Oval Definition:oval:org.opensuse.security:def:5483
Revision Date:2020-12-02Version:1
Title:Security update for grub2 (Important)
Description:

This update for grub2 fixes the following issues:

- Fix for CVE-2020-10713 (bsc#1168994) - Fix for CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311 (bsc#1173812) - Fix for CVE-2020-15706 (bsc#1174463) - Fix for CVE-2020-15707 (bsc#1174570)

- Use overflow checking primitives where the arithmetic expression for buffer allocations may include unvalidated data - Use grub_calloc for overflow check and return NULL when it would occur - Use gcc-9 compiler for overflow check builtins - Backport gcc-9 build fixes
Family:unixClass:patch
Status:Reference(s):1168994
1173812
1174463
1174570
1175476
1175674
CVE-2004-2771
CVE-2008-4225
CVE-2008-4226
CVE-2008-4409
CVE-2010-2947
CVE-2010-4494
CVE-2010-4540
CVE-2010-4541
CVE-2010-4542
CVE-2010-4543
CVE-2011-1944
CVE-2011-2054
CVE-2011-2054
CVE-2011-2896
CVE-2012-3236
CVE-2012-5134
CVE-2012-5576
CVE-2013-0338
CVE-2013-1969
CVE-2013-4326
CVE-2013-4509
CVE-2014-0191
CVE-2014-1545
CVE-2014-3660
CVE-2014-3686
CVE-2014-7844
CVE-2014-8137
CVE-2014-8138
CVE-2014-8157
CVE-2014-8158
CVE-2014-9029
CVE-2015-0210
CVE-2015-0848
CVE-2015-1038
CVE-2015-1819
CVE-2015-1863
CVE-2015-4588
CVE-2015-4695
CVE-2015-4696
CVE-2015-5312
CVE-2015-7183
CVE-2015-7497
CVE-2015-7498
CVE-2015-7499
CVE-2015-7500
CVE-2015-7941
CVE-2015-7942
CVE-2015-8035
CVE-2015-8241
CVE-2015-8242
CVE-2015-8317
CVE-2015-8710
CVE-2016-1762
CVE-2016-1833
CVE-2016-1834
CVE-2016-1835
CVE-2016-1836
CVE-2016-1837
CVE-2016-1838
CVE-2016-1839
CVE-2016-1840
CVE-2016-3627
CVE-2016-3705
CVE-2016-4483
CVE-2016-4994
CVE-2019-14562
CVE-2020-10713
CVE-2020-14308
CVE-2020-14309
CVE-2020-14310
CVE-2020-14311
CVE-2020-15706
CVE-2020-15707
SUSE-SU-2020:2073-1
SUSE-SU-2020:2713-1
Platform(s):openSUSE 13.1
openSUSE 13.1 NonFree
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise for SAP 12 SP1
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12 SP3
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Real Time Extension 12 SP1
SUSE Linux Enterprise Real Time Extension 12 SP2
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Software Development Kit 12 SP4
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 12 SP2
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND Package Information
  • openstack-neutron-2014.2.4~a0~dev103-10.3 is installed
  • OR openstack-neutron-dhcp-agent-2014.2.4~a0~dev103-10.3 is installed
  • OR openstack-neutron-ha-tool-2014.2.4~a0~dev103-10.3 is installed
  • OR openstack-neutron-l3-agent-2014.2.4~a0~dev103-10.3 is installed
  • OR openstack-neutron-lbaas-agent-2014.2.4~a0~dev103-10.3 is installed
  • OR openstack-neutron-linuxbridge-agent-2014.2.4~a0~dev103-10.3 is installed
  • OR openstack-neutron-metadata-agent-2014.2.4~a0~dev103-10.3 is installed
  • OR openstack-neutron-metering-agent-2014.2.4~a0~dev103-10.3 is installed
  • OR openstack-neutron-openvswitch-agent-2014.2.4~a0~dev103-10.3 is installed
  • OR openstack-neutron-vpn-agent-2014.2.4~a0~dev103-10.3 is installed
  • OR openstack-nova-2014.2.4~a0~dev80-14.1 is installed
  • OR openstack-nova-compute-2014.2.4~a0~dev80-14.1 is installed
  • OR python-neutron-2014.2.4~a0~dev103-10.3 is installed
  • OR python-nova-2014.2.4~a0~dev80-14.1 is installed
