OVAL Reference oval:org.opensuse.security:def:52286

Oval Definition:

oval:org.opensuse.security:def:52286

Revision Date:	2020-12-01	Version:	1
Title:	Security update for sudo (Important)
Description:	This update for sudo fixes the following issues: Security issue fixed: - CVE-2019-18634: Fixed a buffer overflow in the passphrase prompt that could occur when pwfeedback was enabled in /etc/sudoers (bsc#1162202). Non-security issue fixed: - Fixed an issue where sudo -l would ask for a password even though `listpw` was set to `never` (bsc#1162675).
Family:	unix	Class:	patch
Status:		Reference(s):	1051510 1051979 1066110 1077761 1086274 1086314 1087081 1089343 1099811 1099813 1099844 1099845 1099846 1099849 1099858 1099863 1099864 1100132 1101116 1101331 1101669 1101828 1101832 1101833 1101837 1101839 1101841 1101843 1101844 1101845 1101847 1101852 1101853 1101867 1101872 1101874 1101875 1101882 1101883 1101885 1101887 1101890 1101891 1101893 1101895 1101896 1101900 1101902 1101903 1102633 1102658 1103097 1103356 1103421 1103517 1103723 1103724 1103725 1103726 1103727 1103728 1103729 1103730 1103917 1103920 1103948 1103949 1104066 1104111 1104174 1104211 1104319 1137595 1138872 1162202 1162675 1167152 1168140 1168142 1168143 1169392 1172205 1172265 1178387 1178611 CVE-2009-0793 CVE-2010-1205 CVE-2011-1526 CVE-2011-2501 CVE-2011-2690 CVE-2011-2691 CVE-2011-2692 CVE-2011-3026 CVE-2011-3048 CVE-2011-3328 CVE-2011-3464 CVE-2011-4862 CVE-2012-1174 CVE-2012-3386 CVE-2012-3466 CVE-2012-4425 CVE-2013-4276 CVE-2013-4288 CVE-2014-1829 CVE-2014-1830 CVE-2015-2296 CVE-2015-8126 CVE-2016-9811 CVE-2017-5837 CVE-2017-5839 CVE-2017-5842 CVE-2017-5844 CVE-2017-7261 CVE-2017-7294 CVE-2017-7346 CVE-2017-9103 CVE-2017-9104 CVE-2017-9105 CVE-2017-9106 CVE-2017-9107 CVE-2017-9108 CVE-2017-9109 CVE-2018-10876 CVE-2018-10877 CVE-2018-10878 CVE-2018-10879 CVE-2018-10880 CVE-2018-10881 CVE-2018-10882 CVE-2018-10883 CVE-2018-3620 CVE-2018-3646 CVE-2018-5391 CVE-2019-11703 CVE-2019-11704 CVE-2019-11705 CVE-2019-11706 CVE-2019-11707 CVE-2019-11708 CVE-2019-18634 CVE-2020-0543 CVE-2020-11739 CVE-2020-11740 CVE-2020-11741 CVE-2020-11742 CVE-2020-11743 CVE-2020-25692 CVE-2020-26950 SUSE-SU-2018:2380-1 SUSE-SU-2019:1683-1 SUSE-SU-2020:0408-1 SUSE-SU-2020:1634-1 SUSE-SU-2020:3313-1 SUSE-SU-2020:3418-1
Platform(s):	openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information apparmor-abstractions-2.12-lp150.5 is installed OR apparmor-docs-2.12-lp150.5 is installed OR apparmor-parser-2.12-lp150.5 is installed OR apparmor-parser-lang-2.12-lp150.5 is installed OR apparmor-profiles-2.12-lp150.5 is installed OR apparmor-utils-2.12-lp150.5 is installed OR apparmor-utils-lang-2.12-lp150.5 is installed OR perl-apparmor-2.12-lp150.5 is installed OR python3-apparmor-2.12-lp150.5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libxslt-1.1.24-19.23 is installed OR libxslt-32bit-1.1.24-19.23 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-31.6.0esr-0.8 is installed OR MozillaFirefox-translations-31.6.0esr-0.8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information kernel-default-3.0.101-65 is installed OR kernel-default-base-3.0.101-65 is installed OR kernel-default-devel-3.0.101-65 is installed OR kernel-default-extra-3.0.101-65 is installed OR kernel-pae-3.0.101-65 is installed OR kernel-pae-base-3.0.101-65 is installed OR kernel-pae-devel-3.0.101-65 is installed OR kernel-pae-extra-3.0.101-65 is installed OR kernel-source-3.0.101-65 is installed OR kernel-syms-3.0.101-65 is installed OR kernel-trace-3.0.101-65 is installed OR kernel-trace-devel-3.0.101-65 is installed OR kernel-xen-3.0.101-65 is installed OR kernel-xen-base-3.0.101-65 is installed OR kernel-xen-devel-3.0.101-65 is installed OR kernel-xen-extra-3.0.101-65 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information libgudev-1_0-0-210-44 is installed OR libgudev-1_0-0-32bit-210-44 is installed OR libudev1-210-44 is installed OR libudev1-32bit-210-44 is installed OR systemd-210-44 is installed OR systemd-32bit-210-44 is installed OR systemd-bash-completion-210-44 is installed OR systemd-sysvinit-210-44 is installed OR udev-210-44 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libspice-client-glib-2_0-8-0.29-1 is installed OR libspice-client-gtk-2_0-4-0.29-1 is installed OR libspice-client-gtk-3_0-4-0.29-1 is installed OR libspice-controller0-0.29-1 is installed OR typelib-1_0-SpiceClientGlib-2_0-0.29-1 is installed OR