Oval Definition:	oval:org.opensuse.security:def:55719
Revision Date: 2020-12-01 Version: 1 Title: Security update for systemd (Moderate) Description: This update for SystemD provides fixes and enhancements. The following security issue has been fixed: - Don't allow read access to journal files to users. (bsc#972612, CVE-2014-9770, CVE-2015-8842) The following non-security issues have been fixed: - Restore initrd-udevadm-cleanup-db.service. (bsc#978275, bsc#976766) - Incorrect permissions set after boot on journal files. (bsc#973848) - Exclude device-mapper from block device ownership event locking. (bsc#972727) - Explicitly set mode for /run/log. - Don't apply sgid and executable bit to journal files, only the directories they are contained in. - Add ability to mask access mode by pre-existing access mode on files/directories. - No need to pass --all if inactive is explicitly requested in list-units. (bsc#967122) - Fix automount option and don't start associated mount unit at boot. (bsc#970423) - Support more than just power-gpio-key. (fate#318444, bsc#970860) - Add standard gpio power button support. (fate#318444, bsc#970860) - Downgrade warnings about wanted unit which are not found. (bsc#960158) - Shorten hostname before checking for trailing dot. (bsc#965897) - Remove WorkingDirectory parameter from emergency, rescue and console-shell.service. (bsc#959886) - Don't ship boot.udev and systemd-journald.init anymore. - Revert 'log: honour the kernel's quiet cmdline argument'. (bsc#963230) Family: unix Class: patch Status: Reference(s): 1001600 1060354 1060355 1060360 1060361 1060362 1060364 1063671 1064392 1066471 1066472 1089524 1096974 1096984 1097108 1099306 1099310 1126117 1126118 1126119 1134078 1136572 1158763 826427 833278 833605 840826 847506 847710 869101 870532 916856 916857 916858 916859 916861 916863 916864 916865 916870 916871 916872 916873 916874 916879 916881 959886 960158 963230 965897 967122 970423 970860 972612 972727 973848 974655 976766 978275 980722 984858 985217 986251 991616 994989 CVE-2012-0247 CVE-2012-0248 CVE-2012-1185 CVE-2012-1186 CVE-2013-5018 CVE-2014-2532 CVE-2014-8139 CVE-2014-8140 CVE-2014-8141 CVE-2014-8354 CVE-2014-8355 CVE-2014-8562 CVE-2014-8716 CVE-2014-9636 CVE-2014-9656 CVE-2014-9657 CVE-2014-9658 CVE-2014-9659 CVE-2014-9660 CVE-2014-9661 CVE-2014-9662 CVE-2014-9663 CVE-2014-9664 CVE-2014-9665 CVE-2014-9666 CVE-2014-9667 CVE-2014-9668 CVE-2014-9669 CVE-2014-9670 CVE-2014-9671 CVE-2014-9672 CVE-2014-9673 CVE-2014-9674 CVE-2014-9675 CVE-2014-9770 CVE-2015-8842 CVE-2016-3477 CVE-2016-3521 CVE-2016-3615 CVE-2016-4912 CVE-2016-5440 CVE-2016-6252 CVE-2016-7567 CVE-2017-13080 CVE-2017-14491 CVE-2017-14492 CVE-2017-14493 CVE-2017-14494 CVE-2017-14495 CVE-2017-14496 CVE-2017-15649 CVE-2018-10360 CVE-2018-10853 CVE-2018-3646 CVE-2019-18900 CVE-2019-6470 CVE-2019-8905 CVE-2019-8906 CVE-2019-8907 SUSE-SU-2015:0463-1 SUSE-SU-2016:1351-1 SUSE-SU-2016:2218-1 SUSE-SU-2016:2661-1 SUSE-SU-2017:2618-1 SUSE-SU-2017:3153-1 SUSE-SU-2018:1995-1 SUSE-SU-2018:2348-1 SUSE-SU-2018:2368-1 SUSE-SU-2019:0839-1 SUSE-SU-2019:2727-1 SUSE-SU-2020:0079-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information libaudit1-2.8.1-lp150.3 is installed OR libaudit1-32bit-2.8.1-lp150.3 is installed OR libauparse0-2.8.1-lp150.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information SDL2-2.0.8-lp151.4.3 is installed OR libSDL2-2_0-0-2.0.8-lp151.4.3 is installed OR libSDL2-2_0-0-32bit-2.0.8-lp151.4.3 is installed OR libSDL2-devel-2.0.8-lp151.4.3 is installed OR libSDL2-devel-32bit-2.0.8-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information strongswan-4.4.0-6.21 is installed OR strongswan-doc-4.4.0-6.21 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information freetype2-2.3.7-25.34 is installed OR freetype2-32bit-2.3.7-25.34 is installed OR ft2demos-2.3.7-25.34 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libgudev-1_0-0-210-70.48 is installed OR