OVAL Reference oval:org.opensuse.security:def:55745

Oval Definition:

oval:org.opensuse.security:def:55745

Revision Date:	2020-12-01	Version:	1
Title:	Security update for grub2 (Important)
Description:	- Fix buffer overflows when reading username and password. (bsc#956631, CVE-2015-8370) - Check MS-DOS header to find PE file header. (bsc#954126) - Use dirname for copying Xen kernel and initrd to esp. (bsc#955493) - Fix reading password by grub2-mkpasswd-pbdk2 without controlling tty. (bsc#954519) - Add luks, gcry_rijndael and gcry_sha1 to signed EFI image to support LUKS partition in default setup. (bsc#917427, bsc#955609) - Expand list of grub.cfg search path in PV Xen guests for systems installed on btrfs snapshots. (bsc#946148, bsc#952539)
Family:	unix	Class:	patch
Status:		Reference(s):	1000345 1001151 1002116 1002550 1002557 1003878 1003893 1003894 1004702 1004707 1006536 1006538 1007391 1007450 1007454 1007493 1007494 1007495 1021814 1021817 1021818 1021819 1021820 1021821 1021822 1021823 1021824 1021991 1039348 1042292 1069708 1071471 1096564 1097108 1099306 1153892 1159861 1160369 1161194 774666 825935 829857 903204 903216 903638 905260 917427 940191 946148 946204 952539 954126 954519 955493 955609 956631 974449 974614 974618 975069 975070 996524 998516 999661 CVE-2007-6600 CVE-2009-4034 CVE-2009-4136 CVE-2010-1169 CVE-2010-1170 CVE-2010-3433 CVE-2012-0866 CVE-2012-0867 CVE-2012-0868 CVE-2012-2143 CVE-2012-2391 CVE-2012-2655 CVE-2012-3488 CVE-2012-3489 CVE-2013-0255 CVE-2013-1682 CVE-2013-1684 CVE-2013-1685 CVE-2013-1686 CVE-2013-1687 CVE-2013-1690 CVE-2013-1692 CVE-2013-1693 CVE-2013-1697 CVE-2013-1899 CVE-2013-1900 CVE-2013-1901 CVE-2013-1912 CVE-2013-2175 CVE-2013-4132 CVE-2013-4133 CVE-2014-0060 CVE-2014-0061 CVE-2014-0062 CVE-2014-0063 CVE-2014-0064 CVE-2014-0065 CVE-2014-0066 CVE-2014-0067 CVE-2014-6269 CVE-2014-8354 CVE-2014-8355 CVE-2014-8562 CVE-2014-8716 CVE-2015-3165 CVE-2015-3166 CVE-2015-3167 CVE-2015-3281 CVE-2015-5288 CVE-2015-5289 CVE-2015-7236 CVE-2015-8370 CVE-2016-3622 CVE-2016-3623 CVE-2016-3945 CVE-2016-3990 CVE-2016-3991 CVE-2016-7161 CVE-2016-7170 CVE-2016-7421 CVE-2016-7466 CVE-2016-7908 CVE-2016-7909 CVE-2016-8576 CVE-2016-8577 CVE-2016-8578 CVE-2016-8667 CVE-2016-8669 CVE-2016-8909 CVE-2016-8910 CVE-2016-9101 CVE-2016-9102 CVE-2016-9103 CVE-2016-9104 CVE-2016-9105 CVE-2016-9106 CVE-2017-1000364 CVE-2017-11600 CVE-2017-15868 CVE-2017-16939 CVE-2017-5373 CVE-2017-5375 CVE-2017-5376 CVE-2017-5378 CVE-2017-5380 CVE-2017-5383 CVE-2017-5386 CVE-2017-5390 CVE-2017-5396 CVE-2018-10853 CVE-2018-3646 CVE-2019-17544 CVE-2019-19948 CVE-2019-19949 SUSE-SU-2015:1706-1 SUSE-SU-2015:2387-1 SUSE-SU-2016:2508-1 SUSE-SU-2016:2988-1 SUSE-SU-2017:0427-1 SUSE-SU-2017:1615-1 SUSE-SU-2018:0266-1 SUSE-SU-2018:0274-1 SUSE-SU-2018:2367-1 SUSE-SU-2019:3034-1 SUSE-SU-2020:0411-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information ImageMagick-7.0.7.29-lp150.1 is installed OR libMagick++-7_Q16HDRI4-7.0.7.29-lp150.1 is installed OR libMagickCore-7_Q16HDRI6-7.0.7.29-lp150.1 is installed OR libMagickWand-7_Q16HDRI6-7.0.7.29-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information update-test-32bit-pkg-5.1-lp151.12 is installed OR update-test-affects-package-manager-5.1-lp151.12 is installed OR update-test-broken-5.1-lp151.12 is installed OR update-test-feature-5.1-lp151.12 is installed OR update-test-interactive-5.1-lp151.12 is installed OR update-test-optional-5.1-lp151.12 is installed OR update-test-reboot-needed-5.1-lp151.12 is installed OR update-test-relogin-suggested-5.1-lp151.12 is installed OR update-test-security-5.1-lp151.12 is installed OR update-test-trivial-5.1-lp151.12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information MozillaFirefox-17.0.7esr-0.3 is installed OR MozillaFirefox-branding-SLED-7-0.6.9 is installed OR MozillaFirefox-translations-17.0.7esr-0.