Oval Definition:oval:org.opensuse.security:def:5311
Revision Date:2020-12-02Version:1
Title:Security update for gnutls (Important)
Description:

This update for gnutls fixes the following issues:

- CVE-2020-13777: Fixed an insecure session ticket key construction which could have made the TLS server to not bind the session ticket encryption key with a value supplied by the application until the initial key rotation, allowing an attacker to bypass authentication in TLS 1.3 and recover previous conversations in TLS 1.2 (bsc#1172506). - Fixed an improper handling of certificate chain with cross-signed intermediate CA certificates (bsc#1172461).
Family:unixClass:patch
Status:Reference(s):1172461
1172506
1173160
CVE-2006-2607
CVE-2008-1420
CVE-2008-4316
CVE-2009-0159
CVE-2009-1252
CVE-2009-3379
CVE-2010-0405
CVE-2010-0424
CVE-2010-2640
CVE-2010-2641
CVE-2010-2642
CVE-2010-2643
CVE-2011-1526
CVE-2011-4862
CVE-2012-0444
CVE-2012-2737
CVE-2012-3524
CVE-2013-2126
CVE-2013-2127
CVE-2013-5211
CVE-2014-3634
CVE-2014-4910
CVE-2014-9293
CVE-2014-9294
CVE-2014-9295
CVE-2014-9296
CVE-2014-9297
CVE-2014-9298
CVE-2014-9645
CVE-2015-1798
CVE-2015-1799
CVE-2015-3405
CVE-2015-7691
CVE-2015-7692
CVE-2015-7701
CVE-2015-7702
CVE-2015-7703
CVE-2015-7704
CVE-2015-7705
CVE-2015-7848
CVE-2015-7849
CVE-2015-7850
CVE-2015-7851
CVE-2015-7852
CVE-2015-7853
CVE-2015-7854
CVE-2015-7855
CVE-2015-7871
CVE-2015-8872
CVE-2016-4804
CVE-2020-10745
CVE-2020-13777
SUSE-SU-2020:1584-1
SUSE-SU-2020:2065-1
Platform(s):openSUSE 13.1
openSUSE 13.1 NonFree
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise for SAP 12 SP1
SUSE Linux Enterprise High Availability 12 SP5
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Live Patching 12 SP3
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Toolchain 12
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Point of Sale 11 SP3
SUSE Linux Enterprise Point of Sale 12 SP2
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Software Development Kit 12 SP4
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE OpenStack Cloud 5
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND Package Information
  • python-keystoneclient-1.0.0-16.1 is installed
  • OR python-keystoneclient-doc-1.0.0-16.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • flash-player-11.2.202.508-0.14.1 is installed
  • OR flash-player-gnome-11.2.202.508-0.14.1 is installed
  • OR flash-player-kde4-11.2.202.508-0.14.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND xf86-video-intel-2.99.914-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • accountsservice-0.6.35-3 is installed
  • OR accountsservice-lang-0.6.35-3 is installed
  • OR libaccountsservice0-0.6.35-3 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.35-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • bzip2-1.0.6-29 is installed
  • OR libbz2-1-1.0.6-29 is installed
  • OR libbz2-1-32bit-1.0.6-29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • accountsservice-0.6.42-14 is installed
  • OR accountsservice-lang-0.6.42-14 is installed
  • OR libaccountsservice0-0.6.42-14 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • MozillaFirefox-52.9.0esr-109.38 is installed
  • OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 is installed
  • AND Package Information
  • kernel-default-3.12.60-52.57.1 is installed
  • OR kernel-default-base-3.12.60-52.57.1 is installed
  • OR kernel-default-devel-3.12.60-52.57.1 is installed
  • OR kernel-devel-3.12.60-52.57.1 is installed
  • OR kernel-macros-3.12.60-52.57.1 is installed
  • OR kernel-source-3.12.60-52.57.1 is installed
  • OR kernel-syms-3.12.60-52.57.1 is installed
  • OR kernel-xen-3.12.60-52.57.1 is installed
  • OR kernel-xen-base-3.12.60-52.57.1 is installed
  • OR kernel-xen-devel-3.12.60-52.57.1 is installed
  • OR kgraft-patch-3_12_60-52_57-default-1-2.1 is installed
  • OR kgraft-patch-3_12_60-52_57-xen-1-2.1 is installed
  • OR kgraft-patch-SLE12_Update_16-1-2.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 SP1 is installed
  • AND Package Information
  • MozillaFirefox-52.2.0esr-108.3 is installed
  • OR MozillaFirefox-branding-SLE-52-31.1 is installed
  • OR MozillaFirefox-devel-52.2.0esr-108.3 is installed
  • OR MozillaFirefox-translations-52.2.0esr-108.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP5 is installed
  • AND python-requests-2.18.2-8.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND Package Information
