Revision Date: | 2020-12-01 | Version: | 1 |
Title: | Security update for openssh (Moderate) |
Description: |
This update for OpenSSH fixes three security issues.
These security issues were fixed: - CVE-2016-3115: Sanitise input for xauth(1) (bsc#970632) - CVE-2016-1908: Prevent X11 SECURITY circumvention when forwarding X11 connections (bsc#962313) - CVE-2015-8325: Ignore PAM environment when using login (bsc#975865)
These non-security issues were fixed: - Fix help output of sftp (bsc#945493) - Restarting openssh with openssh-fips installed was not working correctly (bsc#945484) - Fix crashes when /proc is not available in the chroot (bsc#947458) - Correctly parse GSSAPI KEX algorithms (bsc#961368) - More verbose FIPS mode/CC related documentation in README.FIPS (bsc#965576, bsc#960414) - Fix PRNG re-seeding (bsc#960414, bsc#729190) - Disable DH parameters under 2048 bits by default and allow lowering the limit back to the RFC 4419 specified minimum through an option (bsc#932483, bsc#948902)
|
Family: | unix | Class: | patch |
Status: | | Reference(s): | 1001900 1004924 1005274 1027519 1060445 1061005 1063671 1064392 1066471 1066472 1079730 1095242 1096224 1097108 1097521 1097522 1098744 1099306 1125330 1127987 1129821 1130262 1141322 1151178 1158527 1159819 673532 729190 806919 806921 817349 817350 903649 905118 914309 916549 931452 932483 936695 937096 938746 943006 943010 945484 945493 947458 948902 958342 960414 961368 962313 965576 970632 975865 984060 CVE-2011-0904 CVE-2011-0905 CVE-2011-1164 CVE-2013-1775 CVE-2013-1776 CVE-2013-2776 CVE-2013-2777 CVE-2015-0295 CVE-2015-1858 CVE-2015-1859 CVE-2015-1860 CVE-2015-2059 CVE-2015-3202 CVE-2015-4000 CVE-2015-5352 CVE-2015-5600 CVE-2015-6563 CVE-2015-6564 CVE-2015-8325 CVE-2016-1908 CVE-2016-3115 CVE-2016-4971 CVE-2016-6911 CVE-2016-7568 CVE-2016-8670 CVE-2017-13080 CVE-2017-15649 CVE-2017-7793 CVE-2017-7805 CVE-2017-7810 CVE-2017-7814 CVE-2017-7818 CVE-2017-7819 CVE-2017-7823 CVE-2017-7824 CVE-2017-7825 CVE-2018-10853 CVE-2018-11806 CVE-2018-12617 CVE-2018-12891 CVE-2018-12893 CVE-2018-18335 CVE-2018-18356 CVE-2018-18506 CVE-2018-3646 CVE-2018-3665 CVE-2019-11745 CVE-2019-16239 CVE-2019-17006 CVE-2019-5785 CVE-2019-9788 CVE-2019-9790 CVE-2019-9791 CVE-2019-9792 CVE-2019-9793 CVE-2019-9794 CVE-2019-9795 CVE-2019-9796 CVE-2019-9801 CVE-2019-9810 CVE-2019-9813 SUSE-SU-2015:1024-1 SUSE-SU-2015:1581-1 SUSE-SU-2016:1386-1 SUSE-SU-2016:2226-1 SUSE-SU-2016:2668-1 SUSE-SU-2017:2688-1 SUSE-SU-2017:3145-1 SUSE-SU-2018:2069-1 SUSE-SU-2018:2363-1 SUSE-SU-2018:2368-1 SUSE-SU-2019:0852-1 SUSE-SU-2019:2744-1 SUSE-SU-2020:0088-1
|
Platform(s): | openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9
| Product(s): | |
Definition Synopsis |
openSUSE Leap 15.0 is installed AND Package Information
ImageMagick-7.0.7.29-lp150.1 is installed
OR libMagick++-7_Q16HDRI4-7.0.7.29-lp150.1 is installed
OR libMagickCore-7_Q16HDRI6-7.0.7.29-lp150.1 is installed
OR libMagickWand-7_Q16HDRI6-7.0.7.29-lp150.1 is installed
|
Definition Synopsis |
openSUSE Leap 15.1 is installed
AND ansible-2.8.1-12 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 11 SP2 is installed
AND sudo-1.7.6p2-0.2.12 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 11 SP3 is installed
AND Package Information
fuse-2.8.7-0.11 is installed
OR libfuse2-2.8.7-0.11 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 12 is installed
AND Package Information
openssh-6.6p1-42 is installed
OR openssh-askpass-gnome-6.6p1-42 is installed
OR openssh-helpers-6.6p1-42 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 12 SP1 is installed
