OVAL Reference oval:org.opensuse.security:def:53477

Oval Definition:

oval:org.opensuse.security:def:53477

Revision Date:	2020-12-01	Version:	1
Title:	Security update for dovecot23 (Important)
Description:	This update for dovecot23 fixes the following issues: Security issues fixed: - CVE-2020-10957: Fixed a crash caused by malformed NOOP commands (bsc#1171457). - CVE-2020-10958: Fixed a use-after-free when receiving too many newlines (bsc#1171458). - CVE-2020-10967: Fixed a crash in the lmtp and submission components caused by mails with empty quoted localparts (bsc#1171456). Non-security issues fixed: - The update to 2.3.10 fixes several bugs. Please refer to https://dovecot.org/doc/NEWS for a complete list of changes.
Family:	unix	Class:	patch
Status:		Reference(s):	1037384 1039348 1043353 1043354 1043978 1047908 1050037 1050072 1050098 1050100 1050635 1051442 1052470 1052708 1052717 1052721 1052768 1052777 1052781 1054600 1055068 1055374 1055455 1055456 1056061 1057000 1059911 1059912 1059913 1060162 1062752 1069874 1072362 1072901 1074120 1074125 1074185 1074309 1075939 1076021 1076051 1161335 1171456 1171457 1171458 1176625 854343 856386 913057 938913 964844 968483 975729 979261 979906 987527 989755 CVE-2010-0624 CVE-2015-0301 CVE-2015-0302 CVE-2015-0303 CVE-2015-0304 CVE-2015-0305 CVE-2015-0306 CVE-2015-0307 CVE-2015-0308 CVE-2015-0309 CVE-2015-2059 CVE-2015-4000 CVE-2015-5191 CVE-2015-8079 CVE-2015-8948 CVE-2016-4574 CVE-2016-4579 CVE-2016-5008 CVE-2016-6261 CVE-2016-6262 CVE-2016-6263 CVE-2016-6321 CVE-2017-1000364 CVE-2017-10995 CVE-2017-11505 CVE-2017-11525 CVE-2017-11526 CVE-2017-11539 CVE-2017-11639 CVE-2017-11750 CVE-2017-12565 CVE-2017-12640 CVE-2017-12641 CVE-2017-12643 CVE-2017-12671 CVE-2017-12673 CVE-2017-12676 CVE-2017-12935 CVE-2017-13059 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081 CVE-2017-13087 CVE-2017-13088 CVE-2017-13141 CVE-2017-13142 CVE-2017-13147 CVE-2017-14062 CVE-2017-14103 CVE-2017-14245 CVE-2017-14246 CVE-2017-14634 CVE-2017-14649 CVE-2017-15218 CVE-2017-16942 CVE-2017-17504 CVE-2017-17681 CVE-2017-17879 CVE-2017-17884 CVE-2017-17914 CVE-2017-18008 CVE-2017-18027 CVE-2017-18029 CVE-2017-5209 CVE-2017-5545 CVE-2017-5834 CVE-2017-5835 CVE-2017-5836 CVE-2017-6440 CVE-2017-6892 CVE-2017-7982 CVE-2017-9261 CVE-2017-9262 CVE-2018-16741 CVE-2018-16742 CVE-2018-16743 CVE-2018-16744 CVE-2018-16745 CVE-2018-5246 CVE-2018-5685 CVE-2020-10957 CVE-2020-10958 CVE-2020-10967 SUSE-SU-2016:0344-1 SUSE-SU-2016:1510-1 SUSE-SU-2016:2053-1 SUSE-SU-2017:1617-1 SUSE-SU-2017:2745-1 SUSE-SU-2018:0349-1 SUSE-SU-2018:0352-1 SUSE-SU-2020:1379-1 SUSE-SU-2020:2814-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND cifs-utils-6.5-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information chromedriver-75.0.3770.80-lp151.2.6 is installed OR chromium-75.0.3770.80-lp151.2.6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND clamav-0.97.8-0.2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information evolution-data-server-2.28.2-0.32 is installed OR evolution-data-server-32bit-2.28.2-0.32 is installed OR evolution-data-server-lang-2.28.2-0.32 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information ecryptfs-utils-61-1.35 is installed OR ecryptfs-utils-32bit-61-1.35 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information flash-player-11.2.202.429-23 is installed OR flash-player-gnome-11.2.202.429-23 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libvirt-1.2.18.4-11 is installed OR libvirt-client-1.2.18.4-11 is installed OR libvirt-client-32bit-1.2.18.4-11 is installed OR libvirt-daemon-1.2.18.4-11 is installed OR libvirt-daemon-config-network-1.2.18.4-11 is installed OR libvirt-daemon-config-nwfilter-1.2.18.4-11 is installed OR libvirt-daemon-driver-interface-1.2.18.4-11 is installed OR libvirt-daemon-driver-libxl-1.2.18.4-11 is installed OR libvirt-daemon-driver-lxc-1.2.18.4-11 is installed OR libvirt-daemon-driver-network-1.2.18.4-11 is installed OR libvirt-daemon-driver-nodedev-1.2.18.4-11 is installed OR libvirt-daemon-driver-nwfilter-1.2.18.4-11 is installed OR libvirt-daemon-driver-qemu-1.2.18.4-11 is installed OR libvirt-daemon-driver-secret-1.2.18.4-11 is installed OR libvirt-daemon-driver-storage-1.2.18.4-11 is installed OR libvirt-daemon-lxc-1.2.18.4-11 is installed OR libvirt-daemon-qemu-1.2.18.4-11 is installed OR libvirt-daemon-xen-1.2.18.4-11 is installed OR libvirt-doc-1.2.18.4-11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND wpa_supplicant-2.2-15.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libQt5WebKit5-5.6.2-1 is installed OR libQt5WebKit5-imports-5.6.2-1 is installed OR libQt5WebKitWidgets5-5.6.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information g3utils-1.1.36-58.3 is installed OR mgetty-1.1.36-58.