OVAL Reference oval:org.opensuse.security:def:53593

Oval Definition:

oval:org.opensuse.security:def:53593

Revision Date:	2020-12-01	Version:	1
Title:	Security update for tomcat (Moderate)
Description:	This update for tomcat to version 9.0.31 fixes the following issues: Security issues fixed: - CVE-2019-17569: Fixed a regression in the handling of Transfer-Encoding headers that would have allowed HTTP Request Smuggling (bsc#1164825). - CVE-2020-1935: Fixed an HTTP Request Smuggling issue (bsc#1164860). - CVE-2020-1938: Fixed a file contents disclosure vulnerability (bsc#1164692).
Family:	unix	Class:	patch
Status:		Reference(s):	1010685 1015115 1015118 1015360 1017925 1021369 1021373 1021675 1028817 1032680 1034192 1034329 1034568 1035087 1035589 1036975 1037559 1042828 1045339 1054028 1056995 1060445 1061005 1164692 1164825 1164860 1172356 1174543 877642 901488 903543 907514 910258 918984 923967 932267 944463 944697 945167 947117 947165 948058 949138 950367 950703 950705 950706 954776 954864 956829 957162 959926 962777 963436 972777 975283 976831 988903 989564 991088 CVE-2010-3609 CVE-2011-2199 CVE-2012-0786 CVE-2014-0222 CVE-2014-8119 CVE-2015-4037 CVE-2015-5198 CVE-2015-5199 CVE-2015-5200 CVE-2015-5239 CVE-2015-6815 CVE-2015-7311 CVE-2015-7512 CVE-2015-7835 CVE-2015-7969 CVE-2015-7971 CVE-2015-8345 CVE-2015-8947 CVE-2016-10327 CVE-2016-1248 CVE-2016-2052 CVE-2016-3120 CVE-2016-4912 CVE-2016-6354 CVE-2016-7567 CVE-2016-9445 CVE-2016-9446 CVE-2016-9809 CVE-2016-9812 CVE-2016-9813 CVE-2017-11462 CVE-2017-17833 CVE-2017-5843 CVE-2017-5848 CVE-2017-7555 CVE-2017-7793 CVE-2017-7805 CVE-2017-7810 CVE-2017-7814 CVE-2017-7818 CVE-2017-7819 CVE-2017-7823 CVE-2017-7824 CVE-2017-7825 CVE-2017-7870 CVE-2017-7882 CVE-2017-8358 CVE-2017-8422 CVE-2017-8779 CVE-2017-9433 CVE-2019-17569 CVE-2020-1935 CVE-2020-1938 SUSE-SU-2015:1908-1 SUSE-SU-2016:0459-1 SUSE-SU-2016:2136-1 SUSE-SU-2016:2942-1 SUSE-SU-2017:1314-1 SUSE-SU-2017:2315-1 SUSE-SU-2017:2659-1 SUSE-SU-2017:2688-1 SUSE-SU-2020:0598-1 SUSE-SU-2020:2159-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 6-LTSS SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information NetworkManager-applet-1.8.10-lp150.3 is installed OR NetworkManager-applet-lang-1.8.10-lp150.3 is installed OR NetworkManager-connection-editor-1.8.10-lp150.3 is installed OR libnm-gtk0-1.8.10-lp150.3 is installed OR libnma0-1.8.10-lp150.3 is installed OR nma-data-1.8.10-lp150.3 is installed OR typelib-1_0-NMGtk-1_0-1.8.10-lp150.3 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND ansible-2.8.1-12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information bytefx-data-mysql-2.6.7-0.9 is installed OR ibm-data-db2-2.6.7-0.9 is installed OR mono-core-2.6.7-0.9 is installed OR mono-data-2.6.7-0.9 is installed OR mono-data-firebird-2.6.7-0.9 is installed OR mono-data-oracle-2.6.7-0.9 is installed OR mono-data-postgresql-2.6.7-0.9 is installed OR mono-data-sqlite-2.6.7-0.9 is installed OR mono-data-sybase-2.6.7-0.9 is installed OR mono-devel-2.6.7-0.9 is installed OR mono-extras-2.6.7-0.9 is installed OR mono-jscript-2.6.7-0.9 is installed OR mono-locale-extras-2.6.7-0.9 is installed OR mono-nunit-2.6.7-0.9 is installed OR mono-wcf-2.6.7-0.9 is installed OR mono-web-2.6.7-0.9 is installed OR mono-winforms-2.6.7-0.9 is installed OR monodoc-core-2.6.7-0.9 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND a2ps-4.13-1326.37 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information dhcp-4.2.4.P2-0.24 is installed OR dhcp-client-4.2.4.P2-0.24 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information xen-4.4.3_02-22.12 is installed OR xen-kmp-default-4.4.3_02_k3.12.48_52.27-22.12 is installed OR xen-libs-4.4.3_02-22.12 is installed OR xen-libs-32bit-4.4.3_02-22.12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information krb5-1.12.1-36 is installed OR krb5-32bit-1.12.1-36 is installed OR krb5-client-1.12.1-36 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information gvim-7.4.326-7 is installed OR vim-7.4.326-7 is installed OR vim-data-7.4.326-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libvdpau1-1.1.1-6 is installed OR libvdpau1-32bit-1.1.