Oval Definition:oval:org.opensuse.security:def:52119
Revision Date:2020-12-01Version:1
Title:Security update for gnutls (Important)
Description:

This update for gnutls fixes the following issues:

- CVE-2020-13777: Fixed an insecure session ticket key construction which could have made the TLS server to not bind the session ticket encryption key with a value supplied by the application until the initial key rotation, allowing an attacker to bypass authentication in TLS 1.3 and recover previous conversations in TLS 1.2 (bsc#1172506). - Fixed an improper handling of certificate chain with cross-signed intermediate CA certificates (bsc#1172461).
Family:unixClass:patch
Status:Reference(s):1051510
1058115
1065729
1076907
1082555
1083647
1085780
1089895
1091376
1098998
1100079
1100081
1100082
1100780
1103990
1103991
1103992
1104745
1109837
1111666
1112178
1112374
1113956
1114279
1124278
1127354
1127355
1127371
1133021
1142685
1144333
1151794
1152489
1153259
1154824
1155784
1157169
1158265
1158696
1160388
1160594
1160764
1160947
1161779
1163922
1164780
1164871
1165183
1165478
1165741
1166969
1166978
1167574
1167851
1167867
1168332
1168670
1168789
1169020
1169514
1169525
1169762
1170056
1170125
1170145
1170284
1170345
1170457
1170522
1170592
1170617
1170618
1170620
1170621
1170770
1170778
1170791
1170901
1171078
1171098
1171118
1171189
1171191
1171195
1171202
1171205
1171214
1171217
1171218
1171219
1171220
1171244
1171293
1171417
1171527
1171599
1171600
1171601
1171602
1171604
1171605
1171606
1171607
1171608
1171609
1171610
1171611
1171612
1171613
1171614
1171615
1171616
1171617
1171618
1171619
1171620
1171621
1171622
1171623
1171624
1171625
1171626
1171662
1171679
1171691
1171692
1171694
1171695
1171736
1171817
1171948
1171949
1171951
1171952
1171979
1171982
1171983
1172017
1172096
1172097
1172098
1172099
1172101
1172102
1172103
1172104
1172127
1172130
1172185
1172188
1172199
1172201
1172202
1172221
1172249
1172251
1172317
1172342
1172343
1172344
1172366
1172378
1172391
1172397
1172453
1172461
1172506
1173274
1175476
1175674
1178666
1178667
1178668
CVE-2011-0461
CVE-2011-2054
CVE-2011-3177
CVE-2011-4405
CVE-2013-2003
CVE-2014-1932
CVE-2014-2653
CVE-2014-3970
CVE-2015-5352
CVE-2015-5600
CVE-2015-6563
CVE-2015-6564
CVE-2015-8325
CVE-2016-0777
CVE-2016-0778
CVE-2016-10009
CVE-2016-10010
CVE-2016-10011
CVE-2016-10012
CVE-2016-1908
CVE-2016-3115
CVE-2016-6210
CVE-2016-6515
CVE-2016-8858
CVE-2018-1000199
CVE-2018-12359
CVE-2018-12360
CVE-2018-12362
CVE-2018-12363
CVE-2018-12364
CVE-2018-12365
CVE-2018-12366
CVE-2018-12372
CVE-2018-12373
CVE-2018-12374
CVE-2018-5188
CVE-2019-14562
CVE-2019-19462
CVE-2019-19727
CVE-2019-20806
CVE-2019-20812
CVE-2019-3688
CVE-2019-3690
CVE-2019-9455
CVE-2020-0543
CVE-2020-10690
CVE-2020-10711
CVE-2020-10720
CVE-2020-10732
CVE-2020-10751
CVE-2020-10757
CVE-2020-12114
CVE-2020-12464
CVE-2020-12652
CVE-2020-12653
CVE-2020-12654
CVE-2020-12655
CVE-2020-12656
CVE-2020-12657
CVE-2020-12659
CVE-2020-12768
CVE-2020-12769
CVE-2020-13143
CVE-2020-13777
CVE-2020-14422
CVE-2020-25694
CVE-2020-25695
CVE-2020-25696
CVE-2020-8013
SUSE-SU-2018:2174-1
SUSE-SU-2020:0228-1
SUSE-SU-2020:1163-1
SUSE-SU-2020:1920-1
SUSE-SU-2020:2713-1
SUSE-SU-2020:3455-1
Platform(s):openSUSE Leap 15.0
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libopenssl1_0_0-1.0.2n-lp150.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • libpulse-browse0-0.9.23-0.15 is installed
  • OR libpulse-mainloop-glib0-0.9.23-0.15 is installed
  • OR libpulse0-0.9.23-0.15 is installed
  • OR libpulse0-32bit-0.9.23-0.15 is installed
  • OR pulseaudio-0.9.23-0.15 is installed
  • OR pulseaudio-esound-compat-0.9.23-0.15 is installed
  • OR pulseaudio-gdm-hooks-0.9.23-0.15 is installed
  • OR pulseaudio-lang-0.9.23-0.15 is installed
  • OR pulseaudio-module-bluetooth-0.9.23-0.15 is installed
  • OR pulseaudio-module-gconf-0.9.23-0.15 is installed
  • OR pulseaudio-module-jack-0.9.23-0.15 is installed
  • OR pulseaudio-module-lirc-0.9.23-0.15 is installed
  • OR pulseaudio-module-x11-0.9.23-0.15 is installed
  • OR pulseaudio-module-zeroconf-0.9.23-0.15 is installed
  • OR pulseaudio-utils-0.9.23-0.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND yast2-3.1.108-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • libsoup-2_4-1-2.44.2-1 is installed
  • OR libsoup-2_4-1-32bit-2.44.2-1 is installed
  • OR libsoup-lang-2.44.2-1 is installed
  • OR typelib-1_0-Soup-2_4-2.44.2-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-28 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libXcursor1-1.1.14-3 is installed
