Oval Definition:oval:org.opensuse.security:def:51488
Revision Date:2020-12-01Version:1
Title:Security update for osc (Moderate)
Description:

This update for osc to 0.169.1 fixes the following issues:

Security issue fixed:

- CVE-2019-3681: Fixed an insufficient validation of network-controlled filesystem paths (bsc#1122675).

Non-security issues fixed:

- Improved the speed and usability of osc bash completion. - improved some error messages. - osc add: support git@ (private github) or git:// URLs correctly. - Split dependson and whatdependson commands. - Added support for osc build --shell-cmd. - Added pkg-ccache support for osc build. - Added --ccache option to osc getbinaries
Family:unixClass:patch
Status:Reference(s):1051510
1055014
1055857
1059893
1061843
1065600
1065729
1066382
1071995
1074701
1076530
1077428
1083548
1085030
1085235
1085308
1087078
1087082
1094912
1096368
1100394
1102640
1104967
1105412
1105606
1106699
1111666
1112178
1113956
1120163
1120943
1122675
1131277
1133021
1134760
1137595
1138872
1144333
1144903
1152107
1152148
1153108
1153158
1153161
1158755
1160770
1162002
1163524
1164903
1165629
1166965
1167462
1169511
1169790
1170011
1170232
1170415
1171078
1171475
1171558
1171673
1171688
1171732
1171847
1171868
1171988
1172073
1172105
1172108
1172116
1172121
1172247
1172257
1172418
1172428
1172775
1172781
1172782
1172783
1172871
1172872
1172873
1172963
1172999
1173265
1173280
1173432
1173485
1173514
1173567
1173573
1173659
1173798
1173954
1173999
1174000
1174003
1174026
1174070
1174115
1174161
1174205
1174387
1174462
1174484
1174543
1174547
1174549
1174550
1174625
1174658
1174685
1174689
1174699
1174734
1174748
1174757
1174771
1174840
1174841
1174843
1174844
1174845
1174852
1174873
1174887
1174904
1174926
1174968
1175062
1175063
1175064
1175065
1175066
1175067
1175112
1175127
1175128
1175149
1175199
1175213
1175228
1175232
1175284
1175393
1175394
1175396
1175397
1175398
1175399
1175400
1175401
1175402
1175403
1175404
1175405
1175406
1175407
1175408
1175409
1175410
1175411
1175412
1175413
1175414
1175415
1175416
1175417
1175418
1175419
1175420
1175421
1175422
1175423
1175440
1175493
1175515
1175518
1175526
1175550
1175654
1175666
1175667
1175668
1175669
1175670
1175767
1175768
1175769
1175770
1175771
1175772
1175786
1175873
1176031
1176072
1176354
1176382
1176485
1176560
1176713
1176723
1177086
1177101
1177271
1177281
1177410
1177411
1177470
1177687
1177719
1177740
1177749
1177750
1177753
1177754
1177755
1177766
1177855
1177856
1177861
1178003
1178027
1178166
1178185
1178187
1178188
1178202
1178234
1178330
CVE-2009-0159
CVE-2009-1252
CVE-2009-2694
CVE-2009-2703
CVE-2009-3026
CVE-2009-3083
CVE-2009-3084
CVE-2009-3085
CVE-2009-3297
CVE-2009-3615
CVE-2010-0013
CVE-2010-0277
CVE-2010-0420
CVE-2010-0423
CVE-2010-1624
CVE-2010-2528
CVE-2010-3711
CVE-2011-0541
CVE-2011-1091
CVE-2011-3594
CVE-2011-3848
CVE-2011-3872
CVE-2012-2214
CVE-2012-3374
CVE-2012-3864
CVE-2012-3865
CVE-2012-3866
CVE-2012-3867
CVE-2012-6152
CVE-2013-0271
CVE-2013-0272
CVE-2013-0273
CVE-2013-0274
CVE-2013-3567
CVE-2013-4761
CVE-2013-4956
CVE-2013-5211
CVE-2013-6477
CVE-2013-6478
CVE-2013-6479
CVE-2013-6481
CVE-2013-6482
CVE-2013-6483
CVE-2013-6484
CVE-2013-6485
CVE-2013-6486
CVE-2013-6487
CVE-2014-0020
CVE-2014-3248
CVE-2014-3253
CVE-2014-3618
CVE-2014-9293
CVE-2014-9294
CVE-2014-9295
CVE-2014-9296
CVE-2014-9297
CVE-2014-9298
CVE-2015-1798
CVE-2015-1799
CVE-2015-3202
CVE-2015-3405
CVE-2015-7691
CVE-2015-7692
CVE-2015-7701
CVE-2015-7702
CVE-2015-7703
CVE-2015-7704
CVE-2015-7705
CVE-2015-7848
CVE-2015-7849
CVE-2015-7850
CVE-2015-7851
CVE-2015-7852
CVE-2015-7853
CVE-2015-7854
CVE-2015-7855
CVE-2015-7871
CVE-2016-6328
CVE-2017-15134
CVE-2017-15135
CVE-2017-7544
CVE-2018-10850
CVE-2018-10935
CVE-2018-14624
CVE-2018-20030
CVE-2019-10220
CVE-2019-11703
CVE-2019-11704
CVE-2019-11705
CVE-2019-11706
CVE-2019-11707
CVE-2019-11708
CVE-2019-16746
CVE-2019-17133
CVE-2019-20908
CVE-2019-3681
CVE-2019-9278
CVE-2020-0093
CVE-2020-0305
CVE-2020-0430
CVE-2020-10135
CVE-2020-10766
CVE-2020-10767
CVE-2020-10768
CVE-2020-10769
CVE-2020-10773
CVE-2020-12767
CVE-2020-12771
CVE-2020-12888
CVE-2020-13112
CVE-2020-13113
CVE-2020-13114
CVE-2020-13974
CVE-2020-14314
CVE-2020-14331
CVE-2020-14351
CVE-2020-14356
