OVAL Reference oval:org.opensuse.security:def:53537

Oval Definition:

oval:org.opensuse.security:def:53537

Revision Date:	2020-12-01	Version:	1
Title:	Security update for shim (Moderate)
Description:	This update for shim fixes the following issues: - Update to the unified shim binary from SUSE Linux Enterprise 15-SP1 (bsc#1168994) This update addresses the 'BootHole' security issue (master CVE CVE-2020-10713), by disallowing binaries signed by the previous SUSE UEFI signing key from booting. This update should only be installed after updates of grub2, the Linux kernel and (if used) Xen from July / August 2020 are applied. Additional fixes: + shim-install: install MokManager to \EFI\boot to process the pending MOK request (bsc#1175626, bsc#1175656)
Family:	unix	Class:	patch
Status:		Reference(s):	1007829 1017308 1017310 1017311 1017312 1017313 1017314 1017318 1017319 1017320 1017321 1017322 1017324 1017325 1017326 1017421 1018699 1018700 1018701 1018702 1020433 1020435 1020436 1020439 1020441 1020443 1020446 1020448 1062538 1067844 1085207 1087102 1162689 1162691 1167373 1168994 1169659 1170313 1175626 1175656 867943 892431 906803 908128 911228 965748 982178 CVE-2009-0368 CVE-2010-2935 CVE-2010-2936 CVE-2010-4523 CVE-2011-3200 CVE-2013-1988 CVE-2013-4758 CVE-2013-6370 CVE-2013-6371 CVE-2013-6435 CVE-2014-0247 CVE-2014-3524 CVE-2014-3575 CVE-2014-3634 CVE-2014-3683 CVE-2014-3693 CVE-2014-4607 CVE-2014-8118 CVE-2014-8146 CVE-2014-8147 CVE-2014-9093 CVE-2015-4551 CVE-2015-5212 CVE-2015-5213 CVE-2015-5214 CVE-2016-0794 CVE-2016-0795 CVE-2016-10046 CVE-2016-10048 CVE-2016-10049 CVE-2016-10050 CVE-2016-10051 CVE-2016-10052 CVE-2016-10059 CVE-2016-10060 CVE-2016-10061 CVE-2016-10062 CVE-2016-10063 CVE-2016-10064 CVE-2016-10065 CVE-2016-10068 CVE-2016-10069 CVE-2016-10070 CVE-2016-10071 CVE-2016-10144 CVE-2016-10145 CVE-2016-10146 CVE-2016-10327 CVE-2016-4324 CVE-2016-5118 CVE-2016-6318 CVE-2016-8864 CVE-2016-9131 CVE-2016-9147 CVE-2016-9444 CVE-2017-12172 CVE-2017-15098 CVE-2017-3157 CVE-2017-5506 CVE-2017-5507 CVE-2017-5508 CVE-2017-5510 CVE-2017-5511 CVE-2017-5715 CVE-2017-7870 CVE-2017-7882 CVE-2017-8358 CVE-2018-0739 CVE-2018-10119 CVE-2018-10120 CVE-2018-1055 CVE-2018-10583 CVE-2018-6871 CVE-2019-12519 CVE-2019-12521 CVE-2019-12528 CVE-2019-18860 CVE-2020-10713 CVE-2020-11945 CVE-2020-8517 SUSE-SU-2016:1570-1 SUSE-SU-2016:2697-1 SUSE-SU-2017:0111-1 SUSE-SU-2017:0529-1 SUSE-SU-2018:0081-1 SUSE-SU-2018:0708-1 SUSE-SU-2018:0925-1 SUSE-SU-2020:1156-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information NetworkManager-applet-1.8.10-lp150.3 is installed OR NetworkManager-applet-lang-1.8.10-lp150.3 is installed OR NetworkManager-connection-editor-1.8.10-lp150.3 is installed OR libnm-gtk0-1.8.10-lp150.3 is installed OR libnma0-1.8.10-lp150.3 is installed OR nma-data-1.8.10-lp150.3 is installed OR typelib-1_0-NMGtk-1_0-1.8.10-lp150.3 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information chromedriver-75.0.3770.90-2 is installed OR chromium-75.0.3770.90-2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND libotr2-3.2.0-10.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-31.5.3esr-0.8 is installed OR MozillaFirefox-translations-31.5.3esr-0.8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information libxml2-2.7.6-0.37 is installed OR libxml2-32bit-2.7.6-0.37 is installed OR libxml2-python-2.7.6-0.37 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information rpm-4.11.2-10 is installed OR rpm-32bit-4.11.2-10 is installed OR rpm-build-4.11.2-10 is installed OR rpm-python-4.11.2-10 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information bind-9.9.9P1-49 is installed OR bind-libs-9.9.9P1-49 is installed OR bind-libs-32bit-9.9.9P1-49 is installed OR bind-utils-9.9.9P1-49 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information ImageMagick-6.8.8.1-59 is installed OR libMagick++-6_Q16-3-6.8.8.1-59 is installed OR libMagickCore-6_Q16-1-6.8.8.1-59 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-59 is installed OR libMagickWand-6_Q16-1-6.8.8.1-59 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information liblzo2-2-2.08-1 is installed OR liblzo2-2-32bit-2.08-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information cracklib-2.9.0-7 is installed OR libcrack2-2.9.0-7 is installed OR libcrack2-32bit-2.9.0-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND