Oval Definition:	oval:org.opensuse.security:def:55477
Revision Date: 2020-12-01 Version: 1 Title: Security update for glibc (Moderate) Description: glibc has been updated to fix four security issues. These security issues were fixed: - CVE-2014-7817: The wordexp function in GNU C Library (aka glibc) 2.21 did not enforce the WRDE_NOCMD flag, which allowed context-dependent attackers to execute arbitrary commands, as demonstrated by input containing '$((`...`))' (bnc#906371). - CVE-2015-1472: Heap buffer overflow in glibc swscanf (bnc#916222). - CVE-2014-9402: Denial of service in getnetbyname function (bnc#910599). - CVE-2013-7423: Getaddrinfo() writes DNS queries to random file descriptors under high load (bnc#915526). These non-security issues were fixed: - Fix infinite loop in check_pf (bsc#909053) - Restore warning about execution permission, it is still needed for noexec mounts (bsc#915985). - Don't touch user-controlled stdio locks in forked child (bsc#864081) - Don't use gcc extensions for non-gcc compilers (bsc#905313) Family: unix Class: patch Status: Reference(s): 1005258 1027575 1038564 1042892 1046191 1046554 1046555 1050751 1084515 1107424 1124194 1129403 1131361 1132879 1135170 821818 864081 905313 906371 909053 910599 914439 914441 915526 915985 916222 939567 943457 943795 CVE-2009-0946 CVE-2010-2497 CVE-2010-2805 CVE-2010-3053 CVE-2010-3054 CVE-2010-3311 CVE-2010-3814 CVE-2010-3855 CVE-2011-0226 CVE-2011-3256 CVE-2011-3439 CVE-2012-1126 CVE-2012-1127 CVE-2012-1128 CVE-2012-1129 CVE-2012-1130 CVE-2012-1131 CVE-2012-1132 CVE-2012-1133 CVE-2012-1134 CVE-2012-1135 CVE-2012-1136 CVE-2012-1137 CVE-2012-1138 CVE-2012-1139 CVE-2012-1140 CVE-2012-1141 CVE-2012-1142 CVE-2012-1143 CVE-2012-1144 CVE-2012-5668 CVE-2012-5669 CVE-2012-5670 CVE-2013-2116 CVE-2013-7423 CVE-2014-2240 CVE-2014-2241 CVE-2014-3555 CVE-2014-6414 CVE-2014-7817 CVE-2014-7821 CVE-2014-8153 CVE-2014-8169 CVE-2014-9402 CVE-2014-9638 CVE-2014-9639 CVE-2014-9656 CVE-2014-9657 CVE-2014-9658 CVE-2014-9659 CVE-2014-9660 CVE-2014-9661 CVE-2014-9662 CVE-2014-9663 CVE-2014-9664 CVE-2014-9665 CVE-2014-9666 CVE-2014-9667 CVE-2014-9668 CVE-2014-9669 CVE-2014-9670 CVE-2014-9671 CVE-2014-9672 CVE-2014-9673 CVE-2014-9674 CVE-2014-9675 CVE-2015-1472 CVE-2015-5477 CVE-2015-6749 CVE-2016-1245 CVE-2017-2636 CVE-2017-3142 CVE-2017-3143 CVE-2017-7500 CVE-2017-7501 CVE-2017-7533 CVE-2017-7645 CVE-2017-8890 CVE-2017-9242 CVE-2018-16548 CVE-2018-16838 CVE-2018-7727 CVE-2019-0161 CVE-2019-5436 SUSE-SU-2015:0526-1 SUSE-SU-2015:1305-1 SUSE-SU-2015:1775-1 SUSE-SU-2016:2618-1 SUSE-SU-2017:1736-1 SUSE-SU-2017:2072-1 SUSE-SU-2017:2089-1 SUSE-SU-2018:3884-1 SUSE-SU-2019:1157-1 SUSE-SU-2019:1477-1 SUSE-SU-2019:2009-1 SUSE-SU-2019:3341-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information augeas-1.10.1-lp150.1 is installed OR augeas-lenses-1.10.1-lp150.1 is installed OR libaugeas0-1.10.1-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND phpMyAdmin-4.9.0.1-31 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information gnutls-2.4.1-24.39.47 is installed OR libgnutls26-2.4.1-24.39.47 is installed OR libgnutls26-32bit-2.4.1-24.39.47 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND vorbis-tools-1.1.1-174 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information glibc-2.19-20 is installed OR glibc-32bit-2.19-20 is installed OR glibc-devel-2.19-20 is installed OR glibc-devel-32bit-2.19-20 is installed OR glibc-i18ndata-2.19-20 is installed OR glibc-locale-2.19-20 is installed OR glibc-locale-32bit-2.19-20 is installed OR nscd-2.19-20 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libipa_hbac0-1.13.4-34.37 is installed OR libsss_idmap0-1.13.4-34.37 is installed OR libsss_nss_idmap0-1.13.4-34.37 is installed OR libsss_sudo-1.13.4-34.37 is installed OR python-sssd-config-1.13.4-34.37 is installed OR sssd-1.13.4-34.37 is installed OR sssd-ad-1.13.4-34.37 is installed OR sssd-ipa-1.13.4-34.37 is installed OR sssd-krb5-1.13.4-34.37 is installed OR sssd-krb5-common-1.13.4-34.37 is installed OR sssd-ldap-1.13.4-34.37 is installed OR sssd-proxy-1.13.4-34.37 is installed OR sssd-tools-1.13.4-34.37 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information