OVAL Reference oval:org.opensuse.security:def:53442

Oval Definition:

oval:org.opensuse.security:def:53442

Revision Date:	2020-12-01	Version:	1
Title:	Security update for php7 (Important)
Description:	This update for php7 fixes the following issues: - CVE-2020-7069: Fixed an issue when AES-CCM mode was used with openssl_encrypt() function with 12 bytes IV, only first 7 bytes of the IV was used (bsc#1177351). - CVE-2020-7070: Fixed an issue where percent-encoded cookies could have been used to overwrite existing prefixed cookie names (bsc#1177352). - Added tmpfiles.d for php-fpm to provide a base for a socket (bsc#1173786)
Family:	unix	Class:	patch
Status:		Reference(s):	1002981 1010735 1010740 1010752 1010754 1010911 1021739 1022703 1025913 1026507 1027692 1027998 1028655 1029827 1030144 1033936 1033937 1033938 1033939 1033940 1033941 1033942 1033943 1033944 1033945 1034843 1034844 1034849 1034994 1036146 1049302 1049305 1049306 1049307 1049308 1049309 1049310 1049311 1049312 1049313 1049314 1049315 1049316 1049317 1049318 1049319 1049320 1049321 1049322 1049323 1049324 1049325 1049326 1049327 1049328 1049329 1049330 1049331 1049332 1173160 1173786 1177351 1177352 872912 873922 876312 889175 898031 908627 913238 917376 917799 952099 957812 970498 990856 998761 998762 998763 998800 998963 998964 CVE-2009-5044 CVE-2009-5080 CVE-2009-5081 CVE-2010-1205 CVE-2011-2501 CVE-2011-2690 CVE-2011-2691 CVE-2011-2692 CVE-2011-3328 CVE-2012-1152 CVE-2013-0221 CVE-2013-0222 CVE-2013-0223 CVE-2013-2002 CVE-2013-2005 CVE-2013-6393 CVE-2013-6954 CVE-2014-0333 CVE-2014-2525 CVE-2014-9130 CVE-2014-9495 CVE-2014-9679 CVE-2015-0240 CVE-2015-0973 CVE-2015-2059 CVE-2015-3195 CVE-2015-4041 CVE-2015-4042 CVE-2015-8126 CVE-2015-8833 CVE-2015-8948 CVE-2016-10087 CVE-2016-6261 CVE-2016-6262 CVE-2016-6263 CVE-2016-6354 CVE-2016-7175 CVE-2016-7176 CVE-2016-7177 CVE-2016-7178 CVE-2016-7179 CVE-2016-7180 CVE-2016-9373 CVE-2016-9374 CVE-2016-9375 CVE-2016-9376 CVE-2016-9603 CVE-2017-10053 CVE-2017-10067 CVE-2017-10074 CVE-2017-10078 CVE-2017-10081 CVE-2017-10086 CVE-2017-10087 CVE-2017-10089 CVE-2017-10090 CVE-2017-10096 CVE-2017-10101 CVE-2017-10102 CVE-2017-10105 CVE-2017-10107 CVE-2017-10108 CVE-2017-10109 CVE-2017-10110 CVE-2017-10111 CVE-2017-10114 CVE-2017-10115 CVE-2017-10116 CVE-2017-10118 CVE-2017-10125 CVE-2017-10135 CVE-2017-10176 CVE-2017-10193 CVE-2017-10198 CVE-2017-10243 CVE-2017-3509 CVE-2017-3511 CVE-2017-3512 CVE-2017-3514 CVE-2017-3526 CVE-2017-3533 CVE-2017-3539 CVE-2017-3544 CVE-2017-5596 CVE-2017-5597 CVE-2017-6014 CVE-2017-7700 CVE-2017-7701 CVE-2017-7702 CVE-2017-7703 CVE-2017-7704 CVE-2017-7705 CVE-2017-7718 CVE-2017-7745 CVE-2017-7746 CVE-2017-7747 CVE-2017-7748 CVE-2020-10745 CVE-2020-7069 CVE-2020-7070 SUSE-SU-2015:0353-1 SUSE-SU-2015:0465-1 SUSE-SU-2015:2342-1 SUSE-SU-2016:0912-1 SUSE-SU-2017:1143-1 SUSE-SU-2017:1442-1 SUSE-SU-2017:1445-1 SUSE-SU-2017:2175-1 SUSE-SU-2020:2065-1 SUSE-SU-2020:2997-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information dhcp-4.3.5-lp150.4 is installed OR dhcp-client-4.3.5-lp150.4 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libipa_hbac-devel-1.16.1-lp151.7.3 is installed OR libipa_hbac0-1.16.1-lp151.7.3 is installed OR libnfsidmap-sss-1.16.1-lp151.7.3 is installed OR libsss_certmap-devel-1.16.1-lp151.7.3 is installed OR libsss_certmap0-1.16.1-lp151.7.3 is installed OR libsss_idmap-devel-1.16.1-lp151.7.3 is installed OR libsss_idmap0-1.16.1-lp151.7.3 is installed OR libsss_nss_idmap-devel-1.16.1-lp151.7.3 is installed OR libsss_nss_idmap0-1.16.1-lp151.7.3 is installed OR libsss_simpleifp-devel-1.16.1-lp151.7.3 is installed OR libsss_simpleifp0-1.16.1-lp151.7.3 is installed OR python3-ipa_hbac-1.16.1-lp151.7.3 is installed OR python3-sss-murmur-1.16.1-lp151.7.3 is installed OR python3-sss_nss_idmap-1.16.1-lp151.7.3 is installed OR python3-sssd-config-1.16.1-lp151.7.3 is installed OR sssd-1.16.1-lp151.7.3 is installed OR sssd-32bit-1.16.1-lp151.7.3 is installed OR sssd-ad-1.16.1-lp151.7.3 is installed OR sssd-dbus-1.16.1-lp151.7.3 is installed OR sssd-ipa-1.16.1-lp151.7.3 is installed OR sssd-krb5-1.16.1-lp151.7.3 is installed OR sssd-krb5-common-1.16.1-lp151.7.3 is installed OR sssd-ldap-1.16.1-lp151.7.3 is installed OR sssd-proxy-1.16.1-lp151.7.3 is installed OR sssd-tools-1.16.1-lp151.7.3 is installed OR sssd-wbclient-1.16.1-lp151.7.3 is installed OR sssd-wbclient-devel-1.16.1-lp151.7.3 is installed OR sssd-winbind-idmap-1.16.1-lp151.7.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND libotr2-3.2.0-10.