Oval Definition:oval:org.opensuse.security:def:56160
Revision Date:2020-12-01Version:1
Title:Security update for expat (Moderate)
Description:

This update for expat fixes the following issues:

- CVE-2016-9063: Possible integer overflow to fix inside XML_Parse leading to unexpected behaviour (bsc#1047240) - CVE-2017-9233: External Entity Vulnerability could lead to denial of service (bsc#1047236)



Family:unixClass:patch
Status:Reference(s):1005258
1024218
1027575
1038564
1042892
1046191
1047236
1047240
1050751
1067841
1067844
1102682
1103203
1105323
1158328
758040
868937
900611
904035
912738
915183
924919
933782
937444
940017
940946
942082
947128
948330
949298
951392
951815
952976
953369
954992
955308
955654
955837
955925
956084
956375
956514
956708
956949
957986
957988
957990
958000
958463
958886
958906
958912
958951
959190
959312
959399
959649
959705
961500
961509
961516
961642
961645
961658
962965
963276
963561
963765
963767
964201
964818
966094
966137
966437
966693
967042
967972
967973
967974
967975
968011
968012
968013
969307
CVE-2009-3736
CVE-2011-1831
CVE-2011-1832
CVE-2011-1833
CVE-2011-1834
CVE-2011-1835
CVE-2011-1836
CVE-2011-1837
CVE-2011-4182
CVE-2012-0035
CVE-2013-0221
CVE-2013-0222
CVE-2013-0223
CVE-2013-7446
CVE-2014-0172
CVE-2014-3421
CVE-2014-3422
CVE-2014-3423
CVE-2014-3424
CVE-2014-3686
CVE-2014-9447
CVE-2014-9687
CVE-2015-4041
CVE-2015-4042
CVE-2015-7515
CVE-2015-7550
CVE-2015-8539
CVE-2015-8543
CVE-2015-8550
CVE-2015-8551
CVE-2015-8552
CVE-2015-8569
CVE-2015-8575
CVE-2015-8767
CVE-2015-8785
CVE-2015-8812
CVE-2016-0723
CVE-2016-0777
CVE-2016-0778
CVE-2016-1245
CVE-2016-1572
CVE-2016-2069
CVE-2016-2183
CVE-2016-2384
CVE-2016-2543
CVE-2016-2544
CVE-2016-2545
CVE-2016-2546
CVE-2016-2547
CVE-2016-2548
CVE-2016-2549
CVE-2016-5547
CVE-2016-5548
CVE-2016-5549
CVE-2016-5552
CVE-2016-9063
CVE-2017-15098
CVE-2017-15099
CVE-2017-2636
CVE-2017-3231
CVE-2017-3241
CVE-2017-3252
CVE-2017-3253
CVE-2017-3259
CVE-2017-3261
CVE-2017-3272
CVE-2017-3289
CVE-2017-7533
CVE-2017-7645
CVE-2017-8890
CVE-2017-9233
CVE-2017-9242
CVE-2018-10902
CVE-2018-5390
CVE-2019-11745
CVE-2019-13722
CVE-2019-17005
CVE-2019-17008
CVE-2019-17009
CVE-2019-17010
CVE-2019-17011
CVE-2019-17012
SUSE-SU-2016:0120-1
SUSE-SU-2016:0911-1
SUSE-SU-2016:2618-1
SUSE-SU-2017:0460-1
SUSE-SU-2017:2092-1
SUSE-SU-2017:2299-1
SUSE-SU-2017:3391-1
SUSE-SU-2019:3347-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.0 NonFree
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND dracut-044.1-lp150.13 is installed
    • Definition Synopsis
  • openSUSE Leap 15.0 NonFree is installed
  • AND opera-63.0.3368.66-lp151.2.6 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libpng16-1.6.34-lp151.3.3 is installed
  • OR libpng16-16-1.6.34-lp151.3.3 is installed
  • OR libpng16-16-32bit-1.6.34-lp151.3.3 is installed
  • OR libpng16-compat-devel-1.6.34-lp151.3.3 is installed
  • OR libpng16-compat-devel-32bit-1.6.34-lp151.3.3 is installed
  • OR libpng16-devel-1.6.34-lp151.3.3 is installed
  • OR libpng16-devel-32bit-1.6.34-lp151.3.3 is installed
  • OR libpng16-tools-1.6.34-lp151.3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • wpa_supplicant-0.7.1-6.15 is installed
  • OR wpa_supplicant-gui-0.7.1-6.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • kernel-default-3.0.101-71 is installed
  • OR kernel-default-base-3.0.101-71 is installed
  • OR kernel-default-devel-3.0.101-71 is installed
  • OR kernel-default-extra-3.0.101-71 is installed
  • OR kernel-pae-3.0.101-71 is installed
  • OR kernel-pae-base-3.0.101-71 is installed
  • OR kernel-pae-devel-3.0.101-71 is installed
  • OR kernel-pae-extra-3.0.101-71 is installed
  • OR kernel-source-3.0.101-71 is installed
  • OR kernel-syms-3.0.101-71 is installed
  • OR kernel-trace-3.0.101-71 is installed
  • OR kernel-trace-devel-3.0.101-71 is installed
  • OR kernel-xen-3.0.101-71 is installed
  • OR kernel-xen-base-3.0.101-71 is installed
  • OR kernel-xen-devel-3.0.101-71 is installed
  • OR kernel-xen-extra-3.0.101-71 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • expat-2.1.0-21.3 is installed
  • OR libexpat1-2.1.0-21.3 is installed
  • OR libexpat1-32bit-2.1.0-21.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • emacs-24.3-14 is installed
  • OR emacs-el-24.3-14 is installed
  • OR emacs-info-24.3-14 is installed
  • OR emacs-nox-24.3-14 is installed
