Oval Definition:	oval:org.opensuse.security:def:53525
Revision Date: 2020-12-01 Version: 1 Title: Security update for dovecot23 (Important) Description: This update for dovecot23 fixes the following issues: - CVE-2020-12673: improper implementation of NTLM does not check message buffer size (bsc#1174922). - CVE-2020-12674: improper implementation of RPA mechanism (bsc#1174923). Family: unix Class: patch Status: Reference(s): 1003898 1021483 1040202 1046856 1068032 1068613 1070144 1071228 1073489 1076114 1076179 1076775 1076814 1081741 1082276 1083291 1085598 1140844 1152990 1152992 1152994 1152995 1162396 1164804 1174922 1174923 789835 854817 854824 858727 866911 867362 895814 903279 907092 908491 915183 917630 918618 921430 924071 924526 926369 926953 927455 927697 927786 928131 929475 929696 929879 929974 930092 930399 930579 930599 930972 931124 931403 931538 931620 931860 931988 932348 932793 932897 932898 932899 932900 932967 933117 933429 933637 933896 933904 933907 934160 935083 935085 935088 935174 935542 935881 935918 936012 936423 936445 936446 936502 936556 936831 936875 937032 937087 937609 937612 937613 937616 938022 938023 938024 959886 960158 963230 965897 967122 970423 970860 972612 972727 973848 976766 978275 CVE-2008-3522 CVE-2008-4225 CVE-2008-4226 CVE-2008-4409 CVE-2009-0793 CVE-2010-0750 CVE-2011-1485 CVE-2011-4516 CVE-2011-4517 CVE-2012-4433 CVE-2012-5134 CVE-2012-6708 CVE-2013-4276 CVE-2013-4288 CVE-2014-8137 CVE-2014-8138 CVE-2014-8157 CVE-2014-8158 CVE-2014-9029 CVE-2014-9728 CVE-2014-9729 CVE-2014-9730 CVE-2014-9731 CVE-2014-9770 CVE-2015-1805 CVE-2015-3212 CVE-2015-3218 CVE-2015-3255 CVE-2015-3256 CVE-2015-4036 CVE-2015-4167 CVE-2015-4625 CVE-2015-4692 CVE-2015-5203 CVE-2015-5221 CVE-2015-5364 CVE-2015-5366 CVE-2015-8842 CVE-2015-9251 CVE-2016-10169 CVE-2016-10170 CVE-2016-10171 CVE-2016-10172 CVE-2016-10251 CVE-2016-1577 CVE-2016-1762 CVE-2016-1833 CVE-2016-1834 CVE-2016-1835 CVE-2016-1836 CVE-2016-1837 CVE-2016-1838 CVE-2016-1839 CVE-2016-1840 CVE-2016-1867 CVE-2016-2089 CVE-2016-2116 CVE-2016-3627 CVE-2016-3705 CVE-2016-4483 CVE-2016-7837 CVE-2016-8654 CVE-2016-8690 CVE-2016-8691 CVE-2016-8692 CVE-2016-8693 CVE-2016-8880 CVE-2016-8881 CVE-2016-8882 CVE-2016-8883 CVE-2016-8884 CVE-2016-8885 CVE-2016-8886 CVE-2016-8887 CVE-2016-9395 CVE-2016-9398 CVE-2016-9560 CVE-2016-9583 CVE-2016-9591 CVE-2016-9600 CVE-2016-9800 CVE-2016-9804 CVE-2016-9843 CVE-2017-1000083 CVE-2017-1000250 CVE-2017-15119 CVE-2017-15124 CVE-2017-16845 CVE-2017-17381 CVE-2017-18030 CVE-2017-18043 CVE-2017-5498 CVE-2017-5715 CVE-2017-6850 CVE-2018-1050 CVE-2018-1116 CVE-2018-5683 CVE-2018-7550 CVE-2019-15845 CVE-2019-16201 CVE-2019-16254 CVE-2019-16255 CVE-2020-12673 CVE-2020-12674 CVE-2020-8130 SUSE-SU-2015:1324-1 SUSE-SU-2016:1351-1 SUSE-SU-2016:2565-1 SUSE-SU-2017:0696-1 SUSE-SU-2017:3428-1 SUSE-SU-2018:0608-1 SUSE-SU-2018:0831-1 SUSE-SU-2018:0832-1 SUSE-SU-2020:0737-1 SUSE-SU-2020:2266-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information bluez-5.48-lp150.3 is installed OR libbluetooth3-5.48-lp150.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information elfutils-0.168-lp151.4.3 is installed OR elfutils-lang-0.168-lp151.4.3 is installed OR libasm-devel-0.168-lp151.4.3 is installed OR libasm1-0.168-lp151.4.3 is installed OR libasm1-32bit-0.168-lp151.4.3 is installed OR libdw-devel-0.168-lp151.4.3 is installed OR libdw1-0.168-lp151.4.3 is installed OR libdw1-32bit-0.168-lp151.4.3 is installed OR libebl-devel-0.168-lp151.4.3 is installed OR libebl-plugins-0.168-lp151.4.3 is installed OR libebl-plugins-32bit-0.168-lp151.4.3 is installed OR libelf-devel-0.168-lp151.4.3 is installed OR libelf-devel-32bit-0.168-lp151.4.3 is installed OR libelf1-0.168-lp151.4.3 is installed OR libelf1-32bit-0.168-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information java-1_6_0-openjdk-1.6.0.0_b27.1.12.7-0.2 is installed OR java-1_6_0-openjdk-demo-1.6.0.0_b27.1.12.7-0.2 is installed OR java-1_6_0-openjdk-devel-1.6.0.0_b27.1.12.7-0.2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information emacs-22.3-4.42 is installed OR emacs-info-22.3-4.42 is installed OR emacs-x11-22.3-4.42 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information libpng12-0-1.2.31-5.35 is installed OR libpng12-0-32bit-1.2.31-5.35 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information kernel-default-3.12.44-52.10 is installed OR kernel-default-devel-3.12.44-52.10 is installed OR kernel-default-extra-3.12.44-52.10 is installed OR kernel-devel-3.12.44-52.10 is installed OR kernel-macros-3.12.44-52.10 is installed OR kernel-source-3.12.44-52.10 is installed OR kernel-syms-3.12.44-52.10 is installed OR kernel-xen-3.12.44-52.10 is installed OR kernel-xen-devel-3.12.44-52.10 