Oval Definition:	oval:org.opensuse.security:def:53676
Revision Date: 2020-12-01 Version: 1 Title: Security update for squid (Critical) Description: This update for squid fixes the following issues: squid was updated to version 4.13: - CVE-2020-24606: Fix livelocking in peerDigestHandleReply (bsc#1175671). - CVE-2020-15811: Improve Transfer-Encoding handling (bsc#1175665). - CVE-2020-15810: Enforce token characters for field-name (bsc#1175664). Family: unix Class: patch Status: Reference(s): 1005778 1005780 1005781 1012382 1017967 1020102 1037697 1039616 1046299 1046300 1046302 1046303 1046305 1046306 1046307 1046533 1046543 1047487 1050242 1050536 1050538 1050540 1051222 1051510 1052460 1054245 1055053 1055063 1056550 1056651 1056787 1057723 1058169 1058422 1058659 1060463 1063043 1063049 1063050 1064311 1065180 1068032 1068951 1070116 1071009 1072166 1072216 1072556 1072866 1072890 1072947 1072962 1073090 1073525 1073792 1073809 1073868 1073874 1073912 1075087 1075360 1077338 1077761 1077989 1078431 1078662 1080740 1084300 1085042 1085536 1085539 1086301 1086313 1086314 1086324 1086457 1087092 1087202 1087217 1087233 1090098 1090888 1091041 1091171 1093148 1093666 1094119 1096330 1097583 1097584 1097585 1097586 1097587 1097588 1098633 1099193 1100132 1100884 1101143 1101337 1101352 1101564 1101669 1101674 1101789 1101813 1101816 1102088 1102097 1102147 1102340 1102512 1102851 1103216 1103220 1103230 1103421 1173455 1175664 1175665 1175671 906574 924960 933288 933878 936227 942865 957566 957567 957598 957600 960837 963897 964063 966170 966172 971741 972127 973790 CVE-2004-0801 CVE-2004-2779 CVE-2008-2109 CVE-2009-2694 CVE-2009-2703 CVE-2009-3026 CVE-2009-3083 CVE-2009-3084 CVE-2009-3085 CVE-2009-3615 CVE-2010-0013 CVE-2010-0277 CVE-2010-0420 CVE-2010-0423 CVE-2010-1624 CVE-2010-2528 CVE-2010-3711 CVE-2010-4267 CVE-2011-0465 CVE-2011-1091 CVE-2011-2697 CVE-2011-2722 CVE-2011-3594 CVE-2012-2214 CVE-2012-3374 CVE-2012-6152 CVE-2012-6706 CVE-2013-0271 CVE-2013-0272 CVE-2013-0273 CVE-2013-0274 CVE-2013-4325 CVE-2013-6402 CVE-2013-6427 CVE-2013-6477 CVE-2013-6478 CVE-2013-6479 CVE-2013-6481 CVE-2013-6482 CVE-2013-6483 CVE-2013-6484 CVE-2013-6485 CVE-2013-6486 CVE-2013-6487 CVE-2014-0020 CVE-2014-3694 CVE-2014-3695 CVE-2014-3696 CVE-2014-3697 CVE-2014-3698 CVE-2014-8964 CVE-2015-0839 CVE-2015-0848 CVE-2015-2325 CVE-2015-2327 CVE-2015-2328 CVE-2015-3210 CVE-2015-3217 CVE-2015-4588 CVE-2015-4695 CVE-2015-4696 CVE-2015-5073 CVE-2015-8380 CVE-2015-8381 CVE-2015-8382 CVE-2015-8383 CVE-2015-8384 CVE-2015-8385 CVE-2015-8386 CVE-2015-8387 CVE-2015-8388 CVE-2015-8389 CVE-2015-8390 CVE-2015-8391 CVE-2015-8392 CVE-2015-8393 CVE-2015-8394 CVE-2015-8395 CVE-2016-1283 CVE-2016-2347 CVE-2016-3191 CVE-2017-0381 CVE-2017-11185 CVE-2017-11550 CVE-2017-11551 CVE-2017-12563 CVE-2017-12691 CVE-2017-13061 CVE-2017-13062 CVE-2017-14042 CVE-2017-14174 CVE-2017-14343 CVE-2017-15277 CVE-2017-15281 CVE-2017-17805 CVE-2017-17806 CVE-2017-18344 CVE-2017-2640 CVE-2017-5715 CVE-2017-5753 CVE-2017-5754 CVE-2018-2562 CVE-2018-2612 CVE-2018-2622 CVE-2018-2640 CVE-2018-2665 CVE-2018-2668 CVE-2018-5390 CVE-2018-7738 CVE-2020-15049 CVE-2020-15810 CVE-2020-15811 CVE-2020-24606 SUSE-SU-2016:1091-1 SUSE-SU-2016:3161-1 SUSE-SU-2017:0436-1 SUSE-SU-2017:2143-1 SUSE-SU-2018:0010-1 SUSE-SU-2018:0017-1 SUSE-SU-2018:0697-1 SUSE-SU-2018:2071-1 SUSE-SU-2018:2223-1 SUSE-SU-2020:2442-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.0 NonFree openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information java-10-openjdk-10.0.1.0-lp150.1 is installed OR java-10-openjdk-headless-10.0.1.0-lp150.1 is installed Definition Synopsis openSUSE Leap 15.0 NonFree is installed AND opera-54.0.2952.41-lp150.2.