  • OR python-python-memcached-1.54-2.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND xalan-j2-2.7.0-217.26.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • xorg-x11-libX11-7.4-5.11.15.1 is installed
  • OR xorg-x11-libX11-32bit-7.4-5.11.15.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • libsoup-2_4-1-2.44.2-1 is installed
  • OR libsoup-2_4-1-32bit-2.44.2-1 is installed
  • OR libsoup-lang-2.44.2-1 is installed
  • OR typelib-1_0-Soup-2_4-2.44.2-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • gimp-2.8.18-4 is installed
  • OR gimp-lang-2.8.18-4 is installed
  • OR gimp-plugins-python-2.8.18-4 is installed
  • OR libgimp-2_0-0-2.8.18-4 is installed
  • OR libgimpui-2_0-0-2.8.18-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • cpp48-4.8.5-30 is installed
  • OR gcc48-4.8.5-30 is installed
  • OR gcc48-32bit-4.8.5-30 is installed
  • OR gcc48-c++-4.8.5-30 is installed
  • OR gcc48-gij-4.8.5-30 is installed
  • OR gcc48-gij-32bit-4.8.5-30 is installed
  • OR gcc48-info-4.8.5-30 is installed
  • OR libasan0-4.8.5-30 is installed
  • OR libasan0-32bit-4.8.5-30 is installed
  • OR libgcj48-4.8.5-30 is installed
  • OR libgcj48-32bit-4.8.5-30 is installed
  • OR libgcj48-jar-4.8.5-30 is installed
  • OR libgcj_bc1-4.8.5-30 is installed
  • OR libstdc++48-devel-4.8.5-30 is installed
  • OR libstdc++48-devel-32bit-4.8.5-30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND autofs-5.0.9-28.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_51-52_39-default-4-2.2 is installed
  • OR kgraft-patch-3_12_51-52_39-xen-4-2.2 is installed
  • OR kgraft-patch-SLE12_Update_11-4-2.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 SP1 is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.144-27.5.3 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.144-27.5.3 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.144-27.5.3 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.144-27.5.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND ruby2.1-rubygem-bundler-1.7.3-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND gzip-1.10-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 SP3 is installed
  • AND Package Information
  • kgraft-patch-4_4_103-6_33-default-3-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_6-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
  • AND python-pycrypto-2.6.1-10.3.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 12 is installed
  • AND sles11sp4-docker-image-1.1.1-20160304104123 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 12 is installed
  • AND Package Information
  • cups154-1.5.4-9.1 is installed
  • OR cups154-client-1.5.4-9.1 is installed
  • OR cups154-filters-1.5.4-9.1 is installed
  • OR cups154-libs-1.5.4-9.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 12 is installed
  • AND python-setuptools-1.1.7-7.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND Package Information
  • apache2-mod_php5-5.5.14-7.1 is installed
  • OR php5-5.5.14-7.1 is installed
  • OR php5-bcmath-5.5.14-7.1 is installed
  • OR php5-bz2-5.5.14-7.1 is installed
  • OR php5-calendar-5.5.14-7.1 is installed
  • OR php5-ctype-5.5.14-7.1 is installed
  • OR php5-curl-5.5.14-7.1 is installed
  • OR php5-dba-5.5.14-7.1 is installed
  • OR php5-dom-5.5.14-7.1 is installed
  • OR php5-enchant-5.5.14-7.1 is installed
  • OR php5-exif-5.5.14-7.1 is installed
  • OR php5-fastcgi-5.5.14-7.1 is installed
  • OR php5-fileinfo-5.5.14-7.1 is installed
  • OR php5-fpm-5.5.14-7.1 is installed
