Oval Definition:oval:org.opensuse.security:def:53563
Revision Date:2020-12-01Version:1
Title:Security update for Salt (Critical)
Description:



This update fixes the following issues:

salt:

- Avoid regression on 'salt-master': set passphrase for salt-ssh keys to empty string (bsc#1178485) - Properly validate eauth credentials and tokens on SSH calls made by Salt API (bsc#1178319, bsc#1178362, bsc#1178361, CVE-2020-25592, CVE-2020-17490, CVE-2020-16846) - Fix disk.blkid to avoid unexpected keyword argument '__pub_user' (bsc#1177867) - Ensure virt.update stop_on_reboot is updated with its default value - Do not break package building for systemd OSes - Drop wrong mock from chroot unit test - Support systemd versions with dot (bsc#1176294) - Fix for grains.test_core unit test - Fix file/directory user and group ownership containing UTF-8 characters (bsc#1176024) - Several changes to virtualization: - Fix virt update when cpu and memory are changed - Memory Tuning GSoC - Properly fix memory setting regression in virt.update - Expose libvirt on_reboot in virt states - Support transactional systems (MicroOS) - Zypperpkg module ignores retcode 104 for search() (bsc#1159670) - Xen disk fixes. No longer generates volumes for Xen disks, but the corresponding file or block disk (bsc#1175987) - Invalidate file list cache when cache file modified time is in the future (bsc#1176397) - Prevent import errors when running test_btrfs unit tests

Family:unixClass:patch
Status:Reference(s):1002998
1008539
1017646
1034584
1034827
1036494
1038281
1042812
1042826
1043289
1047262
1049072
1050244
1051510
1051858
1058115
1061840
1065600
1065729
1068032
1071995
1085030
1086301
1086313
1086314
1089895
1109911
1114279
1118338
1120386
1134973
1143959
1144333
1151910
1151927
1153917
1154243
1154824
1156286
1157155
1157157
1157692
1158013
1158021
1158026
1158265
1158819
1159028
1159198
1159271
1159285
1159394
1159483
1159484
1159569
1159588
1159670
1159841
1159908
1159909
1159910
1159911
1159955
1160195
1160210
1160211
1160218
1160433
1160442
1160476
1160560
1160755
1160756
1160784
1160787
1160802
1160803
1160804
1160917
1160966
1161087
1161514
1161518
1161522
1161523
1161549
1161552
1161555
1161674
1161931
1161933
1161934
1161935
1161936
1161937
1161951
1162067
1162109
1162139
1162928
1162929
1162931
1163971
1164051
1164069
1164078
1164705
1164712
1164727
1164728
1164729
1164730
1164731
1164732
1164733
1164734
1164735
1164871
1165111
1165741
1165873
1165881
1165984
1165985
1166969
1167421
1167423
1167629
1168075
1168276
1168295
1168424
1168670
1168829
1168854
1169390
1169514
1169625
1170056
1170345
1170617
1170618
1170621
1170778
1170901
1171098
1171189
1171191
1171195
1171202
1171205
1171217
1171218
1171219
1171220
1171689
1171982
1171983
1172221
1172317
1172453
1172458
1175987
1176024
1176294
1176397
1177867
1178319
1178361
1178362
1178485
924525
936916
944001
949022
951660
954658
958581
958582
958583
958584
958585
958586
958791
CVE-2008-1420
CVE-2008-4225
CVE-2008-4226
CVE-2008-4409
CVE-2009-0799
CVE-2009-0800
CVE-2009-1179
CVE-2009-1180
CVE-2009-1181
CVE-2009-1182
CVE-2009-1183
CVE-2009-1187
CVE-2009-1188
CVE-2009-3379
CVE-2009-3607
CVE-2009-3608
CVE-2012-0444
CVE-2012-1571
CVE-2012-3386
CVE-2012-5134
CVE-2013-1788
CVE-2013-1789
CVE-2013-1790
CVE-2013-4473
CVE-2013-4474
CVE-2014-3710
CVE-2014-8116
CVE-2014-8117
CVE-2014-9620
CVE-2014-9621
CVE-2014-9653
CVE-2015-3223
CVE-2015-5252
CVE-2015-5296
CVE-2015-5299
CVE-2015-5330
CVE-2015-8467
CVE-2015-8540
CVE-2016-10087
CVE-2016-1762
CVE-2016-1833
CVE-2016-1834
CVE-2016-1835
CVE-2016-1836
CVE-2016-1837
CVE-2016-1838
CVE-2016-1839
CVE-2016-1840
CVE-2016-3627
CVE-2016-3705
CVE-2016-4483
CVE-2016-7945
CVE-2016-7946
CVE-2017-11403
CVE-2017-14160
