Oval Definition:oval:org.opensuse.security:def:51457
Revision Date:2020-12-01Version:1
Title:Security update for osc (Important)
Description:

This update for osc to version 0.165.4 fixes the following issues:

Security issue fixed:

- CVE-2019-3685: Fixed broken TLS certificate handling allowing for a Man-in-the-middle attack (bsc#1142518).

Non-security issues fixed:

- support different token operations (runservice, release and rebuild) (requires OBS 2.10) - fix osc token decode error - offline build mode is now really offline and does not try to download the buildconfig - osc build -define now works with python3 - fixes an issue where the error message on osc meta -e was not parsed correctly - osc maintainer -s now works with python3 - simplified and fixed osc meta -e (bsc#1138977) - osc lbl now works with non utf8 encoding (bsc#1129889) - add simpleimage as local build type - allow optional fork when creating a maintenance request - fix RPMError fallback - fix local caching for all package formats - fix appname for trusted cert store - osc -h does not break anymore when using plugins - switch to difflib.diff_bytes and sys.stdout.buffer.write for diffing. This will fix all decoding issues with osc diff, osc ci and osc rq -d - fix osc ls -lb handling empty size and mtime - removed decoding on osc api command.
Family:unixClass:patch
Status:Reference(s):1012382
1037697
1046299
1046300
1046302
1046303
1046305
1046306
1046307
1046533
1046543
1050242
1050536
1050538
1050540
1051510
1054245
1056651
1056787
1058169
1058659
1060463
1065729
1068032
1071995
1074701
1075087
1075360
1077338
1077761
1077989
1083548
1085030
1085042
1085235
1085308
1085536
1085539
1086301
1086313
1086314
1086324
1086457
1087078
1087092
1087202
1087217
1087233
1090098
1090888
1091041
1091171
1093148
1093666
1094119
1094420
1096330
1097583
1097584
1097585
1097586
1097587
1097588
1098633
1099193
1100132
1100394
1100884
1101143
1101337
1101352
1101564
1101669
1101674
1101789
1101813
1101816
1102088
1102097
1102147
1102340
1102512
1102640
1102851
1103216
1103220
1103230
1103421
1105412
1111666
1112178
1113956
1120163
1125601
1127153
1129889
1129991
1130245
1133021
1134452
1138977
1140697
1142518
1142662
1144211
1144333
1144902
1152763
1153921
1154289
1154598
1162117
1166844
1166916
1169790
1171688
1171746
1172108
1172140
1172247
1172418
1172428
1172437
1172442
1172443
1172781
1172782
1172783
1172871
1172872
1172963
1173389
1173485
1173798
1173954
1174003
1174026
1174070
1174161
1174205
1174247
1174298
1174299
1174387
1174484
1174547
1174549
1174550
1174625
1174658
1174685
1174689
1174699
1174734
1174757
1174771
1174840
1174841
1174843
1174844
1174845
1174852
1174873
1174887
1174904
1174926
1174968
1175062
1175063
1175064
1175065
1175066
1175067
1175112
1175127
1175128
1175149
1175199
1175213
1175228
1175232
1175284
1175393
1175394
1175396
1175397
1175398
1175399
1175400
1175401
1175402
1175403
1175404
1175405
1175406
1175407
1175408
1175409
1175410
1175411
1175412
1175413
1175414
1175415
1175416
1175417
1175418
1175419
1175420
1175421
1175422
1175423
1175440
1175493
1175515
1175518
1175526
1175550
1175654
1175666
1175668
1175669
1175670
1175767
1175768
1175769
1175770
1175771
1175772
1175786
1175873
1175992
1177513
1177729
1178003
1178264
CVE-2007-4129
CVE-2009-0696
CVE-2009-4022
CVE-2010-3613
CVE-2010-3614
CVE-2010-3615
CVE-2011-0414
CVE-2011-0421
CVE-2011-1907
CVE-2011-1910
CVE-2011-2464
CVE-2011-4313
CVE-2012-1162
CVE-2012-1163
CVE-2012-1667
CVE-2012-3817
CVE-2012-3868
CVE-2012-4244
CVE-2012-5166
CVE-2012-5688
CVE-2012-5689
CVE-2013-2266
CVE-2013-4854
CVE-2013-6393
CVE-2014-0591
CVE-2014-2525
CVE-2014-8080
CVE-2014-8090
CVE-2014-9130
CVE-2015-2331
CVE-2017-1000405
CVE-2017-18344
CVE-2018-1000199
CVE-2018-5390
CVE-2019-10218
CVE-2019-14833
CVE-2019-14847
CVE-2019-15666
CVE-2019-3685
CVE-2019-3695
CVE-2019-3696
CVE-2020-0430
CVE-2020-10531
CVE-2020-10757
CVE-2020-11080
CVE-2020-11996
CVE-2020-12351
CVE-2020-14314
CVE-2020-14331
CVE-2020-14356
CVE-2020-16166
CVE-2020-24394
CVE-2020-25645
CVE-2020-7598
CVE-2020-8174
SUSE-SU-2018:1952-1
SUSE-SU-2018:2223-1
SUSE-SU-2019:2067-1
SUSE-SU-2019:2868-1
SUSE-SU-2020:0355-1
SUSE-SU-2020:1568-1
SUSE-SU-2020:1983-1
SUSE-SU-2020:2631-1
SUSE-SU-2020:3449-1
Platform(s):openSUSE Leap 15.0
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for additional PackageHub packages 15
SUSE Linux Enterprise Module for Development Tools 15 SP1
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Public Cloud 15
SUSE Linux Enterprise Module for Realtime packages 15 SP1
SUSE Linux Enterprise Module for Web Scripting 15 SP2
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Workstation Extension 15
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libimobiledevice6-1.2.0+git20170122.45fda81-lp150.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • compat-wireless-kmp-default-3.13_3.0.101_0.31-0.9 is installed
