpacemaker3-2.0.4+20200616.2deceaa3a-3.3 is installed OR pacemaker-2.0.4+20200616.2deceaa3a-3.3 is installed OR pacemaker-cli-2.0.4+20200616.2deceaa3a-3.3 is installed OR pacemaker-cts-2.0.4+20200616.2deceaa3a-3.3 is installed OR pacemaker-remote-2.0.4+20200616.2deceaa3a-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information ImageMagick-config-6-SUSE-6.8.8.1-71.126 is installed OR ImageMagick-config-6-upstream-6.8.8.1-71.126 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.126 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.126 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 15-ESPOS is installed AND tomcat-9.0.35-3.52 is installed OR tomcat-admin-webapps-9.0.35-3.52 is installed OR tomcat-el-3_0-api-9.0.35-3.52 is installed OR tomcat-jsp-2_3-api-9.0.35-3.52 is installed OR tomcat-lib-9.0.35-3.52 is installed OR tomcat-servlet-4_0-api-9.0.35-3.52 is installed OR tomcat-webapps-9.0.35-3.52 is installed OR Package Information SUSE Linux Enterprise High Performance Computing 15-LTSS is installed AND tomcat-9.0.35-3.52 is installed OR tomcat-admin-webapps-9.0.35-3.52 is installed OR tomcat-el-3_0-api-9.0.35-3.52 is installed OR tomcat-jsp-2_3-api-9.0.35-3.52 is installed OR tomcat-lib-9.0.35-3.52 is installed OR tomcat-servlet-4_0-api-9.0.35-3.52 is installed OR tomcat-webapps-9.0.35-3.52 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_38-44-default-1-2.2 is installed OR kgraft-patch-3_12_38-44-xen-1-2.2 is installed OR kgraft-patch-SLE12_Update_3-1-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_82-6_3-default-1-2.1 is installed OR kgraft-patch-SLE12-SP3_Update_1-1-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND python-pycrypto-2.6.1-10.3.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND python-PyYAML-3.10-15 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information cups154-1.5.4-2 is installed OR cups154-client-1.5.4-2 is installed OR cups154-filters-1.5.4-2 is installed OR cups154-libs-1.5.4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.51-52.31.1 is installed OR kernel-ec2-devel-3.12.51-52.31.1 is installed OR kernel-ec2-extra-3.12.51-52.31.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php5-5.5.14-86.2 is installed OR imap-2007e_suse-22.1 is installed OR libc-client2007e_suse-2007e_suse-22.1 is installed OR php5-5.5.14-86.2 is installed OR php5-bcmath-5.5.14-86.2 is installed OR php5-bz2-5.5.14-86.2 is installed OR php5-calendar-5.5.14-86.2 is installed OR php5-ctype-5.5.14-86.2 is installed OR php5-curl-5.5.14-86.2 is installed OR php5-dba-5.5.14-86.2 is installed OR php5-dom-5.5.14-86.2 is installed OR php5-enchant-5.5.14-86.2 is installed OR php5-exif-5.5.14-86.2 is installed OR php5-fastcgi-5.5.14-86.2 is installed OR php5-fileinfo-5.5.14-86.2 is installed OR php5-fpm-5.5.14-86.2 is installed OR php5-ftp-5.5.14-86.2 is installed OR php5-gd-5.5.14-86.2 is installed OR php5-gettext-5.5.14-86.2 is installed OR php5-gmp-5.5.14-86.2 is installed OR php5-iconv-5.5.14-86.2 is installed OR php5-imap-5.5.14-86.2 is installed OR php5-intl-5.5.14-86.2 is installed OR php5-json-5.5.14-86.2 is installed OR php5-ldap-5.5.14-86.2 is installed OR php5-mbstring-5.5.14-86.2 is installed OR php5-mcrypt-5.5.14-86.2 is installed OR php5-mysql-5.5.14-86.2 is installed OR php5-odbc-5.5.14-86.2 is installed OR php5-opcache-5.5.14-86.2 is installed OR php5-openssl-5.5.14-86.2 is installed OR php5-pcntl-5.5.14-86.2 is installed OR php5-pdo-5.5.14-86.2 is installed OR php5-pear-5.5.14-86.2 is installed OR php5-pgsql-5.5.14-86.2 is installed OR php5-phar-5.5.14-86.2 is installed OR php5-posix-5.5.14-86.2 is installed OR php5-pspell-5.5.14-86.2 is installed OR php5-shmop-5.5.14-86.2 is installed OR php5-snmp-5.5.14-86.2 is installed OR php5-soap-5.5.14-86.2 is installed OR php5-sockets-5.5.14-86.2 is installed OR php5-sqlite-5.5.14-86.2 is installed OR php5-suhosin-5.5.14-86.2 is installed OR php5-sysvmsg-5.5.14-86.2 is installed OR php5-sysvsem-5.5.14-86.2 is installed OR php5-sysvshm-5.5.14-86.2 is installed OR php5-tokenizer-5.5.14-86.2 is installed OR php5-wddx-5.5.14-86.2 is installed OR php5-xmlreader-5.5.14-86.2 is installed OR php5-xmlrpc-5.5.14-86.2 is installed OR php5-xmlwriter-5.5.14-86.2 is installed OR php5-xsl-5.5.14-86.2 is installed OR php5-zip-5.5.14-86.2 is installed OR php5-zlib-5.5.14-86.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2 is installed AND acpid-1.0.6-91.16.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND stunnel-4.54-0.9.24 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information PackageKit-0.3.14-2.30.11 is installed OR PackageKit-lang-0.3.14-2.30.11 is installed OR hal-0.5.12-23.76.1 is installed OR hal-32bit-0.5.12-23.76.1 is installed OR hal-doc-0.5.12-23.76.1 is installed OR hal-x86-0.5.12-23.76.1 is installed OR libpackagekit-glib10-0.3.14-2.30.11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11-SECURITY is installed AND Package Information libopenssl1-devel-1.0.1g-0.47.1 is installed OR libopenssl1_0_0-1.0.1g-0.47.1 is installed OR libopenssl1_0_0-32bit-1.0.1g-0.47.1 is installed OR libopenssl1_0_0-x86-1.0.1g-0.47.1 is installed OR openssl1-1.0.1g-0.47.1 is installed OR openssl1-doc-1.0.1g-0.47.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information apache-commons-daemon-1.0.15-4 is installed OR apache-commons-daemon-javadoc-1.0.15-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND xfsprogs-3.2.1-3.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND libzip2-0.11.1-12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_perl-2.0.8-11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_55-52_42-default-2-2.2 is installed OR kgraft-patch-3_12_55-52_42-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_12-2-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information gstreamer-plugins-good-1.8.3-12 is installed OR gstreamer-plugins-good-lang-1.8.3-12 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information apache2-2.4.16-19.1 is installed OR apache2-devel-2.4.16-19.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information finch-devel-2.11.0-12 is installed OR libpurple-2.11.0-12 is installed OR libpurple-devel-2.11.0-12 is installed OR libpurple-lang-2.11.0-12 is installed OR pidgin-devel-2.11.0-12 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information FastCGI-2.4.0-168 is installed OR FastCGI-devel-2.4.0-168 is installed OR perl-FastCGI-2.4.0-168 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND MozillaFirefox-devel-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information flash-player-11.2.202.451-77.1 is installed OR flash-player-gnome-11.2.202.451-77.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information libvirt-1.2.18.4-11.7 is installed OR libvirt-client-32bit-1.2.18.4-11.7 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information imap-2007e_suse-22.1 is installed OR libc-client2007e_suse-2007e_suse-22.1 is installed

BACK