AND wget-1.14-10 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 12 SP4 is installed
AND Package Information
openconnect-7.08-3.4 is installed
OR openconnect-lang-7.08-3.4 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP1 is installed
AND Package Information
libQt5Core5-5.3.2-1 is installed
OR libQt5DBus5-5.3.2-1 is installed
OR libQt5Gui5-5.3.2-1 is installed
OR libQt5Widgets5-5.3.2-1 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP1-LTSS is installed
AND Package Information
kgraft-patch-3_12_74-60_64_40-default-6-2 is installed
OR kgraft-patch-3_12_74-60_64_40-xen-6-2 is installed
OR kgraft-patch-SLE12-SP1_Update_15-6-2 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2 is installed
AND Package Information
fetchmail-6.3.26-12 is installed
OR fetchmailconf-6.3.26-12 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2-BCL is installed
AND shadow-4.2.1-27.9 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
AND Package Information
libsystemd0-228-150.66 is installed
OR libsystemd0-32bit-228-150.66 is installed
OR libudev-devel-228-150.66 is installed
OR libudev1-228-150.66 is installed
OR libudev1-32bit-228-150.66 is installed
OR systemd-228-150.66 is installed
OR systemd-32bit-228-150.66 is installed
OR systemd-bash-completion-228-150.66 is installed
OR systemd-sysvinit-228-150.66 is installed
OR udev-228-150.66 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2-LTSS is installed
AND Package Information
kernel-default-4.4.121-92.85 is installed
OR kernel-default-base-4.4.121-92.85 is installed
OR kernel-default-devel-4.4.121-92.85 is installed
OR kernel-default-man-4.4.121-92.85 is installed
OR kernel-devel-4.4.121-92.85 is installed
OR kernel-macros-4.4.121-92.85 is installed
OR kernel-source-4.4.121-92.85 is installed
OR kernel-syms-4.4.121-92.85 is installed
OR kgraft-patch-4_4_121-92_85-default-1-3.5 is installed
OR kgraft-patch-SLE12-SP2_Update_23-1-3.5 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3 is installed
AND Package Information
res-signingkeys-3.0.25-48 is installed
OR smt-3.0.25-48 is installed
OR smt-support-3.0.25-48 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3-BCL is installed
AND Package Information
pam_radius-1.3.16-239.4 is installed
OR pam_radius-32bit-1.3.16-239.4 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
AND Package Information
bzip2-1.0.6-30.8 is installed
OR bzip2-doc-1.0.6-30.8 is installed
OR libbz2-1-1.0.6-30.8 is installed
OR libbz2-1-32bit-1.0.6-30.8 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3-LTSS is installed
AND Package Information
libexif-0.6.22-8.9 is installed
OR libexif12-0.6.22-8.9 is installed
OR libexif12-32bit-0.6.22-8.9 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
AND Package Information
libvirt-3.3.0-5.40 is installed
OR libvirt-admin-3.3.0-5.40 is installed
OR libvirt-client-3.3.0-5.40 is installed
OR libvirt-daemon-3.3.0-5.40 is installed
OR libvirt-daemon-config-network-3.3.0-5.40 is installed
OR libvirt-daemon-config-nwfilter-3.3.0-5.40 is installed
OR libvirt-daemon-driver-interface-3.3.0-5.40 is installed
OR libvirt-daemon-driver-libxl-3.3.0-5.40 is installed
OR libvirt-daemon-driver-lxc-3.3.0-5.40 is installed
OR libvirt-daemon-driver-network-3.3.0-5.40 is installed
OR libvirt-daemon-driver-nodedev-3.3.0-5.40 is installed
OR libvirt-daemon-driver-nwfilter-3.3.0-5.40 is installed
OR libvirt-daemon-driver-qemu-3.3.0-5.40 is installed
OR libvirt-daemon-driver-secret-3.3.0-5.40 is installed
OR libvirt-daemon-driver-storage-3.3.0-5.40 is installed
