Oval Definition:	oval:org.opensuse.security:def:53487
Revision Date: 2020-12-01 Version: 1 Title: Security update for gnutls (Important) Description: This update for gnutls fixes the following issues: - CVE-2020-13777: Fixed an insecure session ticket key construction which could have made the TLS server to not bind the session ticket encryption key with a value supplied by the application until the initial key rotation, allowing an attacker to bypass authentication in TLS 1.3 and recover previous conversations in TLS 1.2 (bsc#1172506). - Fixed an improper handling of certificate chain with cross-signed intermediate CA certificates (bsc#1172461). Family: unix Class: patch Status: Reference(s): 1012382 1012917 1019784 1022476 1022917 1022918 1022919 1028103 1031717 1035807 1036457 1038078 1038085 1043652 1048585 1052360 1060279 1064127 1066223 1066842 1068032 1068038 1068569 1068984 1069160 1070799 1072163 1072484 1072589 1073229 1073928 1074134 1074392 1074488 1074621 1074709 1074839 1074847 1075066 1075078 1075087 1075091 1075428 1075617 1075621 1075627 1075994 1076017 1076110 1076806 1076809 1076872 1076899 1077068 1077560 1077592 1078526 1078681 1079600 1172461 1172506 1173786 1177351 1177352 908738 911577 915782 915810 920969 961935 963806 963810 963844 965875 970287 970295 980904 988524 991088 CVE-2008-1686 CVE-2009-0945 CVE-2011-3193 CVE-2011-3922 CVE-2012-3466 CVE-2012-4929 CVE-2012-6093 CVE-2013-0254 CVE-2013-4549 CVE-2014-0190 CVE-2014-9087 CVE-2014-9638 CVE-2014-9639 CVE-2014-9640 CVE-2015-0255 CVE-2015-0295 CVE-2015-1858 CVE-2015-1859 CVE-2015-1860 CVE-2015-6749 CVE-2016-0505 CVE-2016-0546 CVE-2016-0596 CVE-2016-0597 CVE-2016-0598 CVE-2016-0600 CVE-2016-0606 CVE-2016-0608 CVE-2016-0609 CVE-2016-0616 CVE-2016-0640 CVE-2016-0641 CVE-2016-0642 CVE-2016-0643 CVE-2016-0644 CVE-2016-0646 CVE-2016-0647 CVE-2016-0648 CVE-2016-0649 CVE-2016-0650 CVE-2016-0651 CVE-2016-0655 CVE-2016-0666 CVE-2016-0668 CVE-2016-0739 CVE-2016-10164 CVE-2016-10195 CVE-2016-10196 CVE-2016-10197 CVE-2016-10244 CVE-2016-2047 CVE-2016-3120 CVE-2016-4574 CVE-2016-4579 CVE-2016-9843 CVE-2017-15129 CVE-2017-15638 CVE-2017-17712 CVE-2017-17862 CVE-2017-17864 CVE-2017-18017 CVE-2017-5715 CVE-2017-7864 CVE-2017-8105 CVE-2017-8287 CVE-2018-1000004 CVE-2018-5332 CVE-2018-5333 CVE-2020-13777 CVE-2020-7069 CVE-2020-7070 SUSE-SU-2015:0939-1 SUSE-SU-2016:0625-1 SUSE-SU-2016:1620-1 SUSE-SU-2016:2136-1 SUSE-SU-2017:2932-1 SUSE-SU-2018:0200-1 SUSE-SU-2018:0414-1 SUSE-SU-2018:0416-1 SUSE-SU-2020:1584-1 SUSE-SU-2020:2997-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.1 NonFree SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information cyrus-sasl-2.1.26-lp150.3 is installed OR cyrus-sasl-32bit-2.1.26-lp150.3 is installed OR cyrus-sasl-crammd5-2.1.26-lp150.3 is installed OR cyrus-sasl-crammd5-32bit-2.1.26-lp150.3 is installed OR cyrus-sasl-digestmd5-2.1.26-lp150.3 is installed OR cyrus-sasl-digestmd5-32bit-2.1.26-lp150.3 is installed OR cyrus-sasl-gssapi-2.1.26-lp150.3 is installed OR cyrus-sasl-gssapi-32bit-2.1.26-lp150.3 is installed OR cyrus-sasl-plain-2.1.26-lp150.3 is installed OR cyrus-sasl-plain-32bit-2.1.26-lp150.3 is installed OR libsasl2-3-2.1.26-lp150.3 is installed OR libsasl2-3-32bit-2.1.26-lp150.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libnetpbm-devel-10.80.1-lp151.4.3 is installed OR libnetpbm11-10.80.1-lp151.4.3 is installed OR libnetpbm11-32bit-10.80.1-lp151.4.3 is installed OR netpbm-10.80.1-lp151.4.3 is installed OR netpbm-vulnerable-10.80.1-lp151.4.3 is installed Definition Synopsis openSUSE Leap 15.1 NonFree is installed AND opera-65.0.3467.62-lp151.2.9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information MozillaFirefox-10.0.11-0.3 is installed OR MozillaFirefox-translations-10.0.11-0.3 is installed OR libfreebl3-3.14-0.3 is installed OR libfreebl3-32bit-3.14-0.3 is installed OR mozilla-nss-3.14-0.3 is installed OR mozilla-nss-32bit-3.14-0.3 is installed OR mozilla-nss-tools-3.14-0.