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information ImageMagick-6.4.3.6-7.30 is installed OR libMagick++1-6.4.3.6-7.30 is installed OR libMagickCore1-6.4.3.6-7.30 is installed OR libMagickCore1-32bit-6.4.3.6-7.30 is installed OR libMagickWand1-6.4.3.6-7.30 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information grub2-2.02~beta2-73 is installed OR grub2-i386-pc-2.02~beta2-73 is installed OR grub2-snapper-plugin-2.02~beta2-73 is installed OR grub2-x86_64-efi-2.02~beta2-73 is installed OR grub2-x86_64-xen-2.02~beta2-73 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information aspell-0.60.6.1-18.3 is installed OR libaspell15-0.60.6.1-18.3 is installed OR libaspell15-32bit-0.60.6.1-18.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libecpg6-9.4.5-4 is installed OR libpq5-9.4.5-4 is installed OR libpq5-32bit-9.4.5-4 is installed OR postgresql94-9.4.5-4 is installed OR postgresql94-contrib-9.4.5-4 is installed OR postgresql94-docs-9.4.5-4 is installed OR postgresql94-server-9.4.5-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_66-default-7-2 is installed OR kgraft-patch-3_12_74-60_64_66-xen-7-2 is installed OR kgraft-patch-SLE12-SP1_Update_23-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information gv-3.7.4-1 is installed OR wdiff-1.2.1-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-openjdk-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-demo-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-devel-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-headless-1.8.0.181-27.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_120-92_70-default-3-2 is installed OR kgraft-patch-SLE12-SP2_Update_20-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND tftp-5.2-10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libXvnc1-1.6.0-18.28 is installed OR tigervnc-1.6.0-18.28 is installed OR xorg-x11-Xvnc-1.6.0-18.28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_162-94_69-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_21-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information tomcat-8.0.53-29.32 is installed OR tomcat-admin-webapps-8.0.53-29.32 is installed OR tomcat-docs-webapp-8.0.53-29.32 is installed OR tomcat-el-3_0-api-8.0.53-29.32 is installed OR tomcat-javadoc-8.0.53-29.32 is installed OR tomcat-jsp-2_3-api-8.0.53-29.32 is installed OR tomcat-lib-8.0.53-29.32 is installed OR tomcat-servlet-3_1-api-8.0.53-29.32 is installed OR tomcat-webapps-8.0.53-29.32 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information dovecot22-2.2.31-19.17 is installed OR dovecot22-backend-mysql-2.2.31-19.17 is installed OR dovecot22-backend-pgsql-2.2.31-19.17 is installed OR dovecot22-backend-sqlite-2.2.31-19.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information at-3.1.14-8.6 is installed OR flex-2.5.37-8 is installed OR flex-32bit-2.5.37-8 is installed OR libQtWebKit4-4.8.7+2.3.4-4.7 is installed OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-doc-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND haproxy-1.5.14-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information openstack-ceilometer-7.0.4~a0~dev7-3 is installed OR openstack-ceilometer-agent-central-7.0.4~a0~dev7-3 is installed OR openstack-ceilometer-agent-compute-7.0.4~a0~dev7-3 