OVAL Reference oval:org.opensuse.security:def:51511

Oval Definition:

oval:org.opensuse.security:def:51511

Revision Date:	2020-12-01	Version:	1
Title:	Security update for binutils (Moderate)
Description:	This update for binutils fixes the following issues: binutils was updated to version 2.35. (jsc#ECO-2373) Update to binutils 2.35: The assembler can now produce DWARF-5 format line number tables. * Readelf now has a 'lint' mode to enable extra checks of the files it is processing. * Readelf will now display '[...]' when it has to truncate a symbol name. The old behaviour - of displaying as many characters as possible, up to the 80 column limit - can be restored by the use of the --silent-truncation option. * The linker can now produce a dependency file listing the inputs that it has processed, much like the -M -MP option supported by the compiler. - fix DT_NEEDED order with -flto [bsc#1163744] Update to binutils 2.34: The disassembler (objdump --disassemble) now has an option to generate ascii art thats show the arcs between that start and end points of control flow instructions. * The binutils tools now have support for debuginfod. Debuginfod is a HTTP service for distributing ELF/DWARF debugging information as well as source code. The tools can now connect to debuginfod servers in order to download debug information about the files that they are processing. * The assembler and linker now support the generation of ELF format files for the Z80 architecture. - Add new subpackages for libctf and libctf-nobfd. - Disable LTO due to bsc#1163333. - Includes fixes for these CVEs: bsc#1153768 aka CVE-2019-17451 aka PR25070 bsc#1153770 aka CVE-2019-17450 aka PR25078 - fix various build fails on aarch64 (PR25210, bsc#1157755). Update to binutils 2.33.1: Adds support for the Arm Scalable Vector Extension version 2 (SVE2) instructions, the Arm Transactional Memory Extension (TME) instructions and the Armv8.1-M Mainline and M-profile Vector Extension (MVE) instructions. * Adds support for the Arm Cortex-A76AE, Cortex-A77 and Cortex-M35P processors and the AArch64 Cortex-A34, Cortex-A65, Cortex-A65AE, Cortex-A76AE, and Cortex-A77 processors. * Adds a .float16 directive for both Arm and AArch64 to allow encoding of 16-bit floating point literals. * For MIPS, Add -m[no-]fix-loongson3-llsc option to fix (or not) Loongson3 LLSC Errata. Add a --enable-mips-fix-loongson3-llsc=[yes\|no] configure time option to set the default behavior. Set the default if the configure option is not used to 'no'. * The Cortex-A53 Erratum 843419 workaround now supports a choice of which workaround to use. The option --fix-cortex-a53-843419 now takes an optional argument --fix-cortex-a53-843419[=full\|adr\|adrp] which can be used to force a particular workaround to be used. See --help for AArch64 for more details. * Add support for GNU_PROPERTY_AARCH64_FEATURE_1_BTI and GNU_PROPERTY_AARCH64_FEATURE_1_PAC in ELF GNU program properties in the AArch64 ELF linker. * Add -z force-bti for AArch64 to enable GNU_PROPERTY_AARCH64_FEATURE_1_BTI on output while warning about missing GNU_PROPERTY_AARCH64_FEATURE_1_BTI on inputs and use PLTs protected with BTI. * Add -z pac-plt for AArch64 to pick PAC enabled PLTs. * Add --source-comment[=] option to objdump which if present, provides a prefix to source code lines displayed in a disassembly. * Add --set-section-alignment = option to objcopy to allow the changing of section alignments. * Add --verilog-data-width option to objcopy for verilog targets to control width of data elements in verilog hex format. * The separate debug info file options of readelf (--debug-dump=links and --debug-dump=follow) and objdump (--dwarf=links and --dwarf=follow-links) will now display and/or follow multiple links if more than one are present in a file. (This usually happens when gcc's -gsplit-dwarf option is used). In addition objdump's --dwarf=follow-links now also affects its other display options, so that for example, when combined with --syms it will cause the symbol tables in any linked debug info files to also be displayed. In addition when combined with --disassemble the --dwarf= follow-links option will ensure that any symbol tables in the linked files are read and used when disassembling code in the main file. * Add support for dumping types encoded in the Compact Type Format to objdump and readelf. - Includes fixes for these CVEs: bsc#1126826 aka CVE-2019-9077 aka PR1126826 bsc#1126829 aka CVE-2019-9075 aka PR1126829 bsc#1126831 aka CVE-2019-9074 aka PR24235 bsc#1140126 aka CVE-2019-12972 aka PR23405 bsc#1143609 aka CVE-2019-14444 aka PR24829 bsc#1142649 aka CVE-2019-14250 aka PR90924 Add xBPF target * Fix various problems with DWARF 5 support in gas * fix nm -B for objects compiled with -flto and -fcommon.
