OVAL Reference oval:org.opensuse.security:def:53458

Oval Definition:

oval:org.opensuse.security:def:53458

Revision Date:	2020-12-01	Version:	1
Title:	Security update for freeradius-server (Moderate)
Description:	This update for freeradius-server fixes the following issues: - CVE-2019-13456: Fixed a side-channel password leak in EAP-pwd (bsc#1144524). - CVE-2019-17185: Fixed a debial of service due to multithreaded BN_CTX access (bsc#1166847). - Fixed an issue in TLS-EAP where the OCSP verification, when an intermediate client certificate was not explicitly trusted (bsc#1146848).
Family:	unix	Class:	patch
Status:		Reference(s):	1012382 1017902 1038231 1039616 1047487 1063043 1064311 1065180 1068032 1068951 1071009 1072556 1072962 1073090 1073792 1073809 1073874 1073912 1076503 1120999 1144524 1146848 1166847 1174633 1174635 1174638 898675 903997 904242 909309 909477 909684 910517 913080 914818 915200 915660 917830 918584 918615 918620 918644 919463 919719 919939 920615 920805 920839 921313 921527 921990 922272 922275 922278 922284 924460 947165 954018 954405 956408 956409 956411 956592 956832 964063 968787 969470 969727 971804 973010 973164 973639 974220 975930 980483 980854 CVE-2007-4772 CVE-2007-6600 CVE-2009-4034 CVE-2009-4136 CVE-2010-1169 CVE-2010-1170 CVE-2010-3433 CVE-2012-0866 CVE-2012-0867 CVE-2012-0868 CVE-2012-2141 CVE-2012-2143 CVE-2012-2655 CVE-2012-3355 CVE-2012-3488 CVE-2012-3489 CVE-2013-0255 CVE-2013-1899 CVE-2013-1900 CVE-2013-1901 CVE-2013-4509 CVE-2014-0060 CVE-2014-0061 CVE-2014-0062 CVE-2014-0063 CVE-2014-0064 CVE-2014-0065 CVE-2014-0066 CVE-2014-0067 CVE-2014-2284 CVE-2014-2285 CVE-2014-2892 CVE-2014-3565 CVE-2015-0777 CVE-2015-2150 CVE-2015-3165 CVE-2015-3166 CVE-2015-3167 CVE-2015-3259 CVE-2015-3294 CVE-2015-4106 CVE-2015-5154 CVE-2015-5239 CVE-2015-5288 CVE-2015-5289 CVE-2015-5307 CVE-2015-5621 CVE-2015-6815 CVE-2015-7311 CVE-2015-7504 CVE-2015-7835 CVE-2015-8104 CVE-2015-8339 CVE-2015-8340 CVE-2015-8341 CVE-2015-8345 CVE-2015-8899 CVE-2016-0766 CVE-2016-0773 CVE-2016-10109 CVE-2016-1234 CVE-2016-1601 CVE-2016-2193 CVE-2016-3065 CVE-2016-3075 CVE-2016-3706 CVE-2016-4429 CVE-2017-14491 CVE-2017-14492 CVE-2017-14493 CVE-2017-14494 CVE-2017-14495 CVE-2017-14496 CVE-2017-15098 CVE-2017-15099 CVE-2017-17805 CVE-2017-17806 CVE-2017-5715 CVE-2017-5753 CVE-2017-5754 CVE-2017-7484 CVE-2017-7485 CVE-2017-7486 CVE-2017-7494 CVE-2017-7546 CVE-2017-7547 CVE-2017-7548 CVE-2018-1053 CVE-2018-1058 CVE-2018-10915 CVE-2018-10925 CVE-2018-1115 CVE-2018-5764 CVE-2019-13456 CVE-2019-17185 CVE-2020-14345 CVE-2020-14346 CVE-2020-14347 SUSE-SU-2015:0658-1 SUSE-SU-2015:2324-1 SUSE-SU-2016:1138-1 SUSE-SU-2016:1721-1 SUSE-SU-2017:0286-1 SUSE-SU-2017:1393-1 SUSE-SU-2018:0012-1 SUSE-SU-2018:0174-1 SUSE-SU-2020:1023-1 SUSE-SU-2020:2326-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information PackageKit-1.1.10-lp150.2 is installed OR PackageKit-backend-zypp-1.1.10-lp150.2 is installed OR PackageKit-gstreamer-plugin-1.1.10-lp150.2 is installed OR PackageKit-gtk3-module-1.1.10-lp150.2 is installed OR PackageKit-lang-1.1.10-lp150.2 is installed OR libpackagekit-glib2-18-1.1.10-lp150.2 is installed OR typelib-1_0-PackageKitGlib-1_0-1.1.10-lp150.2 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information bzip2-1.0.6-lp151.5.3 is installed OR bzip2-doc-1.0.6-lp151.5.3 is installed OR libbz2-1-1.0.6-lp151.5.3 is installed OR libbz2-1-32bit-1.0.6-lp151.5.3 is installed OR libbz2-devel-1.0.6-lp151.5.3 is installed OR libbz2-devel-32bit-1.0.6-lp151.5.