CVE-2020-14386
CVE-2020-14416
CVE-2020-15393
CVE-2020-15780
CVE-2020-16120
CVE-2020-16166
CVE-2020-1749
CVE-2020-24394
CVE-2020-24553
CVE-2020-25212
CVE-2020-25285
CVE-2020-25656
CVE-2020-2754
CVE-2020-2755
CVE-2020-2756
CVE-2020-2757
CVE-2020-2767
CVE-2020-27673
CVE-2020-27675
CVE-2020-2773
CVE-2020-2778
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2816
CVE-2020-2830
CVE-2020-8694
SUSE-SU-2019:1207-1
SUSE-SU-2019:1683-1
SUSE-SU-2019:2829-1
SUSE-SU-2020:1511-1
SUSE-SU-2020:1553-2
SUSE-SU-2020:1695-1
SUSE-SU-2020:2541-1
SUSE-SU-2020:2761-1
SUSE-SU-2020:3186-1
Platform(s):openSUSE Leap 15.0
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1
SUSE Linux Enterprise Module for Development Tools 15 SP1
SUSE Linux Enterprise Module for Development Tools 15 SP2
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Live Patching 15 SP2
SUSE Linux Enterprise Module for Public Cloud 15 SP1
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Workstation Extension 15
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libopus0-1.2.1-lp150.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-38.2.1esr-19 is installed
  • OR MozillaFirefox-branding-SLED-31.0-0.12 is installed
  • OR MozillaFirefox-translations-38.2.1esr-19 is installed
  • OR libfreebl3-3.19.2.0-0.16 is installed
  • OR libfreebl3-32bit-3.19.2.0-0.16 is installed
  • OR libsoftokn3-3.19.2.0-0.16 is installed
  • OR libsoftokn3-32bit-3.19.2.0-0.16 is installed
  • OR mozilla-nss-3.19.2.0-0.16 is installed
  • OR mozilla-nss-32bit-3.19.2.0-0.16 is installed
  • OR mozilla-nss-tools-3.19.2.0-0.16 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • MozillaFirefox-38.4.0esr-25 is installed
  • OR MozillaFirefox-branding-SLED-38-15 is installed
  • OR MozillaFirefox-translations-38.4.0esr-25 is installed
  • OR libfreebl3-3.19.2.1-19 is installed
  • OR libfreebl3-32bit-3.19.2.1-19 is installed
  • OR libsoftokn3-3.19.2.1-19 is installed
  • OR libsoftokn3-32bit-3.19.2.1-19 is installed
  • OR mozilla-nspr-4.10.10-16 is installed
  • OR mozilla-nspr-32bit-4.10.10-16 is installed
  • OR mozilla-nss-3.19.2.1-19 is installed
  • OR mozilla-nss-32bit-3.19.2.1-19 is installed
  • OR mozilla-nss-tools-3.19.2.1-19 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • finch-2.10.9-5 is installed
  • OR libpurple-2.10.9-5 is installed
  • OR libpurple-lang-2.10.9-5 is installed
  • OR libpurple-meanwhile-2.10.9-5 is installed
  • OR libpurple-tcl-2.10.9-5 is installed
  • OR pidgin-2.10.9-5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • fuse-2.9.3-5 is installed
  • OR libfuse2-2.9.3-5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • libQt5WebKit5-5.6.1-9 is installed
  • OR libQt5WebKit5-imports-5.6.1-9 is installed
  • OR libQt5WebKitWidgets5-5.6.1-9 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND hyper-v-7-13 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • MozillaFirefox-52.9.0esr-109.38 is installed
  • OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed
  • AND Package Information
  • libexif-0.6.22-5.6 is installed
  • OR libexif12-32bit-0.6.22-5.6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed
  • AND osc-0.169.1-3.20 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed
  • AND Package Information
  • go1.14-1.14.9-1.18 is installed
  • OR go1.14-doc-1.14.9-1.18 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-197_10-default-3-2 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_3-3-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed
  • AND Package Information
  • kernel-livepatch-5_3_18-24_12-default-2-2 is installed
  • OR kernel-livepatch-SLE15-SP2_Update_2-2-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed
  • AND Package Information
  • kernel-azure-4.12.14-8.41 is installed
  • OR kernel-azure-base-4.12.14-8.41 is installed
  • OR kernel-azure-devel-4.12.14-8.41 is installed
  • OR kernel-devel-azure-4.12.14-8.41 is installed
  • OR kernel-source-azure-4.12.14-8.41 is installed
  • OR kernel-syms-azure-4.12.14-8.41 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • 389-ds-1.4.0.3-4.7 is installed
  • OR 389-ds-devel-1.4.0.3-4.7 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • colord-gtk-lang-0.1.25-3 is installed
