OVAL Reference oval:org.opensuse.security:def:52147

Oval Definition:

oval:org.opensuse.security:def:52147

Revision Date:	2020-12-01	Version:	1
Title:	Security update for rubygem-puma (Moderate)
Description:	This update for rubygem-puma to version 4.3.5 fixes the following issues: - CVE-2020-11077: Fixed a HTTP smuggling issue related to proxy usage (bsc#1172175). - CVE-2020-11076: Fixed a HTTP smuggling issue when using an invalid transfer-encoding header (bsc#1172176). - Disabled TLSv1.0 and TLSv1.1 (jsc#SLE-6965).
Family:	unix	Class:	patch
Status:		Reference(s):	1058115 1061210 1065729 1071995 1074701 1083548 1085030 1085235 1085308 1087078 1100394 1102640 1105173 1105412 1111666 1112178 1113956 1120163 1124493 1133021 1144333 1144522 1152684 1154366 1160968 1165629 1165631 1169511 1169790 1170595 1171352 1171688 1171988 1172108 1172175 1172176 1172247 1172277 1172418 1172428 1172781 1172782 1172783 1172871 1172872 1172963 1173485 1173798 1173954 1174003 1174026 1174070 1174161 1174205 1174247 1174298 1174299 1174387 1174484 1174547 1174549 1174550 1174625 1174658 1174685 1174689 1174699 1174734 1174757 1174771 1174840 1174841 1174843 1174844 1174845 1174852 1174873 1174887 1174904 1174926 1174968 1175062 1175063 1175064 1175065 1175066 1175067 1175112 1175122 1175127 1175128 1175149 1175199 1175204 1175213 1175228 1175232 1175284 1175393 1175394 1175396 1175397 1175398 1175399 1175400 1175401 1175402 1175403 1175404 1175405 1175406 1175407 1175408 1175409 1175410 1175411 1175412 1175413 1175414 1175415 1175416 1175417 1175418 1175419 1175420 1175421 1175422 1175423 1175440 1175493 1175515 1175518 1175526 1175550 1175654 1175666 1175668 1175669 1175670 1175691 1175767 1175768 1175769 1175770 1175771 1175772 1175786 1175873 1175992 1176069 1178671 CVE-2008-1420 CVE-2009-3379 CVE-2010-0624 CVE-2010-3609 CVE-2012-0444 CVE-2012-0804 CVE-2012-2812 CVE-2012-2813 CVE-2012-2814 CVE-2012-2836 CVE-2012-2837 CVE-2012-2840 CVE-2012-2841 CVE-2012-4510 CVE-2013-4238 CVE-2014-4650 CVE-2014-8767 CVE-2014-8768 CVE-2014-8769 CVE-2014-9140 CVE-2015-0261 CVE-2015-2153 CVE-2015-2154 CVE-2015-2155 CVE-2015-3138 CVE-2016-0772 CVE-2016-1000110 CVE-2016-5636 CVE-2016-5699 CVE-2016-6321 CVE-2016-7922 CVE-2016-7923 CVE-2016-7924 CVE-2016-7925 CVE-2016-7926 CVE-2016-7927 CVE-2016-7928 CVE-2016-7929 CVE-2016-7930 CVE-2016-7931 CVE-2016-7932 CVE-2016-7933 CVE-2016-7934 CVE-2016-7935 CVE-2016-7936 CVE-2016-7937 CVE-2016-7938 CVE-2016-7939 CVE-2016-7940 CVE-2016-7973 CVE-2016-7974 CVE-2016-7975 CVE-2016-7983 CVE-2016-7984 CVE-2016-7985 CVE-2016-7986 CVE-2016-7992 CVE-2016-7993 CVE-2016-8574 CVE-2016-8575 CVE-2017-5202 CVE-2017-5203 CVE-2017-5204 CVE-2017-5205 CVE-2017-5341 CVE-2017-5342 CVE-2017-5482 CVE-2017-5483 CVE-2017-5484 CVE-2017-5485 CVE-2017-5486 CVE-2019-2949 CVE-2019-3820 CVE-2019-9853 CVE-2020-10135 CVE-2020-11076 CVE-2020-11077 CVE-2020-11651 CVE-2020-11652 CVE-2020-12321 CVE-2020-14314 CVE-2020-14331 CVE-2020-14356 CVE-2020-14386 CVE-2020-16166 CVE-2020-1749 CVE-2020-24394 CVE-2020-2654 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 SUSE-SU-2019:1459-1 SUSE-SU-2020:1151-1 SUSE-SU-2020:1684-1 SUSE-SU-2020:2610-1 SUSE-SU-2020:3349-1