Family:	unix	Class:	patch
Status:		Reference(s):	1050305 1088263 1091606 1094779 1095601 1095639 1096360 1098891 1103678 1104876 1119105 1122983 1126826 1126829 1126831 1133624 1133625 1137001 1140126 1142649 1143609 1145559 1149203 1153768 1153770 1157755 1159913 1160254 1160590 1160790 1161088 1161089 1161670 1163333 1163744 1165631 1171252 1171254 1172698 1172704 1176409 1176412 CVE-2004-0801 CVE-2010-1163 CVE-2010-1646 CVE-2010-4267 CVE-2011-0010 CVE-2011-2697 CVE-2011-2722 CVE-2011-3848 CVE-2011-3872 CVE-2011-4182 CVE-2012-2337 CVE-2012-3864 CVE-2012-3865 CVE-2012-3866 CVE-2012-3867 CVE-2013-1775 CVE-2013-1776 CVE-2013-3567 CVE-2013-4325 CVE-2013-4761 CVE-2013-4956 CVE-2013-6402 CVE-2013-6427 CVE-2014-3248 CVE-2014-3253 CVE-2014-9654 CVE-2016-5824 CVE-2018-10583 CVE-2018-12405 CVE-2018-17466 CVE-2018-18492 CVE-2018-18493 CVE-2018-18494 CVE-2018-18498 CVE-2018-18500 CVE-2018-18501 CVE-2018-18505 CVE-2019-11494 CVE-2019-11499 CVE-2019-11500 CVE-2019-12450 CVE-2019-12972 CVE-2019-14250 CVE-2019-14444 CVE-2019-16785 CVE-2019-16786 CVE-2019-16789 CVE-2019-16792 CVE-2019-17450 CVE-2019-17451 CVE-2019-5108 CVE-2019-6446 CVE-2019-9074 CVE-2019-9075 CVE-2019-9077 CVE-2020-12653 CVE-2020-12654 CVE-2020-14392 CVE-2020-14393 CVE-2020-1749 CVE-2020-8023 SUSE-SU-2018:3683-1 SUSE-SU-2019:0338-1 SUSE-SU-2019:1594-1 SUSE-SU-2019:2462-2 SUSE-SU-2020:1856-1 SUSE-SU-2020:2645-1 SUSE-SU-2020:3060-1 SUSE-SU-2020:3269-1
Platform(s):	openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND libraw16-0.18.9-lp150.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information gnutls-2.4.1-24.39.60 is installed OR libgnutls26-2.4.1-24.39.60 is installed OR libgnutls26-32bit-2.4.1-24.39.60 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information gtk2-2.18.9-0.39 is installed OR gtk2-32bit-2.18.9-0.39 is installed OR gtk2-lang-2.18.9-0.39 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information hplip-3.14.6-3 is installed OR hplip-hpijs-3.14.6-3 is installed OR hplip-sane-3.14.6-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information icu-52.1-7 is installed OR libicu52_1-52.1-7 is installed OR libicu52_1-32bit-52.1-7 is installed OR libicu52_1-data-52.1-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND libdcerpc-atsvc0-4.2.4-26 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libXcursor1-1.1.14-3 is installed OR libXcursor1-32bit-1.1.14-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information colord-1.3.3-12 is installed OR colord-gtk-lang-0.1.26-6 is installed OR colord-lang-1.3.3-12 is installed OR libcolord-gtk1-0.1.26-6 is installed OR libcolord2-1.3.3-12 is installed OR libcolord2-32bit-1.3.3-12 is installed OR libcolorhug2-1.3.3-12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information glib2-2.54.3-4.15 is installed OR glib2-devel-32bit-2.54.3-4.15 is installed OR glib2-tools-32bit-2.54.3-4.15 is installed OR libgthread-2_0-0-32bit-2.54.3-4.15 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information python-waitress-1.4.3-3.3 is installed OR python2-waitress-1.4.3-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND Package Information binutils-2.35-7.11 is installed OR binutils-devel-32bit-2.35-7.11 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_21-default-6-2 is installed OR kernel-livepatch-SLE15-SP1_Update_6-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information libepubgen-0.1.1-3.3 is installed OR libepubgen-devel-doc-0.1.1-3.3 is installed OR liblangtag-0.6.2-3.3 is installed OR liblangtag-doc-0.6.2-3.3 is installed OR libmwaw-0.3.14-4.3 is installed OR libmwaw-devel-0.3.14-4.3 is installed OR libmwaw-devel-doc-0.3.14-4.3 is installed OR libmwaw-tools-0.3.14-4.3 is installed OR libstaroffice-0.0.6-3.3 is installed OR libstaroffice-devel-0.0.6-3.3 is installed OR libstaroffice-devel-doc-0.0.6-3.3 is installed OR libstaroffice-tools-0.0.6-3.3 is installed OR libwps-0.4.9-3.3 is installed OR libwps-tools-0.4.9-3.3 is installed OR libxmlsec1-gcrypt1-1.2.26-3.3 is installed OR