  • OR compat-wireless-kmp-pae-3.13_3.0.101_0.31-0.9 is installed
  • OR compat-wireless-kmp-xen-3.13_3.0.101_0.31-0.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • xen-4.4.2_10-5 is installed
  • OR xen-doc-html-4.4.2_10-5 is installed
  • OR xen-kmp-default-4.4.2_10_3.0.101_63-5 is installed
  • OR xen-kmp-pae-4.4.2_10_3.0.101_63-5 is installed
  • OR xen-libs-4.4.2_10-5 is installed
  • OR xen-libs-32bit-4.4.2_10-5 is installed
  • OR xen-tools-4.4.2_10-5 is installed
  • OR xen-tools-domU-4.4.2_10-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • bind-libs-9.9.5P1-1 is installed
  • OR bind-libs-32bit-9.9.5P1-1 is installed
  • OR bind-utils-9.9.5P1-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND coolkey-1.1.0-147 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • gnome-shell-3.20.4-70 is installed
  • OR gnome-shell-browser-plugin-3.20.4-70 is installed
  • OR gnome-shell-calendar-3.20.4-70 is installed
  • OR gnome-shell-lang-3.20.4-70 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • gd-2.1.0-23 is installed
  • OR gd-32bit-2.1.0-23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • audiofile-0.3.6-10 is installed
  • OR libaudiofile1-0.3.6-10 is installed
  • OR libaudiofile1-32bit-0.3.6-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed
  • AND Package Information
  • samba-4.7.11+git.186.d75219614c3-4.30 is installed
  • OR samba-python-4.7.11+git.186.d75219614c3-4.30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed
  • AND osc-0.165.4-3.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-150_41-default-8-2 is installed
  • OR kernel-livepatch-SLE15_Update_16-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-197_10-default-8-2 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_3-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 is installed
  • AND Package Information
  • kernel-azure-4.12.14-5.5 is installed
  • OR kernel-azure-base-4.12.14-5.5 is installed
  • OR kernel-azure-devel-4.12.14-5.5 is installed
  • OR kernel-devel-azure-4.12.14-5.5 is installed
  • OR kernel-source-azure-4.12.14-5.5 is installed
  • OR kernel-syms-azure-4.12.14-5.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Realtime packages 15 SP1 is installed
  • AND Package Information
  • cluster-md-kmp-rt-4.12.14-14.31 is installed
  • OR dlm-kmp-rt-4.12.14-14.31 is installed
  • OR gfs2-kmp-rt-4.12.14-14.31 is installed
  • OR kernel-devel-rt-4.12.14-14.31 is installed
  • OR kernel-rt-4.12.14-14.31 is installed
  • OR kernel-rt-base-4.12.14-14.31 is installed
  • OR kernel-rt-devel-4.12.14-14.31 is installed
  • OR kernel-rt_debug-4.12.14-14.31 is installed
  • OR kernel-rt_debug-devel-4.12.14-14.31 is installed
  • OR kernel-source-rt-4.12.14-14.31 is installed
  • OR kernel-syms-rt-4.12.14-14.31 is installed
  • OR ocfs2-kmp-rt-4.12.14-14.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 SP2 is installed
  • AND Package Information
  • tomcat-9.0.36-3.3 is installed
  • OR tomcat-admin-webapps-9.0.36-3.3 is installed
  • OR tomcat-el-3_0-api-9.0.36-3.3 is installed
  • OR tomcat-jsp-2_3-api-9.0.36-3.3 is installed
  • OR tomcat-lib-9.0.36-3.3 is installed
  • OR tomcat-servlet-4_0-api-9.0.36-3.3 is installed
  • OR tomcat-webapps-9.0.36-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND yast2-3.1.155-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_45-default-2-2 is installed
  • OR kgraft-patch-3_12_74-60_64_45-xen-2-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_16-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • file-5.19-9 is installed
  • OR file-magic-5.19-9 is installed
  • OR libmagic1-5.19-9 is installed
  • OR libmagic1-32bit-5.19-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • kernel-default-4.4.121-92.92 is installed
  • OR kernel-default-base-4.4.121-92.92 is installed
  • OR kernel-default-devel-4.4.121-92.92 is installed
  • OR kernel-devel-4.4.121-92.92 is installed
  • OR kernel-macros-4.4.121-92.92 is installed
  • OR kernel-source-4.4.121-92.92 is installed
  • OR kernel-syms-4.4.121-92.92 is installed
  • OR kgraft-patch-4_4_121-92_92-default-1-3.7 is installed
  • OR kgraft-patch-SLE12-SP2_Update_24-1-3.7 is installed
  • OR lttng-modules-2.7.1-9.4 is installed
  • OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.92-9.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • openslp-2.0.0-18.15 is installed
  • OR openslp-32bit-2.0.0-18.15 is installed
  • OR openslp-server-2.0.0-18.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_74-92_38-default-9-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_13-9-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • cracklib-2.9.0-7 is installed
  • OR libcrack2-2.9.0-7 is installed