Platform(s):	openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND libsndfile1-1.0.28-lp150.2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND mutt-1.5.17-42.37 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information MozillaFirefox-31.5.0esr-24 is installed OR MozillaFirefox-translations-31.5.0esr-24 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information cups-pk-helper-0.2.5-3 is installed OR cups-pk-helper-lang-0.2.5-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND cvs-1.12.12-181 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libexif12-0.6.21-6 is installed OR libexif12-32bit-0.6.21-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libXcursor1-1.1.14-4.6 is installed OR libXcursor1-32bit-1.1.14-4.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information ruby2.5-rubygem-puma-doc-4.3.5-3.3 is installed OR rubygem-puma-4.3.5-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information libmysqlclient-devel-10.0.31-29.3 is installed OR libmysqlclient18-10.0.31-29.3 is installed OR libmysqlclient18-32bit-10.0.31-29.3 is installed OR libmysqlclient_r18-10.0.31-29.3 is installed OR libmysqld-devel-10.0.31-29.3 is installed OR libmysqld18-10.0.31-29.3 is installed OR mariadb-10.0.31-29.3 is installed OR mariadb-client-10.0.31-29.3 is installed OR mariadb-errormessages-10.0.31-29.3 is installed OR mariadb-tools-10.0.31-29.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information dhcp-4.3.3-9 is installed OR dhcp-client-4.3.3-9 is installed OR dhcp-relay-4.3.3-9 is installed OR dhcp-server-4.3.3-9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.25-30.39 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.25-30.39 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.25-30.39 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.25-30.39 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_120-92_70-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_20-9-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information dovecot22-2.2.31-19.11 is installed OR dovecot22-backend-mysql-2.2.31-19.11 is installed OR dovecot22-backend-pgsql-2.2.31-19.11 is installed OR dovecot22-backend-sqlite-2.2.31-19.11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information colord-gtk-lang-0.1.26-6 is installed OR libcolord-gtk1-0.1.26-6 is installed OR libcolord2-1.3.3-12 is installed OR libcolord2-32bit-1.3.3-12 is installed OR libcolorhug2-1.3.3-12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_7_0-openjdk-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-demo-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-devel-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-headless-1.7.0.241-43.30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information postgresql96-9.6.15-3.29 is installed OR postgresql96-contrib-9.6.15-3.29 is installed OR postgresql96-docs-9.6.15-3.29 is installed OR postgresql96-libs-9.6.15-3.29 is installed OR postgresql96-plperl-9.6.15-3.29 is installed OR postgresql96-plpython-9.6.15-3.29 is installed OR postgresql96-pltcl-9.6.15-3.29 is installed OR postgresql96-server-9.6.15-3.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information perl-5.18.2-12.20 is installed OR perl-32bit-5.18.2-12.20 is installed OR perl-base-5.18.2-12.20 is installed OR perl-doc-5.18.2-12.20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libopenssl-devel-1.0.2j-60.39 is installed OR libopenssl1_0_0-1.0.2j-60.39 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.39 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.39 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.39 is installed OR openssl-1.0.2j-60.39 is installed OR openssl-doc-1.0.2j-60.39 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND apache2-mod_nss-1.0.14-19.