Oval Definition:oval:org.opensuse.security:def:52047
Revision Date:2021-06-23Version:1
Title:Security update for cryptctl (Important)
Description:

This update for cryptctl fixes the following issues:

Update to version 2.4:

- CVE-2019-18906: Client side password hashing was equivalent to clear text password storage (bsc#1186226) - First step to use plain text password instead of hashed password. - Move repository into the SUSE github organization - in RPC server, if client comes from localhost, remember its ipv4 localhost address instead of ipv6 address - tell a record to clear expired pending commands upon saving a command result; introduce pending commands RPC test case - avoid hard coding 127.0.0.1 in host ID of alive message test; let system administrator mount and unmount disks by issuing these two commands on key server.
Family:unixClass:patch
Status:Reference(s):1047962
1049826
1053177
1065022
1099019
1099358
1102261
1105434
1110542
1111319
1112911
1113296
1114908
1115341
1116840
1118758
1119373
1119820
1119873
1120263
1120463
1120629
1120630
1120631
1121611
1122062
1122471
1123137
1123681
1123843
1123865
1123967
1124897
1125415
1127026
1127155
1127220
1129124
1130161
1131823
1135749
1136020
1136440
1137977
1142988
1144363
1151488
1154092
1160611
1160612
1160613
1160614
1160615
1160922
1162296
1165548
1168554
1173389
1175193
1175194
1178666
1178667
1178668
1186226
663358
764147
965786
978193
993025
CVE-2008-3825
CVE-2009-1384
CVE-2009-2905
CVE-2011-2895
CVE-2012-0037
CVE-2012-2738
CVE-2012-4453
CVE-2013-2126
CVE-2013-2127
CVE-2013-6462
CVE-2014-0209
CVE-2014-0210
CVE-2014-0211
CVE-2015-1802
CVE-2015-1803
CVE-2015-1804
CVE-2016-8637
CVE-2018-1000222
CVE-2018-20532
CVE-2018-20533
CVE-2018-20534
CVE-2019-0816
CVE-2019-18904
CVE-2019-18906
CVE-2019-2126
CVE-2019-9232
CVE-2019-9325
CVE-2019-9371
CVE-2019-9433
CVE-2020-11996
CVE-2020-14349
CVE-2020-14350
CVE-2020-25694
CVE-2020-25695
CVE-2020-25696
SUSE-SU-2018:2840-1
SUSE-SU-2019:2030-1
SUSE-SU-2019:3096-1
SUSE-SU-2020:0143-1
SUSE-SU-2020:1179-1
SUSE-SU-2020:1841-1
SUSE-SU-2020:2264-1
SUSE-SU-2020:3455-1
SUSE-SU-2021:2137-1
Platform(s):openSUSE Leap 15.0
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Workstation Extension 15
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libXrender1-0.9.10-lp150.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • flash-player-11.2.202.554-0.29 is installed
  • OR flash-player-gnome-11.2.202.554-0.29 is installed
  • OR flash-player-kde4-11.2.202.554-0.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.91-0.14 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.91-0.14 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.91-0.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND libvte9-0.28.2-17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND libXfont1-1.4.7-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND libXfont1-1.5.1-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND dracut-044-113 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND cifs-utils-6.5-9.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • cloud-init-19.2-8.11 is installed
  • OR cloud-init-doc-19.2-8.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND Package Information
  • apache2-mod_php7-7.2.5-4.9 is installed
  • OR php7-7.2.5-4.9 is installed
  • OR php7-bcmath-7.2.5-4.9 is installed
  • OR php7-bz2-7.2.5-4.9 is installed
  • OR php7-calendar-7.2.5-4.9 is installed
  • OR php7-ctype-7.2.5-4.9 is installed
  • OR php7-curl-7.2.5-4.9 is installed
  • OR php7-dba-7.2.5-4.9 is installed
  • OR php7-devel-7.2.5-4.9 is installed
  • OR php7-dom-7.2.5-4.9 is installed
  • OR php7-enchant-7.2.5-4.9 is installed
  • OR php7-exif-7.2.5-4.9 is installed
  • OR php7-fastcgi-7.2.5-4.9 is installed
  • OR php7-fileinfo-7.2.5-4.9 is installed
  • OR php7-fpm-7.2.5-4.9 is installed
  • OR php7-ftp-7.2.5-4.9 is installed
  • OR php7-gd-7.2.5-4.9 is installed
  • OR php7-gettext-7.2.5-4.9 is installed
  • OR php7-gmp-7.2.5-4.9 is installed
  • OR php7-iconv-7.2.5-4.9 is installed
  • OR php7-intl-7.2.5-4.9 is installed
  • OR php7-json-7.2.5-4.9 is installed
  • OR php7-ldap-7.2.5-4.9 is installed
  • OR php7-mbstring-7.2.5-4.9 is installed
  • OR php7-mysql-7.2.5-4.9 is installed
  • OR php7-odbc-7.2.5-4.9 is installed
  • OR php7-opcache-7.2.5-4.9 is installed
  • OR php7-openssl-7.2.5-4.9 is installed
  • OR php7-pcntl-7.2.5-4.9 is installed
  • OR php7-pdo-7.2.5-4.9 is installed
  • OR php7-pear-7.2.5-4.9 is installed
  • OR php7-pear-Archive_Tar-7.2.5-4.9 is installed
  • OR php7-pgsql-7.2.5-4.9 is installed
  • OR php7-phar-7.2.5-4.9 is installed
  • OR php7-posix-7.2.5-4.9 is installed
  • OR php7-shmop-7.2.5-4.9 is installed
  • OR php7-snmp-7.2.5-4.9 is installed
  • OR php7-soap-7.2.5-4.9 is installed
  • OR php7-sockets-7.2.5-4.9 is installed
  • OR php7-sqlite-7.2.5-4.9 is installed
  • OR php7-sysvmsg-7.2.5-4.9 is installed
  • OR php7-sysvsem-7.2.5-4.9 is installed
  • OR php7-sysvshm-7.2.5-4.9 is installed
  • OR php7-tokenizer-7.2.5-4.9 is installed
  • OR php7-wddx-7.2.5-4.9 is installed
  • OR php7-xmlreader-7.2.5-4.9 is installed
  • OR php7-xmlrpc-7.2.5-4.9 is installed
  • OR php7-xmlwriter-7.2.5-4.9 is installed
  • OR php7-xsl-7.2.5-4.9 is installed
  • OR php7-zip-7.2.5-4.9 is installed
  • OR php7-zlib-7.2.5-4.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • strongswan-5.1.3-18 is installed
  • OR strongswan-doc-5.1.3-18 is installed
  • OR strongswan-hmac-5.1.3-18 is installed
  • OR strongswan-ipsec-5.1.3-18 is installed
  • OR strongswan-libs0-5.1.3-18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • ghostscript-9.52-23.34 is installed
  • OR ghostscript-x11-9.52-23.34 is installed