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libvirt-5.1.0-lp151.7.3 is installed OR libvirt-admin-5.1.0-lp151.7.3 is installed OR libvirt-bash-completion-5.1.0-lp151.7.3 is installed OR libvirt-client-5.1.0-lp151.7.3 is installed OR libvirt-daemon-5.1.0-lp151.7.3 is installed OR libvirt-daemon-config-network-5.1.0-lp151.7.3 is installed OR libvirt-daemon-config-nwfilter-5.1.0-lp151.7.3 is installed OR libvirt-daemon-driver-interface-5.1.0-lp151.7.3 is installed OR libvirt-daemon-driver-libxl-5.1.0-lp151.7.3 is installed OR libvirt-daemon-driver-lxc-5.1.0-lp151.7.3 is installed OR libvirt-daemon-driver-network-5.1.0-lp151.7.3 is installed OR libvirt-daemon-driver-nodedev-5.1.0-lp151.7.3 is installed OR libvirt-daemon-driver-nwfilter-5.1.0-lp151.7.3 is installed OR libvirt-daemon-driver-qemu-5.1.0-lp151.7.3 is installed OR libvirt-daemon-driver-secret-5.1.0-lp151.7.3 is installed OR libvirt-daemon-driver-storage-5.1.0-lp151.7.3 is installed OR libvirt-daemon-driver-storage-core-5.1.0-lp151.7.3 is installed OR libvirt-daemon-driver-storage-disk-5.1.0-lp151.7.3 is installed OR libvirt-daemon-driver-storage-gluster-5.1.0-lp151.7.3 is installed OR libvirt-daemon-driver-storage-iscsi-5.1.0-lp151.7.3 is installed OR libvirt-daemon-driver-storage-logical-5.1.0-lp151.7.3 is installed OR libvirt-daemon-driver-storage-mpath-5.1.0-lp151.7.3 is installed OR libvirt-daemon-driver-storage-rbd-5.1.0-lp151.7.3 is installed OR libvirt-daemon-driver-storage-scsi-5.1.0-lp151.7.3 is installed OR libvirt-daemon-hooks-5.1.0-lp151.7.3 is installed OR libvirt-daemon-lxc-5.1.0-lp151.7.3 is installed OR libvirt-daemon-qemu-5.1.0-lp151.7.3 is installed OR libvirt-daemon-xen-5.1.0-lp151.7.3 is installed OR libvirt-devel-5.1.0-lp151.7.3 is installed OR libvirt-devel-32bit-5.1.0-lp151.7.3 is installed OR libvirt-doc-5.1.0-lp151.7.3 is installed OR libvirt-libs-5.1.0-lp151.7.3 is installed OR libvirt-lock-sanlock-5.1.0-lp151.7.3 is installed OR libvirt-nss-5.1.0-lp151.7.3 is installed OR wireshark-plugin-libvirt-5.1.0-lp151.7.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND permissions-2013.1.7-0.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-31.6.0esr-0.8 is installed OR MozillaFirefox-translations-31.6.0esr-0.8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information compat-openssl097g-0.9.7g-146.22.41 is installed OR compat-openssl097g-32bit-0.9.7g-146.22.41 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information lhasa-0.2.0-5 is installed OR liblhasa0-0.2.0-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libpcre1-8.39-7 is installed OR libpcre1-32bit-8.39-7 is installed OR libpcre16-0-8.39-7 is installed OR libpcrecpp0-8.39-7 is installed OR libpcrecpp0-32bit-8.39-7 is installed OR pcre-8.39-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information strongswan-5.1.3-26.5 is installed OR strongswan-doc-5.1.3-26.5 is installed OR strongswan-ipsec-5.1.3-26.5 is installed OR strongswan-libs0-5.1.3-26.5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND unrar-5.0.14-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information finch-2.12.0-3.3 is installed OR libpurple-2.12.0-3.3 is installed OR libpurple-branding-upstream-2.12.0-3.3 is installed OR libpurple-lang-2.12.0-3.3 is installed OR libpurple-plugin-sametime-2.12.0-3.3 is installed OR libpurple-tcl-2.12.0-3.3 is installed OR pidgin-2.12.0-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND libXfont1-1.4.7-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.10-38.5 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.10-38.5 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.10-38.5 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.10-38.5 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.10-38.