OVAL Reference oval:org.opensuse.security:def:5153

Oval Definition:

oval:org.opensuse.security:def:5153

Revision Date:	2021-11-18	Version:	1
Title:	Security update for php74 (Moderate)
Description:	This update for php74 fixes the following issues: - CVE-2021-21703: Fixed local privilege escalation via PHP-FPM (bsc#1192050).
Family:	unix	Class:	patch
Status:		Reference(s):	1154862 1170771 1192050 CVE-2009-1892 CVE-2009-3939 CVE-2009-4026 CVE-2009-4027 CVE-2009-4131 CVE-2009-4138 CVE-2009-4536 CVE-2009-4538 CVE-2010-0405 CVE-2010-1146 CVE-2010-1205 CVE-2010-1436 CVE-2010-1641 CVE-2010-2066 CVE-2010-2156 CVE-2010-2942 CVE-2010-2954 CVE-2010-2955 CVE-2010-3081 CVE-2010-3296 CVE-2010-3297 CVE-2010-3298 CVE-2010-3301 CVE-2010-3310 CVE-2010-3611 CVE-2010-3616 CVE-2011-0020 CVE-2011-0064 CVE-2011-0413 CVE-2011-0712 CVE-2011-0997 CVE-2011-1020 CVE-2011-1577 CVE-2011-2203 CVE-2011-2501 CVE-2011-2690 CVE-2011-2691 CVE-2011-2692 CVE-2011-2721 CVE-2011-2748 CVE-2011-2749 CVE-2011-3177 CVE-2011-3328 CVE-2011-3627 CVE-2011-3630 CVE-2011-3631 CVE-2011-3632 CVE-2011-4539 CVE-2011-4868 CVE-2012-0037 CVE-2012-0056 CVE-2012-1457 CVE-2012-1458 CVE-2012-1459 CVE-2012-2372 CVE-2012-3570 CVE-2012-3571 CVE-2012-3954 CVE-2012-3955 CVE-2012-5112 CVE-2012-5133 CVE-2013-0157 CVE-2013-0160 CVE-2013-0231 CVE-2013-0913 CVE-2013-1981 CVE-2013-1986 CVE-2013-1997 CVE-2013-2004 CVE-2013-2266 CVE-2013-2850 CVE-2013-4587 CVE-2013-6367 CVE-2013-6368 CVE-2013-6376 CVE-2013-6405 CVE-2013-6497 CVE-2013-6954 CVE-2014-0004 CVE-2014-00691 CVE-2014-0102 CVE-2014-0131 CVE-2014-0196 CVE-2014-0333 CVE-2014-1344 CVE-2014-1384 CVE-2014-1385 CVE-2014-1386 CVE-2014-1387 CVE-2014-1388 CVE-2014-1389 CVE-2014-1390 CVE-2014-2523 CVE-2014-2568 CVE-2014-3185 CVE-2014-3534 CVE-2014-3610 CVE-2014-3611 CVE-2014-3647 CVE-2014-3673 CVE-2014-3687 CVE-2014-3690 CVE-2014-3917 CVE-2014-3940 CVE-2014-4171 CVE-2014-4608 CVE-2014-4652 CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 CVE-2014-4656 CVE-2014-4699 CVE-2014-4943 CVE-2014-5045 CVE-2014-5077 CVE-2014-5206 CVE-2014-5207 CVE-2014-5471 CVE-2014-5472 CVE-2014-7822 CVE-2014-7826 CVE-2014-7841 CVE-2014-8086 CVE-2014-8133 CVE-2014-8159 CVE-2014-8160 CVE-2014-8559 CVE-2014-8709 CVE-2014-9050 CVE-2014-9090 CVE-2014-9328 CVE-2014-9419 CVE-2014-9420 CVE-2014-9495 CVE-2014-9584 CVE-2014-9585 CVE-2014-9728 CVE-2014-9729 CVE-2014-9730 CVE-2014-9731 CVE-2015-0272 CVE-2015-0777 CVE-2015-0973 CVE-2015-1461 CVE-2015-1462 CVE-2015-1463 CVE-2015-1465 CVE-2015-1805 CVE-2015-2041 CVE-2015-2042 CVE-2015-2150 CVE-2015-2170 CVE-2015-2221 CVE-2015-2222 CVE-2015-2305 CVE-2015-2330 CVE-2015-2666 CVE-2015-2668 CVE-2015-2830 CVE-2015-2922 CVE-2015-3212 CVE-2015-3331 CVE-2015-3332 CVE-2015-3339 CVE-2015-3636 CVE-2015-4036 CVE-2015-4167 CVE-2015-4692 CVE-2015-5156 CVE-2015-5157 CVE-2015-5283 CVE-2015-5307 CVE-2015-5364 CVE-2015-5366 CVE-2015-6252 CVE-2015-6937 CVE-2015-7613 CVE-2015-8104 CVE-2019-17498 CVE-2020-12243 CVE-2021-21703 SUSE-SU-2019:2900-2 SUSE-SU-2020:1219-1 SUSE-SU-2021:3726-1
Platform(s):	openSUSE 13.1 SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Real Time Extension 12 SP1 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Software Development Kit 12 SP5 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE OpenStack Cloud 5	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND python-PyYAML-3.10-15.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information curl-7.19.7-1.20.31.1 is installed OR libcurl4-7.19.7-1.20.31.1 is installed OR libcurl4-32bit-7.19.7-1.20.31.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-31.3.0esr-0.8.1 is installed OR MozillaFirefox-translations-31.3.0esr-0.8.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND hardlink-1.0-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND clamav-0.98.7-13 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND binutils-2.26.1-9.12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND bogofilter-1.2.4-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND groff-1.22.