Oval Definition:oval:org.opensuse.security:def:5457
Revision Date:2020-12-02Version:1
Title:Security update for gnutls (Important)
Description:

This update for gnutls fixes the following issues:

- CVE-2020-13777: Fixed an insecure session ticket key construction which could have made the TLS server to not bind the session ticket encryption key with a value supplied by the application until the initial key rotation, allowing an attacker to bypass authentication in TLS 1.3 and recover previous conversations in TLS 1.2 (bsc#1172506). - Fixed an improper handling of certificate chain with cross-signed intermediate CA certificates (bsc#1172461).
Family:unixClass:patch
Status:Reference(s):1051510
1065729
1071995
1104967
1152107
1158755
1162002
1170011
1171078
1171673
1171732
1171868
1172257
1172461
1172506
1172775
1172781
1172782
1172783
1172999
1173265
1173280
1173514
1173567
1173573
1173659
1173999
1174000
1174115
1174462
1174543
CVE-2006-4197
CVE-2008-1227
CVE-2008-1227
CVE-2009-0946
CVE-2009-1892
CVE-2009-2473
CVE-2009-2474
CVE-2010-2156
CVE-2010-2497
CVE-2010-2547
CVE-2010-2761
CVE-2010-2805
CVE-2010-3053
CVE-2010-3054
CVE-2010-3311
CVE-2010-3611
CVE-2010-3616
CVE-2010-3814
CVE-2010-4410
CVE-2010-4411
CVE-2010-4777
CVE-2011-0226
CVE-2011-0413
CVE-2011-0997
CVE-2011-2748
CVE-2011-2749
CVE-2011-3200
CVE-2011-4539
CVE-2011-4868
CVE-2012-2396
CVE-2012-3570
CVE-2012-3571
CVE-2012-3954
CVE-2012-3955
CVE-2012-5668
CVE-2012-5669
CVE-2012-5670
CVE-2013-2001
CVE-2013-2139
CVE-2013-2266
CVE-2013-4351
CVE-2013-4402
CVE-2013-4758
CVE-2013-6370
CVE-2013-6371
CVE-2014-2240
CVE-2014-3634
CVE-2014-3683
CVE-2014-3970
CVE-2014-4617
CVE-2014-9656
CVE-2014-9657
CVE-2014-9658
CVE-2014-9659
CVE-2014-9660
CVE-2014-9661
CVE-2014-9662
CVE-2014-9663
CVE-2014-9664
CVE-2014-9665
CVE-2014-9666
CVE-2014-9667
CVE-2014-9668
CVE-2014-9669
CVE-2014-9670
CVE-2014-9671
CVE-2014-9672
CVE-2014-9673
CVE-2014-9674
CVE-2014-9675
CVE-2015-1606
CVE-2015-1607
CVE-2015-8605
CVE-2019-16746
CVE-2019-20908
CVE-2020-0305
CVE-2020-10766
CVE-2020-10767
CVE-2020-10768
CVE-2020-10769
CVE-2020-10773
CVE-2020-12771
CVE-2020-12888
CVE-2020-13777
CVE-2020-13974
CVE-2020-14416
CVE-2020-15393
CVE-2020-15780
SUSE-SU-2020:1584-1
Platform(s):openSUSE 13.1
openSUSE 13.1 NonFree
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise for SAP 12 SP1
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12 SP3
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Toolchain 12
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Point of Sale 12 SP2
SUSE Linux Enterprise Real Time Extension 12 SP1
SUSE Linux Enterprise Real Time Extension 12 SP2
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Software Development Kit 12 SP4
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE OpenStack Cloud 5
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND python-setuptools-0.6c11-6.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • openssh-6.6p1-16.1 is installed
  • OR openssh-askpass-gnome-6.6p1-16.4 is installed
  • OR openssh-helpers-6.6p1-16.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND libmusicbrainz4-2.1.5-27 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • dhcp-4.3.3-9 is installed
  • OR dhcp-client-4.3.3-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND SuSEfirewall2-3.6.312.333-3.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_55-52_42-default-2-2.2 is installed