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information dbus-1-1.8.22-22 is installed OR dbus-1-x11-1.8.22-22 is installed OR libdbus-1-3-1.8.22-22 is installed OR libdbus-1-3-32bit-1.8.22-22 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information evince-3.20.2-6.19 is installed OR evince-browser-plugin-3.20.2-6.19 is installed OR evince-lang-3.20.2-6.19 is installed OR evince-plugin-djvudocument-3.20.2-6.19 is installed OR evince-plugin-dvidocument-3.20.2-6.19 is installed OR evince-plugin-pdfdocument-3.20.2-6.19 is installed OR evince-plugin-psdocument-3.20.2-6.19 is installed OR evince-plugin-tiffdocument-3.20.2-6.19 is installed OR evince-plugin-xpsdocument-3.20.2-6.19 is installed OR libevdocument3-4-3.20.2-6.19 is installed OR libevview3-3-3.20.2-6.19 is installed OR nautilus-evince-3.20.2-6.19 is installed OR typelib-1_0-EvinceDocument-3_0-3.20.2-6.19 is installed OR typelib-1_0-EvinceView-3_0-3.20.2-6.19 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libjasper1-1.900.14-194 is installed OR libjasper1-32bit-1.900.14-194 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information bluez-5.13-5.4 is installed OR bluez-cups-5.13-5.4 is installed OR libbluetooth3-5.13-5.4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND apache2-mod_nss-1.0.8-13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_45-default-6-2 is installed OR kgraft-patch-3_12_74-60_64_45-xen-6-2 is installed OR kgraft-patch-SLE12-SP1_Update_16-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND hardlink-1.0-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-openjdk-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-demo-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-devel-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-headless-1.8.0.181-27.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.1-2.41 is installed OR libwebkit2gtk-4_0-37-2.24.1-2.41 is installed OR libwebkit2gtk3-lang-2.24.1-2.41 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.1-2.41 is installed OR typelib-1_0-WebKit2-4_0-2.24.1-2.41 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.24.1-2.41 is installed OR webkit2gtk-4_0-injected-bundles-2.24.1-2.41 is installed OR webkit2gtk3-2.24.1-2.41 is installed OR webkit2gtk3-devel-2.24.1-2.41 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information libopenssl-devel-1.0.2j-60.30 is installed OR libopenssl1_0_0-1.0.2j-60.30 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.30 is installed OR openssl-1.0.2j-60.30 is installed OR openssl-doc-1.0.2j-60.30 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND MozillaFirefox-60.7.2-109.80 is installed OR MozillaFirefox-translations-common-60.7.2-109.80 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND MozillaFirefox-60.7.2-109.80 is installed OR MozillaFirefox-translations-common-60.7.2-109.80 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information dracut-044-113 is installed OR dracut-fips-044-113 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information MozillaFirefox-68.6.0-109.110 is installed OR MozillaFirefox-translations-common-68.6.0-109.110 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_162-94_69-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_21-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information bzip2-1.0.6-30.5 is installed OR bzip2-doc-1.0.6-30.5 is installed OR libbz2-1-1.0.6-30.5 is installed OR libbz2-1-32bit-1.0.6-30.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information dovecot22-2.2.31-19.11 is installed OR dovecot22-backend-mysql-2.2.31-19.11 is installed OR dovecot22-backend-pgsql-2.2.31-19.11 is installed OR dovecot22-backend-sqlite-2.2.31-19.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libXv1-1.0.10-7 is installed OR libXv1-32bit-1.0.10-7 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information dovecot23-2.3.10-4.27 is installed OR dovecot23-backend-mysql-2.3.10-4.27 is installed OR dovecot23-backend-pgsql-2.3.10-4.27 is installed OR dovecot23-backend-sqlite-2.3.10-4.27 is installed OR dovecot23-devel-2.3.10-4.27 is installed OR dovecot23-fts-2.3.10-4.27 is installed OR dovecot23-fts-lucene-2.3.10-4.27 is installed OR dovecot23-fts-solr-2.3.10-4.27 is installed OR dovecot23-fts-squat-2.3.10-4.27 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND unrar-5.0.14-3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.35-38.29 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information pdns-4.1.2-3.3 is installed OR pdns-backend-mysql-4.1.2-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information mariadb-10.2.25-3.19 is installed OR mariadb-galera-10.2.25-3.19 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-actionpack-4_2-4.2.9-7.6 is installed OR rubygem-actionpack-4_2-4.2.9-7.6 is installed
BACK