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND hyper-v-6-11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kernel-default-3.12.74-60.64.60 is installed OR kernel-default-base-3.12.74-60.64.60 is installed OR kernel-default-devel-3.12.74-60.64.60 is installed OR kernel-default-man-3.12.74-60.64.60 is installed OR kernel-devel-3.12.74-60.64.60 is installed OR kernel-macros-3.12.74-60.64.60 is installed OR kernel-source-3.12.74-60.64.60 is installed OR kernel-syms-3.12.74-60.64.60 is installed OR kernel-xen-3.12.74-60.64.60 is installed OR kernel-xen-base-3.12.74-60.64.60 is installed OR kernel-xen-devel-3.12.74-60.64.60 is installed OR kgraft-patch-3_12_74-60_64_60-default-1-2 is installed OR kgraft-patch-3_12_74-60_64_60-xen-1-2 is installed OR kgraft-patch-SLE12-SP1_Update_21-1-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information cups-pk-helper-0.2.5-3 is installed OR cups-pk-helper-lang-0.2.5-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libwireshark9-2.4.10-48.32 is installed OR libwiretap7-2.4.10-48.32 is installed OR libwscodecs1-2.4.10-48.32 is installed OR libwsutil8-2.4.10-48.32 is installed OR wireshark-2.4.10-48.32 is installed OR wireshark-gtk-2.4.10-48.32 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information MozillaFirefox-60.2.2esr-109.46 is installed OR MozillaFirefox-branding-SLE-60-32.3 is installed OR MozillaFirefox-devel-60.2.2esr-109.46 is installed OR MozillaFirefox-translations-common-60.2.2esr-109.46 is installed OR apache2-mod_nss-1.0.14-19.6 is installed OR libfreebl3-3.36.4-58.15 is installed OR libfreebl3-32bit-3.36.4-58.15 is installed OR libfreebl3-hmac-3.36.4-58.15 is installed OR libfreebl3-hmac-32bit-3.36.4-58.15 is installed OR libsoftokn3-3.36.4-58.15 is installed OR libsoftokn3-32bit-3.36.4-58.15 is installed OR libsoftokn3-hmac-3.36.4-58.15 is installed OR libsoftokn3-hmac-32bit-3.36.4-58.15 is installed OR mozilla-nspr-4.19-19.3 is installed OR mozilla-nspr-32bit-4.19-19.3 is installed OR mozilla-nss-3.36.4-58.15 is installed OR mozilla-nss-32bit-3.36.4-58.15 is installed OR mozilla-nss-certs-3.36.4-58.15 is installed OR mozilla-nss-certs-32bit-3.36.4-58.15 is installed OR mozilla-nss-sysinit-3.36.4-58.15 is installed OR mozilla-nss-sysinit-32bit-3.36.4-58.15 is installed OR mozilla-nss-tools-3.36.4-58.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_109-default-5-2 is installed OR kgraft-patch-SLE12-SP2_Update_29-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-36 is installed OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information ghostscript-9.27-23.31 is installed OR ghostscript-x11-9.27-23.31 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information MozillaFirefox-60.9.0-109.86 is installed OR MozillaFirefox-translations-common-60.9.0-109.86 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_97-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_26-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libpython2_7-1_0-2.7.13-28.8 is installed OR libpython2_7-1_0-32bit-2.7.13-28.8 is installed OR python-2.7.13-28.8 is installed OR python-32bit-2.7.13-28.8 is installed OR python-base-2.7.13-28.8 is installed OR python-base-32bit-2.7.13-28.8 is installed OR python-curses-2.7.13-28.8 is installed OR python-demo-2.7.13-28.8 is installed OR python-doc-2.7.13-28.8 is installed OR python-doc-pdf-2.7.13-28.8 is installed OR python-gdbm-2.7.13-28.8 is installed OR python-idle-2.7.13-28.8 is installed OR python-tk-2.7.13-28.8 is installed OR python-xml-2.7.13-28.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information guile-2.0.9-8 is installed OR guile-modules-2_0-2.0.9-8 is installed OR libguile-2_0-22-2.0.9-8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information dovecot23-2.3.10-4.22 is installed OR dovecot23-backend-mysql-2.3.10-4.22 is installed OR dovecot23-backend-pgsql-2.3.10-4.22 is installed OR dovecot23-backend-sqlite-2.3.10-4.22 is installed OR dovecot23-devel-2.3.10-4.22 is installed OR dovecot23-fts-2.3.10-4.22 is installed OR dovecot23-fts-lucene-2.3.10-4.22 is installed OR dovecot23-fts-solr-2.3.10-4.22 is installed OR dovecot23-fts-squat-2.3.10-4.22 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information openstack-heat-5.0.2~a0~dev9-1 is installed OR openstack-heat-api-5.0.2~a0~dev9-1 is installed OR openstack-heat-api-cfn-5.0.2~a0~dev9-1 is installed OR openstack-heat-api-cloudwatch-5.0.2~a0~dev9-1 is installed OR openstack-heat-engine-5.0.2~a0~dev9-1 is installed OR openstack-heat-plugin-heat_docker-5.0.2~a0~dev9-1 is installed OR python-heat-5.0.2~a0~dev9-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND clamav-0.100.1-33.15 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND cobbler-2.6.6-49.9 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed OR libwebkit2gtk3-lang-2.24.4-2.47 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed OR webkit2gtk3-2.24.4-2.47 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND python-SQLAlchemy-1.2.10-3.3 is installed

BACK