| Revision Date: | 2021-03-01 | Version: | 1 |
| Title: | Security update for perl-XML-Twig (Moderate) |
| Description: |
This update for perl-XML-Twig fixes the following issues:
- Security fix [bsc#1008644, CVE-2016-9180] * Added: the no_xxe option to XML::Twig::new, which causes the parse to fail if external entities are used (to prevent malicious XML to access the filesystem). * Setting expand_external_ents to 0 or -1 currently doesn't work as expected; To completely turn off expanding external entities use no_xxe. * Update documentation for XML::Twig to mention problems with expand_external_ents and add information about new no_xxe argument
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1008644
1013882
1066489
1071995
1084603
1098998
1101676
1101677
1101678
1103342
1107343
1107772
1109363
1109379
1111331
1111858
1111859
1112368
1112377
1112384
1112386
1112391
1112397
1112404
1112415
1112417
1112421
1112432
1112767
1114837
1116686
1118754
1120041
1122198
1122475
1127027
1128858
1129271
1129392
1132160
1132690
1133229
1134190
1134348
1134428
1135222
1135273
1135656
1136020
1136081
1136109
1138316
1140492
1141897
1142649
1148517
1149145
1153611
1157465
1158940
1159118
1160931
1162327
1162504
1165425
1176262
1177351
1177352
CVE-2007-6720
CVE-2008-4989
CVE-2009-0179
CVE-2009-0799
CVE-2009-0800
CVE-2009-1179
CVE-2009-1180
CVE-2009-1181
CVE-2009-1182
CVE-2009-1183
CVE-2009-1187
CVE-2009-1188
CVE-2009-3607
CVE-2009-3608
CVE-2009-3995
CVE-2009-3996
CVE-2010-0405
CVE-2010-2546
CVE-2010-4352
CVE-2011-4128
CVE-2012-0390
CVE-2012-1174
CVE-2012-1569
CVE-2012-1573
CVE-2012-2396
CVE-2012-3524
CVE-2013-1788
CVE-2013-1789
CVE-2013-1790
CVE-2013-2168
CVE-2013-4288
CVE-2013-4473
CVE-2013-4474
CVE-2014-0092
CVE-2014-1959
CVE-2014-3466
CVE-2014-3477
CVE-2014-3532
CVE-2014-3533
CVE-2014-3635
CVE-2014-3636
CVE-2014-3637
CVE-2014-3638
CVE-2014-3639
CVE-2014-7824
CVE-2014-8148
CVE-2014-8564
CVE-2015-0245
CVE-2015-0294
CVE-2015-3622
CVE-2015-6251
CVE-2016-7795
CVE-2016-9180
CVE-2016-9843
CVE-2017-16541
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2018-12359
CVE-2018-12360
CVE-2018-12361
CVE-2018-12362
CVE-2018-12363
CVE-2018-12364
CVE-2018-12365
CVE-2018-12366
CVE-2018-12367
CVE-2018-12371
CVE-2018-12376
CVE-2018-12377
CVE-2018-12378
CVE-2018-12383
CVE-2018-12385
CVE-2018-16850
CVE-2018-3058
CVE-2018-3060
CVE-2018-3063
CVE-2018-3064
CVE-2018-3066
CVE-2018-3143
CVE-2018-3156
CVE-2018-3162
CVE-2018-3173
CVE-2018-3174
CVE-2018-3185
CVE-2018-3200
CVE-2018-3251
CVE-2018-3277
CVE-2018-3282
CVE-2018-3284
CVE-2018-5156
CVE-2018-5187
CVE-2018-5188
CVE-2019-10132
CVE-2019-11068
CVE-2019-11091
CVE-2019-14250
CVE-2019-15847
CVE-2019-17361
CVE-2019-18897
CVE-2019-20916
CVE-2019-2510
CVE-2019-2537
CVE-2019-5419
CVE-2020-7069
CVE-2020-7070
SUSE-SU-2018:3247-1
SUSE-SU-2018:3942-1
SUSE-SU-2019:0555-1
SUSE-SU-2019:1490-1
SUSE-SU-2019:1973-1
SUSE-SU-2019:2702-1
SUSE-SU-2020:0684-1
SUSE-SU-2020:2173-2
SUSE-SU-2020:2784-1
SUSE-SU-2020:2941-1
|
| Platform(s): | openSUSE Leap 15.0
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Public Cloud 15 SP1
SUSE Linux Enterprise Module for Python2 packages 15 SP2
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Web Scripting 15 SP2
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Workstation Extension 15