  • OR libXcursor1-32bit-1.1.14-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • hplip-3.16.11-1 is installed
  • OR hplip-hpijs-3.16.11-1 is installed
  • OR hplip-sane-3.16.11-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • gnutls-3.6.7-6.29 is installed
  • OR gnutls-guile-3.6.7-6.29 is installed
  • OR libgnutls-devel-32bit-3.6.7-6.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • MozillaFirefox-38.4.0esr-51 is installed
  • OR MozillaFirefox-translations-38.4.0esr-51 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_66-default-7-2 is installed
  • OR kgraft-patch-3_12_74-60_64_66-xen-7-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_23-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND autofs-5.0.9-21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • gnutls-3.2.15-18.6 is installed
  • OR libgnutls-openssl27-3.2.15-18.6 is installed
  • OR libgnutls28-3.2.15-18.6 is installed
  • OR libgnutls28-32bit-3.2.15-18.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • ntp-4.2.8p12-64.8 is installed
  • OR ntp-doc-4.2.8p12-64.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_74-92_35-default-11-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_12-11-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed
  • OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed
  • OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed
  • OR webkit2gtk3-2.24.4-2.47 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_178-94_91-default-5-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_25-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_162-94_72-default-5-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_22-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • gdk-pixbuf-2.34.0-19.17 is installed
  • OR gdk-pixbuf-lang-2.34.0-19.17 is installed
  • OR gdk-pixbuf-query-loaders-2.34.0-19.17 is installed
  • OR gdk-pixbuf-query-loaders-32bit-2.34.0-19.17 is installed
  • OR libgdk_pixbuf-2_0-0-2.34.0-19.17 is installed
  • OR libgdk_pixbuf-2_0-0-32bit-2.34.0-19.17 is installed
  • OR typelib-1_0-GdkPixbuf-2_0-2.34.0-19.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • avahi-0.6.32-30 is installed
  • OR avahi-lang-0.6.32-30 is installed
  • OR avahi-utils-0.6.32-30 is installed
  • OR libavahi-client3-0.6.32-30 is installed
  • OR libavahi-client3-32bit-0.6.32-30 is installed
  • OR libavahi-common3-0.6.32-30 is installed
  • OR libavahi-common3-32bit-0.6.32-30 is installed
  • OR libavahi-core7-0.6.32-30 is installed
  • OR libdns_sd-0.6.32-30 is installed
  • OR libdns_sd-32bit-0.6.32-30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND permissions-20180125-3.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND python-ipaddress-1.0.18-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • MozillaThunderbird-52.9.1-3.7 is installed
  • OR MozillaThunderbird-devel-52.9.1-3.7 is installed
  • OR MozillaThunderbird-translations-common-52.9.1-3.7 is installed
  • OR MozillaThunderbird-translations-other-52.9.1-3.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.45 is installed
  • OR kernel-default-extra-4.12.14-197.45 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • ruby2.1-rubygem-chef-10.32.2-3 is installed
  • OR ruby2.1-rubygem-chef-expander-10.32.2-1 is installed
  • OR ruby2.1-rubygem-chef-server-10.32.2-1 is installed
  • OR ruby2.1-rubygem-chef-server-api-10.32.2-4 is installed
  • OR ruby2.1-rubygem-chef-solr-10.32.2-1 is installed
  • OR rubygem-chef-10.32.2-3 is installed
  • OR rubygem-chef-expander-10.32.2-1 is installed
  • OR rubygem-chef-server-api-10.32.2-4 is installed
  • OR rubygem-chef-solr-10.32.2-1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • libseccomp-2.4.1-11.3 is installed
  • OR libseccomp2-2.4.1-11.3 is installed
  • OR libseccomp2-32bit-2.4.1-11.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libsolv-0.6.36-2.27.19 is installed
  • OR libsolv-tools-0.6.36-2.27.19 is installed
  • OR libzypp-16.20.2-27.60 is installed
  • OR perl-solv-0.6.36-2.27.19 is installed
  • OR python-solv-0.6.36-2.27.19 is installed
  • OR zypper-1.13.54-18.40 is installed
  • OR zypper-log-1.13.54-18.40 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND Package Information
  • ardana-db-9.0+git.1572311426.a6dc2fd-3.13 is installed
  • OR ardana-keystone-9.0+git.1573069087.15ffd1c-3.13 is installed
  • OR ardana-neutron-9.0+git.1572019823.6650494-3.16 is installed
