OVAL Reference oval:org.opensuse.security:def:52031

Oval Definition:

oval:org.opensuse.security:def:52031

Revision Date:	2021-03-25	Version:	1
Title:	Security update for openssl-1_1 (Important)
Description:	This update for openssl-1_1 fixes the following security issue: CVE-2021-3449: An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension but includes a signature_algorithms_cert extension, then a NULL pointer dereference will result, leading to a crash and a denial of service attack. OpenSSL TLS clients are not impacted by this issue. [bsc#1183852]
Family:	unix	Class:	patch
Status:		Reference(s):	1027519 1050549 1051510 1052904 1053043 1055117 1055121 1061840 1065600 1065729 1070872 1082555 1083647 1085535 1085536 1088804 1094244 1097583 1097584 1097585 1097586 1097587 1097588 1100132 1103259 1111331 1112128 1112178 1113399 1113722 1114279 1114542 1114638 1119086 1119680 1120318 1120902 1122767 1123105 1125342 1126221 1126356 1126704 1126740 1127175 1127371 1127372 1127374 1127378 1127445 1128415 1128544 1129276 1129770 1130130 1130154 1130195 1130335 1130336 1130337 1130338 1130425 1130427 1130518 1130527 1130567 1131062 1131107 1131167 1131168 1131169 1131170 1131171 1131172 1131173 1131174 1131175 1131176 1131177 1131178 1131179 1131180 1131290 1131335 1131336 1131416 1131427 1131442 1131467 1131574 1131587 1131659 1131673 1131847 1131848 1131851 1131900 1131934 1131935 1132083 1132219 1132226 1132227 1132365 1132368 1132369 1132370 1132372 1132373 1132384 1132397 1132402 1132403 1132404 1132405 1132407 1132411 1132412 1132413 1132414 1132426 1132527 1132531 1132555 1132558 1132561 1132562 1132563 1132564 1132570 1132571 1132572 1132589 1132618 1132681 1132726 1132828 1132943 1133005 1133094 1133095 1133115 1133149 1133486 1133529 1133584 1133667 1133668 1133672 1133674 1133675 1133698 1133702 1133731 1133769 1133772 1133774 1133778 1133779 1133780 1133825 1133850 1133851 1133852 1152497 1154448 1154456 1154458 1154460 1154461 1154464 1155945 1165548 1166066 1166916 1168554 1172177 1172182 1172184 1172186 1172442 1172443 1173351 1173580 1175070 1175071 1175223 1178074 1183852 CVE-2011-0020 CVE-2011-0064 CVE-2011-0421 CVE-2011-2513 CVE-2011-2514 CVE-2011-3377 CVE-2012-1162 CVE-2012-1163 CVE-2012-3422 CVE-2012-3423 CVE-2012-4540 CVE-2013-1926 CVE-2013-1927 CVE-2013-2126 CVE-2013-2127 CVE-2013-4349 CVE-2014-5044 CVE-2014-9087 CVE-2015-2331 CVE-2015-5234 CVE-2015-5235 CVE-2015-5276 CVE-2016-2851 CVE-2016-4574 CVE-2016-4579 CVE-2016-5759 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-12207 CVE-2018-16880 CVE-2019-11091 CVE-2019-11135 CVE-2019-16770 CVE-2019-18420 CVE-2019-18421 CVE-2019-18422 CVE-2019-18423 CVE-2019-18424 CVE-2019-18425 CVE-2019-3882 CVE-2019-5418 CVE-2019-5419 CVE-2019-5420 CVE-2019-9003 CVE-2019-9500 CVE-2019-9503 CVE-2020-0034 CVE-2020-11076 CVE-2020-11077 CVE-2020-11080 CVE-2020-11993 CVE-2020-15169 CVE-2020-4044 CVE-2020-5247 CVE-2020-5249 CVE-2020-5267 CVE-2020-7068 CVE-2020-7598 CVE-2020-8164 CVE-2020-8165 CVE-2020-8166 CVE-2020-8167 CVE-2020-8174 CVE-2020-8184 CVE-2020-8185 CVE-2020-9490 CVE-2021-3449 SUSE-SU-2019:2961-1 SUSE-SU-2020:1297-1 SUSE-SU-2020:1576-1 SUSE-SU-2020:1933-1 SUSE-SU-2020:2456-1 SUSE-SU-2020:3036-1 SUSE-SU-2020:3067-1 SUSE-SU-2021:0954-1