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
| Product(s): | |
| Definition Synopsis |
| openSUSE Leap 15.0 is installed AND icedtea-web-1.7.1-lp150.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 11 SP2 is installed
AND Package Information
xorg-x11-devel-7.4-8.26.40 is installed
OR xorg-x11-libs-7.4-8.26.40 is installed
OR xorg-x11-libs-32bit-7.4-8.26.40 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 11 SP4 is installed
AND Package Information
kernel-default-3.0.101-71 is installed
OR kernel-default-base-3.0.101-71 is installed
OR kernel-default-devel-3.0.101-71 is installed
OR kernel-default-extra-3.0.101-71 is installed
OR kernel-pae-3.0.101-71 is installed
OR kernel-pae-base-3.0.101-71 is installed
OR kernel-pae-devel-3.0.101-71 is installed
OR kernel-pae-extra-3.0.101-71 is installed
OR kernel-source-3.0.101-71 is installed
OR kernel-syms-3.0.101-71 is installed
OR kernel-trace-3.0.101-71 is installed
OR kernel-trace-devel-3.0.101-71 is installed
OR kernel-xen-3.0.101-71 is installed
OR kernel-xen-base-3.0.101-71 is installed
OR kernel-xen-devel-3.0.101-71 is installed
OR kernel-xen-extra-3.0.101-71 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 is installed
AND Package Information
bzip2-1.0.6-27 is installed
OR libbz2-1-1.0.6-27 is installed
OR libbz2-1-32bit-1.0.6-27 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP1 is installed
AND Package Information
gnutls-3.2.15-11 is installed
OR libgnutls28-3.2.15-11 is installed
OR libgnutls28-32bit-3.2.15-11 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP2 is installed
AND Package Information
dbus-1-1.8.16-19 is installed
OR dbus-1-x11-1.8.16-19 is installed
OR libdbus-1-3-1.8.16-19 is installed
OR libdbus-1-3-32bit-1.8.16-19 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP3 is installed
AND Package Information
empathy-3.12.12-7 is installed
OR empathy-lang-3.12.12-7 is installed
OR telepathy-mission-control-plugin-goa-3.12.12-7 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP4 is installed
AND Package Information
alsa-1.0.27.2-15 is installed
OR libasound2-1.0.27.2-15 is installed
OR libasound2-32bit-1.0.27.2-15 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
AND Package Information
cross-arm-gcc7-7.4.1+r275405-4.9 is installed
OR cross-arm-none-gcc7-bootstrap-7.4.1+r275405-4.9 is installed
OR cross-avr-gcc7-bootstrap-7.4.1+r275405-4.9 is installed
OR cross-epiphany-gcc7-bootstrap-7.4.1+r275405-4.9 is installed
OR cross-hppa-gcc7-7.4.1+r275405-4.9 is installed
OR cross-hppa-gcc7-icecream-backend-7.4.1+r275405-4.9 is installed
OR cross-i386-gcc7-7.4.1+r275405-4.9 is installed
OR cross-i386-gcc7-icecream-backend-7.4.1+r275405-4.9 is installed
OR cross-m68k-gcc7-7.4.1+r275405-4.9 is installed
OR cross-m68k-gcc7-icecream-backend-7.4.1+r275405-4.9 is installed
OR cross-mips-gcc7-7.4.1+r275405-4.9 is installed
OR cross-mips-gcc7-icecream-backend-7.4.1+r275405-4.9 is installed
OR cross-ppc64-gcc7-7.4.1+r275405-4.9 is installed
OR cross-ppc64-gcc7-icecream-backend-7.4.1+r275405-4.9 is installed
OR cross-rx-gcc7-bootstrap-7.4.1+r275405-4.9 is installed
OR cross-sparc-gcc7-7.4.1+r275405-4.9 is installed
OR cross-sparc64-gcc7-7.4.1+r275405-4.9 is installed
OR cross-sparc64-gcc7-icecream-backend-7.4.1+r275405-4.9 is installed
