OVAL Reference oval:org.opensuse.security:def:5468

Oval Definition:

oval:org.opensuse.security:def:5468

Revision Date:	2020-12-02	Version:	1
Title:	Security update for tomcat (Important)
Description:	This update for tomcat fixes the following issues: - CVE-2020-8022: Fixed a local root exploit due to improper permissions (bsc#1172405)
Family:	unix	Class:	patch
Status:		Reference(s):	1172405 1172745 1174421 CVE-2008-4225 CVE-2008-4226 CVE-2008-4409 CVE-2009-0186 CVE-2009-0799 CVE-2009-0799 CVE-2009-0800 CVE-2009-0800 CVE-2009-1179 CVE-2009-1179 CVE-2009-1180 CVE-2009-1180 CVE-2009-1181 CVE-2009-1181 CVE-2009-1182 CVE-2009-1182 CVE-2009-1183 CVE-2009-1183 CVE-2009-1187 CVE-2009-1187 CVE-2009-1188 CVE-2009-1188 CVE-2009-2285 CVE-2009-2347 CVE-2009-3607 CVE-2009-3607 CVE-2009-3608 CVE-2009-3608 CVE-2010-2065 CVE-2010-2067 CVE-2010-2233 CVE-2010-2242 CVE-2010-2640 CVE-2010-2641 CVE-2010-2642 CVE-2010-2643 CVE-2010-4494 CVE-2010-4665 CVE-2011-0192 CVE-2011-1146 CVE-2011-1167 CVE-2011-1944 CVE-2011-2483 CVE-2011-2511 CVE-2011-2696 CVE-2011-3848 CVE-2011-3872 CVE-2011-4600 CVE-2012-1173 CVE-2012-1174 CVE-2012-2113 CVE-2012-3401 CVE-2012-3445 CVE-2012-3864 CVE-2012-3865 CVE-2012-3866 CVE-2012-3867 CVE-2012-4564 CVE-2012-5134 CVE-2013-0170 CVE-2013-0240 CVE-2013-0338 CVE-2013-1788 CVE-2013-1788 CVE-2013-1789 CVE-2013-1789 CVE-2013-1790 CVE-2013-1790 CVE-2013-1799 CVE-2013-1960 CVE-2013-1961 CVE-2013-1962 CVE-2013-1969 CVE-2013-2218 CVE-2013-2230 CVE-2013-2492 CVE-2013-3567 CVE-2013-4153 CVE-2013-4154 CVE-2013-4231 CVE-2013-4232 CVE-2013-4239 CVE-2013-4243 CVE-2013-4244 CVE-2013-4288 CVE-2013-4296 CVE-2013-4297 CVE-2013-4311 CVE-2013-4399 CVE-2013-4400 CVE-2013-4401 CVE-2013-4473 CVE-2013-4473 CVE-2013-4474 CVE-2013-4474 CVE-2013-4509 CVE-2013-4761 CVE-2013-4956 CVE-2013-6436 CVE-2013-6457 CVE-2013-6458 CVE-2014-0028 CVE-2014-0179 CVE-2014-0191 CVE-2014-1447 CVE-2014-3248 CVE-2014-3253 CVE-2014-3633 CVE-2014-3657 CVE-2014-3660 CVE-2014-7823 CVE-2014-8127 CVE-2014-8128 CVE-2014-8129 CVE-2014-8130 CVE-2014-8136 CVE-2014-9496 CVE-2014-9655 CVE-2015-0236 CVE-2015-1547 CVE-2015-5247 CVE-2015-5313 CVE-2016-7795 CVE-2020-15705 CVE-2020-8022 SUSE-SU-2020:1789-1 SUSE-SU-2020:2303-1
Platform(s):	openSUSE 13.1 openSUSE 13.1 NonFree SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for High Performance Computing 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2 SUSE Linux Enterprise Real Time Extension 12 SP2 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE OpenStack Cloud 5	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND sudo-1.7.6p2-0.21.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND sblim-sfcb-1.3.11-0.25.4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libpoppler-glib8-0.24.4-3 is installed OR libpoppler-qt4-4-0.24.4-3 is installed OR libpoppler44-0.24.4-3 is installed OR poppler-tools-0.24.4-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information evince-3.20.1-5 is installed OR evince-browser-plugin-3.20.1-5 is installed OR evince-lang-3.20.1-5 is installed OR evince-plugin-djvudocument-3.20.1-5 is installed OR evince-plugin-dvidocument-3.20.1-5 is installed OR evince-plugin-pdfdocument-3.20.1-5 is installed OR evince-plugin-psdocument-3.20.1-5 is installed OR evince-plugin-tiffdocument-3.20.1-5 is installed OR evince-plugin-xpsdocument-3.20.1-5 is installed OR libevdocument3-4-3.20.1-5 is installed OR libevview3-3-3.20.1-5 is installed OR nautilus-evince-3.20.1-5 is installed OR typelib-1_0-EvinceDocument-3_0-3.20.1-5 is installed OR typelib-1_0-EvinceView-3_0-3.20.