Oval Definition:	oval:org.opensuse.security:def:51789
Revision Date: 2020-12-01 Version: 1 Title: Security update for systemd (Important) Description: This update for systemd fixes the following issues: - CVE-2019-6454: Overlong DBUS messages could be used to crash systemd (bsc#1125352) - units: make sure initrd-cleanup.service terminates before switching to rootfs (bsc#1123333) - logind: fix bad error propagation - login: log session state 'closing' (as well as New/Removed) - logind: fix borked r check - login: don't remove all devices from PID1 when only one was removed - login: we only allow opening character devices - login: correct comment in session_device_free() - login: remember that fds received from PID1 need to be removed eventually - login: fix FDNAME in call to sd_pid_notify_with_fds() - logind: fd 0 is a valid fd - logind: rework sd_eviocrevoke() - logind: check file is device node before using .st_rdev - logind: use the new FDSTOREREMOVE=1 sd_notify() message (bsc#1124153) - core: add a new sd_notify() message for removing fds from the FD store again - logind: make sure we don't trip up on half-initialized session devices (bsc#1123727) - fd-util: accept that kcmp might fail with EPERM/EACCES - core: Fix use after free case in load_from_path() (bsc#1121563) - core: include Found state in device dumps - device: fix serialization and deserialization of DeviceFound - fix path in btrfs rule (#6844) - assemble multidevice btrfs volumes without external tools (#6607) (bsc#1117025) - Update systemd-system.conf.xml (bsc#1122000) - units: inform user that the default target is started after exiting from rescue or emergency mode - core: free lines after reading them (bsc#1123892) - sd-bus: if we receive an invalid dbus message, ignore and proceeed - automount: don't pass non-blocking pipe to kernel. Family: unix Class: patch Status: Reference(s): 1013882 1046305 1046306 1050252 1050549 1051510 1054610 1055121 1056658 1056662 1056787 1060463 1063638 1065600 1070995 1071995 1078355 1082943 1083548 1083647 1084216 1086095 1086282 1086301 1086313 1086314 1086323 1087082 1087092 1088133 1094555 1098382 1098425 1098995 1101676 1101677 1101678 1103342 1103429 1104353 1106105 1106434 1106811 1107078 1107665 1108101 1108870 1109695 1110096 1110705 1111666 1111858 1111859 1112368 1112377 1112384 1112386 1112391 1112397 1112404 1112415 1112417 1112421 1112432 1112767 1113042 1113712 1113722 1113939 1114279 1114585 1116686 1117025 1117108 1117155 1117645 1118338 1118754 1119019 1119086 1119766 1119843 1120008 1120041 1120318 1120601 1120758 1120854 1120902 1120909 1120955 1121317 1121563 1121726 1121789 1121805 1122000 1122019 1122192 1122198 1122324 1122475 1122554 1122662 1122764 1122779 1122822 1122885 1122927 1122944 1122971 1122982 1123060 1123061 1123161 1123317 1123333 1123348 1123357 1123456 1123538 1123697 1123727 1123882 1123892 1123933 1124055 1124153 1124204 1124235 1124579 1124589 1124728 1124732 1124735 1124969 1124974 1124975 1124976 1124978 1124979 1124980 1124981 1124982 1124984 1124985 1125109 1125125 1125252 1125315 1125352 1125614 1125728 1125780 1125797 1125799 1125800 1125907 