  • OR php5-ftp-5.5.14-7.1 is installed
  • OR php5-gd-5.5.14-7.1 is installed
  • OR php5-gettext-5.5.14-7.1 is installed
  • OR php5-gmp-5.5.14-7.1 is installed
  • OR php5-iconv-5.5.14-7.1 is installed
  • OR php5-intl-5.5.14-7.1 is installed
  • OR php5-json-5.5.14-7.1 is installed
  • OR php5-ldap-5.5.14-7.1 is installed
  • OR php5-mbstring-5.5.14-7.1 is installed
  • OR php5-mcrypt-5.5.14-7.1 is installed
  • OR php5-mysql-5.5.14-7.1 is installed
  • OR php5-odbc-5.5.14-7.1 is installed
  • OR php5-openssl-5.5.14-7.1 is installed
  • OR php5-pcntl-5.5.14-7.1 is installed
  • OR php5-pdo-5.5.14-7.1 is installed
  • OR php5-pear-5.5.14-7.1 is installed
  • OR php5-pgsql-5.5.14-7.1 is installed
  • OR php5-pspell-5.5.14-7.1 is installed
  • OR php5-shmop-5.5.14-7.1 is installed
  • OR php5-snmp-5.5.14-7.1 is installed
  • OR php5-soap-5.5.14-7.1 is installed
  • OR php5-sockets-5.5.14-7.1 is installed
  • OR php5-sqlite-5.5.14-7.1 is installed
  • OR php5-suhosin-5.5.14-7.1 is installed
  • OR php5-sysvmsg-5.5.14-7.1 is installed
  • OR php5-sysvsem-5.5.14-7.1 is installed
  • OR php5-sysvshm-5.5.14-7.1 is installed
  • OR php5-tokenizer-5.5.14-7.1 is installed
  • OR php5-wddx-5.5.14-7.1 is installed
  • OR php5-xmlreader-5.5.14-7.1 is installed
  • OR php5-xmlrpc-5.5.14-7.1 is installed
  • OR php5-xmlwriter-5.5.14-7.1 is installed
  • OR php5-xsl-5.5.14-7.1 is installed
  • OR php5-zip-5.5.14-7.1 is installed
  • OR php5-zlib-5.5.14-7.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Real Time Extension 12 SP1 is installed
  • AND Package Information
  • kernel-compute-3.12.69-60.30.1 is installed
  • OR kernel-compute-base-3.12.69-60.30.1 is installed
  • OR kernel-compute-devel-3.12.69-60.30.1 is installed
  • OR kernel-compute_debug-3.12.69-60.30.1 is installed
  • OR kernel-compute_debug-devel-3.12.69-60.30.1 is installed
  • OR kernel-devel-rt-3.12.69-60.30.1 is installed
  • OR kernel-rt-3.12.69-60.30.1 is installed
  • OR kernel-rt-base-3.12.69-60.30.1 is installed
  • OR kernel-rt-devel-3.12.69-60.30.1 is installed
  • OR kernel-rt_debug-3.12.69-60.30.1 is installed
  • OR kernel-rt_debug-devel-3.12.69-60.30.1 is installed
  • OR kernel-source-rt-3.12.69-60.30.1 is installed
  • OR kernel-syms-rt-3.12.69-60.30.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Real Time Extension 12 SP2 is installed
  • AND Package Information
  • cluster-md-kmp-rt-4.4.88-18.1 is installed
  • OR cluster-network-kmp-rt-4.4.88-18.1 is installed
  • OR dlm-kmp-rt-4.4.88-18.1 is installed
  • OR gfs2-kmp-rt-4.4.88-18.1 is installed
  • OR kernel-devel-rt-4.4.88-18.1 is installed
  • OR kernel-rt-4.4.88-18.1 is installed
  • OR kernel-rt-base-4.4.88-18.1 is installed
  • OR kernel-rt-devel-4.4.88-18.1 is installed
  • OR kernel-rt_debug-4.4.88-18.1 is installed
  • OR kernel-rt_debug-devel-4.4.88-18.1 is installed
  • OR kernel-source-rt-4.4.88-18.1 is installed
  • OR kernel-syms-rt-4.4.88-18.1 is installed
  • OR ocfs2-kmp-rt-4.4.88-18.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 is installed
  • AND Package Information
  • xerces-j2-2.8.1-238.27.1 is installed
  • OR xerces-j2-xml-apis-2.8.1-238.27.1 is installed
  • OR xerces-j2-xml-resolver-2.8.1-238.27.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP1-LTSS is installed