  • OR kgraft-patch-3_12_55-52_42-xen-2-2.2 is installed
  • OR kgraft-patch-SLE12_Update_12-2-2.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 SP1 is installed
  • AND Package Information
  • xorg-x11-server-7.6_1.15.2-53.3.1 is installed
  • OR xorg-x11-server-extra-7.6_1.15.2-53.3.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND haproxy-1.6.5-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND Package Information
  • gdk-pixbuf-lang-2.34.0-19.17 is installed
  • OR gdk-pixbuf-query-loaders-2.34.0-19.17 is installed
  • OR gdk-pixbuf-query-loaders-32bit-2.34.0-19.17 is installed
  • OR libgdk_pixbuf-2_0-0-2.34.0-19.17 is installed
  • OR libgdk_pixbuf-2_0-0-32bit-2.34.0-19.17 is installed
  • OR typelib-1_0-GdkPixbuf-2_0-2.34.0-19.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 SP3 is installed
  • AND Package Information
  • kgraft-patch-4_4_82-6_6-default-2-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_2-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 12 is installed
  • AND Package Information
  • ruby2.1-rubygem-passenger-5.0.18-6.1 is installed
  • OR rubygem-passenger-5.0.18-6.1 is installed
  • OR rubygem-passenger-apache2-5.0.18-6.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 12 is installed
  • AND Package Information
  • compat-libldap-2_3-0-2.3.37-16.1 is installed
  • OR openldap2-2.4.39-16.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 12 is installed
  • AND python-setuptools-1.1.7-7.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Toolchain 12 is installed
  • AND Package Information
  • cpp5-5.3.1+r233831-9 is installed
  • OR gcc5-5.3.1+r233831-9 is installed
  • OR gcc5-c++-5.3.1+r233831-9 is installed
  • OR gcc5-fortran-5.3.1+r233831-9 is installed
  • OR gcc5-info-5.3.1+r233831-9 is installed
  • OR gcc5-locale-5.3.1+r233831-9 is installed
  • OR libffi-devel-gcc5-5.3.1+r233831-9 is installed
  • OR libstdc++6-devel-gcc5-5.3.1+r233831-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND Package Information
  • apache2-mod_php7-7.0.7-15 is installed
  • OR php7-7.0.7-15 is installed
  • OR php7-bcmath-7.0.7-15 is installed
  • OR php7-bz2-7.0.7-15 is installed
  • OR php7-calendar-7.0.7-15 is installed
  • OR php7-ctype-7.0.7-15 is installed
  • OR php7-curl-7.0.7-15 is installed
  • OR php7-dba-7.0.7-15 is installed
  • OR php7-dom-7.0.7-15 is installed
  • OR php7-enchant-7.0.7-15 is installed
  • OR php7-exif-7.0.7-15 is installed
  • OR php7-fastcgi-7.0.7-15 is installed
  • OR php7-fileinfo-7.0.7-15 is installed
  • OR php7-fpm-7.0.7-15 is installed
  • OR php7-ftp-7.0.7-15 is installed
  • OR php7-gd-7.0.7-15 is installed
  • OR php7-gettext-7.0.7-15 is installed
  • OR php7-gmp-7.0.7-15 is installed
  • OR php7-iconv-7.0.7-15 is installed
  • OR php7-imap-7.0.7-15 is installed
  • OR php7-intl-7.0.7-15 is installed
  • OR php7-json-7.0.7-15 is installed
  • OR php7-ldap-7.0.7-15 is installed
  • OR php7-mbstring-7.0.7-15 is installed
  • OR php7-mcrypt-7.0.7-15 is installed
  • OR php7-mysql-7.0.7-15 is installed
  • OR php7-odbc-7.0.7-15 is installed
  • OR php7-opcache-7.0.7-15 is installed
  • OR php7-openssl-7.0.7-15 is installed
  • OR php7-pcntl-7.0.7-15 is installed
  • OR php7-pdo-7.0.7-15 is installed
  • OR php7-pear-7.0.7-15 is installed
  • OR php7-pear-Archive_Tar-7.0.7-15 is installed