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND ant-1.9.4-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information qemu-2.6.2-41.49 is installed OR qemu-block-curl-2.6.2-41.49 is installed OR qemu-block-rbd-2.6.2-41.49 is installed OR qemu-block-ssh-2.6.2-41.49 is installed OR qemu-guest-agent-2.6.2-41.49 is installed OR qemu-ipxe-1.0.0-41.49 is installed OR qemu-kvm-2.6.2-41.49 is installed OR qemu-lang-2.6.2-41.49 is installed OR qemu-seabios-1.9.1-41.49 is installed OR qemu-sgabios-8-41.49 is installed OR qemu-tools-2.6.2-41.49 is installed OR qemu-vgabios-1.9.1-41.49 is installed OR qemu-x86-2.6.2-41.49 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information qemu-2.6.2-41.46 is installed OR qemu-block-curl-2.6.2-41.46 is installed OR qemu-block-rbd-2.6.2-41.46 is installed OR qemu-block-ssh-2.6.2-41.46 is installed OR qemu-guest-agent-2.6.2-41.46 is installed OR qemu-ipxe-1.0.0-41.46 is installed OR qemu-kvm-2.6.2-41.46 is installed OR qemu-lang-2.6.2-41.46 is installed OR qemu-ppc-2.6.2-41.46 is installed OR qemu-s390-2.6.2-41.46 is installed OR qemu-seabios-1.9.1-41.46 is installed OR qemu-sgabios-8-41.46 is installed OR qemu-tools-2.6.2-41.46 is installed OR qemu-vgabios-1.9.1-41.46 is installed OR qemu-x86-2.6.2-41.46 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information gnutls-3.3.27-1 is installed OR libgnutls-openssl27-3.3.27-1 is installed OR libgnutls28-3.3.27-1 is installed OR libgnutls28-32bit-3.3.27-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information freeradius-server-3.0.15-2.14 is installed OR freeradius-server-doc-3.0.15-2.14 is installed OR freeradius-server-krb5-3.0.15-2.14 is installed OR freeradius-server-ldap-3.0.15-2.14 is installed OR freeradius-server-libs-3.0.15-2.14 is installed OR freeradius-server-mysql-3.0.15-2.14 is installed OR freeradius-server-perl-3.0.15-2.14 is installed OR freeradius-server-postgresql-3.0.15-2.14 is installed OR freeradius-server-python-3.0.15-2.14 is installed OR freeradius-server-sqlite-3.0.15-2.14 is installed OR freeradius-server-utils-3.0.15-2.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information curl-7.37.0-37.43 is installed OR libcurl4-7.37.0-37.43 is installed OR libcurl4-32bit-7.37.0-37.43 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_103-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_28-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information apache2-2.4.23-29.21 is installed OR apache2-doc-2.4.23-29.21 is installed OR apache2-example-pages-2.4.23-29.21 is installed OR apache2-prefork-2.4.23-29.21 is installed OR apache2-utils-2.4.23-29.21 is installed OR apache2-worker-2.4.23-29.21 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache2-mod_apparmor-2.8.2-49 is installed OR apparmor-docs-2.8.2-49 is installed OR apparmor-parser-2.8.2-49 is installed OR apparmor-profiles-2.8.2-49 is installed OR apparmor-utils-2.8.2-49 is installed OR libapparmor1-2.8.2-49 is installed OR libapparmor1-32bit-2.8.2-49 is installed OR pam_apparmor-2.8.2-49 is installed OR pam_apparmor-32bit-2.8.2-49 is installed OR perl-apparmor-2.8.2-49 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND squid-4.13-5.23 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.6 is installed OR kernel-default-extra-4.12.14-25.6 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND python-Pillow-2.7.0-3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information LibVNCServer-0.9.9-17.11 is installed OR libvncclient0-0.9.9-17.11 is installed OR libvncserver0-0.9.9-17.11 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-60.9.0-109.86 is installed OR MozillaFirefox-translations-common-60.9.0-109.86 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-Werkzeug-0.14.1-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-rails-html-sanitizer-1.0.3-8.8 is installed OR rubygem-rails-html-sanitizer-1.0.3-8.8 is installed
BACK