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND fence-agents-4.0.22+git.1455008135.15c5e92-8 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND ctdb-4.6.5+git.27.6afd48b1083-2 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP4 is installed AND conntrack-tools-1.4.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP5 is installed AND conntrack-tools-1.4.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND apache-commons-httpclient-3.1-4 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 15-ESPOS is installed AND libldap-2_4-2-2.4.46-9.28 is installed OR libldap-2_4-2-32bit-2.4.46-9.28 is installed OR libldap-data-2.4.46-9.28 is installed OR openldap2-2.4.46-9.28 is installed OR openldap2-client-2.4.46-9.28 is installed OR openldap2-devel-2.4.46-9.28 is installed OR openldap2-devel-32bit-2.4.46-9.28 is installed OR openldap2-devel-static-2.4.46-9.28 is installed OR openldap2-ppolicy-check-password-1.2-9.28 is installed OR Package Information SUSE Linux Enterprise High Performance Computing 15-LTSS is installed AND libldap-2_4-2-2.4.46-9.28 is installed OR libldap-2_4-2-32bit-2.4.46-9.28 is installed OR libldap-data-2.4.46-9.28 is installed OR openldap2-2.4.46-9.28 is installed OR openldap2-client-2.4.46-9.28 is installed OR openldap2-devel-2.4.46-9.28 is installed OR openldap2-devel-32bit-2.4.46-9.28 is installed OR openldap2-devel-static-2.4.46-9.28 is installed OR openldap2-ppolicy-check-password-1.2-9.28 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_32-33-default-2-3 is installed OR kgraft-patch-3_12_32-33-xen-2-3 is installed OR kgraft-patch-3_12_36-38-default-2-3 is installed OR kgraft-patch-3_12_36-38-xen-2-3 is installed OR kgraft-patch-SLE12_Update_1-2-3 is installed OR kgraft-patch-SLE12_Update_2-2-3 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_82-6_9-default-2-2.1 is installed OR kgraft-patch-SLE12-SP3_Update_3-2-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND Package Information salt-2016.11.4-46.10.1 is installed OR salt-api-2016.11.4-46.10.1 is installed OR salt-bash-completion-2016.11.4-46.10.1 is installed OR salt-cloud-2016.11.4-46.10.1 is installed OR salt-doc-2016.11.4-46.10.1 is installed OR salt-master-2016.11.4-46.10.1 is installed OR salt-minion-2016.11.4-46.10.1 is installed OR salt-proxy-2016.11.4-46.10.1 is installed OR salt-ssh-2016.11.4-46.10.1 is installed OR salt-syndic-2016.11.4-46.10.1 is installed OR salt-zsh-completion-2016.11.4-46.10.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND Package Information sles12-docker-image-1.1.2-20160727 is installed OR sles12sp1-docker-image-1.0.5-20160727 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information compat-openssl098-0.9.8j-94.1 is installed OR libopenssl0_9_8-0.9.8j-94.1 is installed OR libopenssl0_9_8-32bit-0.9.8j-94.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.44-52.10.1 is installed OR kernel-ec2-devel-3.12.44-52.10.1 is installed OR kernel-ec2-extra-3.12.44-52.10.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php5-5.5.14-33.2 is installed OR php5-5.5.14-33.2 is installed OR php5-bcmath-5.5.14-33.2 is installed OR php5-bz2-5.5.14-33.2 is installed OR php5-calendar-5.5.14-33.2 is installed OR php5-ctype-5.5.14-33.2 is installed OR php5-curl-5.5.14-33.2 is installed OR php5-dba-5.5.14-33.2 is installed OR php5-dom-5.5.14-33.2 is installed OR php5-enchant-5.5.14-33.2 is installed OR php5-exif-5.5.14-33.2 is installed OR php5-fastcgi-5.5.14-33.2 is installed OR php5-fileinfo-5.5.14-33.2 is installed OR php5-fpm-5.5.14-33.2 is installed OR php5-ftp-5.5.14-33.2 is installed OR php5-gd-5.5.14-33.2 is installed OR php5-gettext-5.5.14-33.2 is installed OR php5-gmp-5.5.14-33.2 is installed OR php5-iconv-5.5.14-33.2 is installed OR php5-intl-5.5.14-33.2 is installed OR php5-json-5.5.14-33.2 is installed OR php5-ldap-5.5.14-33.2 is installed OR php5-mbstring-5.5.14-33.2 is installed OR php5-mcrypt-5.5.14-33.2 is installed OR php5-mysql-5.5.14-33.2 is installed OR php5-odbc-5.5.14-33.2 is installed OR php5-opcache-5.5.14-33.2 is installed OR php5-openssl-5.5.14-33.2 is installed OR php5-pcntl-5.5.14-33.2 is installed OR php5-pdo-5.5.14-33.2 