OVAL Reference oval:org.opensuse.security:def:52252

Oval Definition:

oval:org.opensuse.security:def:52252

Revision Date:	2020-12-01	Version:	1
Title:	Security update for zeromq (Moderate)
Description:	This update for zeromq fixes the following issues: - CVE-2020-15166: Fixed the possibility of unauthenticated clients causing a denial-of-service (bsc#1176116). - Fixed a heap overflow when receiving malformed ZMTP v1 packets (bsc#1176256) - Fixed a memory leak in client induced by malicious server(s) without CURVE/ZAP (bsc#1176257) - Fixed memory leak when processing PUB messages with metadata (bsc#1176259) - Fixed a stack overflow in PUB/XPUB subscription store (bsc#1176258)
Family:	unix	Class:	patch
Status:		Reference(s):	1140844 1140868 1141322 1149296 1149297 1149298 1149299 1149303 1149304 1150939 1152375 1152990 1152992 1152994 1152995 1154063 1162396 1162777 1163368 1164804 1167631 1176116 1176256 1176257 1176258 1176259 1178671 CVE-2009-0037 CVE-2009-1720 CVE-2009-1721 CVE-2009-2417 CVE-2009-2625 CVE-2009-3560 CVE-2009-3720 CVE-2010-4000 CVE-2011-2709 CVE-2012-0876 CVE-2012-1147 CVE-2012-1148 CVE-2012-6702 CVE-2012-6708 CVE-2013-0249 CVE-2013-1944 CVE-2013-2174 CVE-2013-4545 CVE-2014-0015 CVE-2014-0138 CVE-2014-0139 CVE-2014-3613 CVE-2014-3620 CVE-2014-3707 CVE-2014-5461 CVE-2014-8150 CVE-2015-1283 CVE-2015-3143 CVE-2015-3144 CVE-2015-3145 CVE-2015-3148 CVE-2015-3153 CVE-2015-9251 CVE-2016-0718 CVE-2016-0755 CVE-2016-5300 CVE-2016-5419 CVE-2016-5420 CVE-2016-5421 CVE-2016-6354 CVE-2016-7141 CVE-2016-9063 CVE-2017-14604 CVE-2017-7467 CVE-2017-8288 CVE-2017-9233 CVE-2019-11709 CVE-2019-11710 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11714 CVE-2019-11715 CVE-2019-11716 CVE-2019-11717 CVE-2019-11719 CVE-2019-11720 CVE-2019-11721 CVE-2019-11723 CVE-2019-11724 CVE-2019-11725 CVE-2019-11727 CVE-2019-11728 CVE-2019-11729 CVE-2019-11730 CVE-2019-11739 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11752 CVE-2019-11755 CVE-2019-15845 CVE-2019-16201 CVE-2019-16254 CVE-2019-16255 CVE-2020-12321 CVE-2020-15166 CVE-2020-1752 CVE-2020-6792 CVE-2020-6793 CVE-2020-6794 CVE-2020-6795 CVE-2020-6797 CVE-2020-6798 CVE-2020-6800 CVE-2020-8130 SUSE-SU-2019:2515-1 SUSE-SU-2020:0385-1 SUSE-SU-2020:0737-1 SUSE-SU-2020:0820-1 SUSE-SU-2020:2583-1 SUSE-SU-2020:3349-1
Platform(s):	openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information PackageKit-1.1.10-lp150.2 is installed OR PackageKit-backend-zypp-1.1.10-lp150.2 is installed OR PackageKit-gstreamer-plugin-1.1.10-lp150.2 is installed OR PackageKit-gtk3-module-1.1.10-lp150.2 is installed OR PackageKit-lang-1.1.10-lp150.2 is installed OR libpackagekit-glib2-18-1.1.10-lp150.2 is installed OR typelib-1_0-PackageKitGlib-1_0-1.1.10-lp150.2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information flash-player-11.2.202.336-0.3 is installed OR flash-player-gnome-11.2.202.336-0.3 is installed OR flash-player-kde4-11.2.202.336-0.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND fetchmail-6.3.8.90-13.20.21 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information libIlmImf-Imf_2_1-21-2.1.0-4 is installed OR libIlmImf-Imf_2_1-21-32bit-2.1.0-4 is installed OR openexr-2.1.0-4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information liblua5_2-5.2.2-4 is installed OR lua-5.2.2-4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information curl-7.37.0-28 is installed OR libcurl4-7.37.0-28 is installed OR libcurl4-32bit-7.37.0-28 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information at-3.1.14-7 is installed OR libQtWebKit4-4.8.6+2.3.3-3 is installed OR libQtWebKit4-32bit-4.8.6+2.3.3-3 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information expat-2.1.0-21.3 is installed OR libexpat1-2.1.0-21.3 is installed OR libexpat1-32bit-2.1.0-21.