OVAL Reference oval:org.opensuse.security:def:52014

Oval Definition:

oval:org.opensuse.security:def:52014

Revision Date:	2021-03-01	Version:	1
Title:	Security update for perl-XML-Twig (Moderate)
Description:	This update for perl-XML-Twig fixes the following issues: - Security fix [bsc#1008644, CVE-2016-9180] * Added: the no_xxe option to XML::Twig::new, which causes the parse to fail if external entities are used (to prevent malicious XML to access the filesystem). * Setting expand_external_ents to 0 or -1 currently doesn't work as expected; To completely turn off expanding external entities use no_xxe. * Update documentation for XML::Twig to mention problems with expand_external_ents and add information about new no_xxe argument
Family:	unix	Class:	patch
Status:		Reference(s):	1008644 1096945 1100356 1100691 1102687 1102688 1102689 1102899 1132091 1133283 1134978 1159819 1159856 1159858 1159860 1160250 1160251 1169746 1170643 1171978 1172405 1172810 1176579 CVE-2006-4197 CVE-2007-6720 CVE-2009-0179 CVE-2009-3995 CVE-2009-3996 CVE-2009-5044 CVE-2009-5080 CVE-2009-5081 CVE-2010-2546 CVE-2012-4425 CVE-2013-0240 CVE-2013-1799 CVE-2014-4607 CVE-2015-7555 CVE-2016-3977 CVE-2016-6354 CVE-2016-9180 CVE-2018-1000622 CVE-2018-13302 CVE-2018-1999010 CVE-2018-1999011 CVE-2018-1999012 CVE-2018-1999013 CVE-2019-11023 CVE-2019-12083 CVE-2019-15691 CVE-2019-15692 CVE-2019-15693 CVE-2019-15694 CVE-2019-15695 CVE-2019-17006 CVE-2020-12399 CVE-2020-1472 CVE-2020-3899 CVE-2020-8022 SUSE-SU-2018:2305-1 SUSE-SU-2019:1267-3 SUSE-SU-2019:2755-1 SUSE-SU-2020:0113-1 SUSE-SU-2020:1198-1 SUSE-SU-2020:1677-1 SUSE-SU-2020:1790-1 SUSE-SU-2020:2173-2 SUSE-SU-2020:2719-1
Platform(s):	openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information kdelibs4-4.14.38-lp150.5 is installed OR kdelibs4-branding-upstream-4.14.38-lp150.5 is installed OR kdelibs4-core-4.14.38-lp150.5 is installed OR libkde4-4.14.38-lp150.5 is installed OR libkdecore4-4.14.38-lp150.5 is installed OR libksuseinstall1-4.14.38-lp150.5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND dhcpcd-3.2.3-45.5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information dhcp-4.2.4.P2-0.24 is installed OR dhcp-client-4.2.4.P2-0.24 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND libmusicbrainz4-2.1.5-27 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information gnome-online-accounts-3.10.5-1 is installed OR gnome-online-accounts-lang-3.10.5-1 is installed OR libgoa-1_0-0-3.10.5-1 is installed OR libgoa-backend-1_0-1-3.10.5-1 is installed OR typelib-1_0-Goa-1_0-3.10.5-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND groff-1.22.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information at-3.1.14-7 is installed OR libQtWebKit4-4.8.6+2.3.3-3 is installed OR libQtWebKit4-32bit-4.8.6+2.3.3-3 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information empathy-3.12.13-8.3 is installed OR empathy-lang-3.12.13-8.3 is installed OR telepathy-mission-control-plugin-goa-3.12.13-8.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information cargo-doc-1.36.0-4 is installed OR rust-1.36.0-4 is installed OR rust-doc-1.36.0-4 is installed OR rust-gdb-1.36.0-4 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information graphviz-addons-2.40.1-6.3 is installed OR graphviz-tcl-2.40.1-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information tomcat-9.0.35-4.35 is installed OR tomcat-admin-webapps-9.0.35-4.35 is installed OR tomcat-el-3_0-api-9.0.35-4.35 is installed OR tomcat-jsp-2_3-api-9.0.35-4.35 is installed OR tomcat-lib-9.0.35-4.35 is installed OR tomcat-servlet-4_0-api-9.0.35-4.35 is installed OR tomcat-webapps-9.0.35-4.35 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND perl-HTML-Parser-3.71-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information LibVNCServer-0.9.9-17.8 is installed OR libvncclient0-0.9.9-17.8 is installed OR libvncserver0-0.9.9-17.