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-31.4.0esr-0.8 is installed OR MozillaFirefox-translations-31.4.0esr-0.8 is installed OR libfreebl3-3.17.3-0.8 is installed OR libfreebl3-32bit-3.17.3-0.8 is installed OR libsoftokn3-3.17.3-0.8 is installed OR libsoftokn3-32bit-3.17.3-0.8 is installed OR mozilla-nss-3.17.3-0.8 is installed OR mozilla-nss-32bit-3.17.3-0.8 is installed OR mozilla-nss-tools-3.17.3-0.8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information flash-player-11.2.202.535-0.20 is installed OR flash-player-gnome-11.2.202.535-0.20 is installed OR flash-player-kde4-11.2.202.535-0.20 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information fltk-1.3.2-10 is installed OR libfltk1-1.3.2-10 is installed OR tigervnc-1.4.1-32 is installed OR xorg-x11-Xvnc-1.4.1-32 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information krb5-1.12.1-36 is installed OR krb5-32bit-1.12.1-36 is installed OR krb5-client-1.12.1-36 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND SuSEfirewall2-3.6.312-2.13 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libXpm4-3.5.11-5 is installed OR libXpm4-32bit-3.5.11-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gnome-keyring-3.20.0-28.3 is installed OR gnome-keyring-32bit-3.20.0-28.3 is installed OR gnome-keyring-lang-3.20.0-28.3 is installed OR gnome-keyring-pam-3.20.0-28.3 is installed OR gnome-keyring-pam-32bit-3.20.0-28.3 is installed OR libgck-modules-gnome-keyring-3.20.0-28.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information kernel-default-3.12.49-11 is installed OR kernel-default-base-3.12.49-11 is installed OR kernel-default-devel-3.12.49-11 is installed OR kernel-default-man-3.12.49-11 is installed OR kernel-devel-3.12.49-11 is installed OR kernel-macros-3.12.49-11 is installed OR kernel-source-3.12.49-11 is installed OR kernel-syms-3.12.49-11 is installed OR kernel-xen-3.12.49-11 is installed OR kernel-xen-base-3.12.49-11 is installed OR kernel-xen-devel-3.12.49-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND wpa_supplicant-2.2-15.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information dovecot22-2.2.13-2 is installed OR dovecot22-backend-mysql-2.2.13-2 is installed OR dovecot22-backend-pgsql-2.2.13-2 is installed OR dovecot22-backend-sqlite-2.2.13-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_103-92_56-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_17-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_101-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_27-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_nss-1.0.14-18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information xen-4.9.4_06-3.59 is installed OR xen-doc-html-4.9.4_06-3.59 is installed OR xen-libs-4.9.4_06-3.59 is installed OR xen-libs-32bit-4.9.4_06-3.59 is installed OR xen-tools-4.9.4_06-3.59 is installed OR xen-tools-domU-4.9.4_06-3.59 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND ucode-intel-20191112-13.53 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND ucode-intel-20180807-13.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information jakarta-commons-fileupload-1.1.1-120 is installed OR jakarta-commons-fileupload-javadoc-1.1.1-120 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information gnutls-3.6.7-6.29 is installed OR libgnutls-devel-3.6.7-6.29 is installed OR libgnutls30-3.6.7-6.29 is installed OR libgnutls30-32bit-3.6.7-6.29 is installed OR libgnutls30-hmac-3.6.7-6.29 is installed OR libgnutls30-hmac-32bit-3.6.7-6.29 is installed OR libgnutlsxx-devel-3.6.7-6.29 is installed OR libgnutlsxx28-3.6.7-6.29 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND python-Jinja2-2.7.3-15 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information libvirt-2.0.0-27.45 is installed OR libvirt-client-2.0.0-27.45 is installed OR libvirt-daemon-2.0.0-27.45 is installed OR libvirt-daemon-config-network-2.0.0-27.45 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.45 is installed OR libvirt-daemon-driver-interface-2.0.0-27.45 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.45 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.45 is installed OR libvirt-daemon-driver-network-2.0.0-27.45 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.45 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.45 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.45 is installed OR libvirt-daemon-driver-secret-2.0.0-27.45 is installed OR libvirt-daemon-driver-storage-2.0.0-27.45 is installed OR libvirt-daemon-hooks-2.0.0-27.45 is installed OR libvirt-daemon-lxc-2.0.0-27.45 is installed OR libvirt-daemon-qemu-2.0.0-27.45 is installed OR libvirt-daemon-xen-2.0.0-27.45 is installed OR libvirt-doc-2.0.0-27.45 is installed OR libvirt-lock-sanlock-2.0.0-27.45 is installed OR libvirt-nss-2.0.0-27.45 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information pdns-4.1.2-3.3 is installed OR pdns-backend-mysql-4.1.2-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libgcrypt-1.6.1-16.68 is installed OR libgcrypt20-1.6.1-16.68 is installed OR libgcrypt20-32bit-1.6.1-16.68 is installed OR libgcrypt20-hmac-1.6.1-16.68 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information mariadb-10.2.29-3.22 is installed OR mariadb-galera-10.2.29-3.22 is installed
BACK