OVAL Reference oval:org.opensuse.security:def:55817

Oval Definition:

oval:org.opensuse.security:def:55817

Revision Date:	2020-12-01	Version:	1
Title:	Security update for systemd (Important)
Description:	This update for systemd fixes the following security issue: - CVE-2016-7796: A zero-length message received over systemd's notification socket could make manager_dispatch_notify_fd() return an error and, as a side effect, disable the notification handler completely. As the notification socket is world-writable, this could have allowed a local user to perform a denial-of-service attack against systemd. (bsc#1001765) Additionally, the following non-security fixes are included: - Fix HMAC calculation when appending a data object to journal. (bsc#1000435) - Never accept file descriptors from file systems with mandatory locking enabled. (bsc#954374) - Do not warn about missing install info with 'preset'. (bsc#970293) - Save /run/systemd/users/UID before starting user@.service. (bsc#996269) - Make sure that /var/lib/systemd/sysv-convert/database is always initialized. (bsc#982211) - Remove daylight saving time handling and tzfile parser. (bsc#990074) - Make sure directory watch is started before cryptsetup. (bsc#987173) - Introduce sd_pid_notify() and sd_pid_notifyf() APIs. (bsc#987857) - Set KillMode=mixed for our daemons that fork worker processes. - Add nosuid and nodev options to tmp.mount. - Don't start console-getty.service when /dev/console is missing. (bsc#982251) - Correct segmentation fault in udev/path_id due to missing NULL check. (bsc#982210)
Family:	unix	Class:	patch
Status:		Reference(s):	1000435 1001765 1038505 1051684 1051685 1053259 1097356 1112852 1115339 1118319 1118320 1160968 770630 772586 773621 773626 780432 830257 851280 918187 920338 924663 927080 928723 928962 932059 933770 933903 934401 935286 938412 940806 954374 963964 963968 963975 970293 971804 973639 974220 982210 982211 982251 982366 983549 983638 983639 983643 983646 983651 983652 983653 983655 984006 984126 985659 987173 987857 990074 996269 CVE-2004-2771 CVE-2012-0420 CVE-2012-3497 CVE-2012-4411 CVE-2012-4535 CVE-2012-4536 CVE-2012-4537 CVE-2012-4538 CVE-2012-4539 CVE-2012-4544 CVE-2013-2207 CVE-2014-7844 CVE-2014-8121 CVE-2015-1781 CVE-2015-2582 CVE-2015-2611 CVE-2015-2617 CVE-2015-2620 CVE-2015-2639 CVE-2015-2641 CVE-2015-2643 CVE-2015-2648 CVE-2015-2661 CVE-2015-3152 CVE-2015-4473 CVE-2015-4474 CVE-2015-4475 CVE-2015-4478 CVE-2015-4479 CVE-2015-4484 CVE-2015-4485 CVE-2015-4486 CVE-2015-4487 CVE-2015-4488 CVE-2015-4489 CVE-2015-4491 CVE-2015-4492 CVE-2015-4495 CVE-2015-4737 CVE-2015-4752 CVE-2015-4756 CVE-2015-4757 CVE-2015-4761 CVE-2015-4767 CVE-2015-4769 CVE-2015-4771 CVE-2015-4772 CVE-2015-8629 CVE-2015-8630 CVE-2015-8631 CVE-2016-1601 CVE-2016-2815 CVE-2016-2818 CVE-2016-2819 CVE-2016-2821 CVE-2016-2822 CVE-2016-2824 CVE-2016-2828 CVE-2016-2831 CVE-2016-2834 CVE-2016-7796 CVE-2016-9840 CVE-2016-9841 CVE-2016-9842 CVE-2016-9843 CVE-2017-1289 CVE-2017-3509 CVE-2017-3511 CVE-2017-3533 CVE-2017-3539 CVE-2017-3544 CVE-2017-7546 CVE-2017-7547 CVE-2017-7548 CVE-2018-12389 CVE-2018-12390 CVE-2018-12392 CVE-2018-12393 CVE-2018-12395 CVE-2018-12396 CVE-2018-12397 CVE-2018-5848 CVE-2018-9568 CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2654 CVE-2020-2659 