OR cross-sparcv9-gcc7-icecream-backend-7.4.1+r275405-4.9 is installed
OR gcc7-7.4.1+r275405-4.9 is installed
OR gcc7-32bit-7.4.1+r275405-4.9 is installed
OR gcc7-ada-32bit-7.4.1+r275405-4.9 is installed
OR gcc7-c++-32bit-7.4.1+r275405-4.9 is installed
OR gcc7-fortran-32bit-7.4.1+r275405-4.9 is installed
OR gcc7-go-7.4.1+r275405-4.9 is installed
OR gcc7-go-32bit-7.4.1+r275405-4.9 is installed
OR gcc7-obj-c++-7.4.1+r275405-4.9 is installed
OR gcc7-obj-c++-32bit-7.4.1+r275405-4.9 is installed
OR gcc7-objc-32bit-7.4.1+r275405-4.9 is installed
OR gcc7-testresults-7.4.1+r275405-4.9 is installed
OR libada7-7.4.1+r275405-4.9 is installed
OR libada7-32bit-7.4.1+r275405-4.9 is installed
OR libasan4-32bit-7.4.1+r275405-4.9 is installed
OR libgfortran4-32bit-7.4.1+r275405-4.9 is installed
OR libgo11-7.4.1+r275405-4.9 is installed
OR libgo11-32bit-7.4.1+r275405-4.9 is installed
OR libobjc4-7.4.1+r275405-4.9 is installed
OR libobjc4-32bit-7.4.1+r275405-4.9 is installed
OR libstdc++6-devel-gcc7-32bit-7.4.1+r275405-4.9 is installed
OR libubsan0-32bit-7.4.1+r275405-4.9 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed
AND Package Information
rmt-server-2.3.1-3.3 is installed
OR rmt-server-pubcloud-2.3.1-3.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Python2 packages 15 SP2 is installed
AND Package Information
python-pip-10.0.1-3.3 is installed
OR python2-pip-10.0.1-3.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Server Applications 15 is installed
AND Package Information
libecpg6-10.6-4.8 is installed
OR postgresql10-10.6-4.8 is installed
OR postgresql10-contrib-10.6-4.8 is installed
OR postgresql10-devel-10.6-4.8 is installed
OR postgresql10-docs-10.6-4.8 is installed
OR postgresql10-plperl-10.6-4.8 is installed
OR postgresql10-plpython-10.6-4.8 is installed
OR postgresql10-pltcl-10.6-4.8 is installed
OR postgresql10-server-10.6-4.8 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
AND Package Information
libvirt-5.1.0-8.3 is installed
OR libvirt-admin-5.1.0-8.3 is installed
OR libvirt-bash-completion-5.1.0-8.3 is installed
OR libvirt-client-5.1.0-8.3 is installed
OR libvirt-daemon-5.1.0-8.3 is installed
OR libvirt-daemon-config-network-5.1.0-8.3 is installed
OR libvirt-daemon-config-nwfilter-5.1.0-8.3 is installed
OR libvirt-daemon-driver-interface-5.1.0-8.3 is installed
OR libvirt-daemon-driver-libxl-5.1.0-8.3 is installed
OR libvirt-daemon-driver-lxc-5.1.0-8.3 is installed
OR libvirt-daemon-driver-network-5.1.0-8.3 is installed
OR libvirt-daemon-driver-nodedev-5.1.0-8.3 is installed
OR libvirt-daemon-driver-nwfilter-5.1.0-8.3 is installed
OR libvirt-daemon-driver-qemu-5.1.0-8.3 is installed
OR libvirt-daemon-driver-secret-5.1.0-8.3 is installed
OR libvirt-daemon-driver-storage-5.1.0-8.3 is installed
OR libvirt-daemon-driver-storage-core-5.1.0-8.3 is installed
OR libvirt-daemon-driver-storage-disk-5.1.0-8.3 is installed
OR libvirt-daemon-driver-storage-iscsi-5.1.0-8.3 is installed
OR libvirt-daemon-driver-storage-logical-5.1.0-8.3 is installed
OR libvirt-daemon-driver-storage-mpath-5.1.0-8.3 is installed
OR libvirt-daemon-driver-storage-rbd-5.1.0-8.3 is installed
OR libvirt-daemon-driver-storage-scsi-5.1.0-8.3 is installed
OR libvirt-daemon-hooks-5.1.0-8.3 is installed