  • ImageMagick-config-6-SUSE-6.8.8.1-71.126 is installed
  • OR ImageMagick-config-6-upstream-6.8.8.1-71.126 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-71.126 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-71.126 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 is installed
  • AND Package Information
  • kgraft-patch-4_4_21-90-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_3-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 SP3 is installed
  • AND Package Information
  • kgraft-patch-4_4_73-5-default-2-2.3.2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_0-2-2.3.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
  • AND Package Information
  • salt-2016.11.4-46.7.1 is installed
  • OR salt-api-2016.11.4-46.7.1 is installed
  • OR salt-bash-completion-2016.11.4-46.7.1 is installed
  • OR salt-cloud-2016.11.4-46.7.1 is installed
  • OR salt-doc-2016.11.4-46.7.1 is installed
  • OR salt-master-2016.11.4-46.7.1 is installed
  • OR salt-minion-2016.11.4-46.7.1 is installed
  • OR salt-proxy-2016.11.4-46.7.1 is installed
  • OR salt-ssh-2016.11.4-46.7.1 is installed
  • OR salt-syndic-2016.11.4-46.7.1 is installed
  • OR salt-zsh-completion-2016.11.4-46.7.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 12 is installed
  • AND portus-2.0.3-2.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 12 is installed
  • AND Package Information
  • java-1_6_0-ibm-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-fonts-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-jdbc-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-plugin-1.6.0_sr16.1-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 12 is installed
  • AND Package Information
  • kernel-ec2-3.12.39-47.1 is installed
  • OR kernel-ec2-devel-3.12.39-47.1 is installed
  • OR kernel-ec2-extra-3.12.39-47.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Toolchain 12 is installed
  • AND Package Information
  • cpp5-5.3.1+r233831-9 is installed
  • OR gcc5-5.3.1+r233831-9 is installed
  • OR gcc5-c++-5.3.1+r233831-9 is installed
  • OR gcc5-fortran-5.3.1+r233831-9 is installed
  • OR gcc5-info-5.3.1+r233831-9 is installed
  • OR gcc5-locale-5.3.1+r233831-9 is installed
  • OR libffi-devel-gcc5-5.3.1+r233831-9 is installed
  • OR libstdc++6-devel-gcc5-5.3.1+r233831-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND Package Information
  • apache2-mod_php5-5.5.14-22.1 is installed
  • OR php5-5.5.14-22.1 is installed
  • OR php5-bcmath-5.5.14-22.1 is installed
  • OR php5-bz2-5.5.14-22.1 is installed
  • OR php5-calendar-5.5.14-22.1 is installed
  • OR php5-ctype-5.5.14-22.1 is installed
  • OR php5-curl-5.5.14-22.1 is installed
  • OR php5-dba-5.5.14-22.1 is installed
  • OR php5-dom-5.5.14-22.1 is installed
  • OR php5-enchant-5.5.14-22.1 is installed
  • OR php5-exif-5.5.14-22.1 is installed
  • OR php5-fastcgi-5.5.14-22.1 is installed
  • OR php5-fileinfo-5.5.14-22.1 is installed
  • OR php5-fpm-5.5.14-22.1 is installed
  • OR php5-ftp-5.5.14-22.1 is installed
  • OR php5-gd-5.5.14-22.1 is installed
  • OR php5-gettext-5.5.14-22.1 is installed
  • OR php5-gmp-5.5.14-22.1 is installed
  • OR php5-iconv-5.5.14-22.1 is installed
  • OR php5-intl-5.5.14-22.1 is installed
  • OR php5-json-5.5.14-22.1 is installed
  • OR php5-ldap-5.5.14-22.1 is installed
  • OR php5-mbstring-5.5.14-22.1 is installed
  • OR php5-mcrypt-5.5.14-22.1 is installed
  • OR php5-mysql-5.5.14-22.1 is installed
  • OR php5-odbc-5.5.14-22.1 is installed
  • OR php5-openssl-5.5.14-22.1 is installed
  • OR php5-pcntl-5.5.14-22.1 is installed
  • OR php5-pdo-5.5.14-22.1 is installed
  • OR php5-pear-5.5.14-22.1 is installed
  • OR php5-pgsql-5.5.14-22.1 is installed
  • OR php5-pspell-5.5.14-22.1 is installed
  • OR php5-shmop-5.5.14-22.1 is installed
  • OR php5-snmp-5.5.14-22.1 is installed
  • OR php5-soap-5.5.14-22.1 is installed
  • OR php5-sockets-5.5.14-22.1 is installed
  • OR php5-sqlite-5.5.14-22.1 is installed
  • OR php5-suhosin-5.5.14-22.1 is installed
  • OR php5-sysvmsg-5.5.14-22.1 is installed
  • OR php5-sysvsem-5.5.14-22.1 is installed
  • OR php5-sysvshm-5.5.14-22.1 is installed
  • OR php5-tokenizer-5.5.14-22.1 is installed
  • OR php5-wddx-5.5.14-22.1 is installed
  • OR php5-xmlreader-5.5.14-22.1 is installed
  • OR php5-xmlrpc-5.5.14-22.1 is installed
  • OR php5-xmlwriter-5.5.14-22.1 is installed
  • OR php5-xsl-5.5.14-22.1 is installed