python3-rpm-4.11.2-16.21 is installed OR rpm-4.11.2-16.21 is installed OR rpm-32bit-4.11.2-16.21 is installed OR rpm-build-4.11.2-16.21 is installed OR rpm-python-4.11.2-16.21 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND autofs-5.0.9-8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information bind-9.9.9P1-62 is installed OR bind-chrootenv-9.9.9P1-62 is installed OR bind-devel-9.9.9P1-62 is installed OR bind-doc-9.9.9P1-62 is installed OR bind-libs-9.9.9P1-62 is installed OR bind-libs-32bit-9.9.9P1-62 is installed OR bind-utils-9.9.9P1-62 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information fontconfig-2.11.1-7 is installed OR fontconfig-32bit-2.11.1-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information kernel-firmware-20170530-21.28 is installed OR ucode-amd-20170530-21.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information xen-4.7.6_06-43.51 is installed OR xen-doc-html-4.7.6_06-43.51 is installed OR xen-libs-4.7.6_06-43.51 is installed OR xen-libs-32bit-4.7.6_06-43.51 is installed OR xen-tools-4.7.6_06-43.51 is installed OR xen-tools-domU-4.7.6_06-43.51 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_103-92_53-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_16-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information ecryptfs-utils-103-7 is installed OR ecryptfs-utils-32bit-103-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libecpg6-10.12-1.18 is installed OR libpq5-10.12-1.18 is installed OR libpq5-32bit-10.12-1.18 is installed OR postgresql10-10.12-1.18 is installed OR postgresql10-contrib-10.12-1.18 is installed OR postgresql10-docs-10.12-1.18 is installed OR postgresql10-libs-10.12-1.18 is installed OR postgresql10-plperl-10.12-1.18 is installed OR postgresql10-plpython-10.12-1.18 is installed OR postgresql10-pltcl-10.12-1.18 is installed OR postgresql10-server-10.12-1.18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_162-94_69-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_21-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND shadow-4.2.1-27.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information krb5-1.12.5-40.28 is installed OR krb5-32bit-1.12.5-40.28 is installed OR krb5-client-1.12.5-40.28 is installed OR krb5-doc-1.12.5-40.28 is installed OR krb5-plugin-kdb-ldap-1.12.5-40.28 is installed OR krb5-plugin-preauth-otp-1.12.5-40.28 is installed OR krb5-plugin-preauth-pkinit-1.12.5-40.28 is installed OR krb5-server-1.12.5-40.28 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information openstack-neutron-7.0.4~a0~dev18-1 is installed OR openstack-neutron-dhcp-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-ha-tool-7.0.4~a0~dev18-1 is installed OR openstack-neutron-l3-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-linuxbridge-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-metadata-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-metering-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-mlnx-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-nvsd-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-openvswitch-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-plugin-cisco-7.0.2~a0~dev63-1 is installed OR openstack-neutron-restproxy-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-server-7.0.4~a0~dev18-1 is installed OR python-neutron-7.0.4~a0~dev18-1 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information kernel-default-4.4.121-92.85 is installed OR kernel-default-base-4.4.121-92.85 is installed OR kernel-default-devel-4.4.121-92.85 is installed OR kernel-default-man-4.4.121-92.85 is installed OR kernel-devel-4.4.121-92.85 is installed OR kernel-macros-4.4.121-92.85 is installed OR kernel-source-4.4.121-92.85 is installed OR kernel-syms-4.4.121-92.85 is installed OR kgraft-patch-4_4_121-92_85-default-1-3.5 is installed OR kgraft-patch-SLE12-SP2_Update_23-1-3.5 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libgcrypt-1.6.1-16.68 is installed OR libgcrypt20-1.6.1-16.68 is installed OR libgcrypt20-32bit-1.6.1-16.68 is installed OR libgcrypt20-hmac-1.6.1-16.68 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed
BACK