  • OR emacs-x11-24.3-14 is installed
  • OR etags-24.3-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_69-60_64_32-default-5-2 is installed
  • OR kgraft-patch-3_12_69-60_64_32-xen-5-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_13-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • coreutils-8.25-12 is installed
  • OR coreutils-lang-8.25-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.15-30.33 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-30.33 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.15-30.33 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-30.33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_80-default-4-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_22-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libdcerpc-binding0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libdcerpc-binding0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libdcerpc0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libdcerpc0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libndr-krb5pac0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libndr-krb5pac0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libndr-nbt0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libndr-nbt0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libndr-standard0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libndr-standard0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libndr0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libndr0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libnetapi0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libnetapi0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamba-credentials0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamba-credentials0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamba-errors0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamba-errors0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamba-hostconfig0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamba-hostconfig0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamba-passdb0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamba-passdb0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamba-util0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamba-util0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamdb0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamdb0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsmbclient0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsmbclient0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsmbconf0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsmbconf0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsmbldap0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsmbldap0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libtevent-util0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libtevent-util0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libwbclient0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libwbclient0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR samba-4.6.5+git.27.6afd48b1083-2 is installed
  • OR samba-client-4.6.5+git.27.6afd48b1083-2 is installed
  • OR samba-client-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR samba-doc-4.6.5+git.27.6afd48b1083-2 is installed
  • OR samba-libs-4.6.5+git.27.6afd48b1083-2 is installed
  • OR samba-libs-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR samba-winbind-4.6.5+git.27.6afd48b1083-2 is installed
  • OR samba-winbind-32bit-4.6.5+git.27.6afd48b1083-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • liblouis-2.6.4-6.6 is installed
  • OR liblouis-data-2.6.4-6.6 is installed
  • OR liblouis9-2.6.4-6.6 is installed
  • OR python-louis-2.6.4-6.6 is installed
  • OR python3-louis-2.6.4-6.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libnghttp2-14-1.7.1-1 is installed
  • OR libnghttp2-14-32bit-1.7.1-1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libopenssl-devel-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed
  • OR openssl-1.0.2j-60.55 is installed
  • OR openssl-doc-1.0.2j-60.55 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • MozillaFirefox-68.6.0-109.110 is installed
  • OR MozillaFirefox-translations-common-68.6.0-109.110 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Werkzeug-0.14.1-3.3 is installed
    • BACK