CVE-2017-14632
CVE-2017-14633
CVE-2017-18201
CVE-2017-3068
CVE-2017-3069
CVE-2017-3070
CVE-2017-3071
CVE-2017-3072
CVE-2017-3073
CVE-2017-3074
CVE-2017-5715
CVE-2017-8288
CVE-2017-9439
CVE-2017-9440
CVE-2017-9501
CVE-2018-1000199
CVE-2018-10392
CVE-2018-10393
CVE-2018-5146
CVE-2019-14615
CVE-2019-14896
CVE-2019-14897
CVE-2019-16994
CVE-2019-19036
CVE-2019-19045
CVE-2019-19054
CVE-2019-19318
CVE-2019-19319
CVE-2019-19447
CVE-2019-19462
CVE-2019-19768
CVE-2019-19770
CVE-2019-19965
CVE-2019-19966
CVE-2019-20054
CVE-2019-20095
CVE-2019-20096
CVE-2019-20810
CVE-2019-20812
CVE-2019-3701
CVE-2019-9455
CVE-2019-9458
CVE-2020-0543
CVE-2020-10690
CVE-2020-10711
CVE-2020-10720
CVE-2020-10732
CVE-2020-10751
CVE-2020-10757
CVE-2020-10942
CVE-2020-11494
CVE-2020-11608
CVE-2020-11609
CVE-2020-11669
CVE-2020-12114
CVE-2020-12464
CVE-2020-12652
CVE-2020-12653
CVE-2020-12654
CVE-2020-12655
CVE-2020-12656
CVE-2020-12657
CVE-2020-12769
CVE-2020-13143
CVE-2020-16846
CVE-2020-17490
CVE-2020-25592
CVE-2020-2732
CVE-2020-7053
CVE-2020-8428
CVE-2020-8647
CVE-2020-8648
CVE-2020-8649
CVE-2020-8834
CVE-2020-8992
CVE-2020-9383
SUSE-SU-2015:1612-1
SUSE-SU-2015:2305-1
SUSE-SU-2016:3047-1
SUSE-SU-2017:0950-1
SUSE-SU-2017:1238-1
SUSE-SU-2017:2199-1
SUSE-SU-2017:2217-1
SUSE-SU-2018:0008-1
SUSE-SU-2020:1663-1
SUSE-SU-2020:3244-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 15
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • apparmor-abstractions-2.12-lp150.5 is installed
  • OR apparmor-docs-2.12-lp150.5 is installed
  • OR apparmor-parser-2.12-lp150.5 is installed
  • OR apparmor-parser-lang-2.12-lp150.5 is installed
  • OR apparmor-profiles-2.12-lp150.5 is installed
  • OR apparmor-utils-2.12-lp150.5 is installed
  • OR apparmor-utils-lang-2.12-lp150.5 is installed
  • OR perl-apparmor-2.12-lp150.5 is installed
  • OR python3-apparmor-2.12-lp150.5 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • bluez-5.48-lp151.8.3 is installed
  • OR bluez-auto-enable-devices-5.48-lp151.8.3 is installed
  • OR bluez-cups-5.48-lp151.8.3 is installed
  • OR bluez-devel-5.48-lp151.8.3 is installed
  • OR bluez-devel-32bit-5.48-lp151.8.3 is installed
  • OR bluez-test-5.48-lp151.8.3 is installed
  • OR libbluetooth3-5.48-lp151.8.3 is installed
  • OR libbluetooth3-32bit-5.48-lp151.8.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND bogofilter-1.1.1-174.27 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • ImageMagick-6.4.3.6-7.30 is installed
  • OR libMagick++1-6.4.3.6-7.30 is installed
  • OR libMagickCore1-6.4.3.6-7.30 is installed
  • OR libMagickCore1-32bit-6.4.3.6-7.30 is installed
  • OR libMagickWand1-6.4.3.6-7.30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND socat-1.7.0.0-1.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • kernel-default-3.12.44-52.18 is installed
  • OR kernel-default-devel-3.12.44-52.18 is installed
  • OR kernel-default-extra-3.12.44-52.18 is installed
  • OR kernel-devel-3.12.44-52.18 is installed
  • OR kernel-macros-3.12.44-52.18 is installed
  • OR kernel-source-3.12.44-52.18 is installed
  • OR kernel-syms-3.12.44-52.18 is installed
  • OR kernel-xen-3.12.44-52.18 is installed
  • OR kernel-xen-devel-3.12.44-52.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • ldb-1.1.24-4 is installed
  • OR libdcerpc-binding0-4.2.4-6 is installed
  • OR libdcerpc-binding0-32bit-4.2.4-6 is installed
  • OR libdcerpc0-4.2.4-6 is installed
  • OR libdcerpc0-32bit-4.2.4-6 is installed
  • OR libgensec0-4.2.4-6 is installed
  • OR libgensec0-32bit-4.2.4-6 is installed
  • OR libldb1-1.1.24-4 is installed
  • OR libldb1-32bit-1.1.24-4 is installed
  • OR libndr-krb5pac0-4.2.4-6 is installed
  • OR libndr-krb5pac0-32bit-4.2.4-6 is installed
  • OR libndr-nbt0-4.2.4-6 is installed