  • OR libcrack2-32bit-2.9.0-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libdcerpc-binding0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libdcerpc-binding0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libdcerpc0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libdcerpc0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr-krb5pac0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr-krb5pac0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr-nbt0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr-nbt0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr-standard0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr-standard0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libnetapi0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libnetapi0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-credentials0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-credentials0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-errors0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-errors0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-hostconfig0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-hostconfig0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-passdb0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-passdb0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-util0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-util0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamdb0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamdb0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsmbclient0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsmbclient0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsmbconf0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsmbconf0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsmbldap0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsmbldap0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libtevent-util0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libtevent-util0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libwbclient0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libwbclient0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-client-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-client-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-doc-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-libs-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-libs-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-winbind-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-winbind-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • nfs-client-1.3.0-34.22 is installed
  • OR nfs-doc-1.3.0-34.22 is installed
  • OR nfs-kernel-server-1.3.0-34.22 is installed
  • OR nfs-utils-1.3.0-34.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • nfs-client-1.3.0-34.22 is installed
  • OR nfs-doc-1.3.0-34.22 is installed
  • OR nfs-kernel-server-1.3.0-34.22 is installed
  • OR nfs-utils-1.3.0-34.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • ceph-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR ceph-common-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR libcephfs2-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR librados2-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR libradosstriper1-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR librbd1-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR librgw2-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR python-cephfs-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR python-rados-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR python-rbd-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR python-rgw-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • apache2-2.4.23-29.24 is installed
  • OR apache2-doc-2.4.23-29.24 is installed
  • OR apache2-example-pages-2.4.23-29.24 is installed
  • OR apache2-prefork-2.4.23-29.24 is installed
  • OR apache2-utils-2.4.23-29.24 is installed
  • OR apache2-worker-2.4.23-29.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • nodejs10-10.21.0-1.21 is installed
  • OR nodejs10-devel-10.21.0-1.21 is installed
  • OR nodejs10-docs-10.21.0-1.21 is installed
  • OR npm10-10.21.0-1.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.6 is installed
  • OR kernel-default-extra-4.12.14-25.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • grafana-4.5.1-1.8 is installed
  • OR kafka-0.10.2.2-5 is installed
  • OR logstash-2.4.1-5 is installed
  • OR monasca-installer-20180608_12.47-9 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND python-Twisted-15.2.1-9.5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ruby2.1-rubygem-activejob-4_2-4.2.9-3.6 is installed
  • OR rubygem-activejob-4_2-4.2.9-3.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Django1-1.11.23-3.9 is installed
    • BACK