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information augeas-1.2.0-17.3 is installed OR augeas-lenses-1.2.0-17.3 is installed OR libaugeas0-1.2.0-17.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND autofs-5.0.9-8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_48-default-3-2 is installed OR kgraft-patch-3_12_74-60_64_48-xen-3-2 is installed OR kgraft-patch-SLE12-SP1_Update_17-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libjasper1-1.900.1-170 is installed OR libjasper1-32bit-1.900.1-170 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libopenssl-devel-1.0.2j-60.39 is installed OR libopenssl1_0_0-1.0.2j-60.39 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.39 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.39 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.39 is installed OR openssl-1.0.2j-60.39 is installed OR openssl-doc-1.0.2j-60.39 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information postgresql94-9.4.24-21.25 is installed OR postgresql94-contrib-9.4.24-21.25 is installed OR postgresql94-docs-9.4.24-21.25 is installed OR postgresql94-plperl-9.4.24-21.25 is installed OR postgresql94-plpython-9.4.24-21.25 is installed OR postgresql94-pltcl-9.4.24-21.25 is installed OR postgresql94-server-9.4.24-21.25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_64-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_18-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libXcursor1-1.1.14-3 is installed OR libXcursor1-32bit-1.1.14-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libssh2-1-1.4.3-20.14 is installed OR libssh2-1-32bit-1.4.3-20.14 is installed OR libssh2_org-1.4.3-20.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kernel-default-4.4.180-94.107 is installed OR kernel-default-base-4.4.180-94.107 is installed OR kernel-default-devel-4.4.180-94.107 is installed OR kernel-default-kgraft-4.4.180-94.107 is installed OR kernel-devel-4.4.180-94.107 is installed OR kernel-macros-4.4.180-94.107 is installed OR kernel-source-4.4.180-94.107 is installed OR kernel-syms-4.4.180-94.107 is installed OR kgraft-patch-4_4_180-94_107-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_29-1-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libpcap-1.8.1-10.3 is installed OR libpcap1-1.8.1-10.3 is installed OR tcpdump-4.9.2-14.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND ucode-intel-20180807-13.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libopenssl-devel-1.0.2p-1 is installed OR openssl-1.0.2p-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information tomcat-9.0.31-3.42 is installed OR tomcat-admin-webapps-9.0.31-3.42 is installed OR tomcat-el-3_0-api-9.0.31-3.42 is installed OR tomcat-jsp-2_3-api-9.0.31-3.42 is installed OR tomcat-lib-9.0.31-3.42 is installed OR tomcat-servlet-4_0-api-9.0.31-3.42 is installed OR tomcat-webapps-9.0.31-3.42 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information xen-4.10.4_14-3.38 is installed OR xen-devel-4.10.4_14-3.38 is installed OR xen-libs-4.10.4_14-3.38 is installed OR xen-tools-4.10.4_14-3.38 is installed OR xen-tools-domU-4.10.4_14-3.38 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND python-Pillow-2.7.0-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 6-LTSS is installed AND Package Information ruby2.1-rubygem-actionview-4_2-4.2.9-9.9 is installed OR ruby2.1-rubygem-activesupport-4_2-4.2.9-7.6 is installed OR rubygem-actionview-4_2-4.2.9-9.9 is installed OR rubygem-activesupport-4_2-4.2.9-7.6 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information gstreamer-0_10-plugins-base-0.10.36-18.3 is installed OR gstreamer-0_10-plugins-base-32bit-0.10.36-18.3 is installed OR libgstapp-0_10-0-32bit-0.10.36-18.3 is installed OR libgstinterfaces-0_10-0-32bit-0.10.36-18.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND squid-3.5.21-26.17 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND python-Twisted-15.2.1-9.8 is installed

BACK