Oval Definition:oval:org.opensuse.security:def:53602
Revision Date:2020-12-01Version:1
Title:Security update for git (Important)
Description:

This update for git fixes the following issues:

- CVE-2020-5260: With a crafted URL that contains a newline in it, the credential helper machinery can be fooled to give credential information for a wrong host (bsc#1168930).
Family:unixClass:patch
Status:Reference(s):1012964
1018128
1027519
1030263
1032114
1032120
1036453
1047873
1055695
1056278
1056280
1056281
1056282
1057247
1057358
1062563
1062620
1168930
1175070
1175071
1175074
926826
952871
963415
964225
968046
968048
968051
968053
968374
973340
984808
984831
984837
984842
987351
CVE-2004-0801
CVE-2007-6720
CVE-2009-0179
CVE-2009-1885
CVE-2009-3995
CVE-2009-3996
CVE-2010-0405
CVE-2010-2252
CVE-2010-2546
CVE-2010-4267
CVE-2010-4651
CVE-2011-2697
CVE-2011-2722
CVE-2012-4929
CVE-2013-4325
CVE-2013-6402
CVE-2013-6427
CVE-2014-4877
CVE-2015-0252
CVE-2015-0839
CVE-2015-1196
CVE-2015-1395
CVE-2015-1396
CVE-2015-2059
CVE-2015-3197
CVE-2015-8781
CVE-2015-8782
CVE-2015-8783
CVE-2016-0702
CVE-2016-0703
CVE-2016-0704
CVE-2016-0729
CVE-2016-0797
CVE-2016-0799
CVE-2016-0800
CVE-2016-10220
CVE-2016-10713
CVE-2016-2099
CVE-2016-3186
CVE-2016-4463
CVE-2016-4971
CVE-2016-5314
CVE-2016-5316
CVE-2016-5317
CVE-2016-5320
CVE-2016-5875
CVE-2016-7098
CVE-2016-9079
CVE-2016-9601
CVE-2017-1000256
CVE-2017-11108
CVE-2017-11541
CVE-2017-11542
CVE-2017-11543
CVE-2017-12893
CVE-2017-12894
CVE-2017-12895
CVE-2017-12896
CVE-2017-12897
CVE-2017-12898
CVE-2017-12899
CVE-2017-12900
CVE-2017-12901
CVE-2017-12902
CVE-2017-12985
CVE-2017-12986
CVE-2017-12987
CVE-2017-12988
CVE-2017-12989
CVE-2017-12990
CVE-2017-12991
CVE-2017-12992
CVE-2017-12993
CVE-2017-12994
CVE-2017-12995
CVE-2017-12996
CVE-2017-12997
CVE-2017-12998
CVE-2017-12999
CVE-2017-13000
CVE-2017-13001
CVE-2017-13002
CVE-2017-13003
CVE-2017-13004
CVE-2017-13005
CVE-2017-13006
CVE-2017-13007
CVE-2017-13008
CVE-2017-13009
CVE-2017-13010
CVE-2017-13011
CVE-2017-13012
CVE-2017-13013
CVE-2017-13014
CVE-2017-13015
CVE-2017-13016
CVE-2017-13017
CVE-2017-13018
CVE-2017-13019
CVE-2017-13020
CVE-2017-13021
CVE-2017-13022
CVE-2017-13023
CVE-2017-13024
CVE-2017-13025
CVE-2017-13026
CVE-2017-13027
CVE-2017-13028
CVE-2017-13029
CVE-2017-13030
CVE-2017-13031
CVE-2017-13032
CVE-2017-13033
CVE-2017-13034
CVE-2017-13035
CVE-2017-13036
CVE-2017-13037
CVE-2017-13038
CVE-2017-13039
CVE-2017-13040
CVE-2017-13041
CVE-2017-13042
CVE-2017-13043
CVE-2017-13044
CVE-2017-13045
CVE-2017-13046
CVE-2017-13047
CVE-2017-13048
CVE-2017-13049
CVE-2017-13050
CVE-2017-13051
CVE-2017-13052
CVE-2017-13053
CVE-2017-13054
CVE-2017-13055
CVE-2017-13687
CVE-2017-13688
CVE-2017-13689
CVE-2017-13690
CVE-2017-13725
CVE-2017-14316
CVE-2017-14317
CVE-2017-14318
CVE-2017-14319
CVE-2017-5951
CVE-2017-6508
CVE-2017-7207
CVE-2017-8291
CVE-2018-1000156
CVE-2018-6951
CVE-2020-11984
CVE-2020-11993
CVE-2020-5260
CVE-2020-9490
SUSE-SU-2015:2056-1
SUSE-SU-2016:0641-1
SUSE-SU-2016:2271-1
SUSE-SU-2016:3048-1
SUSE-SU-2017:1404-1
SUSE-SU-2017:2420-1
SUSE-SU-2017:2850-1
SUSE-SU-2017:2854-1
SUSE-SU-2020:0991-1
SUSE-SU-2020:2344-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 15
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • augeas-1.10.1-lp150.1 is installed
  • OR augeas-lenses-1.10.1-lp150.1 is installed