SUSE-SU-2015:1424-1 SUSE-SU-2015:1528-1 SUSE-SU-2015:1788-1 SUSE-SU-2016:0429-1 SUSE-SU-2016:1138-1 SUSE-SU-2016:1691-1 SUSE-SU-2016:2476-1 SUSE-SU-2017:1386-1 SUSE-SU-2017:2355-1 SUSE-SU-2018:3749-1 SUSE-SU-2018:4157-1 SUSE-SU-2020:0261-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information PackageKit-1.1.10-lp150.2 is installed OR PackageKit-backend-zypp-1.1.10-lp150.2 is installed OR PackageKit-gstreamer-plugin-1.1.10-lp150.2 is installed OR PackageKit-gtk3-module-1.1.10-lp150.2 is installed OR PackageKit-lang-1.1.10-lp150.2 is installed OR libpackagekit-glib2-18-1.1.10-lp150.2 is installed OR typelib-1_0-PackageKitGlib-1_0-1.1.10-lp150.2 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.2-lp151.2.3 is installed OR libjavascriptcoregtk-4_0-18-32bit-2.24.2-lp151.2.3 is installed OR libwebkit2gtk-4_0-37-2.24.2-lp151.2.3 is installed OR libwebkit2gtk-4_0-37-32bit-2.24.2-lp151.2.3 is installed OR libwebkit2gtk3-lang-2.24.2-lp151.2.3 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.2-lp151.2.3 is installed OR typelib-1_0-WebKit2-4_0-2.24.2-lp151.2.3 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.24.2-lp151.2.3 is installed OR webkit-jsc-4-2.24.2-lp151.2.3 is installed OR webkit2gtk-4_0-injected-bundles-2.24.2-lp151.2.3 is installed OR webkit2gtk3-2.24.2-lp151.2.3 is installed OR webkit2gtk3-devel-2.24.2-lp151.2.3 is installed OR webkit2gtk3-minibrowser-2.24.2-lp151.2.3 is installed OR webkit2gtk3-plugin-process-gtk2-2.24.2-lp151.2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libvirt-0.9.6-0.23 is installed OR libvirt-client-0.9.6-0.23 is installed OR libvirt-client-32bit-0.9.6-0.23 is installed OR libvirt-doc-0.9.6-0.23 is installed OR libvirt-python-0.9.6-0.23 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information glibc-2.11.3-17.87 is installed OR glibc-32bit-2.11.3-17.87 is installed OR glibc-devel-2.11.3-17.87 is installed OR glibc-devel-32bit-2.11.3-17.87 is installed OR glibc-i18ndata-2.11.3-17.87 is installed OR glibc-locale-2.11.3-17.87 is installed OR glibc-locale-32bit-2.11.3-17.87 is installed OR nscd-2.11.3-17.87 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information MozillaFirefox-38.2.1esr-19 is installed OR MozillaFirefox-branding-SLED-31.0-0.12 is installed OR MozillaFirefox-translations-38.2.1esr-19 is installed OR libfreebl3-3.19.2.0-0.16 is installed OR libfreebl3-32bit-3.19.2.0-0.16 is installed OR libsoftokn3-3.19.2.0-0.16 is installed OR libsoftokn3-32bit-3.19.2.0-0.16 is installed OR mozilla-nss-3.19.2.0-0.16 is installed OR mozilla-nss-32bit-3.19.2.0-0.16 is installed OR mozilla-nss-tools-3.19.2.0-0.16 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libgudev-1_0-0-210-114 is installed OR libgudev-1_0-0-32bit-210-114 is installed OR libudev1-210-114 is installed OR libudev1-32bit-210-114 is installed OR systemd-210-114 is installed OR systemd-32bit-210-114 is installed OR systemd-bash-completion-210-114 is installed OR systemd-sysvinit-210-114 is installed OR udev-210-114 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information java-1_8_0-openjdk-1.8.0.242-27.41 is installed OR java-1_8_0-openjdk-headless-1.8.0.242-27.41 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND mailx-12.5-25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information