OR libvirt-daemon-driver-storage-core-3.3.0-5.40 is installed
OR libvirt-daemon-driver-storage-disk-3.3.0-5.40 is installed
OR libvirt-daemon-driver-storage-iscsi-3.3.0-5.40 is installed
OR libvirt-daemon-driver-storage-logical-3.3.0-5.40 is installed
OR libvirt-daemon-driver-storage-mpath-3.3.0-5.40 is installed
OR libvirt-daemon-driver-storage-rbd-3.3.0-5.40 is installed
OR libvirt-daemon-driver-storage-scsi-3.3.0-5.40 is installed
OR libvirt-daemon-hooks-3.3.0-5.40 is installed
OR libvirt-daemon-lxc-3.3.0-5.40 is installed
OR libvirt-daemon-qemu-3.3.0-5.40 is installed
OR libvirt-daemon-xen-3.3.0-5.40 is installed
OR libvirt-doc-3.3.0-5.40 is installed
OR libvirt-libs-3.3.0-5.40 is installed
OR libvirt-lock-sanlock-3.3.0-5.40 is installed
OR libvirt-nss-3.3.0-5.40 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP4 is installed
AND Package Information
libXRes1-1.0.7-3 is installed
OR libXRes1-32bit-1.0.7-3 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud 6 is installed
AND Package Information
MozillaFirefox-52.4.0esr-109.6 is installed
OR MozillaFirefox-devel-52.4.0esr-109.6 is installed
OR MozillaFirefox-translations-52.4.0esr-109.6 is installed
OR libfreebl3-3.29.5-58.3 is installed
OR libfreebl3-32bit-3.29.5-58.3 is installed
OR libfreebl3-hmac-3.29.5-58.3 is installed
OR libfreebl3-hmac-32bit-3.29.5-58.3 is installed
OR libsoftokn3-3.29.5-58.3 is installed
OR libsoftokn3-32bit-3.29.5-58.3 is installed
OR libsoftokn3-hmac-3.29.5-58.3 is installed
OR libsoftokn3-hmac-32bit-3.29.5-58.3 is installed
OR mozilla-nss-3.29.5-58.3 is installed
OR mozilla-nss-32bit-3.29.5-58.3 is installed
OR mozilla-nss-certs-3.29.5-58.3 is installed
OR mozilla-nss-certs-32bit-3.29.5-58.3 is installed
OR mozilla-nss-devel-3.29.5-58.3 is installed
OR mozilla-nss-sysinit-3.29.5-58.3 is installed
OR mozilla-nss-sysinit-32bit-3.29.5-58.3 is installed
OR mozilla-nss-tools-3.29.5-58.3 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud 7 is installed
AND Package Information
galera-3-25.3.23-8 is installed
OR galera-3-wsrep-provider-25.3.23-8 is installed
OR libmariadb3-3.0.3-1.3 is installed
OR mariadb-10.2.15-7 is installed
OR mariadb-client-10.2.15-7 is installed
OR mariadb-connector-c-3.0.3-1.3 is installed
OR mariadb-errormessages-10.2.15-7 is installed
OR mariadb-galera-10.2.15-7 is installed
OR mariadb-tools-10.2.15-7 is installed
OR ruby2.1-rubygem-mysql2-0.4.10-7 is installed
OR rubygem-mysql2-0.4.10-7 is installed
OR xtrabackup-2.4.10-5 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud 8 is installed
AND Package Information
kernel-default-4.4.180-94.107 is installed
OR kernel-default-base-4.4.180-94.107 is installed
OR kernel-default-devel-4.4.180-94.107 is installed
OR kernel-default-kgraft-4.4.180-94.107 is installed
OR kernel-devel-4.4.180-94.107 is installed
OR kernel-macros-4.4.180-94.107 is installed
OR kernel-source-4.4.180-94.107 is installed
OR kernel-syms-4.4.180-94.107 is installed
OR kgraft-patch-4_4_180-94_107-default-1-4.3 is installed
OR kgraft-patch-SLE12-SP3_Update_29-1-4.3 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud Crowbar 8 is installed
AND Package Information
apache2-2.4.23-29.54 is installed
OR apache2-doc-2.4.23-29.54 is installed
OR apache2-example-pages-2.4.23-29.54 is installed
OR apache2-prefork-2.4.23-29.54 is installed
OR apache2-utils-2.4.23-29.54 is installed
OR apache2-worker-2.4.23-29.54 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud Crowbar 9 is installed
AND python-SQLAlchemy-1.2.10-3.3 is installed
|