Oval Definition:	oval:org.opensuse.security:def:53498
Revision Date: 2020-12-01 Version: 1 Title: Security update for tomcat (Important) Description: This update for tomcat fixes the following issues: - CVE-2020-8022: Fixed a local root exploit due to improper permissions (bsc#1172405) Family: unix Class: patch Status: Reference(s): 1004221 1020108 1042824 1042911 1048110 1048272 1049374 1049375 1050048 1050119 1050122 1050126 1050132 1050617 1052207 1052248 1052251 1052254 1052472 1052688 1052711 1052747 1052750 1052754 1052761 1055069 1055229 1056768 1057163 1058009 1072898 1074119 1074170 1075821 1076182 1078433 1080288 1172405 1178387 906689 931625 931626 931627 931628 932770 932790 932996 953382 953972 960249 962177 963448 968222 982176 987577 988032 989121 989122 991436 991622 991710 995034 CVE-2009-0159 CVE-2009-1252 CVE-2010-2800 CVE-2010-2801 CVE-2012-4425 CVE-2013-4143 CVE-2013-5211 CVE-2014-9293 CVE-2014-9294 CVE-2014-9295 CVE-2014-9296 CVE-2014-9297 CVE-2014-9298 CVE-2014-9556 CVE-2014-9732 CVE-2015-0797 CVE-2015-1798 CVE-2015-1799 CVE-2015-3209 CVE-2015-3405 CVE-2015-4103 CVE-2015-4104 CVE-2015-4105 CVE-2015-4106 CVE-2015-4163 CVE-2015-4164 CVE-2015-4467 CVE-2015-4468 CVE-2015-4469 CVE-2015-4470 CVE-2015-4471 CVE-2015-4472 CVE-2015-5219 CVE-2015-5276 CVE-2015-5300 CVE-2015-7560 CVE-2015-7691 CVE-2015-7692 CVE-2015-7701 CVE-2015-7702 CVE-2015-7703 CVE-2015-7704 CVE-2015-7705 CVE-2015-7848 CVE-2015-7849 CVE-2015-7850 CVE-2015-7851 CVE-2015-7852 CVE-2015-7853 CVE-2015-7854 CVE-2015-7855 CVE-2015-7871 CVE-2015-7973 CVE-2015-7974 CVE-2015-7975 CVE-2015-7976 CVE-2015-7977 CVE-2015-7978 CVE-2015-7979 CVE-2015-8138 CVE-2015-8139 CVE-2015-8140 CVE-2015-8158 CVE-2015-8946 CVE-2016-1547 CVE-2016-1548 CVE-2016-1549 CVE-2016-1550 CVE-2016-1551 CVE-2016-2037 CVE-2016-2516 CVE-2016-2517 CVE-2016-2518 CVE-2016-2519 CVE-2016-4953 CVE-2016-4954 CVE-2016-4955 CVE-2016-4956 CVE-2016-4957 CVE-2016-5116 CVE-2016-6128 CVE-2016-6132 CVE-2016-6161 CVE-2016-6207 CVE-2016-6214 CVE-2016-6224 CVE-2016-6905 CVE-2016-7426 CVE-2016-7427 CVE-2016-7428 CVE-2016-7429 CVE-2016-7431 CVE-2016-7433 CVE-2016-7434 CVE-2016-8605 CVE-2016-9042 CVE-2016-9310 CVE-2016-9311 CVE-2016-9445 CVE-2016-9446 CVE-2016-9447 CVE-2016-9809 CVE-2017-10689 CVE-2017-11166 CVE-2017-11170 CVE-2017-11448 CVE-2017-11450 CVE-2017-11528 CVE-2017-11530 CVE-2017-11531 CVE-2017-11533 CVE-2017-11537 CVE-2017-11638 CVE-2017-11642 CVE-2017-12418 CVE-2017-12427 CVE-2017-12429 CVE-2017-12432 CVE-2017-12566 CVE-2017-12654 CVE-2017-12663 CVE-2017-12664 CVE-2017-12665 CVE-2017-12668 CVE-2017-12674 CVE-2017-13058 CVE-2017-13131 CVE-2017-14060 CVE-2017-14139 CVE-2017-14224 CVE-2017-17682 CVE-2017-17885 CVE-2017-17934 CVE-2017-18028 CVE-2017-6451 CVE-2017-6458 CVE-2017-6460 CVE-2017-6462 CVE-2017-6463 CVE-2017-6464 CVE-2017-9405 CVE-2017-9407 CVE-2018-5357 CVE-2018-6405 CVE-2020-25692 CVE-2020-8022 SUSE-SU-2015:1042-1 SUSE-SU-2016:0814-1 SUSE-SU-2016:2303-1 SUSE-SU-2017:0366-1 SUSE-SU-2017:0398-1 SUSE-SU-2018:0336-1 SUSE-SU-2018:0571-1 SUSE-SU-2018:0581-1 SUSE-SU-2020:1789-1 SUSE-SU-2020:3313-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information expat-2.2.5-lp150.1 is installed OR libexpat1-2.2.5-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information graphviz-2.40.1-lp151.6.3 is installed OR graphviz-addons-2.40.1-lp151.6.3 is installed OR graphviz-devel-2.40.1-lp151.6.3 is installed OR graphviz-doc-2.40.1-lp151.6.3 is installed OR graphviz-gd-2.40.1-lp151.6.3 is installed OR graphviz-gnome-2.40.1-lp151.6.3 is installed OR graphviz-guile-2.40.1-lp151.6.3 is installed OR graphviz-gvedit-2.40.1-lp151.6.3 is installed OR graphviz-java-2.40.1-lp151.6.3 is installed OR graphviz-lua-2.40.1-lp151.6.3 is installed OR graphviz-perl-2.40.1-lp151.6.3 is installed OR graphviz-php-2.40.1-lp151.6.3 is installed OR graphviz-plugins-core-2.40.1-lp151.6.3 is installed OR graphviz-python-2.40.1-lp151.6.3 is installed OR graphviz-ruby-2.40.1-lp151.6.3 is installed OR graphviz-smyrna-2.40.1-lp151.6.3 is installed OR graphviz-tcl-2.40.1-lp151.6.3 is installed OR libgraphviz6-2.40.1-lp151.6.