is installed OR openstack-ceilometer-agent-ipmi-7.0.4~a0~dev7-3 is installed OR openstack-ceilometer-agent-notification-7.0.4~a0~dev7-3 is installed OR openstack-ceilometer-api-7.0.4~a0~dev7-3 is installed OR openstack-ceilometer-collector-7.0.4~a0~dev7-3 is installed OR openstack-ceilometer-doc-7.0.4~a0~dev7-3 is installed OR openstack-ceilometer-polling-7.0.4~a0~dev7-3 is installed OR openstack-cinder-9.1.5~a0~dev1-3 is installed OR openstack-cinder-api-9.1.5~a0~dev1-3 is installed OR openstack-cinder-backup-9.1.5~a0~dev1-3 is installed OR openstack-cinder-doc-9.1.5~a0~dev1-3 is installed OR openstack-cinder-scheduler-9.1.5~a0~dev1-3 is installed OR openstack-cinder-volume-9.1.5~a0~dev1-3 is installed OR openstack-dashboard-10.0.4~a0~dev2-3 is installed OR openstack-glance-13.0.1~a0~dev6-3 is installed OR openstack-glance-api-13.0.1~a0~dev6-3 is installed OR openstack-glance-doc-13.0.1~a0~dev6-3 is installed OR openstack-glance-glare-13.0.1~a0~dev6-3 is installed OR openstack-glance-registry-13.0.1~a0~dev6-3 is installed OR openstack-heat-7.0.4~a0~dev4-4 is installed OR openstack-heat-api-7.0.4~a0~dev4-4 is installed OR openstack-heat-api-cfn-7.0.4~a0~dev4-4 is installed OR openstack-heat-api-cloudwatch-7.0.4~a0~dev4-4 is installed OR openstack-heat-doc-7.0.4~a0~dev4-4 is installed OR openstack-heat-engine-7.0.4~a0~dev4-4 is installed OR openstack-heat-plugin-heat_docker-7.0.4~a0~dev4-4 is installed OR openstack-heat-test-7.0.4~a0~dev4-4 is installed OR openstack-keystone-10.0.2~a0~dev2-6 is installed OR openstack-keystone-doc-10.0.2~a0~dev2-6 is installed OR openstack-magnum-3.1.2~a0~dev22-13 is installed OR openstack-magnum-api-3.1.2~a0~dev22-13 is installed OR openstack-magnum-conductor-3.1.2~a0~dev22-13 is installed OR openstack-magnum-doc-3.1.2~a0~dev22-13 is installed OR openstack-manila-3.0.1~a0~dev27-3 is installed OR openstack-manila-api-3.0.1~a0~dev27-3 is installed OR openstack-manila-data-3.0.1~a0~dev27-3 is installed OR openstack-manila-doc-3.0.1~a0~dev27-3 is installed OR openstack-manila-scheduler-3.0.1~a0~dev27-3 is installed OR openstack-manila-share-3.0.1~a0~dev27-3 is installed OR openstack-nova-14.0.6~a0~dev16-3 is installed OR openstack-nova-api-14.0.6~a0~dev16-3 is installed OR openstack-nova-cells-14.0.6~a0~dev16-3 is installed OR openstack-nova-cert-14.0.6~a0~dev16-3 is installed OR openstack-nova-compute-14.0.6~a0~dev16-3 is installed OR openstack-nova-conductor-14.0.6~a0~dev16-3 is installed OR openstack-nova-console-14.0.6~a0~dev16-3 is installed OR openstack-nova-consoleauth-14.0.6~a0~dev16-3 is installed OR openstack-nova-doc-14.0.6~a0~dev16-3 is installed OR openstack-nova-novncproxy-14.0.6~a0~dev16-3 is installed OR openstack-nova-placement-api-14.0.6~a0~dev16-3 is installed OR openstack-nova-scheduler-14.0.6~a0~dev16-3 is installed OR openstack-nova-serialproxy-14.0.6~a0~dev16-3 is installed OR openstack-nova-vncproxy-14.0.6~a0~dev16-3 is installed OR python-ceilometer-7.0.4~a0~dev7-3 is installed OR python-cinder-9.1.5~a0~dev1-3 is installed OR python-glance-13.0.1~a0~dev6-3 is installed OR python-heat-7.0.4~a0~dev4-4 is installed OR python-horizon-10.0.4~a0~dev2-3 is installed OR python-keystone-10.0.2~a0~dev2-6 is installed OR python-magnum-3.1.2~a0~dev22-13 is installed OR python-manila-3.0.1~a0~dev27-3 is installed OR python-nova-14.0.6~a0~dev16-3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information pam_radius-1.3.16-239.4 is installed OR pam_radius-32bit-1.3.16-239.4 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND ansible-2.4.6.0-3.3 is installed

BACK