Platform(s):	openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Module for Web Scripting 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND libICE6-1.0.9-lp150.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-31.7.0esr-0.8 is installed OR MozillaFirefox-translations-31.7.0esr-0.8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information flash-player-11.2.202.569-0.35 is installed OR flash-player-gnome-11.2.202.569-0.35 is installed OR flash-player-kde4-11.2.202.569-0.35 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND libraw9-0.15.4-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information java-1_7_0-openjdk-plugin-1.6.1-2.3 is installed OR java-1_8_0-openjdk-plugin-1.6.1-2.4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND kdump-0.8.15-28 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information cpp48-4.8.5-30 is installed OR gcc48-4.8.5-30 is installed OR gcc48-32bit-4.8.5-30 is installed OR gcc48-c++-4.8.5-30 is installed OR gcc48-gij-4.8.5-30 is installed OR gcc48-gij-32bit-4.8.5-30 is installed OR gcc48-info-4.8.5-30 is installed OR libasan0-4.8.5-30 is installed OR libasan0-32bit-4.8.5-30 is installed OR libgcj48-4.8.5-30 is installed OR libgcj48-32bit-4.8.5-30 is installed OR libgcj48-jar-4.8.5-30 is installed OR libgcj_bc1-4.8.5-30 is installed OR libstdc++48-devel-4.8.5-30 is installed OR libstdc++48-devel-32bit-4.8.5-30 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information alsa-1.0.27.2-15 is installed OR libasound2-1.0.27.2-15 is installed OR libasound2-32bit-1.0.27.2-15 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information xen-4.12.1_04-3.6 is installed OR xen-devel-4.12.1_04-3.6 is installed OR xen-doc-html-4.12.1_04-3.6 is installed OR xen-libs-4.12.1_04-3.6 is installed OR xen-libs-32bit-4.12.1_04-3.6 is installed OR xen-tools-4.12.1_04-3.6 is installed OR xen-tools-domU-4.12.1_04-3.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information rmt-server-2.6.5-3.3 is installed OR rmt-server-config-2.6.5-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP2 is installed AND Package Information apache2-mod_php7-7.4.6-3.6 is installed OR php7-7.4.6-3.6 is installed OR php7-bcmath-7.4.6-3.6 is installed OR php7-bz2-7.4.6-3.6 is installed OR php7-calendar-7.4.6-3.6 is installed OR php7-ctype-7.4.6-3.6 is installed OR php7-curl-7.4.6-3.6 is installed OR php7-dba-7.4.6-3.6 is installed OR php7-devel-7.4.6-3.6 is installed OR php7-dom-7.4.6-3.6 is installed OR php7-enchant-7.4.6-3.6 is installed OR php7-exif-7.4.6-3.6 is installed OR php7-fastcgi-7.4.6-3.6 is installed OR php7-fileinfo-7.4.6-3.6 is installed OR php7-fpm-7.4.6-3.6 is installed OR php7-ftp-7.4.6-3.6 is installed OR php7-gd-7.4.6-3.6 is installed OR php7-gettext-7.4.6-3.6 is installed OR php7-gmp-7.4.6-3.6 is installed OR php7-iconv-7.4.6-3.6 is installed OR php7-intl-7.4.6-3.6 is installed OR php7-json-7.4.6-3.6 is installed OR php7-ldap-7.4.6-3.6 is installed OR php7-mbstring-7.4.6-3.6 is installed OR php7-mysql-7.4.6-3.6 is installed OR php7-odbc-7.4.6-3.6 is installed OR php7-opcache-7.4.6-3.6 is installed OR php7-openssl-7.4.6-3.6 is installed OR php7-pcntl-7.4.6-3.6 is installed OR php7-pdo-7.4.6-3.6 is installed OR php7-pgsql-7.4.6-3.6 is installed OR php7-phar-7.4.6-3.6 is installed OR php7-posix-7.4.6-3.6 is installed OR php7-readline-7.4.6-3.6 is installed OR php7-shmop-7.4.6-3.6 is installed OR php7-snmp-7.4.6-3.6 is installed OR php7-soap-7.4.6-3.6 is installed OR php7-sockets-7.4.6-3.6 is installed OR php7-sodium-7.4.6-3.6 is installed OR php7-sqlite-7.4.6-3.6 is installed OR php7-sysvmsg-7.4.6-3.6 is installed OR php7-sysvsem-7.4.6-3.6 is installed OR php7-sysvshm-7.4.6-3.6 is installed OR php7-tidy-7.4.6-3.6 is installed OR php7-tokenizer-7.4.6-3.6 is installed OR php7-xmlreader-7.4.6-3.6 is installed OR php7-xmlrpc-7.4.6-3.6 is installed OR php7-xmlwriter-7.4.6-3.6 is installed OR php7-xsl-7.4.6-3.6 is installed OR php7-zip-7.4.6-3.6 is installed OR php7-zlib-7.4.6-3.