Oval Definition:	oval:org.opensuse.security:def:52324
Revision Date: 2020-12-01 Version: 1 Title: Security update for libsolv, libzypp, zypper (Moderate) Description: This update for libsolv, libzypp, zypper fixes the following issues: Security issue fixed: - CVE-2019-18900: Fixed assert cookie file that was world readable (bsc#1158763). Bug fixes - Fixed removing orphaned packages dropped by to-be-installed products (bsc#1155819). - Adds libzypp API to mark all obsolete kernels according to the existing purge-kernel script rules (bsc#1155198). - Do not enforce 'en' being in RequestedLocales If the user decides to have a system without explicit language support he may do so (bsc#1155678). - Load only target resolvables for zypper rm (bsc#1157377). - Fix broken search by filelist (bsc#1135114). - Replace python by a bash script in zypper-log (fixes#304, fixes#306, bsc#1156158). - Do not sort out requested locales which are not available (bsc#1155678). - Prevent listing duplicate matches in tables. XML result is provided within the new list-patches-byissue element (bsc#1154805). - XML add patch issue-date and issue-list (bsc#1154805). - Fix zypper lp --cve/bugzilla/issue options (bsc#1155298). - Always execute commit when adding/removing locales (fixes bsc#1155205). - Fix description of --table-style,-s in man page (bsc#1154804). Family: unix Class: patch Status: Reference(s): 1046305 1046306 1046307 1051510 1065600 1081917 1083647 1086288 1086315 1086317 1086327 1086331 1086906 1087092 1090888 1097104 1097577 1097583 1097584 1097585 1097586 1097587 1097588 1097808 1100132 1101480 1101669 1101822 1102517 1102715 1103269 1103277 1103363 1103445 1103886 1104353 1104365 1104427 1104482 1104494 1104495 1104683 1104708 1104777 1104890 1104897 1105292 1105296 1105322 1105355 1105378 1105396 1105467 1105731 1135114 1140868 1141322 1149296 1149297 1149298 1149299 1149303 1149304 1150939 1152375 1154804 1154805 1155198 1155205 1155298 1155678 1155819 1156158 1157377 1158763 1160968 1172383 1172384 1172386 1172495 1172710 1173674 802154 971975 CVE-2009-2666 CVE-2010-1167 CVE-2011-1947 CVE-2011-3389 CVE-2012-2451 CVE-2012-3482 CVE-2012-4425 CVE-2013-1982 CVE-2013-2064 CVE-2014-0107 CVE-2016-5180 CVE-2016-9634 CVE-2016-9635 CVE-2016-9636 CVE-2016-9807 CVE-2016-9808 CVE-2016-9810 CVE-2017-1000381 CVE-2017-18201 CVE-2018-10853 CVE-2018-10902 CVE-2018-15572 CVE-2018-9363 CVE-2019-11709 CVE-2019-11710 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11714 CVE-2019-11715 CVE-2019-11716 CVE-2019-11717 CVE-2019-11719 CVE-2019-11720 CVE-2019-11721 CVE-2019-11723 CVE-2019-11724 CVE-2019-11725 CVE-2019-11727 CVE-2019-11728 CVE-2019-11729 CVE-2019-11730 CVE-2019-11739 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11752 CVE-2019-11755 CVE-2019-18900 CVE-2020-10761 CVE-2020-13361 CVE-2020-13362 CVE-2020-13659 CVE-2020-13800 CVE-2020-15503 CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2654 CVE-2020-2659 SUSE-SU-2018:2539-1 SUSE-SU-2019:2515-1 SUSE-SU-2020:0087-1 SUSE-SU-2020:0231-1 SUSE-SU-2020:2029-1 Platform(s): openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information freerdp-2.0.0~rc2-lp150.1 is installed OR libfreerdp2-2.0.0~rc2-lp150.1 is installed OR libwinpr2-2.0.0~rc2-lp150.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information java-1_6_0-openjdk-1.6.0.0_b27.1.12.7-0.2 is installed OR java-1_6_0-openjdk-demo-1.6.0.0_b27.1.12.7-0.2 is installed OR java-1_6_0-openjdk-devel-1.6.0.0_b27.1.12.7-0.2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information ImageMagick-6.4.3.6-7.30 is installed OR libMagick++1-6.4.3.6-7.30 is installed OR libMagickCore1-6.4.3.6-7.30 is installed OR libMagickCore1-32bit-6.4.3.6-7.30 is installed OR libMagickWand1-6.4.3.6-7.30 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information openssh-6.6p1-13 is installed OR openssh-askpass-gnome-6.6p1-13 is installed OR openssh-helpers-6.6p1-13 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND fetchmail-6.3.26-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND perl-Config-IniFiles-2.82-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libXext6-1.3.2-3 is installed OR libXext6-32bit-1.3.2-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information gstreamer-0_10-plugins-good-0.10.31-16 is installed OR gstreamer-0_10-plugins-good-lang-0.10.31-16 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libXext6-1.3.2-4.3 is installed OR libXext6-32bit-1.3.2-4.