  • AND xinetd-2.3.14-130.133.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND LibVNCServer-0.9.1-154.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND acpid-1.0.6-91.25.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND Package Information
  • MozillaFirefox-31.7.0esr-0.8.1 is installed
  • OR MozillaFirefox-translations-31.7.0esr-0.8.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • MozillaFirefox-31.1.0esr-1 is installed
  • OR MozillaFirefox-translations-31.1.0esr-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • apache-commons-daemon-1.0.15-4 is installed
  • OR apache-commons-daemon-javadoc-1.0.15-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • openvpn-2.3.8-16.17.1 is installed
  • OR openvpn-auth-pam-plugin-2.3.8-16.17.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-47.1 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-47.1 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-47.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND mipv6d-2.0.2.umip.0.4-19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • apache2-2.4.23-29.24 is installed
  • OR apache2-doc-2.4.23-29.24 is installed
  • OR apache2-example-pages-2.4.23-29.24 is installed
  • OR apache2-prefork-2.4.23-29.24 is installed
  • OR apache2-utils-2.4.23-29.24 is installed
  • OR apache2-worker-2.4.23-29.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • alsa-1.0.27.2-11 is installed
  • OR alsa-docs-1.0.27.2-11 is installed
  • OR libasound2-1.0.27.2-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed
  • AND Package Information
  • xen-4.5.5_12-22.18 is installed
  • OR xen-doc-html-4.5.5_12-22.18 is installed
  • OR xen-kmp-default-4.5.5_12_k3.12.74_60.64.45-22.18 is installed
  • OR xen-libs-4.5.5_12-22.18 is installed
  • OR xen-libs-32bit-4.5.5_12-22.18 is installed
  • OR xen-tools-4.5.5_12-22.18 is installed
  • OR xen-tools-domU-4.5.5_12-22.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • grub2-2.02-19.48 is installed
  • OR grub2-i386-pc-2.02-19.48 is installed
  • OR grub2-powerpc-ieee1275-2.02-19.48 is installed
  • OR grub2-snapper-plugin-2.02-19.48 is installed
  • OR grub2-systemd-sleep-plugin-2.02-19.48 is installed
  • OR grub2-x86_64-efi-2.02-19.48 is installed
  • OR grub2-x86_64-xen-2.02-19.48 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP2 is installed
  • AND Package Information
  • Mesa-devel-7.11.2-0.9.1 is installed
  • OR Mesa-devel-32bit-7.11.2-0.9.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND Package Information
  • empathy-2.28.2-0.13.49 is installed
  • OR empathy-devel-2.28.2-0.13.49 is installed
  • OR empathy-lang-2.28.2-0.13.49 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND Package Information
  • ant-jmf-1.9.4-1 is installed
  • OR ant-scripts-1.9.4-1 is installed
  • OR ant-swing-1.9.4-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • AND Package Information
  • libpcscspy0-1.8.10-6 is installed
  • OR pcsc-lite-devel-1.8.10-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
  • AND aaa_base-malloccheck-13.2+git20140911.61c1681-38.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND Package Information
  • colord-1.1.7-2 is installed
  • OR colord-lang-1.1.7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND bash-lang-4.2-75 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND Package Information
  • libmysqlclient_r18-10.0.28-17.2 is installed
  • OR libmysqlclient_r18-32bit-10.0.28-17.2 is installed
  • OR mariadb-10.0.28-17.2 is installed
    • BACK