1125947 1126131 1126209 1126389 1126393 1126476 1126480 1126481 1126488 1126495 1126555 1126579 1126789 1126790 1126802 1126803 1126804 1126805 1126806 1126807 1127027 1127042 1127062 1127082 1127154 1127285 1127286 1127307 1127363 1127493 1127494 1127495 1127496 1127497 1127498 1127534 1127561 1127567 1127595 1127603 1127682 1127731 1127750 1127836 1127961 1128094 1128166 1128351 1128451 1128895 1129046 1129080 1129163 1129179 1129181 1129182 1129183 1129184 1129205 1129281 1129284 1129285 1129291 1129292 1129293 1129294 1129295 1129296 1129326 1129327 1129330 1129363 1129366 1129497 1129519 1129543 1129547 1129551 1129581 1129625 1129664 1129739 1129923 1134209 1136109 1138301 1138302 1138303 1140290 1159284 1160850 1160888 1165572 1167437 1168340 1169604 1170104 1170288 1171906 1172075 1173072 1173274 1174165 824948 CVE-2008-4225 CVE-2008-4226 CVE-2008-4409 CVE-2010-3609 CVE-2011-3563 CVE-2011-3571 CVE-2011-3630 CVE-2011-3631 CVE-2011-3632 CVE-2011-5035 CVE-2012-0497 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0547 CVE-2012-1682 CVE-2012-1711 CVE-2012-1713 CVE-2012-1716 CVE-2012-1717 CVE-2012-1718 CVE-2012-1719 CVE-2012-1723 CVE-2012-1724 CVE-2012-1725 CVE-2012-1726 CVE-2012-3136 CVE-2012-3174 CVE-2012-3216 CVE-2012-4416 CVE-2012-4681 CVE-2012-5068 CVE-2012-5069 CVE-2012-5070 CVE-2012-5071 CVE-2012-5072 CVE-2012-5073 CVE-2012-5074 CVE-2012-5075 CVE-2012-5076 CVE-2012-5077 CVE-2012-5079 CVE-2012-5081 CVE-2012-5084 CVE-2012-5085 CVE-2012-5086 CVE-2012-5087 CVE-2012-5088 CVE-2012-5089 CVE-2012-5134 CVE-2013-0169 CVE-2013-0401 CVE-2013-0422 CVE-2013-0424 CVE-2013-0425 CVE-2013-0426 CVE-2013-0427 CVE-2013-0428 CVE-2013-0429 CVE-2013-0431 CVE-2013-0432 CVE-2013-0433 CVE-2013-0434 CVE-2013-0435 CVE-2013-0440 CVE-2013-0441 CVE-2013-0442 CVE-2013-0443 CVE-2013-0444 CVE-2013-0450 CVE-2013-0809 CVE-2013-1475 CVE-2013-1476 CVE-2013-1478 CVE-2013-1480 CVE-2013-1484 CVE-2013-1485 CVE-2013-1486 CVE-2013-1488 CVE-2013-1493 CVE-2013-1500 CVE-2013-1518 CVE-2013-1537 CVE-2013-1557 CVE-2013-1569 CVE-2013-1571 CVE-2013-2383 CVE-2013-2384 CVE-2013-2407 CVE-2013-2412 CVE-2013-2415 CVE-2013-2417 CVE-2013-2419 CVE-2013-2420 CVE-2013-2421 CVE-2013-2422 CVE-2013-2423 CVE-2013-2424 CVE-2013-2426 CVE-2013-2429 CVE-2013-2430 CVE-2013-2431 CVE-2013-2436 CVE-2013-2443 CVE-2013-2444 CVE-2013-2445 CVE-2013-2446 CVE-2013-2447 CVE-2013-2448 CVE-2013-2449 CVE-2013-2450 CVE-2013-2451 CVE-2013-2452 CVE-2013-2453 CVE-2013-2454 CVE-2013-2455 CVE-2013-2456 CVE-2013-2457 CVE-2013-2458 CVE-2013-2459 CVE-2013-2460 CVE-2013-2461 CVE-2013-2463 CVE-2013-2465 CVE-2013-2469 CVE-2013-2470 CVE-2013-2471 CVE-2013-2472 CVE-2013-2473 CVE-2013-2492 CVE-2013-3829 CVE-2013-4002 CVE-2013-5772 CVE-2013-5774 CVE-2013-5778 CVE-2013-5780 CVE-2013-5782 CVE-2013-5783 CVE-2013-5784 CVE-2013-5790 CVE-2013-5797 CVE-2013-5800 CVE-2013-5802 CVE-2013-5803 CVE-2013-5804 CVE-2013-5805 CVE-2013-5806 CVE-2013-5809 CVE-2013-5814 CVE-2013-5817 CVE-2013-5820 CVE-2013-5823 CVE-2013-5825 CVE-2013-5829 CVE-2013-5830 CVE-2013-5840 CVE-2013-5842 CVE-2013-5849 CVE-2013-5850 CVE-2013-5851 CVE-2013-5878 CVE-2013-5884 CVE-2013-5893 CVE-2013-5896 CVE-2013-5907 