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libunwind-1.2.1-4.2 is installed OR libunwind-32bit-1.2.1-4.2 is installed OR zeromq-4.2.3-3.15 is installed OR zeromq-tools-4.2.3-3.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libjpeg-turbo-1.3.1-30 is installed OR libjpeg62-62.1.0-30 is installed OR libjpeg62-32bit-62.1.0-30 is installed OR libjpeg62-turbo-1.3.1-30 is installed OR libjpeg8-8.0.2-30 is installed OR libjpeg8-32bit-8.0.2-30 is installed OR libturbojpeg0-8.0.2-30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND clamav-0.99.2-32 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libidn-tools-1.28-4 is installed OR libidn11-1.28-4 is installed OR libidn11-32bit-1.28-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libvirt-2.0.0-27.42 is installed OR libvirt-client-2.0.0-27.42 is installed OR libvirt-daemon-2.0.0-27.42 is installed OR libvirt-daemon-config-network-2.0.0-27.42 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed OR libvirt-daemon-driver-network-2.0.0-27.42 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed OR libvirt-daemon-hooks-2.0.0-27.42 is installed OR libvirt-daemon-lxc-2.0.0-27.42 is installed OR libvirt-daemon-qemu-2.0.0-27.42 is installed OR libvirt-daemon-xen-2.0.0-27.42 is installed OR libvirt-doc-2.0.0-27.42 is installed OR libvirt-lock-sanlock-2.0.0-27.42 is installed OR libvirt-nss-2.0.0-27.42 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libvirt-2.0.0-27.42 is installed OR libvirt-client-2.0.0-27.42 is installed OR libvirt-daemon-2.0.0-27.42 is installed OR libvirt-daemon-config-network-2.0.0-27.42 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed OR libvirt-daemon-driver-network-2.0.0-27.42 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed OR libvirt-daemon-hooks-2.0.0-27.42 is installed OR libvirt-daemon-lxc-2.0.0-27.42 is installed OR libvirt-daemon-qemu-2.0.0-27.42 is installed OR libvirt-daemon-xen-2.0.0-27.42 is installed OR libvirt-doc-2.0.0-27.42 is installed OR libvirt-lock-sanlock-2.0.0-27.42 is installed OR libvirt-nss-2.0.0-27.42 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_50-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_15-7-2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND kernel-default-4.4.180-94.100 is installed OR kernel-default-base-4.4.180-94.100 is installed OR kernel-default-devel-4.4.180-94.100 is installed OR kernel-default-man-4.4.180-94.100 is installed OR kernel-devel-4.4.180-94.100 is installed OR kernel-macros-4.4.180-94.100 is installed OR kernel-source-4.4.180-94.100 is installed OR kernel-syms-4.4.180-94.100 is installed OR kgraft-patch-4_4_180-94_100-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_27-1-4.3 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND kernel-default-4.4.180-94.100 is installed OR kernel-default-base-4.4.180-94.100 is installed OR kernel-default-devel-4.4.180-94.100 is installed OR kernel-default-man-4.4.180-94.100 is installed OR kernel-devel-4.4.180-94.100 is installed OR kernel-macros-4.4.180-94.100 is installed OR