  • OR libndr-nbt0-32bit-4.2.4-6 is installed
  • OR libndr-standard0-4.2.4-6 is installed
  • OR libndr-standard0-32bit-4.2.4-6 is installed
  • OR libndr0-4.2.4-6 is installed
  • OR libndr0-32bit-4.2.4-6 is installed
  • OR libnetapi0-4.2.4-6 is installed
  • OR libnetapi0-32bit-4.2.4-6 is installed
  • OR libregistry0-4.2.4-6 is installed
  • OR libsamba-credentials0-4.2.4-6 is installed
  • OR libsamba-credentials0-32bit-4.2.4-6 is installed
  • OR libsamba-hostconfig0-4.2.4-6 is installed
  • OR libsamba-hostconfig0-32bit-4.2.4-6 is installed
  • OR libsamba-passdb0-4.2.4-6 is installed
  • OR libsamba-passdb0-32bit-4.2.4-6 is installed
  • OR libsamba-util0-4.2.4-6 is installed
  • OR libsamba-util0-32bit-4.2.4-6 is installed
  • OR libsamdb0-4.2.4-6 is installed
  • OR libsamdb0-32bit-4.2.4-6 is installed
  • OR libsmbclient-raw0-4.2.4-6 is installed
  • OR libsmbclient-raw0-32bit-4.2.4-6 is installed
  • OR libsmbclient0-4.2.4-6 is installed
  • OR libsmbclient0-32bit-4.2.4-6 is installed
  • OR libsmbconf0-4.2.4-6 is installed
  • OR libsmbconf0-32bit-4.2.4-6 is installed
  • OR libsmbldap0-4.2.4-6 is installed
  • OR libsmbldap0-32bit-4.2.4-6 is installed
  • OR libtalloc2-2.1.5-4 is installed
  • OR libtalloc2-32bit-2.1.5-4 is installed
  • OR libtdb1-1.3.8-4 is installed
  • OR libtdb1-32bit-1.3.8-4 is installed
  • OR libtevent-util0-4.2.4-6 is installed
  • OR libtevent-util0-32bit-4.2.4-6 is installed
  • OR libtevent0-0.9.26-4 is installed
  • OR libtevent0-32bit-0.9.26-4 is installed
  • OR libwbclient0-4.2.4-6 is installed
  • OR libwbclient0-32bit-4.2.4-6 is installed
  • OR pytalloc-2.1.5-4 is installed
  • OR pytalloc-32bit-2.1.5-4 is installed
  • OR samba-4.2.4-6 is installed
  • OR samba-32bit-4.2.4-6 is installed
  • OR samba-client-4.2.4-6 is installed
  • OR samba-client-32bit-4.2.4-6 is installed
  • OR samba-doc-4.2.4-6 is installed
  • OR samba-libs-4.2.4-6 is installed
  • OR samba-libs-32bit-4.2.4-6 is installed
  • OR samba-winbind-4.2.4-6 is installed
  • OR samba-winbind-32bit-4.2.4-6 is installed
  • OR talloc-2.1.5-4 is installed
  • OR tdb-1.3.8-4 is installed
  • OR tevent-0.9.26-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • libpng15-1.5.22-9 is installed
  • OR libpng15-15-1.5.22-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libpoppler-glib8-0.43.0-15 is installed
  • OR libpoppler-qt4-4-0.43.0-15 is installed
  • OR libpoppler60-0.43.0-15 is installed
  • OR poppler-tools-0.43.0-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • file-5.22-10.6 is installed
  • OR file-magic-5.22-10.6 is installed
  • OR libmagic1-5.22-10.6 is installed
  • OR libmagic1-32bit-5.22-10.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • fetchmail-6.3.26-5 is installed
  • OR fetchmailconf-6.3.26-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kernel-default-3.12.74-60.64.51 is installed
  • OR kernel-default-base-3.12.74-60.64.51 is installed
  • OR kernel-default-devel-3.12.74-60.64.51 is installed
  • OR kernel-default-man-3.12.74-60.64.51 is installed
  • OR kernel-devel-3.12.74-60.64.51 is installed
  • OR kernel-macros-3.12.74-60.64.51 is installed
  • OR kernel-source-3.12.74-60.64.51 is installed
  • OR kernel-syms-3.12.74-60.64.51 is installed
  • OR kernel-xen-3.12.74-60.64.51 is installed
  • OR kernel-xen-base-3.12.74-60.64.51 is installed
  • OR kernel-xen-devel-3.12.74-60.64.51 is installed
  • OR kgraft-patch-3_12_74-60_64_51-default-1-2 is installed