CVE-2013-5910 CVE-2013-6629 CVE-2013-6954 CVE-2014-0368 CVE-2014-0373 CVE-2014-0376 CVE-2014-0408 CVE-2014-0411 CVE-2014-0416 CVE-2014-0422 CVE-2014-0423 CVE-2014-0428 CVE-2014-0429 CVE-2014-0446 CVE-2014-0451 CVE-2014-0452 CVE-2014-0453 CVE-2014-0454 CVE-2014-0455 CVE-2014-0456 CVE-2014-0457 CVE-2014-0458 CVE-2014-0459 CVE-2014-0460 CVE-2014-0461 CVE-2014-1876 CVE-2014-1932 CVE-2014-2397 CVE-2014-2398 CVE-2014-2402 CVE-2014-2403 CVE-2014-2412 CVE-2014-2413 CVE-2014-2414 CVE-2014-2421 CVE-2014-2423 CVE-2014-2427 CVE-2014-2483 CVE-2014-2490 CVE-2014-3566 CVE-2014-4209 CVE-2014-4216 CVE-2014-4218 CVE-2014-4219 CVE-2014-4221 CVE-2014-4223 CVE-2014-4244 CVE-2014-4252 CVE-2014-4262 CVE-2014-4263 CVE-2014-4264 CVE-2014-4266 CVE-2014-4268 CVE-2014-6457 CVE-2014-6502 CVE-2014-6504 CVE-2014-6506 CVE-2014-6511 CVE-2014-6512 CVE-2014-6513 CVE-2014-6517 CVE-2014-6519 CVE-2014-6531 CVE-2014-6558 CVE-2014-6585 CVE-2014-6587 CVE-2014-6591 CVE-2014-6593 CVE-2014-6601 CVE-2014-8104 CVE-2015-0383 CVE-2015-0395 CVE-2015-0400 CVE-2015-0407 CVE-2015-0408 CVE-2015-0410 CVE-2015-0412 CVE-2015-0460 CVE-2015-0469 CVE-2015-0477 CVE-2015-0478 CVE-2015-0480 CVE-2015-0488 CVE-2015-2590 CVE-2015-2601 CVE-2015-2613 CVE-2015-2621 CVE-2015-2625 CVE-2015-2628 CVE-2015-2632 CVE-2015-2808 CVE-2015-4000 CVE-2015-4731 CVE-2015-4732 CVE-2015-4733 CVE-2015-4734 CVE-2015-4748 CVE-2015-4749 CVE-2015-4760 CVE-2015-4803 CVE-2015-4805 CVE-2015-4806 CVE-2015-4835 CVE-2015-4840 CVE-2015-4842 CVE-2015-4843 CVE-2015-4844 CVE-2015-4860 CVE-2015-4871 CVE-2015-4872 CVE-2015-4881 CVE-2015-4882 CVE-2015-4883 CVE-2015-4893 CVE-2015-4903 CVE-2015-4911 CVE-2015-7575 CVE-2015-8126 CVE-2015-8472 CVE-2016-0402 CVE-2016-0448 CVE-2016-0466 CVE-2016-0483 CVE-2016-0494 CVE-2016-0636 CVE-2016-0686 CVE-2016-0687 CVE-2016-0695 CVE-2016-1762 CVE-2016-1833 CVE-2016-1834 CVE-2016-1835 CVE-2016-1836 CVE-2016-1837 CVE-2016-1838 CVE-2016-1839 CVE-2016-1840 CVE-2016-3425 CVE-2016-3427 CVE-2016-3458 CVE-2016-3485 CVE-2016-3498 CVE-2016-3500 CVE-2016-3503 CVE-2016-3508 CVE-2016-3511 CVE-2016-3550 CVE-2016-3598 CVE-2016-3606 CVE-2016-3610 CVE-2016-3627 CVE-2016-3705 CVE-2016-4483 CVE-2016-9843 CVE-2018-15750 CVE-2018-15751 CVE-2018-20669 CVE-2018-3058 CVE-2018-3060 CVE-2018-3063 CVE-2018-3064 CVE-2018-3066 CVE-2018-3143 CVE-2018-3156 CVE-2018-3162 CVE-2018-3173 CVE-2018-3174 CVE-2018-3185 CVE-2018-3200 CVE-2018-3251 CVE-2018-3277 CVE-2018-3282 CVE-2018-3284 CVE-2019-10161 CVE-2019-10166 CVE-2019-10167 CVE-2019-13173 CVE-2019-14902 CVE-2019-14907 CVE-2019-2024 CVE-2019-2510 CVE-2019-2537 CVE-2019-3459 CVE-2019-3460 CVE-2019-3819 CVE-2019-6454 CVE-2019-6974 CVE-2019-7221 CVE-2019-7222 CVE-2019-7308 CVE-2019-8912 CVE-2019-8980 CVE-2019-9213 CVE-2020-11651 CVE-2020-11652 CVE-2020-14422 SUSE-SU-2019:0426-1 SUSE-SU-2019:0555-1 SUSE-SU-2019:0784-1 SUSE-SU-2019:1637-1 SUSE-SU-2019:2055-1 SUSE-SU-2020:0224-1 SUSE-SU-2020:1920-1 SUSE-SU-2020:1974-1 Platform(s): openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information bzip2-1.0.6-lp150.3 is installed OR libbz2-1-1.0.6-lp150.3 is installed OR libbz2-1-32bit-1.0.6-lp150.