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libldb1-3.6.3-0.33.39 is installed OR libldb1-32bit-3.6.3-0.33.39 is installed OR libsmbclient0-3.6.3-0.33.39 is installed OR libsmbclient0-32bit-3.6.3-0.33.39 is installed OR libtalloc1-3.4.3-1.50 is installed OR libtalloc1-32bit-3.4.3-1.50 is installed OR libtalloc2-3.6.3-0.33.39 is installed OR libtalloc2-32bit-3.6.3-0.33.39 is installed OR libtdb1-3.6.3-0.33.39 is installed OR libtdb1-32bit-3.6.3-0.33.39 is installed OR libtevent0-3.6.3-0.33.39 is installed OR libtevent0-32bit-3.6.3-0.33.39 is installed OR libwbclient0-3.6.3-0.33.39 is installed OR libwbclient0-32bit-3.6.3-0.33.39 is installed OR samba-3.6.3-0.33.39 is installed OR samba-32bit-3.6.3-0.33.39 is installed OR samba-client-3.6.3-0.33.39 is installed OR samba-client-32bit-3.6.3-0.33.39 is installed OR samba-doc-3.6.3-0.33.39 is installed OR samba-krb-printing-3.6.3-0.33.39 is installed OR samba-winbind-3.6.3-0.33.39 is installed OR samba-winbind-32bit-3.6.3-0.33.39 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information bind-9.9.6P1-0.22 is installed OR bind-libs-9.9.6P1-0.22 is installed OR bind-libs-32bit-9.9.6P1-0.22 is installed OR bind-utils-9.9.6P1-0.22 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information libmspack-0.0.20060920alpha-74.10 is installed OR libmspack0-0.0.20060920alpha-74.10 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information kernel-default-3.12.39-47 is installed OR kernel-default-devel-3.12.39-47 is installed OR kernel-default-extra-3.12.39-47 is installed OR kernel-devel-3.12.39-47 is installed OR kernel-macros-3.12.39-47 is installed OR kernel-source-3.12.39-47 is installed OR kernel-syms-3.12.39-47 is installed OR kernel-xen-3.12.39-47 is installed OR kernel-xen-devel-3.12.39-47 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information xen-4.5.2_02-4 is installed OR xen-kmp-default-4.5.2_02_k3.12.49_11-4 is installed OR xen-libs-4.5.2_02-4 is installed OR xen-libs-32bit-4.5.2_02-4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libpcsclite1-1.8.10-6 is installed OR libpcsclite1-32bit-1.8.10-6 is installed OR pcsc-lite-1.8.10-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information ibus-chewing-1.4.14-4 is installed OR ibus-pinyin-1.5.0-11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND dnsmasq-2.78-18.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information gdk-pixbuf-lang-2.30.6-1 is installed OR gdk-pixbuf-query-loaders-2.30.6-1 is installed OR gdk-pixbuf-query-loaders-32bit-2.30.6-1 is installed OR libgdk_pixbuf-2_0-0-2.30.6-1 is installed OR libgdk_pixbuf-2_0-0-32bit-2.30.6-1 is installed OR typelib-1_0-GdkPixbuf-2_0-2.30.6-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information xen-4.5.5_14-22.25 is installed OR xen-doc-html-4.5.5_14-22.25 is installed OR xen-kmp-default-4.5.5_14_k3.12.74_60.64.54-22.25 is installed OR xen-libs-4.5.5_14-22.25 is installed OR xen-libs-32bit-4.5.5_14-22.25 is installed OR xen-tools-4.5.5_14-22.25 is installed OR