  • OR php5-zip-5.5.14-22.1 is installed
  • OR php5-zlib-5.5.14-22.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Point of Sale 11 SP3 is installed
  • AND Package Information
  • dhcp-4.2.4.P2-0.27.1 is installed
  • OR dhcp-client-4.2.4.P2-0.27.1 is installed
  • OR dhcp-relay-4.2.4.P2-0.27.1 is installed
  • OR dhcp-server-4.2.4.P2-0.27.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Point of Sale 12 SP2 is installed
  • AND python-pycrypto-2.6.1-10.3.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 is installed
  • AND Package Information
  • clamav-0.95.1-0.1.1 is installed
  • OR libgcc43-4.3.3_20081022-11.18 is installed
  • OR libgcc43-32bit-4.3.3_20081022-11.18 is installed
  • OR libgcc43-x86-4.3.3_20081022-11.18 is installed
  • OR libstdc++43-4.3.3_20081022-11.18 is installed
  • OR libstdc++43-32bit-4.3.3_20081022-11.18 is installed
  • OR libstdc++43-x86-4.3.3_20081022-11.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND amavisd-new-2.7.0-18.7.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND LibVNCServer-0.9.1-154.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND Package Information
  • libpoppler-glib4-0.12.3-1.10.1 is installed
  • OR libpoppler-qt4-3-0.12.3-1.10.1 is installed
  • OR libpoppler5-0.12.3-1.10.1 is installed
  • OR poppler-tools-0.12.3-1.10.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-1 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND apache-commons-httpclient-3.1-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libarchive-3.1.2-25.1 is installed
  • OR libarchive13-3.1.2-25.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • groff-1.22.2-5 is installed
  • OR groff-full-1.22.2-5 is installed
  • OR gxditview-1.22.2-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • alsa-1.0.27.2-15 is installed
  • OR alsa-docs-1.0.27.2-15 is installed
  • OR libasound2-1.0.27.2-15 is installed
  • OR libasound2-32bit-1.0.27.2-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12-LTSS is installed
  • AND Package Information
  • tomcat-7.0.78-7.13.4 is installed
  • OR tomcat-admin-webapps-7.0.78-7.13.4 is installed
  • OR tomcat-docs-webapp-7.0.78-7.13.4 is installed
  • OR tomcat-el-2_2-api-7.0.78-7.13.4 is installed
  • OR tomcat-javadoc-7.0.78-7.13.4 is installed
  • OR tomcat-jsp-2_2-api-7.0.78-7.13.4 is installed
  • OR tomcat-lib-7.0.78-7.13.4 is installed
  • OR tomcat-servlet-3_0-api-7.0.78-7.13.4 is installed
  • OR tomcat-webapps-7.0.78-7.13.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • gnutls-3.6.7-6.29 is installed
  • OR libgnutls-devel-3.6.7-6.29 is installed
  • OR libgnutls30-3.6.7-6.29 is installed
  • OR libgnutls30-32bit-3.6.7-6.29 is installed
  • OR libgnutls30-hmac-3.6.7-6.29 is installed
  • OR libgnutls30-hmac-32bit-3.6.7-6.29 is installed
  • OR libgnutlsxx-devel-3.6.7-6.29 is installed
  • OR libgnutlsxx28-3.6.7-6.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • alsa-1.0.27.2-11 is installed
  • OR alsa-docs-1.0.27.2-11 is installed
  • OR libasound2-1.0.27.2-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_55-52_45-default-2-2 is installed
  • OR kgraft-patch-3_12_55-52_45-xen-2-2 is installed
  • OR kgraft-patch-SLE12_Update_13-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND Package Information
  • OpenEXR-32bit-1.6.1-83.17.1 is installed
  • OR OpenEXR-devel-1.6.1-83.17.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND sudo-devel-1.8.10p3-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-70 is installed
  • OR ImageMagick-devel-6.8.8.1-70 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-70 is installed
  • OR libMagick++-devel-6.8.8.1-70 is installed
  • OR perl-PerlMagick-6.8.8.1-70 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-71.85 is installed
  • OR ImageMagick-devel-6.8.8.1-71.85 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-71.85 is installed
  • OR libMagick++-devel-6.8.8.1-71.85 is installed
  • OR perl-PerlMagick-6.8.8.1-71.85 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND Package Information
  • finch-2.10.9-8.1 is installed
  • OR libpurple-2.10.9-8.1 is installed
  • OR libpurple-lang-2.10.9-8.1 is installed
  • OR libpurple-meanwhile-2.10.9-8.1 is installed
  • OR libpurple-tcl-2.10.9-8.1 is installed
  • OR pidgin-2.10.9-8.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND Package Information
  • gtk2-2.24.24-3.1 is installed
  • OR typelib-1_0-Gtk-2_0-2.24.24-3.1 is installed
    • BACK