is installed OR php5-pear-5.5.14-33.2 is installed OR php5-pgsql-5.5.14-33.2 is installed OR php5-posix-5.5.14-33.2 is installed OR php5-pspell-5.5.14-33.2 is installed OR php5-shmop-5.5.14-33.2 is installed OR php5-snmp-5.5.14-33.2 is installed OR php5-soap-5.5.14-33.2 is installed OR php5-sockets-5.5.14-33.2 is installed OR php5-sqlite-5.5.14-33.2 is installed OR php5-suhosin-5.5.14-33.2 is installed OR php5-sysvmsg-5.5.14-33.2 is installed OR php5-sysvsem-5.5.14-33.2 is installed OR php5-sysvshm-5.5.14-33.2 is installed OR php5-tokenizer-5.5.14-33.2 is installed OR php5-wddx-5.5.14-33.2 is installed OR php5-xmlreader-5.5.14-33.2 is installed OR php5-xmlrpc-5.5.14-33.2 is installed OR php5-xmlwriter-5.5.14-33.2 is installed OR php5-xsl-5.5.14-33.2 is installed OR php5-zip-5.5.14-33.2 is installed OR php5-zlib-5.5.14-33.2 is installed
Definition Synopsis
SUSE Linux Enterprise Real Time Extension 12 SP1 is installed AND Package Information kernel-compute-3.12.58-14 is installed OR kernel-compute-base-3.12.58-14 is installed OR kernel-compute-devel-3.12.58-14 is installed OR kernel-compute_debug-3.12.58-14 is installed OR kernel-compute_debug-devel-3.12.58-14 is installed OR kernel-devel-rt-3.12.58-14 is installed OR kernel-rt-3.12.58-14 is installed OR kernel-rt-base-3.12.58-14 is installed OR kernel-rt-devel-3.12.58-14 is installed OR kernel-rt_debug-3.12.58-14 is installed OR kernel-rt_debug-devel-3.12.58-14 is installed OR kernel-source-rt-3.12.58-14 is installed OR kernel-syms-rt-3.12.58-14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2 is installed AND acpid-1.0.6-91.16.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND virt-utils-1.2.1-0.7.19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND apache2-mod_nss-1.0.8-0.4.13.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information MozillaFirefox-31.1.0esr-1 is installed OR MozillaFirefox-translations-31.1.0esr-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information LibVNCServer-0.9.9-16.1 is installed OR libvncclient0-0.9.9-16.1 is installed OR libvncserver0-0.9.9-16.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information pam-1.1.8-14 is installed OR pam-32bit-1.1.8-14 is installed OR pam-doc-1.1.8-14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND php74-devel-7.4.6-1.27.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_51-52_31-default-5-2.2 is installed OR kgraft-patch-3_12_51-52_31-xen-5-2.2 is installed OR kgraft-patch-SLE12_Update_9-5-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information kernel-default-4.4.59-92.17 is installed OR kernel-default-base-4.4.59-92.17 is installed OR kernel-default-devel-4.4.59-92.17 is installed OR kernel-devel-4.4.59-92.17 is installed OR kernel-macros-4.4.59-92.17 is installed OR kernel-source-4.4.59-92.17 is installed OR kernel-syms-4.4.59-92.17 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information curl-7.37.0-36.1 is installed OR libcurl-devel-7.37.0-36.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information git-1.8.5.6-18 is installed OR git-arch-1.8.5.6-18 is installed OR git-core-1.8.5.6-18 is installed OR git-cvs-1.8.5.6-18 is installed OR git-daemon-1.8.5.6-18 is installed OR git-email-1.8.5.6-18 is installed OR git-gui-1.8.5.6-18 is installed OR git-svn-1.8.5.6-18 is installed OR git-web-1.8.5.6-18 is installed OR gitk-1.8.5.6-18 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND LibVNCServer-devel-0.9.9-16 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND Package Information FastCGI-2.4.0-168 is installed OR FastCGI-devel-2.4.0-168 is installed OR perl-FastCGI-2.4.0-168 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information flash-player-11.2.202.425-19.1 is installed OR flash-player-gnome-11.2.202.425-19.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information flash-player-11.2.202.632-137.1 is installed OR flash-player-gnome-11.2.202.632-137.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information kernel-default-4.4.21-84.1 is installed OR kernel-default-extra-4.4.21-84.1 is installed

BACK