libxmlsec1-gnutls1-1.2.26-3.3 is installed OR libxmlsec1-openssl1-1.2.26-3.3 is installed OR myspell-af_NA-20181025-3.6 is installed OR myspell-an-20181025-3.6 is installed OR myspell-an_ES-20181025-3.6 is installed OR myspell-ar_AE-20181025-3.6 is installed OR myspell-ar_BH-20181025-3.6 is installed OR myspell-ar_DZ-20181025-3.6 is installed OR myspell-ar_EG-20181025-3.6 is installed OR myspell-ar_IQ-20181025-3.6 is installed OR myspell-ar_JO-20181025-3.6 is installed OR myspell-ar_KW-20181025-3.6 is installed OR myspell-ar_LB-20181025-3.6 is installed OR myspell-ar_LY-20181025-3.6 is installed OR myspell-ar_MA-20181025-3.6 is installed OR myspell-ar_OM-20181025-3.6 is installed OR myspell-ar_QA-20181025-3.6 is installed OR myspell-ar_SA-20181025-3.6 is installed OR myspell-ar_SD-20181025-3.6 is installed OR myspell-ar_SY-20181025-3.6 is installed OR myspell-ar_TN-20181025-3.6 is installed OR myspell-ar_YE-20181025-3.6 is installed OR myspell-be_BY-20181025-3.6 is installed OR myspell-bn_IN-20181025-3.6 is installed OR myspell-bo-20181025-3.6 is installed OR myspell-bo_CN-20181025-3.6 is installed OR myspell-bo_IN-20181025-3.6 is installed OR myspell-bs-20181025-3.6 is installed OR myspell-bs_BA-20181025-3.6 is installed OR myspell-ca_AD-20181025-3.6 is installed OR myspell-ca_ES-20181025-3.6 is installed OR myspell-ca_ES_valencia-20181025-3.6 is installed OR myspell-ca_FR-20181025-3.6 is installed OR myspell-ca_IT-20181025-3.6 is installed OR myspell-de_AT-20181025-3.6 is installed OR myspell-de_CH-20181025-3.6 is installed OR myspell-dictionaries-20181025-3.6 is installed OR myspell-en_AU-20181025-3.6 is installed OR myspell-en_BS-20181025-3.6 is installed OR myspell-en_BZ-20181025-3.6 is installed OR myspell-en_CA-20181025-3.6 is installed OR myspell-en_GB-20181025-3.6 is installed OR myspell-en_GH-20181025-3.6 is installed OR myspell-en_IE-20181025-3.6 is installed OR myspell-en_IN-20181025-3.6 is installed OR myspell-en_JM-20181025-3.6 is installed OR myspell-en_MW-20181025-3.6 is installed OR myspell-en_NA-20181025-3.6 is installed OR myspell-en_NZ-20181025-3.6 is installed OR myspell-en_PH-20181025-3.6 is installed OR myspell-en_TT-20181025-3.6 is installed OR myspell-en_ZA-20181025-3.6 is installed OR myspell-en_ZW-20181025-3.6 is installed OR myspell-es_AR-20181025-3.6 is installed OR myspell-es_BO-20181025-3.6 is installed OR myspell-es_CL-20181025-3.6 is installed OR myspell-es_CO-20181025-3.6 is installed OR myspell-es_CR-20181025-3.6 is installed OR myspell-es_CU-20181025-3.6 is installed OR myspell-es_DO-20181025-3.6 is installed OR myspell-es_EC-20181025-3.6 is installed OR myspell-es_GT-20181025-3.6 is installed OR myspell-es_HN-20181025-3.6 is installed OR myspell-es_MX-20181025-3.6 is installed OR myspell-es_NI-20181025-3.6 is installed OR myspell-es_PA-20181025-3.6 is installed OR myspell-es_PE-20181025-3.6 is installed OR myspell-es_PR-20181025-3.6 is installed OR myspell-es_PY-20181025-3.6 is installed OR myspell-es_SV-20181025-3.6 is installed OR myspell-es_UY-20181025-3.6 is installed OR myspell-es_VE-20181025-3.6 is installed OR myspell-fr_BE-20181025-3.6 is installed OR myspell-fr_CA-20181025-3.6 is installed OR myspell-fr_CH-20181025-3.6 is installed OR myspell-fr_LU-20181025-3.6 is installed OR myspell-fr_MC-20181025-3.6 is installed OR myspell-gd_GB-20181025-3.6 is installed OR myspell-gl_ES-20181025-3.6 is installed OR myspell-gug-20181025-3.6 is installed OR myspell-gug_PY-20181025-3.6 is installed OR myspell-is-20181025-3.6 is installed OR myspell-is_IS-20181025-3.6 is installed OR myspell-kmr_Latn-20181025-3.6 is installed OR myspell-kmr_Latn_SY-20181025-3.6 is installed OR myspell-kmr_Latn_TR-20181025-3.6 is installed OR myspell-lo_LA-20181025-3.6 is installed OR myspell-ne_NP-20181025-3.6 is installed OR myspell-nl_BE-20181025-3.6 is installed OR myspell-nn_NO-20181025-3.6 is installed OR myspell-oc_FR-20181025-3.6 is installed OR myspell-pt_AO-20181025-3.6 is installed OR myspell-sq_AL-20181025-3.6 is installed