  • OR php7-pgsql-7.0.7-15 is installed
  • OR php7-phar-7.0.7-15 is installed
  • OR php7-posix-7.0.7-15 is installed
  • OR php7-pspell-7.0.7-15 is installed
  • OR php7-shmop-7.0.7-15 is installed
  • OR php7-snmp-7.0.7-15 is installed
  • OR php7-soap-7.0.7-15 is installed
  • OR php7-sockets-7.0.7-15 is installed
  • OR php7-sqlite-7.0.7-15 is installed
  • OR php7-sysvmsg-7.0.7-15 is installed
  • OR php7-sysvsem-7.0.7-15 is installed
  • OR php7-sysvshm-7.0.7-15 is installed
  • OR php7-tokenizer-7.0.7-15 is installed
  • OR php7-wddx-7.0.7-15 is installed
  • OR php7-xmlreader-7.0.7-15 is installed
  • OR php7-xmlrpc-7.0.7-15 is installed
  • OR php7-xmlwriter-7.0.7-15 is installed
  • OR php7-xsl-7.0.7-15 is installed
  • OR php7-zip-7.0.7-15 is installed
  • OR php7-zlib-7.0.7-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Point of Sale 12 SP2 is installed
  • AND Package Information
  • salt-2016.11.4-46.10.1 is installed
  • OR salt-minion-2016.11.4-46.10.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Real Time Extension 12 SP1 is installed
  • AND Package Information
  • kernel-compute-3.12.69-60.30.1 is installed
  • OR kernel-compute-base-3.12.69-60.30.1 is installed
  • OR kernel-compute-devel-3.12.69-60.30.1 is installed
  • OR kernel-compute_debug-3.12.69-60.30.1 is installed
  • OR kernel-compute_debug-devel-3.12.69-60.30.1 is installed
  • OR kernel-devel-rt-3.12.69-60.30.1 is installed
  • OR kernel-rt-3.12.69-60.30.1 is installed
  • OR kernel-rt-base-3.12.69-60.30.1 is installed
  • OR kernel-rt-devel-3.12.69-60.30.1 is installed
  • OR kernel-rt_debug-3.12.69-60.30.1 is installed
  • OR kernel-rt_debug-devel-3.12.69-60.30.1 is installed
  • OR kernel-source-rt-3.12.69-60.30.1 is installed
  • OR kernel-syms-rt-3.12.69-60.30.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Real Time Extension 12 SP2 is installed
  • AND Package Information
  • cluster-md-kmp-rt-4.4.88-18.1 is installed
  • OR cluster-network-kmp-rt-4.4.88-18.1 is installed
  • OR dlm-kmp-rt-4.4.88-18.1 is installed
  • OR gfs2-kmp-rt-4.4.88-18.1 is installed
  • OR kernel-devel-rt-4.4.88-18.1 is installed
  • OR kernel-rt-4.4.88-18.1 is installed
  • OR kernel-rt-base-4.4.88-18.1 is installed
  • OR kernel-rt-devel-4.4.88-18.1 is installed
  • OR kernel-rt_debug-4.4.88-18.1 is installed
  • OR kernel-rt_debug-devel-4.4.88-18.1 is installed
  • OR kernel-source-rt-4.4.88-18.1 is installed
  • OR kernel-syms-rt-4.4.88-18.1 is installed
  • OR ocfs2-kmp-rt-4.4.88-18.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 is installed
  • AND Package Information
  • libopenssl0_9_8-0.9.8h-30.14.1 is installed
  • OR libopenssl0_9_8-32bit-0.9.8h-30.14.1 is installed
  • OR libopenssl0_9_8-x86-0.9.8h-30.14.1 is installed
  • OR openssl-0.9.8h-30.14.1 is installed
  • OR openssl-doc-0.9.8h-30.14.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP1-LTSS is installed
  • AND kvm-0.12.5-1.30.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND Package Information
  • gnome-screensaver-2.28.3-0.28.1 is installed
  • OR gnome-screensaver-lang-2.28.3-0.28.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND acpid-1.0.6-91.25.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-1 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-9 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • jasper-1.900.14-181.1 is installed