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND busybox-1.21.1-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libmysqlclient18-10.0.35-29.20 is installed OR libmysqlclient18-32bit-10.0.35-29.20 is installed OR mariadb-10.0.35-29.20 is installed OR mariadb-client-10.0.35-29.20 is installed OR mariadb-errormessages-10.0.35-29.20 is installed OR mariadb-tools-10.0.35-29.20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_73-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_21-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_67-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_19-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information freeradius-server-3.0.14-1 is installed OR freeradius-server-doc-3.0.14-1 is installed OR freeradius-server-krb5-3.0.14-1 is installed OR freeradius-server-ldap-3.0.14-1 is installed OR freeradius-server-libs-3.0.14-1 is installed OR freeradius-server-mysql-3.0.14-1 is installed OR freeradius-server-perl-3.0.14-1 is installed OR freeradius-server-postgresql-3.0.14-1 is installed OR freeradius-server-python-3.0.14-1 is installed OR freeradius-server-sqlite-3.0.14-1 is installed OR freeradius-server-utils-3.0.14-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information ghostscript-9.27-23.28 is installed OR ghostscript-x11-9.27-23.28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_156-94_57-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_18-8-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_156-94_64-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_20-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information res-signingkeys-3.0.38-52.26 is installed OR smt-3.0.38-52.26 is installed OR smt-support-3.0.38-52.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information evince-3.20.2-6.22 is installed OR evince-browser-plugin-3.20.2-6.22 is installed OR evince-lang-3.20.2-6.22 is installed OR evince-plugin-djvudocument-3.20.2-6.22 is installed OR evince-plugin-dvidocument-3.20.2-6.22 is installed OR evince-plugin-pdfdocument-3.20.2-6.22 is installed OR evince-plugin-psdocument-3.20.2-6.22 is installed OR evince-plugin-tiffdocument-3.20.2-6.22 is installed OR evince-plugin-xpsdocument-3.20.2-6.22 is installed OR libevdocument3-4-3.20.2-6.22 is installed OR libevview3-3-3.20.2-6.22 is installed OR nautilus-evince-3.20.2-6.22 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.2-3.54 is installed OR libwebkit2gtk-4_0-37-2.28.2-3.54 is installed OR libwebkit2gtk3-lang-2.28.2-3.54 is installed OR webkit2gtk-4_0-injected-bundles-2.28.2-3.54 is installed OR webkit2gtk3-2.28.2-3.54 is installed OR webkit2gtk3-devel-2.28.2-3.54 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND perl-XML-Twig-3.44-5.3.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libfreebl3-3.53-3.40 is installed OR libfreebl3-32bit-3.53-3.40 is installed OR libfreebl3-hmac-3.53-3.40 is installed OR libfreebl3-hmac-32bit-3.53-3.40 is installed OR libsoftokn3-3.53-3.40 is installed OR libsoftokn3-32bit-3.53-3.40 is installed OR libsoftokn3-hmac-3.53-3.40 is installed OR libsoftokn3-hmac-32bit-3.53-3.40 is installed OR mozilla-nspr-4.25-3.12 is installed OR mozilla-nspr-32bit-4.25-3.12 is installed OR mozilla-nspr-devel-4.25-3.12 is installed OR mozilla-nss-3.53-3.40 is installed OR mozilla-nss-32bit-3.53-3.40 is installed OR mozilla-nss-certs-3.53-3.40 is installed OR mozilla-nss-certs-32bit-3.53-3.40 is installed OR mozilla-nss-devel-3.53-3.40 is installed OR mozilla-nss-sysinit-3.53-3.40 is installed OR mozilla-nss-tools-3.53-3.40 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information ffmpeg-3.4.2-4.5 is installed OR libavcodec-devel-3.4.2-4.5 is installed OR libavformat-devel-3.4.2-4.5 is installed OR libavformat57-3.4.2-4.5 is installed OR libavresample-devel-3.4.2-4.5 is installed OR libavresample3-3.4.2-4.5 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND ruby2.1-rubygem-railties-4_2-4.2.2-2 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information libopenssl-devel-1.0.2j-60.52 is installed OR libopenssl1_0_0-1.0.2j-60.52 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.52 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.52 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.52 is installed OR openssl-1.0.2j-60.52 is installed OR openssl-doc-1.0.2j-60.52 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND python-Django1-1.11.20-3.6 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information xen-4.9.4_04-3.56 is installed OR xen-doc-html-4.9.4_04-3.56 is installed OR xen-libs-4.9.4_04-3.56 is installed OR xen-libs-32bit-4.9.4_04-3.56 is installed OR xen-tools-4.9.4_04-3.56 is installed OR xen-tools-domU-4.9.4_04-3.56 is installed

BACK