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information ImageMagick-6.4.3.6-7.30 is installed OR libMagick++1-6.4.3.6-7.30 is installed OR libMagickCore1-6.4.3.6-7.30 is installed OR libMagickCore1-32bit-6.4.3.6-7.30 is installed OR libMagickWand1-6.4.3.6-7.30 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information java-1_7_0-openjdk-1.7.0.85-0.11 is installed OR java-1_7_0-openjdk-demo-1.7.0.85-0.11 is installed OR java-1_7_0-openjdk-devel-1.7.0.85-0.11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information cups-1.7.5-5 is installed OR cups-client-1.7.5-5 is installed OR cups-libs-1.7.5-5 is installed OR cups-libs-32bit-1.7.5-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information compat-openssl098-0.9.8j-87 is installed OR libopenssl0_9_8-0.9.8j-87 is installed OR libopenssl0_9_8-32bit-0.9.8j-87 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information java-1_8_0-openjdk-1.8.0.144-27.5 is installed OR java-1_8_0-openjdk-headless-1.8.0.144-27.5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND groff-1.22.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information coreutils-8.25-13.7 is installed OR coreutils-lang-8.25-13.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information apache2-mod_php7-7.2.5-4.67 is installed OR php7-7.2.5-4.67 is installed OR php7-bcmath-7.2.5-4.67 is installed OR php7-bz2-7.2.5-4.67 is installed OR php7-calendar-7.2.5-4.67 is installed OR php7-ctype-7.2.5-4.67 is installed OR php7-curl-7.2.5-4.67 is installed OR php7-dba-7.2.5-4.67 is installed OR php7-devel-7.2.5-4.67 is installed OR php7-dom-7.2.5-4.67 is installed OR php7-enchant-7.2.5-4.67 is installed OR php7-exif-7.2.5-4.67 is installed OR php7-fastcgi-7.2.5-4.67 is installed OR php7-fileinfo-7.2.5-4.67 is installed OR php7-fpm-7.2.5-4.67 is installed OR php7-ftp-7.2.5-4.67 is installed OR php7-gd-7.2.5-4.67 is installed OR php7-gettext-7.2.5-4.67 is installed OR php7-gmp-7.2.5-4.67 is installed OR php7-iconv-7.2.5-4.67 is installed OR php7-intl-7.2.5-4.67 is installed OR php7-json-7.2.5-4.67 is installed OR php7-ldap-7.2.5-4.67 is installed OR php7-mbstring-7.2.5-4.67 is installed OR php7-mysql-7.2.5-4.67 is installed OR php7-odbc-7.2.5-4.67 is installed OR php7-opcache-7.2.5-4.67 is installed OR php7-openssl-7.2.5-4.67 is installed OR php7-pcntl-7.2.5-4.67 is installed OR php7-pdo-7.2.5-4.67 is installed OR php7-pear-7.2.5-4.67 is installed OR php7-pear-Archive_Tar-7.2.5-4.67 is installed OR php7-pgsql-7.2.5-4.67 is installed OR php7-phar-7.2.5-4.67 is installed OR php7-posix-7.2.5-4.67 is installed OR php7-readline-7.2.5-4.67 is installed OR php7-shmop-7.2.5-4.67 is installed OR php7-snmp-7.2.5-4.67 is installed OR php7-soap-7.2.5-4.67 is installed OR php7-sockets-7.2.5-4.67 is installed OR php7-sodium-7.2.5-4.67 is installed OR php7-sqlite-7.2.5-4.67 is installed OR php7-sysvmsg-7.2.5-4.67 is installed OR php7-sysvsem-7.2.5-4.67 is installed OR php7-sysvshm-7.2.5-4.67 is installed OR php7-tidy-7.2.5-4.67 is installed OR php7-tokenizer-7.2.5-4.67 is installed OR php7-wddx-7.2.5-4.67 is installed OR php7-xmlreader-7.2.5-4.67 is installed OR php7-xmlrpc-7.2.5-4.67 is installed OR php7-xmlwriter-7.2.5-4.67 is installed OR php7-xsl-7.2.5-4.67 is installed OR php7-zip-7.2.5-4.67 is installed OR php7-zlib-7.2.5-4.67 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information dhcp-4.3.3-2 is installed OR dhcp-client-4.3.3-2 is installed OR dhcp-relay-4.3.3-2 is installed OR dhcp-server-4.3.3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_67-60_64_18-default-9-2 is installed OR kgraft-patch-3_12_67-60_64_18-xen-9-2 is installed OR kgraft-patch-SLE12-SP1_Update_9-9-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information MozillaFirefox-45.4.0esr-81 is installed OR MozillaFirefox-translations-45.4.0esr-81 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information xen-4.7.6_02-43.36 is installed OR xen-doc-html-4.7.6_02-43.36 is installed OR xen-libs-4.7.6_02-43.36 is installed OR xen-libs-32bit-4.7.6_02-43.36 is installed OR xen-tools-4.7.6_02-43.36 is installed OR xen-tools-domU-4.7.6_02-43.36 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information openslp-2.0.0-18.15 is installed OR openslp-32bit-2.0.0-18.15 is installed OR openslp-server-2.0.0-18.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information bzip2-1.0.6-30.8 is installed OR bzip2-doc-1.0.6-30.8 is installed OR libbz2-1-1.0.6-30.8 is installed OR libbz2-1-32bit-1.0.6-30.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND gd-2.1.0-23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libpolkit0-0.113-5.18 is installed OR polkit-0.113-5.18 is installed OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information bzip2-1.0.6-30.8 is installed OR bzip2-doc-1.0.6-30.8 is installed OR libbz2-1-1.0.6-30.8 is installed OR libbz2-1-32bit-1.0.6-30.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information curl-7.37.0-37.43 is installed OR libcurl4-7.37.0-37.43 is installed OR libcurl4-32bit-7.37.0-37.43 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND perl-Archive-Zip-1.34-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information emacs-24.3-25.3 is installed OR emacs-el-24.3-25.3 is installed OR emacs-info-24.3-25.3 is installed OR emacs-nox-24.3-25.3 is installed OR emacs-x11-24.3-25.3 is installed OR etags-24.3-25.