  • OR libspectre-0.2.7-12.10 is installed
  • OR libspectre1-0.2.7-12.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • evince-3.20.1-5 is installed
  • OR evince-browser-plugin-3.20.1-5 is installed
  • OR evince-lang-3.20.1-5 is installed
  • OR evince-plugin-djvudocument-3.20.1-5 is installed
  • OR evince-plugin-dvidocument-3.20.1-5 is installed
  • OR evince-plugin-pdfdocument-3.20.1-5 is installed
  • OR evince-plugin-psdocument-3.20.1-5 is installed
  • OR evince-plugin-tiffdocument-3.20.1-5 is installed
  • OR evince-plugin-xpsdocument-3.20.1-5 is installed
  • OR libevdocument3-4-3.20.1-5 is installed
  • OR libevview3-3-3.20.1-5 is installed
  • OR nautilus-evince-3.20.1-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-52.8.1esr-109.34 is installed
  • OR MozillaFirefox-devel-52.8.1esr-109.34 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_90-92_50-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_15-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND ant-1.9.4-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libdcerpc-binding0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libdcerpc-binding0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libdcerpc0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libdcerpc0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr-krb5pac0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr-krb5pac0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr-nbt0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr-nbt0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr-standard0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr-standard0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libnetapi0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libnetapi0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-credentials0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-credentials0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-errors0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-errors0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-hostconfig0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-hostconfig0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-passdb0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-passdb0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-util0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-util0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamdb0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamdb0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsmbclient0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsmbclient0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsmbconf0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsmbconf0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsmbldap0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsmbldap0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libtevent-util0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libtevent-util0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libwbclient0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libwbclient0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-client-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-client-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-doc-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-libs-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-libs-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-winbind-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-winbind-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • ghostscript-9.27-23.31 is installed
  • OR ghostscript-x11-9.27-23.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_156-94_57-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_18-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND openvswitch-2.7.6-3.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • guile-2.0.9-8 is installed
  • OR guile-modules-2_0-2.0.9-8 is installed
  • OR libguile-2_0-22-2.0.9-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • rmt-server-2.5.7-3.31 is installed
  • OR rmt-server-config-2.5.7-3.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • AND cryptctl-2.4-2.10.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • libecpg6-10.14-4.25 is installed
  • OR libpq5-10.14-4.25 is installed
  • OR libpq5-32bit-10.14-4.25 is installed
  • OR postgresql10-10.14-4.25 is installed
  • OR postgresql10-contrib-10.14-4.25 is installed
  • OR postgresql10-devel-10.14-4.25 is installed
  • OR postgresql10-docs-10.14-4.25 is installed
  • OR postgresql10-plperl-10.14-4.25 is installed
  • OR postgresql10-plpython-10.14-4.25 is installed
  • OR postgresql10-pltcl-10.14-4.25 is installed
  • OR postgresql10-server-10.14-4.25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • PackageKit-1.1.10-4.10 is installed
  • OR PackageKit-gstreamer-plugin-1.1.10-4.10 is installed
  • OR PackageKit-gtk3-module-1.1.10-4.10 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • python-paramiko-1.15.2-2.3 is installed
  • OR python-pycrypto-2.6.1-10.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • libsqlite3-0-3.8.10.2-9.9 is installed
  • OR libsqlite3-0-32bit-3.8.10.2-9.9 is installed
  • OR sqlite3-3.8.10.2-9.9 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libpython3_4m1_0-3.4.6-25.29 is installed
  • OR python3-3.4.6-25.29 is installed
  • OR python3-base-3.4.6-25.29 is installed
  • OR python3-curses-3.4.6-25.29 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ruby2.1-rubygem-actionpack-4_2-4.2.9-7.6 is installed
  • OR rubygem-actionpack-4_2-4.2.9-7.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND nodejs6-6.17.0-11.27 is installed
    • BACK