clamav-0.98.7-13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_67-60_64_21-default-12-2 is installed OR kgraft-patch-3_12_67-60_64_21-xen-12-2 is installed OR kgraft-patch-SLE12-SP1_Update_10-12-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND kdump-0.8.15-28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information MozillaFirefox-60.3.0-109.50 is installed OR MozillaFirefox-devel-60.3.0-109.50 is installed OR MozillaFirefox-translations-common-60.3.0-109.50 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libsystemd0-228-150.58 is installed OR libsystemd0-32bit-228-150.58 is installed OR libudev1-228-150.58 is installed OR libudev1-32bit-228-150.58 is installed OR systemd-228-150.58 is installed OR systemd-32bit-228-150.58 is installed OR systemd-bash-completion-228-150.58 is installed OR systemd-sysvinit-228-150.58 is installed OR udev-228-150.58 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information libpython2_7-1_0-2.7.13-28.21 is installed OR libpython2_7-1_0-32bit-2.7.13-28.21 is installed OR python-2.7.13-28.21 is installed OR python-32bit-2.7.13-28.21 is installed OR python-base-2.7.13-28.21 is installed OR python-base-32bit-2.7.13-28.21 is installed OR python-curses-2.7.13-28.21 is installed OR python-demo-2.7.13-28.21 is installed OR python-doc-2.7.13-28.21 is installed OR python-doc-pdf-2.7.13-28.21 is installed OR python-gdbm-2.7.13-28.21 is installed OR python-idle-2.7.13-28.21 is installed OR python-tk-2.7.13-28.21 is installed OR python-xml-2.7.13-28.21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information freeradius-server-3.0.14-1 is installed OR freeradius-server-doc-3.0.14-1 is installed OR freeradius-server-krb5-3.0.14-1 is installed OR freeradius-server-ldap-3.0.14-1 is installed OR freeradius-server-libs-3.0.14-1 is installed OR freeradius-server-mysql-3.0.14-1 is installed OR freeradius-server-perl-3.0.14-1 is installed OR freeradius-server-postgresql-3.0.14-1 is installed OR freeradius-server-python-3.0.14-1 is installed OR freeradius-server-sqlite-3.0.14-1 is installed OR freeradius-server-utils-3.0.14-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND squid-3.5.21-26.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information MozillaFirefox-60.8.0-109.83 is installed OR MozillaFirefox-translations-common-60.8.0-109.83 is installed OR libfreebl3-3.44.1-58.28 is installed OR libfreebl3-32bit-3.44.1-58.28 is installed OR libfreebl3-hmac-3.44.1-58.28 is installed OR libfreebl3-hmac-32bit-3.44.1-58.28 is installed OR libsoftokn3-3.44.1-58.28 is installed OR libsoftokn3-32bit-3.44.1-58.28 is installed OR libsoftokn3-hmac-3.44.1-58.28 is installed OR libsoftokn3-hmac-32bit-3.44.1-58.28 is installed OR mozilla-nss-3.44.1-58.28 is installed OR mozilla-nss-32bit-3.44.1-58.28 is installed OR mozilla-nss-certs-3.44.1-58.28 is installed OR mozilla-nss-certs-32bit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-32bit-3.44.1-58.28 is installed OR mozilla-nss-tools-3.44.1-58.28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_140-94_42-default-10-2 is installed OR kgraft-patch-SLE12-SP3_Update_15-10-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND ant-1.9.4-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND libcares2-1.9.1-9.4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND shim-15+git47-7.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND squid-4.11-5.17 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr4.10-30.5 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr4.10-30.5 is installed OR java-1_8_0-ibm-devel-1.8.0_sr4.10-30.5 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr4.10-30.5 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information erlang-17.5.6-3.3 is installed OR erlang-epmd-17.5.6-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information mariadb-10.2.22-4.11 is installed OR mariadb-client-10.2.22-4.11 is installed OR mariadb-errormessages-10.2.22-4.11 is installed OR mariadb-galera-10.2.22-4.11 is installed OR mariadb-tools-10.2.22-4.11 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND python-SQLAlchemy-1.2.10-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ghostscript-9.52-23.34 is installed OR ghostscript-x11-9.52-23.34 is installed OR libspectre-0.2.7-12.10 is installed OR libspectre1-0.2.7-12.10 is installed

BACK