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information augeas-1.2.0-15 is installed OR augeas-lenses-1.2.0-15 is installed OR libaugeas0-1.2.0-15 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information bash-4.3-83.15 is installed OR bash-doc-4.3-83.15 is installed OR bash-lang-4.3-83.15 is installed OR libreadline6-6.3-83.15 is installed OR libreadline6-32bit-6.3-83.15 is installed OR readline-doc-6.3-83.15 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 is installed AND Package Information kgraft-patch-3_12_60-52_54-default-2-2.2 is installed OR kgraft-patch-3_12_60-52_54-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_15-2-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information libmysqlclient-devel-10.0.31-29.3.1 is installed OR libmysqlclient18-10.0.31-29.3.1 is installed OR libmysqlclient18-32bit-10.0.31-29.3.1 is installed OR libmysqlclient_r18-10.0.31-29.3.1 is installed OR libmysqld-devel-10.0.31-29.3.1 is installed OR libmysqld18-10.0.31-29.3.1 is installed OR mariadb-10.0.31-29.3.1 is installed OR mariadb-client-10.0.31-29.3.1 is installed OR mariadb-errormessages-10.0.31-29.3.1 is installed OR mariadb-tools-10.0.31-29.3.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information libpacemaker3-1.1.16-4 is installed OR pacemaker-1.1.16-4 is installed OR pacemaker-cli-1.1.16-4 is installed OR pacemaker-cts-1.1.16-4 is installed OR pacemaker-remote-1.1.16-4 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information gnome-shell-search-provider-nautilus-3.20.3-23.12 is installed OR libnautilus-extension1-3.20.3-23.12 is installed OR nautilus-3.20.3-23.12 is installed OR nautilus-lang-3.20.3-23.12 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_92-6_30-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_5-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND Package Information salt-2016.11.4-46.7.1 is installed OR salt-api-2016.11.4-46.7.1 is installed OR salt-bash-completion-2016.11.4-46.7.1 is installed OR salt-cloud-2016.11.4-46.7.1 is installed OR salt-doc-2016.11.4-46.7.1 is installed OR salt-master-2016.11.4-46.7.1 is installed OR salt-minion-2016.11.4-46.7.1 is installed OR salt-proxy-2016.11.4-46.7.1 is installed OR salt-ssh-2016.11.4-46.7.1 is installed OR salt-syndic-2016.11.4-46.7.1 is installed OR salt-zsh-completion-2016.11.4-46.7.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND Package Information ruby2.1-rubygem-passenger-5.0.18-6.1 is installed OR rubygem-passenger-5.0.18-6.1 is installed OR rubygem-passenger-apache2-5.0.18-6.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 12 is installed AND Package Information libslurm29-16.05.8.1-5 is installed OR perl-slurm-16.05.8.1-5 is installed OR slurm-16.05.8.1-5 is installed OR slurm-auth-none-16.05.8.1-5 is installed OR slurm-devel-16.05.8.1-5 is installed OR slurm-doc-16.05.8.1-5 is installed OR slurm-lua-16.05.8.1-5 is installed OR slurm-munge-16.05.8.1-5 is installed OR slurm-pam_slurm-16.05.8.1-5 is installed OR slurm-plugins-16.05.8.1-5 is installed OR slurm-sched-wiki-16.05.8.1-5 is installed OR slurm-slurmdbd-16.05.8.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information java-1_6_0-ibm-1.6.0_sr16.2-8.1 is installed OR java-1_6_0-ibm-fonts-1.6.0_sr16.2-8.1 is installed OR java-1_6_0-ibm-jdbc-1.6.0_sr16.2-8.1 is installed OR java-1_6_0-ibm-plugin-1.6.0_sr16.2-8.