  • OR libaugeas0-1.10.1-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libu2f-host-1.1.6-lp151.2.6 is installed
  • OR libu2f-host-devel-1.1.6-lp151.2.6 is installed
  • OR libu2f-host-doc-1.1.6-lp151.2.6 is installed
  • OR libu2f-host0-1.1.6-lp151.2.6 is installed
  • OR pam_u2f-1.0.8-lp151.2.3 is installed
  • OR u2f-host-1.1.6-lp151.2.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • MozillaFirefox-10.0.7-0.3 is installed
  • OR MozillaFirefox-branding-SLED-7-0.6.7 is installed
  • OR MozillaFirefox-translations-10.0.7-0.3 is installed
  • OR libfreebl3-3.13.6-0.5 is installed
  • OR libfreebl3-32bit-3.13.6-0.5 is installed
  • OR mozilla-nspr-4.9.2-0.6 is installed
  • OR mozilla-nspr-32bit-4.9.2-0.6 is installed
  • OR mozilla-nss-3.13.6-0.5 is installed
  • OR mozilla-nss-32bit-3.13.6-0.5 is installed
  • OR mozilla-nss-tools-3.13.6-0.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • bind-9.9.6P1-0.22 is installed
  • OR bind-libs-9.9.6P1-0.22 is installed
  • OR bind-libs-32bit-9.9.6P1-0.22 is installed
  • OR bind-utils-9.9.6P1-0.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • flash-player-11.2.202.491-0.11 is installed
  • OR flash-player-gnome-11.2.202.491-0.11 is installed
  • OR flash-player-kde4-11.2.202.491-0.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • libksba-1.3.0-18 is installed
  • OR libksba8-1.3.0-18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • libtiff5-4.0.6-26 is installed
  • OR libtiff5-32bit-4.0.6-26 is installed
  • OR tiff-4.0.6-26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • MozillaFirefox-45.5.1esr-93 is installed
  • OR MozillaFirefox-translations-45.5.1esr-93 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libxerces-c-3_1-3.1.1-12 is installed
  • OR libxerces-c-3_1-32bit-3.1.1-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • bzip2-1.0.6-29 is installed
  • OR libbz2-1-1.0.6-29 is installed
  • OR libbz2-1-32bit-1.0.6-29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND clamav-0.98.7-13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • cpp48-4.8.5-31.3 is installed
  • OR gcc48-4.8.5-31.3 is installed
  • OR gcc48-32bit-4.8.5-31.3 is installed
  • OR gcc48-c++-4.8.5-31.3 is installed
  • OR gcc48-info-4.8.5-31.3 is installed
  • OR gcc48-locale-4.8.5-31.3 is installed
  • OR libasan0-4.8.5-31.3 is installed
  • OR libasan0-32bit-4.8.5-31.3 is installed
  • OR libstdc++48-devel-4.8.5-31.3 is installed
  • OR libstdc++48-devel-32bit-4.8.5-31.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libldb1-1.1.26-10 is installed
  • OR libldb1-32bit-1.1.26-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • xen-4.7.6_05-43.42 is installed
  • OR xen-doc-html-4.7.6_05-43.42 is installed
  • OR xen-libs-4.7.6_05-43.42 is installed
  • OR xen-libs-32bit-4.7.6_05-43.42 is installed
  • OR xen-tools-4.7.6_05-43.42 is installed
  • OR xen-tools-domU-4.7.6_05-43.42 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed
  • OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed
  • OR libwebkit2gtk3-lang-2.24.4-2.47 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed
  • OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed
  • OR typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed
  • OR webkit2gtk3-2.24.4-2.47 is installed
  • OR webkit2gtk3-devel-2.24.4-2.47 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • openslp-2.0.0-18.17 is installed
  • OR openslp-32bit-2.0.0-18.17 is installed