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-24.3.0esr-0.8 is installed OR MozillaFirefox-branding-SLED-24-0.7 is installed OR MozillaFirefox-translations-24.3.0esr-0.8 is installed OR libfreebl3-3.15.4-0.7 is installed OR libfreebl3-32bit-3.15.4-0.7 is installed OR libsoftokn3-3.15.4-0.7 is installed OR libsoftokn3-32bit-3.15.4-0.7 is installed OR mozilla-nss-3.15.4-0.7 is installed OR mozilla-nss-32bit-3.15.4-0.7 is installed OR mozilla-nss-tools-3.15.4-0.7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information strongswan-4.4.0-6.32 is installed OR strongswan-doc-4.4.0-6.32 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND hardlink-1.0-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information java-1_7_0-openjdk-1.7.0.111-33 is installed OR java-1_7_0-openjdk-headless-1.7.0.111-33 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND kbd-1.15.5-8.7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information fontconfig-2.11.1-7 is installed OR fontconfig-32bit-2.11.1-7 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information libsystemd0-mini-234-24.25 is installed OR libudev-mini-devel-234-24.25 is installed OR libudev-mini1-234-24.25 is installed OR nss-myhostname-234-24.25 is installed OR nss-mymachines-234-24.25 is installed OR nss-systemd-234-24.25 is installed OR systemd-234-24.25 is installed OR systemd-logger-234-24.25 is installed OR systemd-mini-234-24.25 is installed OR systemd-mini-bash-completion-234-24.25 is installed OR systemd-mini-container-mini-234-24.25 is installed OR systemd-mini-coredump-mini-234-24.25 is installed OR systemd-mini-devel-234-24.25 is installed OR systemd-mini-sysvinit-234-24.25 is installed OR udev-mini-234-24.25 is installed Definition Synopsis SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python2-salt-3000-6.37 is installed OR salt-3000-6.37 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libvirt-4.0.0-9.27 is installed OR libvirt-admin-4.0.0-9.27 is installed OR libvirt-client-4.0.0-9.27 is installed OR libvirt-daemon-4.0.0-9.27 is installed OR libvirt-daemon-config-network-4.0.0-9.27 is installed OR libvirt-daemon-config-nwfilter-4.0.0-9.27 is installed OR libvirt-daemon-driver-interface-4.0.0-9.27 is installed OR libvirt-daemon-driver-libxl-4.0.0-9.27 is installed OR libvirt-daemon-driver-lxc-4.0.0-9.27 is installed OR libvirt-daemon-driver-network-4.0.0-9.27 is installed OR libvirt-daemon-driver-nodedev-4.0.0-9.27 is installed OR libvirt-daemon-driver-nwfilter-4.0.0-9.27 is installed OR libvirt-daemon-driver-qemu-4.0.0-9.27 is installed OR libvirt-daemon-driver-secret-4.0.0-9.27 is installed OR libvirt-daemon-driver-storage-4.0.0-9.27 is installed OR libvirt-daemon-driver-storage-core-4.0.0-9.27 is installed OR libvirt-daemon-driver-storage-disk-4.0.0-9.27 is installed OR libvirt-daemon-driver-storage-iscsi-4.0.0-9.27 is installed OR libvirt-daemon-driver-storage-logical-4.0.0-9.27 is installed OR libvirt-daemon-driver-storage-mpath-4.0.0-9.27 is installed OR libvirt-daemon-driver-storage-rbd-4.0.0-9.27 is installed OR libvirt-daemon-driver-storage-scsi-4.0.0-9.27 is installed OR libvirt-daemon-hooks-4.0.0-9.27 is installed OR