  • OR ardana-nova-9.0+git.1572618171.4460843-3.13 is installed
  • OR openstack-barbican-7.0.1~dev21-3.3 is installed
  • OR openstack-barbican-api-7.0.1~dev21-3.3 is installed
  • OR openstack-barbican-keystone-listener-7.0.1~dev21-3.3 is installed
  • OR openstack-barbican-retry-7.0.1~dev21-3.3 is installed
  • OR openstack-barbican-worker-7.0.1~dev21-3.3 is installed
  • OR openstack-heat-templates-0.0.0+git.1553459627.948e8cc-3.3 is installed
  • OR openstack-keystone-14.1.1~dev28-3.16 is installed
  • OR openstack-neutron-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-dhcp-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-gbp-5.0.1~dev476-3.13 is installed
  • OR openstack-neutron-ha-tool-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-l3-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-lbaas-13.0.1~dev16-3.13 is installed
  • OR openstack-neutron-lbaas-agent-13.0.1~dev16-3.13 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-macvtap-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-metadata-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-metering-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-server-13.0.6~dev8-3.16 is installed
  • OR openstack-nova-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-api-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-cells-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-compute-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-conductor-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-console-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-novncproxy-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-placement-api-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-scheduler-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-serialproxy-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-vncproxy-18.2.4~dev22-3.16 is installed
  • OR openstack-octavia-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-amphora-agent-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-api-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-health-manager-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-housekeeping-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-worker-3.2.1~dev3-3.16 is installed
  • OR openstack-sahara-9.0.2~dev14-3.6 is installed
  • OR openstack-sahara-api-9.0.2~dev14-3.6 is installed
  • OR openstack-sahara-engine-9.0.2~dev14-3.6 is installed
  • OR python-barbican-7.0.1~dev21-3.3 is installed
  • OR python-keystone-14.1.1~dev28-3.16 is installed
  • OR python-neutron-13.0.6~dev8-3.16 is installed
  • OR python-neutron-gbp-5.0.1~dev476-3.13 is installed
  • OR python-neutron-lbaas-13.0.1~dev16-3.13 is installed
  • OR python-nova-18.2.4~dev22-3.16 is installed
  • OR python-octavia-3.2.1~dev3-3.16 is installed
  • OR python-psutil-5.4.6-3.3 is installed
  • OR python-sahara-9.0.2~dev14-3.6 is installed
  • OR release-notes-suse-openstack-cloud-9.20191025-3.15 is installed
  • OR venv-openstack-barbican-7.0.1~dev21-3.13 is installed
  • OR venv-openstack-barbican-x86_64-7.0.1~dev21-3.13 is installed
  • OR venv-openstack-cinder-13.0.8~dev8-3.13 is installed
  • OR venv-openstack-cinder-x86_64-13.0.8~dev8-3.13 is installed
  • OR venv-openstack-designate-7.0.1~dev22-3.13 is installed
  • OR venv-openstack-designate-x86_64-7.0.1~dev22-3.13 is installed
  • OR venv-openstack-heat-11.0.3~dev23-3.13 is installed
  • OR venv-openstack-heat-x86_64-11.0.3~dev23-3.13 is installed
  • OR venv-openstack-keystone-14.1.1~dev28-3.13 is installed
  • OR venv-openstack-keystone-x86_64-14.1.1~dev28-3.13 is installed
  • OR venv-openstack-magnum-7.1.1~dev28-4.13 is installed
  • OR venv-openstack-magnum-x86_64-7.1.1~dev28-4.13 is installed
  • OR venv-openstack-manila-7.3.1~dev15-3.13 is installed
  • OR venv-openstack-manila-x86_64-7.3.1~dev15-3.13 is installed
  • OR venv-openstack-monasca-ceilometer-1.8.2~dev3-3.13 is installed
  • OR venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.13 is installed
  • OR venv-openstack-neutron-13.0.6~dev8-6.13 is installed
  • OR venv-openstack-neutron-x86_64-13.0.6~dev8-6.13 is installed
  • OR venv-openstack-nova-18.2.4~dev22-3.13 is installed
  • OR venv-openstack-nova-x86_64-18.2.4~dev22-3.13 is installed
  • OR venv-openstack-octavia-3.2.1~dev3-4.13 is installed
  • OR venv-openstack-octavia-x86_64-3.2.1~dev3-4.13 is installed
  • OR venv-openstack-sahara-9.0.2~dev14-3.13 is installed
  • OR venv-openstack-sahara-x86_64-9.0.2~dev14-3.13 is installed
    • BACK