kernel-source-4.4.180-94.100 is installed OR kernel-syms-4.4.180-94.100 is installed OR kgraft-patch-4_4_180-94_100-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_27-1-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information automake-1.13.4-6 is installed OR m4-1.4.16-15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information dovecot22-2.2.31-19.17 is installed OR dovecot22-backend-mysql-2.2.31-19.17 is installed OR dovecot22-backend-pgsql-2.2.31-19.17 is installed OR dovecot22-backend-sqlite-2.2.31-19.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed OR libwebkit2gtk3-lang-2.24.4-2.47 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed OR webkit2gtk3-2.24.4-2.47 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information ghostscript-9.27-23.28 is installed OR ghostscript-x11-9.27-23.28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND ucode-intel-20180807-13.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND lftp-4.7.4-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information glibc-2.26-13.45 is installed OR glibc-32bit-2.26-13.45 is installed OR glibc-devel-2.26-13.45 is installed OR glibc-devel-32bit-2.26-13.45 is installed OR glibc-devel-static-2.26-13.45 is installed OR glibc-extra-2.26-13.45 is installed OR glibc-i18ndata-2.26-13.45 is installed OR glibc-info-2.26-13.45 is installed OR glibc-locale-2.26-13.45 is installed OR glibc-locale-base-2.26-13.45 is installed OR glibc-locale-base-32bit-2.26-13.45 is installed OR glibc-profile-2.26-13.45 is installed OR glibc-utils-2.26-13.45 is installed OR glibc-utils-src-2.26-13.45 is installed OR nscd-2.26-13.45 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information avahi-0.6.32-5.8 is installed OR avahi-compat-howl-devel-0.6.32-5.8 is installed OR avahi-compat-mDNSResponder-devel-0.6.32-5.8 is installed OR avahi-glib2-0.6.32-5.8 is installed OR avahi-lang-0.6.32-5.8 is installed OR avahi-utils-0.6.32-5.8 is installed OR libavahi-client3-0.6.32-5.8 is installed OR libavahi-client3-32bit-0.6.32-5.8 is installed OR libavahi-common3-0.6.32-5.8 is installed OR libavahi-common3-32bit-0.6.32-5.8 is installed OR libavahi-core7-0.6.32-5.8 is installed OR libavahi-devel-0.6.32-5.8 is installed OR libavahi-glib-devel-0.6.32-5.8 is installed OR libavahi-glib1-0.6.32-5.8 is installed OR libavahi-gobject0-0.6.32-5.8 is installed OR libavahi-ui-gtk3-0-0.6.32-5.8 is installed OR libavahi-ui0-0.6.32-5.8 is installed OR libdns_sd-0.6.32-5.8 is installed OR libhowl0-0.6.32-5.8 is installed OR typelib-1_0-Avahi-0_6-0.6.32-5.8 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-68.1.1-3.51 is installed OR MozillaThunderbird-translations-common-68.1.1-3.51 is installed OR MozillaThunderbird-translations-other-68.1.1-3.51 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-68.5.0-3.71 is installed OR MozillaThunderbird-translations-common-68.5.0-3.71 is installed OR MozillaThunderbird-translations-other-68.5.0-3.71 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information openstack-ceilometer-7.0.4~a0~dev7-3 is installed OR openstack-ceilometer-agent-central-7.0.4~a0~dev7-3 is installed OR openstack-ceilometer-agent-compute-7.0.4~a0~dev7-3 is installed OR openstack-ceilometer-agent-ipmi-7.0.4~a0~dev7-3 is installed OR openstack-ceilometer-agent-notification-7.0.4~a0~dev7-3 is installed OR openstack-ceilometer-api-7.0.4~a0~dev7-3 is installed OR