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 12 is installed AND python-requests-2.3.0-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php5-5.5.14-22.1 is installed OR php5-5.5.14-22.1 is installed OR php5-bcmath-5.5.14-22.1 is installed OR php5-bz2-5.5.14-22.1 is installed OR php5-calendar-5.5.14-22.1 is installed OR php5-ctype-5.5.14-22.1 is installed OR php5-curl-5.5.14-22.1 is installed OR php5-dba-5.5.14-22.1 is installed OR php5-dom-5.5.14-22.1 is installed OR php5-enchant-5.5.14-22.1 is installed OR php5-exif-5.5.14-22.1 is installed OR php5-fastcgi-5.5.14-22.1 is installed OR php5-fileinfo-5.5.14-22.1 is installed OR php5-fpm-5.5.14-22.1 is installed OR php5-ftp-5.5.14-22.1 is installed OR php5-gd-5.5.14-22.1 is installed OR php5-gettext-5.5.14-22.1 is installed OR php5-gmp-5.5.14-22.1 is installed OR php5-iconv-5.5.14-22.1 is installed OR php5-intl-5.5.14-22.1 is installed OR php5-json-5.5.14-22.1 is installed OR php5-ldap-5.5.14-22.1 is installed OR php5-mbstring-5.5.14-22.1 is installed OR php5-mcrypt-5.5.14-22.1 is installed OR php5-mysql-5.5.14-22.1 is installed OR php5-odbc-5.5.14-22.1 is installed OR php5-openssl-5.5.14-22.1 is installed OR php5-pcntl-5.5.14-22.1 is installed OR php5-pdo-5.5.14-22.1 is installed OR php5-pear-5.5.14-22.1 is installed OR php5-pgsql-5.5.14-22.1 is installed OR php5-pspell-5.5.14-22.1 is installed OR php5-shmop-5.5.14-22.1 is installed OR php5-snmp-5.5.14-22.1 is installed OR php5-soap-5.5.14-22.1 is installed OR php5-sockets-5.5.14-22.1 is installed OR php5-sqlite-5.5.14-22.1 is installed OR php5-suhosin-5.5.14-22.1 is installed OR php5-sysvmsg-5.5.14-22.1 is installed OR php5-sysvsem-5.5.14-22.1 is installed OR php5-sysvshm-5.5.14-22.1 is installed OR php5-tokenizer-5.5.14-22.1 is installed OR php5-wddx-5.5.14-22.1 is installed OR php5-xmlreader-5.5.14-22.1 is installed OR php5-xmlrpc-5.5.14-22.1 is installed OR php5-xmlwriter-5.5.14-22.1 is installed OR php5-xsl-5.5.14-22.1 is installed OR php5-zip-5.5.14-22.1 is installed OR php5-zlib-5.5.14-22.1 is installed
Definition Synopsis
SUSE Linux Enterprise Point of Sale 12 SP2 is installed AND Package Information salt-2016.11.4-46.10.1 is installed OR salt-minion-2016.11.4-46.10.1 is installed
Definition Synopsis
SUSE Linux Enterprise Real Time Extension 12 SP2 is installed AND Package Information cluster-md-kmp-rt-4.4.88-18.1 is installed OR cluster-network-kmp-rt-4.4.88-18.1 is installed OR dlm-kmp-rt-4.4.88-18.1 is installed OR gfs2-kmp-rt-4.4.88-18.1 is installed OR kernel-devel-rt-4.4.88-18.1 is installed OR kernel-rt-4.4.88-18.1 is installed OR kernel-rt-base-4.4.88-18.1 is installed OR kernel-rt-devel-4.4.88-18.1 is installed OR kernel-rt_debug-4.4.88-18.1 is installed OR kernel-rt_debug-devel-4.4.88-18.1 is installed OR kernel-source-rt-4.4.88-18.1 is installed OR kernel-syms-rt-4.4.88-18.1 is installed OR ocfs2-kmp-rt-4.4.88-18.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 is installed AND pyxml-0.8.4-194.19.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP1-LTSS is installed AND Package Information libfreebl3-3.15.3-0.3.1 is installed OR libfreebl3-32bit-3.15.3-0.3.1 is installed OR mozilla-nspr-4.10.2-0.3.1 is installed OR mozilla-nspr-32bit-4.10.2-0.3.1 is installed OR mozilla-nss-3.15.3-0.3.1 is installed OR mozilla-nss-32bit-3.15.3-0.3.1 is installed OR mozilla-nss-tools-3.15.3-0.3.