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libdcerpc-binding0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libdcerpc-binding0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libdcerpc-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libdcerpc-samr-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libdcerpc-samr0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libdcerpc0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libdcerpc0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr-krb5pac-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr-krb5pac0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr-krb5pac0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr-nbt-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr-nbt0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr-nbt0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr-standard-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr-standard0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr-standard0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libnetapi-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libnetapi0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libnetapi0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-credentials-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-credentials0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-credentials0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-errors-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-errors0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-errors0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-hostconfig-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-hostconfig0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-hostconfig0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-passdb-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-passdb0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-passdb0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-policy-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-policy0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-util-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-util0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-util0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamdb-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamdb0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamdb0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsmbclient-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsmbclient0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsmbclient0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsmbconf-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsmbconf0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsmbconf0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsmbldap-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsmbldap2-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsmbldap2-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libtevent-util-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libtevent-util0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libtevent-util0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libwbclient-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libwbclient0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libwbclient0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR samba-4.7.11+git.240.76c9942a99f-4.43 is installed OR samba-client-4.7.11+git.240.76c9942a99f-4.43 is installed OR samba-client-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR samba-core-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR samba-libs-4.7.11+git.240.76c9942a99f-4.43 is installed OR samba-libs-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR samba-winbind-4.7.11+git.240.76c9942a99f-4.43 is installed OR samba-winbind-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information openstack-cinder-7.0.2~a0~dev1-1 is installed OR openstack-cinder-api-7.0.2~a0~dev1-1 is installed OR openstack-cinder-backup-7.0.2~a0~dev1-1 is installed OR openstack-cinder-scheduler-7.0.2~a0~dev1-1 is installed OR openstack-cinder-volume-7.0.2~a0~dev1-1 is installed OR python-cinder-7.0.2~a0~dev1-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information dnsmasq-2.78-18.3 is installed OR dnsmasq-utils-2.78-18.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information mariadb-10.2.22-4.11 is installed OR mariadb-client-10.2.22-4.11 is installed OR mariadb-errormessages-10.2.22-4.11 is installed OR mariadb-galera-10.2.22-4.11 is installed OR mariadb-tools-10.2.22-4.11 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information dnsmasq-2.78-18.12 is installed OR dnsmasq-utils-2.78-18.12 is installed

BACK