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information qemu-2.3.1-5 is installed OR qemu-block-curl-2.3.1-5 is installed OR qemu-block-rbd-2.3.1-5 is installed OR qemu-guest-agent-2.3.1-5 is installed OR qemu-ipxe-1.0.0-5 is installed OR qemu-kvm-2.3.1-5 is installed OR qemu-lang-2.3.1-5 is installed OR qemu-ppc-2.3.1-5 is installed OR qemu-s390-2.3.1-5 is installed OR qemu-seabios-1.8.1-5 is installed OR qemu-sgabios-8-5 is installed OR qemu-tools-2.3.1-5 is installed OR qemu-vgabios-1.8.1-5 is installed OR qemu-x86-2.3.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND clamav-0.100.3-33.21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information cvs-1.12.12-181 is installed OR cvs-doc-1.12.12-181 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information dovecot22-2.2.31-19.11 is installed OR dovecot22-backend-mysql-2.2.31-19.11 is installed OR dovecot22-backend-pgsql-2.2.31-19.11 is installed OR dovecot22-backend-sqlite-2.2.31-19.11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_103-92_56-default-12-2 is installed OR kgraft-patch-SLE12-SP2_Update_17-12-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information libopenssl-devel-1.0.2j-60.30 is installed OR libopenssl1_0_0-1.0.2j-60.30 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.30 is installed OR openssl-1.0.2j-60.30 is installed OR openssl-doc-1.0.2j-60.30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND ucode-intel-20191112a-13.56 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_162-94_69-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_21-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information ghostscript-9.27-23.28 is installed OR ghostscript-x11-9.27-23.28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND squid-3.5.21-26.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information glibc-2.22-15 is installed OR glibc-32bit-2.22-15 is installed OR glibc-devel-2.22-15 is installed OR glibc-devel-32bit-2.22-15 is installed OR glibc-html-2.22-15 is installed OR glibc-i18ndata-2.22-15 is installed OR glibc-info-2.22-15 is installed OR glibc-locale-2.22-15 is installed OR glibc-locale-32bit-2.22-15 is installed OR glibc-profile-2.22-15 is installed OR glibc-profile-32bit-2.22-15 is installed OR nscd-2.22-15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information nodejs8-8.17.0-3.32 is installed OR nodejs8-devel-8.17.0-3.32 is installed OR nodejs8-docs-8.17.0-3.32 is installed OR npm8-8.17.0-3.32 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND Package Information libopenssl1_1-1.1.1d-2.33.1 is installed OR libopenssl1_1-32bit-1.1.1d-2.33.1 is installed OR openssl-1_1-1.1.1d-2.33.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libpainter0-0.9.6-4.8 is installed OR librfxencode0-0.9.6-4.8 is installed OR xrdp-0.9.6-4.8 is installed OR xrdp-devel-0.9.6-4.8 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-150.17 is installed OR kernel-default-extra-4.12.14-150.17 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND unrar-5.0.14-3 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information java-1_7_0-openjdk-1.7.0.221-43.22 is installed OR java-1_7_0-openjdk-demo-1.7.0.221-43.22 is installed OR java-1_7_0-openjdk-devel-1.7.0.221-43.22 is installed OR java-1_7_0-openjdk-headless-1.7.0.221-43.22 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND python-Django1-1.11.23-3.9 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND clamav-0.100.3-33.26 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND python-Django1-1.11.20-3.3 is installed

BACK