  • OR kgraft-patch-3_12_74-60_64_51-xen-1-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_18-1-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND libXxf86dga1-1.1.4-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.15-30.33 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-30.33 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.15-30.33 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-30.33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_104-default-3-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_28-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_74-92_38-default-11-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_13-11-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • guile-2.0.9-8 is installed
  • OR guile-modules-2_0-2.0.9-8 is installed
  • OR libguile-2_0-22-2.0.9-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libpolkit0-0.113-5.18 is installed
  • OR polkit-0.113-5.18 is installed
  • OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_156-94_57-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_18-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kernel-default-4.4.180-94.103 is installed
  • OR kernel-default-base-4.4.180-94.103 is installed
  • OR kernel-default-devel-4.4.180-94.103 is installed
  • OR kernel-default-man-4.4.180-94.103 is installed
  • OR kernel-devel-4.4.180-94.103 is installed
  • OR kernel-macros-4.4.180-94.103 is installed
  • OR kernel-source-4.4.180-94.103 is installed
  • OR kernel-syms-4.4.180-94.103 is installed
  • OR kgraft-patch-4_4_180-94_103-default-1-4.3 is installed
  • OR kgraft-patch-SLE12-SP3_Update_28-1-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • python3-rpm-4.11.2-16.16 is installed
  • OR rpm-4.11.2-16.16 is installed
  • OR rpm-32bit-4.11.2-16.16 is installed
  • OR rpm-build-4.11.2-16.16 is installed
  • OR rpm-python-4.11.2-16.16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libjasper1-1.900.14-195.8 is installed
  • OR libjasper1-32bit-1.900.14-195.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • python2-salt-3000-5.91 is installed
  • OR python3-salt-3000-5.91 is installed
  • OR salt-3000-5.91 is installed
  • OR salt-api-3000-5.91 is installed
  • OR salt-bash-completion-3000-5.91 is installed
  • OR salt-cloud-3000-5.91 is installed
  • OR salt-doc-3000-5.91 is installed
  • OR salt-fish-completion-3000-5.91 is installed
  • OR salt-master-3000-5.91 is installed
  • OR salt-minion-3000-5.91 is installed
  • OR salt-proxy-3000-5.91 is installed
  • OR salt-ssh-3000-5.91 is installed
  • OR salt-standalone-formulas-configuration-3000-5.91 is installed
  • OR salt-syndic-3000-5.91 is installed
  • OR salt-zsh-completion-3000-5.91 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-150.52 is installed
  • OR kernel-default-base-4.12.14-150.52 is installed
  • OR kernel-default-devel-4.12.14-150.52 is installed
  • OR kernel-devel-4.12.14-150.52 is installed
  • OR kernel-docs-4.12.14-150.52 is installed
  • OR kernel-macros-4.12.14-150.52 is installed
  • OR kernel-obs-build-4.12.14-150.52 is installed
  • OR kernel-source-4.12.14-150.52 is installed
  • OR kernel-syms-4.12.14-150.52 is installed
  • OR kernel-vanilla-4.12.14-150.52 is installed
  • OR kernel-vanilla-base-4.12.14-150.52 is installed
  • OR reiserfs-kmp-default-4.12.14-150.52 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND python-Beaker-1.6.4-0.7 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • jakarta-commons-fileupload-1.1.1-122.3 is installed
  • OR jakarta-commons-fileupload-javadoc-1.1.1-122.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND cobbler-2.6.6-49.9 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND Package Information
  • mariadb-10.2.25-3.19 is installed
  • OR mariadb-galera-10.2.25-3.19 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND ppp-2.4.7-4.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-urllib3-1.23-3.6 is installed
    • BACK