libgudev-1_0-0-32bit-210-70.48 is installed OR libudev1-210-70.48 is installed OR libudev1-32bit-210-70.48 is installed OR systemd-210-70.48 is installed OR systemd-32bit-210-70.48 is installed OR systemd-bash-completion-210-70.48 is installed OR systemd-sysvinit-210-70.48 is installed OR udev-210-70.48 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libmysqlclient18-10.0.26-9 is installed OR libmysqlclient18-32bit-10.0.26-9 is installed OR libmysqlclient_r18-10.0.26-9 is installed OR libmysqlclient_r18-32bit-10.0.26-9 is installed OR mariadb-10.0.26-9 is installed OR mariadb-client-10.0.26-9 is installed OR mariadb-errormessages-10.0.26-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information dhcp-4.3.3-10.19 is installed OR dhcp-client-4.3.3-10.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libMagickCore-6_Q16-1-6.8.8.1-8 is installed OR libMagickWand-6_Q16-1-6.8.8.1-8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_45-default-6-2 is installed OR kgraft-patch-3_12_74-60_64_45-xen-6-2 is installed OR kgraft-patch-SLE12-SP1_Update_16-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information expat-2.1.0-17 is installed OR libexpat1-2.1.0-17 is installed OR libexpat1-32bit-2.1.0-17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information perl-5.18.2-12.14 is installed OR perl-32bit-5.18.2-12.14 is installed OR perl-base-5.18.2-12.14 is installed OR perl-doc-5.18.2-12.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND ucode-intel-20190507-13.41 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information MozillaFirefox-52.8.1esr-109.34 is installed OR MozillaFirefox-devel-52.8.1esr-109.34 is installed OR MozillaFirefox-translations-52.8.1esr-109.34 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND radvd-1.9.7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information cups-1.7.5-20.29 is installed OR cups-client-1.7.5-20.29 is installed OR cups-libs-1.7.5-20.29 is installed OR cups-libs-32bit-1.7.5-20.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information glibc-2.22-62.22 is installed OR glibc-32bit-2.22-62.22 is installed OR glibc-devel-2.22-62.22 is installed OR glibc-devel-32bit-2.22-62.22 is installed OR glibc-html-2.22-62.22 is installed OR glibc-i18ndata-2.22-62.22 is installed OR glibc-info-2.22-62.22 is installed OR glibc-locale-2.22-62.22 is installed OR glibc-locale-32bit-2.22-62.22 is installed OR glibc-profile-2.22-62.22 is installed OR glibc-profile-32bit-2.22-62.22 is installed OR nscd-2.22-62.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information krb5-appl-1.0.3-3.3 is installed OR krb5-appl-clients-1.0.3-3.3 is installed OR krb5-appl-servers-1.0.3-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND python-urllib3-1.22-7.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libX11-6-1.6.2-12.5 is installed OR libX11-6-32bit-1.6.2-12.5 is installed OR libX11-data-1.6.2-12.5 is installed OR libX11-xcb1-1.6.2-12.5 is installed OR libX11-xcb1-32bit-1.6.2-12.5 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information dnsmasq-2.78-18.3 is installed OR dnsmasq-utils-2.78-18.3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information kernel-default-4.4.121-92.85 is installed OR kernel-default-base-4.4.121-92.85 is installed OR kernel-default-devel-4.4.121-92.85 is installed OR kernel-default-man-4.4.121-92.85 is installed OR kernel-devel-4.4.121-92.85 is installed OR kernel-macros-4.4.121-92.85 is installed OR kernel-source-4.4.121-92.85 is installed OR kernel-syms-4.4.121-92.85 is installed OR kgraft-patch-4_4_121-92_85-default-1-3.5 is installed OR kgraft-patch-SLE12-SP2_Update_23-1-3.5 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libseccomp-2.4.1-11.3 is installed OR libseccomp2-2.4.1-11.3 is installed OR libseccomp2-32bit-2.4.1-11.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND squid-3.5.21-26.23 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND python-Django1-1.11.23-3.9 is installed
BACK