OR libvirt-daemon-lxc-5.1.0-8.3 is installed
OR libvirt-daemon-qemu-5.1.0-8.3 is installed
OR libvirt-daemon-xen-5.1.0-8.3 is installed
OR libvirt-devel-5.1.0-8.3 is installed
OR libvirt-doc-5.1.0-8.3 is installed
OR libvirt-lock-sanlock-5.1.0-8.3 is installed
OR libvirt-nss-5.1.0-8.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Web Scripting 15 SP2 is installed
AND Package Information
apache2-mod_php7-7.4.6-3.11 is installed
OR php7-7.4.6-3.11 is installed
OR php7-bcmath-7.4.6-3.11 is installed
OR php7-bz2-7.4.6-3.11 is installed
OR php7-calendar-7.4.6-3.11 is installed
OR php7-ctype-7.4.6-3.11 is installed
OR php7-curl-7.4.6-3.11 is installed
OR php7-dba-7.4.6-3.11 is installed
OR php7-devel-7.4.6-3.11 is installed
OR php7-dom-7.4.6-3.11 is installed
OR php7-enchant-7.4.6-3.11 is installed
OR php7-exif-7.4.6-3.11 is installed
OR php7-fastcgi-7.4.6-3.11 is installed
OR php7-fileinfo-7.4.6-3.11 is installed
OR php7-fpm-7.4.6-3.11 is installed
OR php7-ftp-7.4.6-3.11 is installed
OR php7-gd-7.4.6-3.11 is installed
OR php7-gettext-7.4.6-3.11 is installed
OR php7-gmp-7.4.6-3.11 is installed
OR php7-iconv-7.4.6-3.11 is installed
OR php7-intl-7.4.6-3.11 is installed
OR php7-json-7.4.6-3.11 is installed
OR php7-ldap-7.4.6-3.11 is installed
OR php7-mbstring-7.4.6-3.11 is installed
OR php7-mysql-7.4.6-3.11 is installed
OR php7-odbc-7.4.6-3.11 is installed
OR php7-opcache-7.4.6-3.11 is installed
OR php7-openssl-7.4.6-3.11 is installed
OR php7-pcntl-7.4.6-3.11 is installed
OR php7-pdo-7.4.6-3.11 is installed
OR php7-pgsql-7.4.6-3.11 is installed
OR php7-phar-7.4.6-3.11 is installed
OR php7-posix-7.4.6-3.11 is installed
OR php7-readline-7.4.6-3.11 is installed
OR php7-shmop-7.4.6-3.11 is installed
OR php7-snmp-7.4.6-3.11 is installed
OR php7-soap-7.4.6-3.11 is installed
OR php7-sockets-7.4.6-3.11 is installed
OR php7-sodium-7.4.6-3.11 is installed
OR php7-sqlite-7.4.6-3.11 is installed
OR php7-sysvmsg-7.4.6-3.11 is installed
OR php7-sysvsem-7.4.6-3.11 is installed
OR php7-sysvshm-7.4.6-3.11 is installed
OR php7-tidy-7.4.6-3.11 is installed
OR php7-tokenizer-7.4.6-3.11 is installed
OR php7-xmlreader-7.4.6-3.11 is installed
OR php7-xmlrpc-7.4.6-3.11 is installed
OR php7-xmlwriter-7.4.6-3.11 is installed
OR php7-xsl-7.4.6-3.11 is installed
OR php7-zip-7.4.6-3.11 is installed
OR php7-zlib-7.4.6-3.11 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP1 is installed
AND Package Information
ecryptfs-utils-103-5 is installed
OR ecryptfs-utils-32bit-103-5 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP1-LTSS is installed
AND Package Information
openssh-6.6p1-54.15 is installed
OR openssh-askpass-gnome-6.6p1-54.15 is installed
OR openssh-fips-6.6p1-54.15 is installed
OR openssh-helpers-6.6p1-54.15 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2 is installed
AND Package Information
libjson-c2-0.11-2 is installed
OR libjson-c2-32bit-0.11-2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2-BCL is installed
AND Package Information
openssh-7.2p2-74.30 is installed
OR openssh-askpass-gnome-7.2p2-74.30 is installed
OR openssh-fips-7.2p2-74.30 is installed
OR openssh-helpers-7.2p2-74.30 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
AND Package Information
libmysqlclient18-10.0.35-29.20 is installed