typelib-1_0-SpiceClientGtk-3_0-0.29-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information gnome-keyring-3.20.0-27 is installed OR gnome-keyring-32bit-3.20.0-27 is installed OR gnome-keyring-lang-3.20.0-27 is installed OR gnome-keyring-pam-3.20.0-27 is installed OR gnome-keyring-pam-32bit-3.20.0-27 is installed OR libgck-modules-gnome-keyring-3.20.0-27 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND drm-kmp-default-4.9.33_k4.4.73_5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gstreamer-plugins-base-1.8.3-12 is installed OR gstreamer-plugins-base-lang-1.8.3-12 is installed OR libgstallocators-1_0-0-1.8.3-12 is installed OR libgstapp-1_0-0-1.8.3-12 is installed OR libgstapp-1_0-0-32bit-1.8.3-12 is installed OR libgstaudio-1_0-0-1.8.3-12 is installed OR libgstaudio-1_0-0-32bit-1.8.3-12 is installed OR libgstfft-1_0-0-1.8.3-12 is installed OR libgstfft-1_0-0-32bit-1.8.3-12 is installed OR libgstpbutils-1_0-0-1.8.3-12 is installed OR libgstpbutils-1_0-0-32bit-1.8.3-12 is installed OR libgstriff-1_0-0-1.8.3-12 is installed OR libgstrtp-1_0-0-1.8.3-12 is installed OR libgstrtsp-1_0-0-1.8.3-12 is installed OR libgstsdp-1_0-0-1.8.3-12 is installed OR libgsttag-1_0-0-1.8.3-12 is installed OR libgsttag-1_0-0-32bit-1.8.3-12 is installed OR libgstvideo-1_0-0-1.8.3-12 is installed OR libgstvideo-1_0-0-32bit-1.8.3-12 is installed OR typelib-1_0-GstAudio-1_0-1.8.3-12 is installed OR typelib-1_0-GstPbutils-1_0-1.8.3-12 is installed OR typelib-1_0-GstTag-1_0-1.8.3-12 is installed OR typelib-1_0-GstVideo-1_0-1.8.3-12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information sudo-1.8.22-4.9 is installed OR sudo-test-1.8.22-4.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information adns-1.5.1-3.3 is installed OR libadns-devel-1.5.1-3.3 is installed OR libadns-devel-32bit-1.5.1-3.3 is installed OR libadns1-1.5.1-3.3 is installed OR libadns1-32bit-1.5.1-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libspice-client-glib-2_0-8-0.29-1 is installed OR libspice-client-gtk-2_0-4-0.29-1 is installed OR libspice-client-gtk-3_0-4-0.29-1 is installed OR libspice-controller0-0.29-1 is installed OR typelib-1_0-SpiceClientGlib-2_0-0.29-1 is installed OR typelib-1_0-SpiceClientGtk-3_0-0.29-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information openssh-6.6p1-54.26 is installed OR openssh-askpass-gnome-6.6p1-54.26 is installed OR openssh-fips-6.6p1-54.26 is installed OR openssh-helpers-6.6p1-54.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libpoppler-glib8-0.43.0-15 is installed OR libpoppler-qt4-4-0.43.0-15 is installed OR libpoppler60-0.43.0-15 is installed OR poppler-tools-0.43.0-15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND ucode-intel-20180703-13.25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information libopenssl-devel-1.0.2j-60.30 is installed OR libopenssl1_0_0-1.0.2j-60.30 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.30 is installed OR openssl-1.0.2j-60.30 is installed OR openssl-doc-1.0.2j-60.30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information e2fsprogs-1.42.11-15 is installed OR libcom_err2-1.42.11-15 is installed OR libcom_err2-32bit-1.42.11-15 is installed OR libext2fs2-1.42.11-15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libdcerpc-binding0-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libdcerpc-binding0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libdcerpc0-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libdcerpc0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libndr-krb5pac0-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libndr-krb5pac0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libndr-nbt0-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libndr-nbt0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libndr-standard0-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libndr-standard0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libndr0-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libndr0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libnetapi0-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libnetapi0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libsamba-credentials0-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libsamba-credentials0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libsamba-errors0-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libsamba-errors0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