libvirt-daemon-lxc-4.0.0-9.27 is installed OR libvirt-daemon-qemu-4.0.0-9.27 is installed OR libvirt-daemon-xen-4.0.0-9.27 is installed OR libvirt-devel-4.0.0-9.27 is installed OR libvirt-doc-4.0.0-9.27 is installed OR libvirt-lock-sanlock-4.0.0-9.27 is installed OR libvirt-nss-4.0.0-9.27 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information salt-3000-6.37 is installed OR salt-api-3000-6.37 is installed OR salt-cloud-3000-6.37 is installed OR salt-fish-completion-3000-6.37 is installed OR salt-master-3000-6.37 is installed OR salt-proxy-3000-6.37 is installed OR salt-ssh-3000-6.37 is installed OR salt-standalone-formulas-configuration-3000-6.37 is installed OR salt-syndic-3000-6.37 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs8-8.15.1-3.17 is installed OR nodejs8-devel-8.15.1-3.17 is installed OR nodejs8-docs-8.15.1-3.17 is installed OR npm8-8.15.1-3.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libXext6-1.3.2-3 is installed OR libXext6-32bit-1.3.2-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information MozillaFirefox-52.6.0esr-109.13 is installed OR MozillaFirefox-devel-52.6.0esr-109.13 is installed OR MozillaFirefox-translations-52.6.0esr-109.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND libusbmuxd4-1.0.10-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND shadow-4.2.1-27.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND ucode-intel-20180807-13.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_38-default-10-2 is installed OR kgraft-patch-SLE12-SP2_Update_13-10-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libjpeg-turbo-1.5.3-31.19 is installed OR libjpeg62-62.2.0-31.19 is installed OR libjpeg62-32bit-62.2.0-31.19 is installed OR libjpeg62-turbo-1.5.3-31.19 is installed OR libjpeg8-8.1.2-31.19 is installed OR libjpeg8-32bit-8.1.2-31.19 is installed OR libturbojpeg0-8.1.2-31.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_162-94_72-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_22-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ImageMagick-6.8.8.1-71.74 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.74 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.74 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND axis-1.4-290.3 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND python-ipaddress-1.0.18-3.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-150.14 is installed OR kernel-default-extra-4.12.14-150.14 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information openstack-horizon-plugin-manila-ui-1.2.1~a0~dev2-3 is installed OR python-horizon-plugin-manila-ui-1.2.1~a0~dev2-3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information apache2-2.4.23-29.27 is installed OR apache2-doc-2.4.23-29.27 is installed OR apache2-example-pages-2.4.23-29.27 is installed OR apache2-prefork-2.4.23-29.27 is installed OR apache2-utils-2.4.23-29.27 is installed OR apache2-worker-2.4.23-29.27 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information dnsmasq-2.78-18.6 is installed OR dnsmasq-utils-2.78-18.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND slf4j-1.7.12-3.3 is installed
BACK