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.10-3.38 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.10-3.38 is installed OR java-1_8_0-ibm-devel-1.8.0_sr6.10-3.38 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.10-3.38 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information python2-salt-2019.2.0-5.67 is installed OR python3-salt-2019.2.0-5.67 is installed OR salt-2019.2.0-5.67 is installed OR salt-api-2019.2.0-5.67 is installed OR salt-bash-completion-2019.2.0-5.67 is installed OR salt-cloud-2019.2.0-5.67 is installed OR salt-doc-2019.2.0-5.67 is installed OR salt-fish-completion-2019.2.0-5.67 is installed OR salt-master-2019.2.0-5.67 is installed OR salt-minion-2019.2.0-5.67 is installed OR salt-proxy-2019.2.0-5.67 is installed OR salt-ssh-2019.2.0-5.67 is installed OR salt-standalone-formulas-configuration-2019.2.0-5.67 is installed OR salt-syndic-2019.2.0-5.67 is installed OR salt-zsh-completion-2019.2.0-5.67 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information gnome-shell-3.26.2+20180130.0d9c74212-4.19 is installed OR gnome-shell-calendar-3.26.2+20180130.0d9c74212-4.19 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information cmis-client-0.5.2-3.3 is installed OR libcmis-0_5-5-0.5.2-3.3 is installed OR libcmis-devel-0.5.2-3.3 is installed OR libixion-0.15.0-4.6 is installed OR libixion-0_15-0-0.15.0-4.6 is installed OR libmwaw-0.3.15-4.6 is installed OR libmwaw-0_3-3-0.3.15-4.6 is installed OR liborcus-0.15.3-3.6 is installed OR liborcus-0_15-0-0.15.3-3.6 is installed OR liborcus-devel-0.15.3-3.6 is installed OR myspell-af_ZA-20191016-3.12 is installed OR myspell-ar-20191016-3.12 is installed OR myspell-bg_BG-20191016-3.12 is installed OR myspell-bn_BD-20191016-3.12 is installed OR myspell-br_FR-20191016-3.12 is installed OR myspell-ca-20191016-3.12 is installed OR myspell-cs_CZ-20191016-3.12 is installed OR myspell-da_DK-20191016-3.12 is installed OR myspell-dictionaries-20191016-3.12 is installed OR myspell-el_GR-20191016-3.12 is installed OR myspell-et_EE-20191016-3.12 is installed OR myspell-fr_FR-20191016-3.12 is installed OR myspell-gl-20191016-3.12 is installed OR myspell-gu_IN-20191016-3.12 is installed OR myspell-he_IL-20191016-3.12 is installed OR myspell-hi_IN-20191016-3.12 is installed OR myspell-hr_HR-20191016-3.12 is installed OR myspell-it_IT-20191016-3.12 is installed OR myspell-lt_LT-20191016-3.12 is installed OR myspell-lv_LV-20191016-3.12 is installed OR myspell-nl_NL-20191016-3.12 is installed OR myspell-nn_NO-20191016-3.12 is installed OR myspell-pl_PL-20191016-3.12 is installed OR myspell-pt_PT-20191016-3.12 is installed OR myspell-si_LK-20191016-3.12 is installed OR myspell-sk_SK-20191016-3.12 is installed OR myspell-sl_SI-20191016-3.12 is installed OR myspell-sr-20191016-3.12 is installed OR myspell-sv_SE-20191016-3.12 is installed OR myspell-te_IN-20191016-3.12 is installed OR myspell-th_TH-20191016-3.12 is installed OR myspell-tr_TR-20191016-3.12 is installed OR myspell-uk_UA-20191016-3.12 is installed OR myspell-zu_ZA-20191016-3.12 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information libmysqlclient-devel-10.0.31-29.3 is installed OR libmysqlclient18-10.0.31-29.3 is installed OR libmysqlclient18-32bit-10.0.31-29.3 is installed OR libmysqlclient_r18-10.0.31-29.3 is installed OR libmysqld-devel-10.0.31-29.3 is installed OR libmysqld18-10.0.31-29.3 is installed OR mariadb-10.0.31-29.3 is installed OR mariadb-client-10.0.31-29.3 is installed OR mariadb-errormessages-10.0.31-29.3 is installed OR mariadb-tools-10.0.31-29.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information kernel-firmware-20170530-21.28 is installed OR ucode-amd-20170530-21.28 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information glibc-2.22-62.22 is installed OR glibc-32bit-2.22-62.22 is installed OR glibc-devel-2.22-62.22 is installed OR glibc-devel-32bit-2.22-62.22 is installed OR glibc-html-2.22-62.22 is installed OR glibc-i18ndata-2.22-62.22 is installed OR glibc-info-2.22-62.22 is installed OR glibc-locale-2.22-62.22 is installed OR glibc-locale-32bit-2.22-62.22 is installed OR glibc-profile-2.22-62.22 is installed OR glibc-profile-32bit-2.22-62.22 is installed OR nscd-2.22-62.22 is installed

BACK