  • OR libcolord-gtk1-0.1.25-3 is installed
  • OR libcolord2-1.1.7-5 is installed
  • OR libcolord2-32bit-1.1.7-5 is installed
  • OR libcolorhug2-1.1.7-5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • libecpg6-9.6.4-3.6 is installed
  • OR libpq5-9.6.4-3.6 is installed
  • OR libpq5-32bit-9.6.4-3.6 is installed
  • OR postgresql96-9.6.4-3.6 is installed
  • OR postgresql96-contrib-9.6.4-3.6 is installed
  • OR postgresql96-docs-9.6.4-3.6 is installed
  • OR postgresql96-libs-9.6.4-3.6 is installed
  • OR postgresql96-server-9.6.4-3.6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND ipsec-tools-0.8.0-15 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • MozillaFirefox-52.9.0esr-109.38 is installed
  • OR MozillaFirefox-devel-52.9.0esr-109.38 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • glibc-2.22-62.13 is installed
  • OR glibc-32bit-2.22-62.13 is installed
  • OR glibc-devel-2.22-62.13 is installed
  • OR glibc-devel-32bit-2.22-62.13 is installed
  • OR glibc-html-2.22-62.13 is installed
  • OR glibc-i18ndata-2.22-62.13 is installed
  • OR glibc-info-2.22-62.13 is installed
  • OR glibc-locale-2.22-62.13 is installed
  • OR glibc-locale-32bit-2.22-62.13 is installed
  • OR glibc-profile-2.22-62.13 is installed
  • OR glibc-profile-32bit-2.22-62.13 is installed
  • OR nscd-2.22-62.13 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_103-92_53-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_16-6-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • bash-4.3-82 is installed
  • OR bash-doc-4.3-82 is installed
  • OR libreadline6-6.3-82 is installed
  • OR libreadline6-32bit-6.3-82 is installed
  • OR readline-doc-6.3-82 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.50-38.41 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_103-default-4-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_28-4-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libspice-client-glib-2_0-8-0.33-3.6 is installed
  • OR libspice-client-glib-helper-0.33-3.6 is installed
  • OR libspice-client-gtk-3_0-5-0.33-3.6 is installed
  • OR libspice-controller0-0.33-3.6 is installed
  • OR spice-gtk-0.33-3.6 is installed
  • OR typelib-1_0-SpiceClientGlib-2_0-0.33-3.6 is installed
  • OR typelib-1_0-SpiceClientGtk-3_0-0.33-3.6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • cups-1.7.5-20.17 is installed
  • OR cups-client-1.7.5-20.17 is installed
  • OR cups-libs-1.7.5-20.17 is installed
  • OR cups-libs-32bit-1.7.5-20.17 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • java-11-openjdk-11.0.7.0-3.42 is installed
  • OR java-11-openjdk-demo-11.0.7.0-3.42 is installed
  • OR java-11-openjdk-devel-11.0.7.0-3.42 is installed
  • OR java-11-openjdk-headless-11.0.7.0-3.42 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-150.55 is installed
  • OR kernel-default-base-4.12.14-150.55 is installed
  • OR kernel-default-devel-4.12.14-150.55 is installed
  • OR kernel-devel-4.12.14-150.55 is installed
  • OR kernel-docs-4.12.14-150.55 is installed
  • OR kernel-macros-4.12.14-150.55 is installed
  • OR kernel-obs-build-4.12.14-150.55 is installed
  • OR kernel-source-4.12.14-150.55 is installed
  • OR kernel-syms-4.12.14-150.55 is installed
  • OR kernel-vanilla-4.12.14-150.55 is installed
  • OR kernel-vanilla-base-4.12.14-150.55 is installed
  • OR reiserfs-kmp-default-4.12.14-150.55 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • MozillaThunderbird-60.7.2-3.43 is installed
  • OR MozillaThunderbird-translations-common-60.7.2-3.43 is installed
  • OR MozillaThunderbird-translations-other-60.7.2-3.43 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND python-pycrypto-2.6.1-2 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • res-signingkeys-3.0.38-52.26 is installed
  • OR smt-3.0.38-52.26 is installed
  • OR smt-support-3.0.38-52.26 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • ardana-monasca-8.0+git.1535031421.9262a47-3.12 is installed
  • OR ardana-spark-8.0+git.1534267176.a5f3a22-3.6 is installed
  • OR kafka-0.10.2.2-5.6 is installed
  • OR openstack-monasca-api-2.2.1~dev24-3.6 is installed
  • OR python-monasca-api-2.2.1~dev24-3.6 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.50-38.41 is installed
  • BACK