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libsolv-0.7.10-3.22 is installed OR python-solv-0.7.10-3.22 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information qemu-4.2.1-11.4 is installed OR qemu-arm-4.2.1-11.4 is installed OR qemu-audio-alsa-4.2.1-11.4 is installed OR qemu-audio-pa-4.2.1-11.4 is installed OR qemu-block-dmg-4.2.1-11.4 is installed OR qemu-extra-4.2.1-11.4 is installed OR qemu-linux-user-4.2.1-11.4 is installed OR qemu-microvm-4.2.1-11.4 is installed OR qemu-ppc-4.2.1-11.4 is installed OR qemu-s390-4.2.1-11.4 is installed OR qemu-seabios-1.12.1+-11.4 is installed OR qemu-sgabios-8-11.4 is installed OR qemu-testsuite-4.2.1-11.4 is installed OR qemu-ui-curses-4.2.1-11.4 is installed OR qemu-ui-gtk-4.2.1-11.4 is installed OR qemu-vhost-user-gpu-4.2.1-11.4 is installed OR qemu-x86-4.2.1-11.4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND pcsc-ccid-1.4.14-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_45-default-5-4 is installed OR kgraft-patch-3_12_74-60_64_45-xen-5-4 is installed OR kgraft-patch-SLE12-SP1_Update_16-5-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND logwatch-7.4.3-15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND shadow-4.2.1-27.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_38-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_13-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND coolkey-1.1.0-147 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information curl-7.37.0-37.43 is installed OR libcurl4-7.37.0-37.43 is installed OR libcurl4-32bit-7.37.0-37.43 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information postgresql96-9.6.15-3.29 is installed OR postgresql96-contrib-9.6.15-3.29 is installed OR postgresql96-docs-9.6.15-3.29 is installed OR postgresql96-libs-9.6.15-3.29 is installed OR postgresql96-plperl-9.6.15-3.29 is installed OR postgresql96-plpython-9.6.15-3.29 is installed OR postgresql96-pltcl-9.6.15-3.29 is installed OR postgresql96-server-9.6.15-3.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_155-94_50-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_17-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information gdm-3.10.0.1-54.6 is installed OR gdm-lang-3.10.0.1-54.6 is installed OR gdmflexiserver-3.10.0.1-54.6 is installed OR libgdm1-3.10.0.1-54.6 is installed OR typelib-1_0-Gdm-1_0-3.10.0.1-54.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information java-1_8_0-openjdk-1.8.0.242-3.30 is installed OR java-1_8_0-openjdk-demo-1.8.0.242-3.30 is installed OR java-1_8_0-openjdk-devel-1.8.0.242-3.30 is installed OR java-1_8_0-openjdk-headless-1.8.0.242-3.30 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.16 is installed OR kernel-default-extra-4.12.14-25.16 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information libraw-0.18.9-3.11 is installed OR libraw-devel-0.18.9-3.11 is installed OR libraw16-0.18.9-3.11 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND ucode-intel-20180425-13.20 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information bzip2-1.0.6-30.5 is installed OR bzip2-doc-1.0.6-30.5 is installed OR libbz2-1-1.0.6-30.5 is installed OR libbz2-1-32bit-1.0.6-30.5 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libmariadb3-3.0.3-3.3 is installed OR mariadb-10.2.15-4.3 is installed OR mariadb-client-10.2.15-4.3 is installed OR mariadb-connector-c-3.0.3-3.3 is installed OR mariadb-errormessages-10.2.15-4.3 is installed OR mariadb-galera-10.2.15-4.3 is installed OR mariadb-tools-10.2.15-4.3 is installed OR xtrabackup-2.4.10-4.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND haproxy-1.6.11-11.3 is installed
BACK