MozillaFirefox-60.3.0-109.50 is installed OR MozillaFirefox-devel-60.3.0-109.50 is installed OR MozillaFirefox-translations-common-60.3.0-109.50 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information bind-9.9.9P1-46 is installed OR bind-chrootenv-9.9.9P1-46 is installed OR bind-doc-9.9.9P1-46 is installed OR bind-libs-9.9.9P1-46 is installed OR bind-libs-32bit-9.9.9P1-46 is installed OR bind-utils-9.9.9P1-46 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_104-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_28-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_45-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_14-9-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information evince-3.20.1-5 is installed OR evince-browser-plugin-3.20.1-5 is installed OR evince-lang-3.20.1-5 is installed OR evince-plugin-djvudocument-3.20.1-5 is installed OR evince-plugin-dvidocument-3.20.1-5 is installed OR evince-plugin-pdfdocument-3.20.1-5 is installed OR evince-plugin-psdocument-3.20.1-5 is installed OR evince-plugin-tiffdocument-3.20.1-5 is installed OR evince-plugin-xpsdocument-3.20.1-5 is installed OR libevdocument3-4-3.20.1-5 is installed OR libevview3-3-3.20.1-5 is installed OR nautilus-evince-3.20.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libsolv-0.6.36-2.27.19 is installed OR libsolv-tools-0.6.36-2.27.19 is installed OR libzypp-16.20.2-27.60 is installed OR perl-solv-0.6.36-2.27.19 is installed OR python-solv-0.6.36-2.27.19 is installed OR zypper-1.13.54-18.40 is installed OR zypper-log-1.13.54-18.40 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information ibus-1.5.13-15.11 is installed OR ibus-gtk-1.5.13-15.11 is installed OR ibus-gtk3-1.5.13-15.11 is installed OR ibus-lang-1.5.13-15.11 is installed OR libibus-1_0-5-1.5.13-15.11 is installed OR typelib-1_0-IBus-1_0-1.5.13-15.11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information gdm-3.10.0.1-54.6 is installed OR gdm-lang-3.10.0.1-54.6 is installed OR gdmflexiserver-3.10.0.1-54.6 is installed OR libgdm1-3.10.0.1-54.6 is installed OR typelib-1_0-Gdm-1_0-3.10.0.1-54.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information groff-1.22.2-5 is installed OR groff-full-1.22.2-5 is installed OR gxditview-1.22.2-5 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information postgresql94-9.4.13-21.5 is installed OR postgresql94-contrib-9.4.13-21.5 is installed OR postgresql94-docs-9.4.13-21.5 is installed OR postgresql94-server-9.4.13-21.5 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information python-oslo.cache-1.14.1-3.3 is installed OR python-oslo.concurrency-3.14.1-3.3 is installed OR python-oslo.db-4.13.6-3.3 is installed OR python-oslo.log-3.16.1-3.3 is installed OR python-oslo.messaging-5.10.2-3.6 is installed OR python-oslo.middleware-3.19.1-4.3 is installed OR python-oslo.serialization-2.13.2-3.3 is installed OR python-oslo.service-1.16.1-3.3 is installed OR python-oslo.utils-3.16.1-3.3 is installed OR python-oslo.versionedobjects-1.17.1-3.3 is installed OR python-oslo.vmware-2.14.1-3.3 is installed OR python-oslotest-2.10.1-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND python-urllib3-1.22-5.6 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND permissions-2015.09.28.1626-17.20 is installed

BACK