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information java-1_6_0-ibm-1.6.0_sr9.3-0.4.1 is installed OR java-1_6_0-ibm-alsa-1.6.0_sr9.3-0.4.1 is installed OR java-1_6_0-ibm-fonts-1.6.0_sr9.3-0.4.1 is installed OR java-1_6_0-ibm-jdbc-1.6.0_sr9.3-0.4.1 is installed OR java-1_6_0-ibm-plugin-1.6.0_sr9.3-0.4.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND amavisd-new-2.7.0-18.7.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information alsa-1.0.27.2-11 is installed OR alsa-docs-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information accountsservice-0.6.35-3 is installed OR accountsservice-lang-0.6.35-3 is installed OR libaccountsservice0-0.6.35-3 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libmysqlclient18-10.0.28-17.2 is installed OR libmysqlclient18-32bit-10.0.28-17.2 is installed OR mariadb-10.0.28-17.2 is installed OR mariadb-client-10.0.28-17.2 is installed OR mariadb-errormessages-10.0.28-17.2 is installed OR mariadb-tools-10.0.28-17.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libvte9-0.28.2-19 is installed OR python-vte-0.28.2-19 is installed OR vte2-lang-0.28.2-19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-28 is installed OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 is installed AND Package Information kernel-default-3.12.61-52.77 is installed OR kernel-default-base-3.12.61-52.77 is installed OR kernel-default-devel-3.12.61-52.77 is installed OR kernel-devel-3.12.61-52.77 is installed OR kernel-macros-3.12.61-52.77 is installed OR kernel-source-3.12.61-52.77 is installed OR kernel-syms-3.12.61-52.77 is installed OR kernel-xen-3.12.61-52.77 is installed OR kernel-xen-base-3.12.61-52.77 is installed OR kernel-xen-devel-3.12.61-52.77 is installed OR kgraft-patch-3_12_61-52_77-default-1-4 is installed OR kgraft-patch-3_12_61-52_77-xen-1-4 is installed OR kgraft-patch-SLE12_Update_22-1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND unrar-5.0.14-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information tomcat-9.0.35-3.57 is installed OR tomcat-admin-webapps-9.0.35-3.57 is installed OR tomcat-el-3_0-api-9.0.35-3.57 is installed OR tomcat-jsp-2_3-api-9.0.35-3.57 is installed OR tomcat-lib-9.0.35-3.57 is installed OR tomcat-servlet-4_0-api-9.0.35-3.57 is installed OR tomcat-webapps-9.0.35-3.57 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND apache2-mod_security2-2.7.1-0.2.14.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND build-2011.10.10-0.7.10 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information ImageMagick-6.8.8.1-5 is installed OR ImageMagick-devel-6.8.8.1-5 is installed OR libMagick++-6_Q16-3-6.8.8.1-5 is installed OR libMagick++-devel-6.8.8.1-5 is installed OR perl-PerlMagick-6.8.8.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND libmms-devel-0.6.2-15 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND audiofile-devel-0.3.6-10 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND bash-lang-4.2-75 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information ImageMagick-6.8.8.1-8 is installed OR libMagick++-6_Q16-3-6.8.8.1-8 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-8 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information gstreamer-plugins-base-1.8.3-9.6 is installed OR libgstfft-1_0-0-32bit-1.8.3-9.6 is installed OR typelib-1_0-GstAudio-1_0-1.8.3-9.6 is installed OR typelib-1_0-GstPbutils-1_0-1.8.3-9.6 is installed OR typelib-1_0-GstTag-1_0-1.8.3-9.6 is installed OR typelib-1_0-GstVideo-1_0-1.8.3-9.6 is installed

BACK