  • OR openslp-server-2.0.0-18.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • accountsservice-0.6.42-14 is installed
  • OR accountsservice-lang-0.6.42-14 is installed
  • OR libaccountsservice0-0.6.42-14 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND clamav-0.100.3-33.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.241-43.30 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.241-43.30 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.241-43.30 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.241-43.30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_97-default-5-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_26-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • rsyslog-8.24.0-3.7 is installed
  • OR rsyslog-diag-tools-8.24.0-3.7 is installed
  • OR rsyslog-doc-8.24.0-3.7 is installed
  • OR rsyslog-module-gssapi-8.24.0-3.7 is installed
  • OR rsyslog-module-gtls-8.24.0-3.7 is installed
  • OR rsyslog-module-mysql-8.24.0-3.7 is installed
  • OR rsyslog-module-pgsql-8.24.0-3.7 is installed
  • OR rsyslog-module-relp-8.24.0-3.7 is installed
  • OR rsyslog-module-snmp-8.24.0-3.7 is installed
  • OR rsyslog-module-udpspoof-8.24.0-3.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-38.8 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-38.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • git-2.16.4-3.20 is installed
  • OR git-arch-2.16.4-3.20 is installed
  • OR git-core-2.16.4-3.20 is installed
  • OR git-cvs-2.16.4-3.20 is installed
  • OR git-daemon-2.16.4-3.20 is installed
  • OR git-doc-2.16.4-3.20 is installed
  • OR git-email-2.16.4-3.20 is installed
  • OR git-gui-2.16.4-3.20 is installed
  • OR git-svn-2.16.4-3.20 is installed
  • OR git-web-2.16.4-3.20 is installed
  • OR gitk-2.16.4-3.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • apache2-2.4.33-3.33 is installed
  • OR apache2-devel-2.4.33-3.33 is installed
  • OR apache2-doc-2.4.33-3.33 is installed
  • OR apache2-prefork-2.4.33-3.33 is installed
  • OR apache2-utils-2.4.33-3.33 is installed
  • OR apache2-worker-2.4.33-3.33 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND ruby2.1-rubygem-actionview-4_2-4.2.2-5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • glib2-2.48.2-12.15 is installed
  • OR glib2-lang-2.48.2-12.15 is installed
  • OR glib2-tools-2.48.2-12.15 is installed
  • OR libgio-2_0-0-2.48.2-12.15 is installed
  • OR libgio-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libglib-2_0-0-2.48.2-12.15 is installed
  • OR libglib-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgmodule-2_0-0-2.48.2-12.15 is installed
  • OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgobject-2_0-0-2.48.2-12.15 is installed
  • OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgthread-2_0-0-2.48.2-12.15 is installed
  • OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libsolv-0.6.36-2.27.19 is installed
  • OR libsolv-tools-0.6.36-2.27.19 is installed
  • OR libzypp-16.20.2-27.60 is installed
  • OR perl-solv-0.6.36-2.27.19 is installed
  • OR python-solv-0.6.36-2.27.19 is installed
  • OR zypper-1.13.54-18.40 is installed
  • OR zypper-log-1.13.54-18.40 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND python-Django1-1.11.20-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • dnsmasq-2.78-18.12 is installed
  • OR dnsmasq-utils-2.78-18.12 is installed
    • BACK