libsamba-hostconfig0-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libsamba-hostconfig0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libsamba-passdb0-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libsamba-passdb0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libsamba-util0-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libsamba-util0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libsamdb0-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libsamdb0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libsmbclient0-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libsmbclient0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libsmbconf0-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libsmbconf0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libsmbldap0-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libsmbldap0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libtevent-util0-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libtevent-util0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libwbclient0-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR libwbclient0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR samba-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR samba-client-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR samba-client-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR samba-doc-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR samba-libs-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR samba-libs-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR samba-winbind-4.6.16+git.174.c2fd2e28c84-3.49 is installed OR samba-winbind-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information evince-3.20.2-6.27 is installed OR evince-browser-plugin-3.20.2-6.27 is installed OR evince-lang-3.20.2-6.27 is installed OR evince-plugin-djvudocument-3.20.2-6.27 is installed OR evince-plugin-dvidocument-3.20.2-6.27 is installed OR evince-plugin-pdfdocument-3.20.2-6.27 is installed OR evince-plugin-psdocument-3.20.2-6.27 is installed OR evince-plugin-tiffdocument-3.20.2-6.27 is installed OR evince-plugin-xpsdocument-3.20.2-6.27 is installed OR libevdocument3-4-3.20.2-6.27 is installed OR libevview3-3-3.20.2-6.27 is installed OR nautilus-evince-3.20.2-6.27 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed OR libwebkit2gtk3-lang-2.24.4-2.47 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed OR webkit2gtk3-2.24.4-2.47 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information liblouis-2.6.4-6.6 is installed OR liblouis-data-2.6.4-6.6 is installed OR liblouis9-2.6.4-6.6 is installed OR python-louis-2.6.4-6.6 is installed OR python3-louis-2.6.4-6.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND libass5-0.10.2-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information xen-4.10.4_10-3.31 is installed OR xen-devel-4.10.4_10-3.31 is installed OR xen-libs-4.10.4_10-3.31 is installed OR xen-tools-4.10.4_10-3.31 is installed OR xen-tools-domU-4.10.4_10-3.31 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.13 is installed OR kernel-default-extra-4.12.14-25.13 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-60.7.2-3.43 is installed OR MozillaThunderbird-translations-common-60.7.2-3.43 is installed OR MozillaThunderbird-translations-other-60.7.2-3.43 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information MozillaThunderbird-78.4.2-3.103 is installed OR MozillaThunderbird-translations-common-78.4.2-3.103 is installed OR MozillaThunderbird-translations-other-78.4.2-3.103 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information crowbar-4.0+git.1528801103.f5708341-7.20 is installed OR crowbar-core-4.0+git.1534246408.3ab19c567-9.33 is installed OR crowbar-core-branding-upstream-4.0+git.1534246408.3ab19c567-9.33 is installed OR crowbar-devel-4.0+git.1528801103.f5708341-7.20 is installed OR crowbar-ha-4.0+git.1533750802.5768e73-4.34 is installed OR crowbar-openstack-4.0+git.1534254269.ce598a9fe-9.39 is installed OR crowbar-ui-1.1.0+git.1533844061.4ac8e723-4.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND git-2.12.3-27.17 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND python-Django1-1.11.20-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libpython3_4m1_0-3.4.6-25.29 is installed OR python3-3.4.6-25.29 is installed OR python3-base-3.4.6-25.29 is installed OR python3-curses-3.4.6-25.29 is installed

BACK