OR myspell-sr_CS-20181025-3.6 is installed OR myspell-sr_Latn_CS-20181025-3.6 is installed OR myspell-sr_Latn_RS-20181025-3.6 is installed OR myspell-sr_RS-20181025-3.6 is installed OR myspell-sv_FI-20181025-3.6 is installed OR myspell-sw_TZ-20181025-3.6 is installed OR myspell-te-20181025-3.6 is installed OR myspell-vi-20181025-3.6 is installed OR myspell-vi_VN-20181025-3.6 is installed OR xmlsec1-1.2.26-3.3 is installed OR xmlsec1-gcrypt-devel-1.2.26-3.3 is installed OR xmlsec1-gnutls-devel-1.2.26-3.3 is installed OR xmlsec1-openssl-devel-1.2.26-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python-numpy-1.16.1-4.8 is installed OR python2-numpy-1.16.1-4.8 is installed OR python2-numpy-devel-1.16.1-4.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information dovecot23-2.3.3-4.18 is installed OR dovecot23-backend-mysql-2.3.3-4.18 is installed OR dovecot23-backend-pgsql-2.3.3-4.18 is installed OR dovecot23-backend-sqlite-2.3.3-4.18 is installed OR dovecot23-devel-2.3.3-4.18 is installed OR dovecot23-fts-2.3.3-4.18 is installed OR dovecot23-fts-lucene-2.3.3-4.18 is installed OR dovecot23-fts-solr-2.3.3-4.18 is installed OR dovecot23-fts-squat-2.3.3-4.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information evince-3.10.3-1 is installed OR evince-lang-3.10.3-1 is installed OR libevdocument3-4-3.10.3-1 is installed OR libevview3-3-3.10.3-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information apache2-2.4.16-20.13 is installed OR apache2-doc-2.4.16-20.13 is installed OR apache2-example-pages-2.4.16-20.13 is installed OR apache2-prefork-2.4.16-20.13 is installed OR apache2-utils-2.4.16-20.13 is installed OR apache2-worker-2.4.16-20.13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND ucode-intel-20180425-13.20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND ucode-intel-20180807-13.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_35-default-10-2 is installed OR kgraft-patch-SLE12-SP2_Update_12-10-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND davfs2-1.5.2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND sudo-1.8.20p2-3.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libshibsp-lite6-2.5.5-6.6 is installed OR libshibsp6-2.5.5-6.6 is installed OR shibboleth-sp-2.5.5-6.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND unzip-6.00-33.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libldap-2_4-2-2.4.46-9.31 is installed OR libldap-2_4-2-32bit-2.4.46-9.31 is installed OR libldap-data-2.4.46-9.31 is installed OR openldap2-2.4.46-9.31 is installed OR openldap2-back-meta-2.4.46-9.31 is installed OR openldap2-back-perl-2.4.46-9.31 is installed OR openldap2-client-2.4.46-9.31 is installed OR openldap2-devel-2.4.46-9.31 is installed OR openldap2-devel-32bit-2.4.46-9.31 is installed OR openldap2-devel-static-2.4.46-9.31 is installed OR openldap2-ppolicy-check-password-1.2-9.31 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND perl-DBI-1.639-3.8 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-60.5.0-3.20 is installed OR MozillaThunderbird-translations-common-60.5.0-3.20 is installed OR MozillaThunderbird-translations-other-60.5.0-3.20 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information containerd-0.2.4+gitr565_0366d7e-9 is installed OR docker-1.12.3-81 is installed OR runc-0.1.1+gitr2816_02f8fa7-9 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information openstack-glance-13.0.1~a0~dev6-4.3 is installed OR openstack-glance-api-13.0.1~a0~dev6-4.3 is installed OR openstack-glance-doc-13.0.1~a0~dev6-4.3 is installed OR openstack-glance-glare-13.0.1~a0~dev6-4.3 is installed OR openstack-glance-registry-13.0.1~a0~dev6-4.3 is installed OR python-glance-13.0.1~a0~dev6-4.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND squid-3.5.21-26.17 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND python-Django1-1.11.20-3.6 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-sprockets-2_12-2.12.5-1.4 is installed OR rubygem-sprockets-2_12-2.12.5-1.4 is installed

BACK