  • OR libjasper1-1.900.14-181.1 is installed
  • OR libjasper1-32bit-1.900.14-181.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libtiff5-4.0.7-43 is installed
  • OR libtiff5-32bit-4.0.7-43 is installed
  • OR tiff-4.0.7-43 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND SuSEfirewall2-3.6.312.333-3.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-28 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_60-52_54-default-9-2 is installed
  • OR kgraft-patch-3_12_60-52_54-xen-9-2 is installed
  • OR kgraft-patch-SLE12_Update_15-9-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed
  • AND Package Information
  • libsoup-2.44.2-2.3 is installed
  • OR libsoup-2_4-1-2.44.2-2.3 is installed
  • OR libsoup-2_4-1-32bit-2.44.2-2.3 is installed
  • OR libsoup-lang-2.44.2-2.3 is installed
  • OR typelib-1_0-Soup-2_4-2.44.2-2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • gnutls-3.6.7-6.29 is installed
  • OR libgnutls-devel-3.6.7-6.29 is installed
  • OR libgnutls30-3.6.7-6.29 is installed
  • OR libgnutls30-32bit-3.6.7-6.29 is installed
  • OR libgnutls30-hmac-3.6.7-6.29 is installed
  • OR libgnutls30-hmac-32bit-3.6.7-6.29 is installed
  • OR libgnutlsxx-devel-3.6.7-6.29 is installed
  • OR libgnutlsxx28-3.6.7-6.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND Package Information
  • ant-1.7.1-20.11.1 is installed
  • OR ant-antlr-1.7.1-16.11.1 is installed
  • OR ant-apache-bcel-1.7.1-16.11.1 is installed
  • OR ant-apache-bsf-1.7.1-16.11.1 is installed
  • OR ant-apache-log4j-1.7.1-16.11.1 is installed
  • OR ant-apache-oro-1.7.1-16.11.1 is installed
  • OR ant-apache-regexp-1.7.1-16.11.1 is installed
  • OR ant-apache-resolver-1.7.1-16.11.1 is installed
  • OR ant-commons-logging-1.7.1-16.11.1 is installed
  • OR ant-javadoc-1.7.1-20.11.1 is installed
  • OR ant-javamail-1.7.1-16.11.1 is installed
  • OR ant-jdepend-1.7.1-16.11.1 is installed
  • OR ant-jmf-1.7.1-16.11.1 is installed
  • OR ant-junit-1.7.1-16.11.1 is installed
  • OR ant-manual-1.7.1-20.11.1 is installed
  • OR ant-nodeps-1.7.1-16.11.1 is installed
  • OR ant-scripts-1.7.1-20.11.1 is installed
  • OR ant-swing-1.7.1-16.11.1 is installed
  • OR ant-trax-1.7.1-16.11.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND Package Information
  • evince-devel-3.10.3-1 is installed
  • OR typelib-1_0-EvinceDocument-3_0-3.10.3-1 is installed
  • OR typelib-1_0-EvinceView-3_0-3.10.3-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • AND Package Information
  • libipa_hbac-devel-1.13.4-33 is installed
  • OR libsss_idmap-devel-1.13.4-33 is installed
  • OR libsss_nss_idmap-devel-1.13.4-33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-71.85 is installed
  • OR ImageMagick-devel-6.8.8.1-71.85 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-71.85 is installed
  • OR libMagick++-devel-6.8.8.1-71.85 is installed
  • OR perl-PerlMagick-6.8.8.1-71.85 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND Package Information
  • colord-1.1.7-2 is installed
  • OR colord-lang-1.1.7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND bogofilter-1.2.4-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND Package Information
  • libmysqlclient_r18-10.0.28-17.2 is installed
  • OR libmysqlclient_r18-32bit-10.0.28-17.2 is installed
  • OR mariadb-10.0.28-17.2 is installed
    • BACK