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information compat-openssl097g-0.9.7g-146.22 is installed OR compat-openssl097g-32bit-0.9.7g-146.22 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND a2ps-4.13-1326.37 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information glibc-2.11.3-17.95 is installed OR glibc-32bit-2.11.3-17.95 is installed OR glibc-devel-2.11.3-17.95 is installed OR glibc-devel-32bit-2.11.3-17.95 is installed OR glibc-i18ndata-2.11.3-17.95 is installed OR glibc-locale-2.11.3-17.95 is installed OR glibc-locale-32bit-2.11.3-17.95 is installed OR nscd-2.11.3-17.95 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information xen-4.4.2_06-21 is installed OR xen-kmp-default-4.4.2_06_k3.12.39_47-21 is installed OR xen-libs-4.4.2_06-21 is installed OR xen-libs-32bit-4.4.2_06-21 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information gd-2.1.0-12 is installed OR gd-32bit-2.1.0-12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information cpio-2.11-32 is installed OR cpio-lang-2.11-32 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libasan2-5.3.1+r233831-12 is installed OR libasan2-32bit-5.3.1+r233831-12 is installed OR libffi4-5.3.1+r233831-12 is installed OR libffi4-32bit-5.3.1+r233831-12 is installed OR libmpx0-5.3.1+r233831-12 is installed OR libmpx0-32bit-5.3.1+r233831-12 is installed OR libmpxwrappers0-5.3.1+r233831-12 is installed OR libmpxwrappers0-32bit-5.3.1+r233831-12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gstreamer-0_10-plugins-bad-0.10.23-25 is installed OR gstreamer-0_10-plugins-bad-lang-0.10.23-25 is installed OR libgstbasecamerabinsrc-0_10-23-0.10.23-25 is installed OR libgstbasecamerabinsrc-0_10-23-32bit-0.10.23-25 is installed OR libgstbasevideo-0_10-23-0.10.23-25 is installed OR libgstbasevideo-0_10-23-32bit-0.10.23-25 is installed OR libgstcodecparsers-0_10-23-0.10.23-25 is installed OR libgstphotography-0_10-23-0.10.23-25 is installed OR libgstphotography-0_10-23-32bit-0.10.23-25 is installed OR libgstsignalprocessor-0_10-23-0.10.23-25 is installed OR libgstsignalprocessor-0_10-23-32bit-0.10.23-25 is installed OR libgstvdp-0_10-23-0.10.23-25 is installed OR libgstvdp-0_10-23-32bit-0.10.23-25 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libXext6-1.3.2-3 is installed OR libXext6-32bit-1.3.2-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_60-default-2-4 is installed OR kgraft-patch-3_12_74-60_64_60-xen-2-4 is installed OR kgraft-patch-SLE12-SP1_Update_21-2-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information file-5.19-9 is installed OR file-magic-5.19-9 is installed OR libmagic1-5.19-9 is installed OR libmagic1-32bit-5.19-9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND ucode-intel-20180703-13.25 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_120-92_70-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_20-9-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_35-default-10-2 is installed OR kgraft-patch-SLE12-SP2_Update_12-10-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND busybox-1.21.1-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.0-30.60 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.0-30.60 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.0-30.60 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND ucode-intel-20190618-13.47 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND permissions-2015.09.28.1626-17.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND ucode-intel-20180807-13.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information krb5-appl-clients-1.0.3-1 is installed OR krb5-appl-servers-1.0.3-1 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information tomcat-9.0.35-3.57 is installed OR tomcat-admin-webapps-9.0.35-3.57 is installed OR tomcat-el-3_0-api-9.0.35-3.57 is installed OR tomcat-jsp-2_3-api-9.0.35-3.57 is installed OR tomcat-lib-9.0.35-3.57 is installed OR tomcat-servlet-4_0-api-9.0.35-3.57 is installed OR tomcat-webapps-9.0.35-3.57 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND ruby2.1-rubygem-activemodel-4_2-4.2.2-5 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information res-signingkeys-3.0.37-52.23 is installed OR smt-3.0.37-52.23 is installed OR smt-support-3.0.37-52.23 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND ansible-2.4.6.0-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-haml-4.0.6-3.3 is installed OR rubygem-haml-4.0.6-3.3 is installed
BACK