openstack-ceilometer-collector-7.0.4~a0~dev7-3 is installed OR openstack-ceilometer-doc-7.0.4~a0~dev7-3 is installed OR openstack-ceilometer-polling-7.0.4~a0~dev7-3 is installed OR openstack-cinder-9.1.5~a0~dev1-3 is installed OR openstack-cinder-api-9.1.5~a0~dev1-3 is installed OR openstack-cinder-backup-9.1.5~a0~dev1-3 is installed OR openstack-cinder-doc-9.1.5~a0~dev1-3 is installed OR openstack-cinder-scheduler-9.1.5~a0~dev1-3 is installed OR openstack-cinder-volume-9.1.5~a0~dev1-3 is installed OR openstack-dashboard-10.0.4~a0~dev2-3 is installed OR openstack-glance-13.0.1~a0~dev6-3 is installed OR openstack-glance-api-13.0.1~a0~dev6-3 is installed OR openstack-glance-doc-13.0.1~a0~dev6-3 is installed OR openstack-glance-glare-13.0.1~a0~dev6-3 is installed OR openstack-glance-registry-13.0.1~a0~dev6-3 is installed OR openstack-heat-7.0.4~a0~dev4-4 is installed OR openstack-heat-api-7.0.4~a0~dev4-4 is installed OR openstack-heat-api-cfn-7.0.4~a0~dev4-4 is installed OR openstack-heat-api-cloudwatch-7.0.4~a0~dev4-4 is installed OR openstack-heat-doc-7.0.4~a0~dev4-4 is installed OR openstack-heat-engine-7.0.4~a0~dev4-4 is installed OR openstack-heat-plugin-heat_docker-7.0.4~a0~dev4-4 is installed OR openstack-heat-test-7.0.4~a0~dev4-4 is installed OR openstack-keystone-10.0.2~a0~dev2-6 is installed OR openstack-keystone-doc-10.0.2~a0~dev2-6 is installed OR openstack-magnum-3.1.2~a0~dev22-13 is installed OR openstack-magnum-api-3.1.2~a0~dev22-13 is installed OR openstack-magnum-conductor-3.1.2~a0~dev22-13 is installed OR openstack-magnum-doc-3.1.2~a0~dev22-13 is installed OR openstack-manila-3.0.1~a0~dev27-3 is installed OR openstack-manila-api-3.0.1~a0~dev27-3 is installed OR openstack-manila-data-3.0.1~a0~dev27-3 is installed OR openstack-manila-doc-3.0.1~a0~dev27-3 is installed OR openstack-manila-scheduler-3.0.1~a0~dev27-3 is installed OR openstack-manila-share-3.0.1~a0~dev27-3 is installed OR openstack-nova-14.0.6~a0~dev16-3 is installed OR openstack-nova-api-14.0.6~a0~dev16-3 is installed OR openstack-nova-cells-14.0.6~a0~dev16-3 is installed OR openstack-nova-cert-14.0.6~a0~dev16-3 is installed OR openstack-nova-compute-14.0.6~a0~dev16-3 is installed OR openstack-nova-conductor-14.0.6~a0~dev16-3 is installed OR openstack-nova-console-14.0.6~a0~dev16-3 is installed OR openstack-nova-consoleauth-14.0.6~a0~dev16-3 is installed OR openstack-nova-doc-14.0.6~a0~dev16-3 is installed OR openstack-nova-novncproxy-14.0.6~a0~dev16-3 is installed OR openstack-nova-placement-api-14.0.6~a0~dev16-3 is installed OR openstack-nova-scheduler-14.0.6~a0~dev16-3 is installed OR openstack-nova-serialproxy-14.0.6~a0~dev16-3 is installed OR openstack-nova-vncproxy-14.0.6~a0~dev16-3 is installed OR python-ceilometer-7.0.4~a0~dev7-3 is installed OR python-cinder-9.1.5~a0~dev1-3 is installed OR python-glance-13.0.1~a0~dev6-3 is installed OR python-heat-7.0.4~a0~dev4-4 is installed OR python-horizon-10.0.4~a0~dev2-3 is installed OR python-keystone-10.0.2~a0~dev2-6 is installed OR python-magnum-3.1.2~a0~dev22-13 is installed OR python-manila-3.0.1~a0~dev27-3 is installed OR python-nova-14.0.6~a0~dev16-3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information dnsmasq-2.78-18.6 is installed OR dnsmasq-utils-2.78-18.6 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND python-SQLAlchemy-1.1.12-3.5 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND nodejs6-6.17.0-11.27 is installed

BACK