xen-tools-domU-4.5.5_14-22.25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information avahi-0.6.32-30 is installed OR avahi-lang-0.6.32-30 is installed OR avahi-utils-0.6.32-30 is installed OR libavahi-client3-0.6.32-30 is installed OR libavahi-client3-32bit-0.6.32-30 is installed OR libavahi-common3-0.6.32-30 is installed OR libavahi-common3-32bit-0.6.32-30 is installed OR libavahi-core7-0.6.32-30 is installed OR libdns_sd-0.6.32-30 is installed OR libdns_sd-32bit-0.6.32-30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_73-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_21-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information libspice-server1-0.12.7-10.6 is installed OR spice-0.12.7-10.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information grub2-2.02-2 is installed OR grub2-arm64-efi-2.02-2 is installed OR grub2-i386-pc-2.02-2 is installed OR grub2-powerpc-ieee1275-2.02-2 is installed OR grub2-s390x-emu-2.02-2 is installed OR grub2-snapper-plugin-2.02-2 is installed OR grub2-systemd-sleep-plugin-2.02-2 is installed OR grub2-x86_64-efi-2.02-2 is installed OR grub2-x86_64-xen-2.02-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libopenssl-devel-1.0.2j-60.55 is installed OR libopenssl1_0_0-1.0.2j-60.55 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed OR openssl-1.0.2j-60.55 is installed OR openssl-doc-1.0.2j-60.55 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information glibc-2.22-62.22 is installed OR glibc-32bit-2.22-62.22 is installed OR glibc-devel-2.22-62.22 is installed OR glibc-devel-32bit-2.22-62.22 is installed OR glibc-html-2.22-62.22 is installed OR glibc-i18ndata-2.22-62.22 is installed OR glibc-info-2.22-62.22 is installed OR glibc-locale-2.22-62.22 is installed OR glibc-locale-32bit-2.22-62.22 is installed OR glibc-profile-2.22-62.22 is installed OR glibc-profile-32bit-2.22-62.22 is installed OR nscd-2.22-62.22 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_156-94_64-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_20-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information openslp-2.0.0-18.15 is installed OR openslp-32bit-2.0.0-18.15 is installed OR openslp-server-2.0.0-18.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information giflib-progs-5.0.5-12 is installed OR libgif6-5.0.5-12 is installed OR libgif6-32bit-5.0.5-12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information freeradius-server-3.0.16-3.6 is installed OR freeradius-server-devel-3.0.16-3.6 is installed OR freeradius-server-krb5-3.0.16-3.6 is installed OR freeradius-server-ldap-3.0.16-3.6 is installed OR freeradius-server-libs-3.0.16-3.6 is installed OR freeradius-server-mysql-3.0.16-3.6 is installed OR freeradius-server-perl-3.0.16-3.6 is installed OR freeradius-server-postgresql-3.0.16-3.6 is installed OR freeradius-server-python-3.0.16-3.6 is installed OR freeradius-server-sqlite-3.0.16-3.6 is installed OR freeradius-server-utils-3.0.16-3.6 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information python-keystoneclient-1.7.2-3 is installed OR python-keystoneclient-doc-1.7.2-3 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND python-ecdsa-0.13.3-5.10 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND python-Twisted-15.2.1-9.5 is installed

BACK