OR libmysqlclient18-32bit-10.0.35-29.20 is installed
OR mariadb-10.0.35-29.20 is installed
OR mariadb-client-10.0.35-29.20 is installed
OR mariadb-errormessages-10.0.35-29.20 is installed
OR mariadb-tools-10.0.35-29.20 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2-LTSS is installed
AND Package Information
kgraft-patch-4_4_103-92_53-default-6-2 is installed
OR kgraft-patch-SLE12-SP2_Update_16-6-2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3 is installed
AND Package Information
apache2-mod_apparmor-2.8.2-49 is installed
OR apparmor-docs-2.8.2-49 is installed
OR apparmor-parser-2.8.2-49 is installed
OR apparmor-profiles-2.8.2-49 is installed
OR apparmor-utils-2.8.2-49 is installed
OR libapparmor1-2.8.2-49 is installed
OR libapparmor1-32bit-2.8.2-49 is installed
OR pam_apparmor-2.8.2-49 is installed
OR pam_apparmor-32bit-2.8.2-49 is installed
OR perl-apparmor-2.8.2-49 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
AND Package Information
java-1_8_0-ibm-1.8.0_sr6.0-30.60 is installed
OR java-1_8_0-ibm-alsa-1.8.0_sr6.0-30.60 is installed
OR java-1_8_0-ibm-plugin-1.8.0_sr6.0-30.60 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-LTSS is installed
AND Package Information
kgraft-patch-4_4_178-94_91-default-3-2 is installed
OR kgraft-patch-SLE12-SP3_Update_25-3-2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
AND Package Information
xen-4.9.2_10-3.41 is installed
OR xen-doc-html-4.9.2_10-3.41 is installed
OR xen-libs-4.9.2_10-3.41 is installed
OR xen-libs-32bit-4.9.2_10-3.41 is installed
OR xen-tools-4.9.2_10-3.41 is installed
OR xen-tools-domU-4.9.2_10-3.41 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP4 is installed
AND Package Information
ceph-common-12.2.8+git.1536505967.080f2248ff-2.15 is installed
OR libcephfs2-12.2.8+git.1536505967.080f2248ff-2.15 is installed
OR librados2-12.2.8+git.1536505967.080f2248ff-2.15 is installed
OR libradosstriper1-12.2.8+git.1536505967.080f2248ff-2.15 is installed
OR librbd1-12.2.8+git.1536505967.080f2248ff-2.15 is installed
OR librgw2-12.2.8+git.1536505967.080f2248ff-2.15 is installed
OR python-cephfs-12.2.8+git.1536505967.080f2248ff-2.15 is installed
OR python-rados-12.2.8+git.1536505967.080f2248ff-2.15 is installed
OR python-rbd-12.2.8+git.1536505967.080f2248ff-2.15 is installed
OR python-rgw-12.2.8+git.1536505967.080f2248ff-2.15 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed
AND perl-XML-Twig-3.44-5.3.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 15 is installed
AND Package Information
MozillaThunderbird-60.2.1-3.13 is installed
OR MozillaThunderbird-translations-common-60.2.1-3.13 is installed
OR MozillaThunderbird-translations-other-60.2.1-3.13 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud 7 is installed
AND Package Information
ntp-4.2.8p11-64.5 is installed
OR ntp-doc-4.2.8p11-64.5 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud 8 is installed
AND Package Information
bzip2-1.0.6-30.5 is installed
OR bzip2-doc-1.0.6-30.5 is installed
OR libbz2-1-1.0.6-30.5 is installed
OR libbz2-1-32bit-1.0.6-30.5 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud Crowbar 8 is installed
AND Package Information
libssh2-1-1.4.3-20.9 is installed
OR libssh2-1-32bit-1.4.3-20.9 is installed
OR libssh2_org-1.4.3-20.9 is installed
|