Oval Definition:oval:org.opensuse.security:def:56202
Revision Date:2020-12-01Version:1
Title:Security update for sssd (Moderate)
Description:

This update for sssd provides the following fixes:

Security issues fixed:

- CVE-2017-12173: Fixed unsanitized input when searching in local cache database (bsc#1061832).

Non security issues fixed:

- Fixed a segfault issue in ldap_rfc_2307_fallback_to_local_users. (bsc#1055123) - Install /var/lib/sss/mc directory to correct sssd cache invalidation behaviour. (bsc#1039567)

Family:unixClass:patch
Status:Reference(s):1002982
1015332
1024044
1024068
1027712
1031702
1032309
1037396
1039567
1041764
1045327
1055123
1057950
1061832
1065083
1073313
1112039
926511
949669
949670
962983
962996
CVE-2009-5029
CVE-2010-2947
CVE-2012-3406
CVE-2012-4412
CVE-2013-0242
CVE-2013-1914
CVE-2013-2064
CVE-2013-2207
CVE-2013-4237
CVE-2013-4332
CVE-2013-4458
CVE-2013-7423
CVE-2014-0475
CVE-2014-3065
CVE-2014-3566
CVE-2014-4043
CVE-2014-4288
CVE-2014-5119
CVE-2014-5356
CVE-2014-6040
CVE-2014-6456
CVE-2014-6457
CVE-2014-6458
CVE-2014-6466
CVE-2014-6476
CVE-2014-6492
CVE-2014-6493
CVE-2014-6502
CVE-2014-6503
CVE-2014-6506
CVE-2014-6511
CVE-2014-6512
CVE-2014-6513
CVE-2014-6515
CVE-2014-6527
CVE-2014-6531
CVE-2014-6532
CVE-2014-6558
CVE-2014-7817
CVE-2014-8121
CVE-2014-8169
CVE-2014-8891
CVE-2014-8892
CVE-2014-9402
CVE-2014-9684
CVE-2014-9761
CVE-2015-0138
CVE-2015-0192
CVE-2015-0204
CVE-2015-0458
CVE-2015-0459
CVE-2015-0469
CVE-2015-0477
CVE-2015-0478
CVE-2015-0480
CVE-2015-0486
CVE-2015-0488
CVE-2015-0491
CVE-2015-1195
CVE-2015-1472
CVE-2015-1473
CVE-2015-1781
CVE-2015-1914
CVE-2015-1931
CVE-2015-2590
CVE-2015-2601
CVE-2015-2613
CVE-2015-2619
CVE-2015-2621
CVE-2015-2625
CVE-2015-2632
CVE-2015-2637
CVE-2015-2638
CVE-2015-2664
CVE-2015-2808
CVE-2015-4000
CVE-2015-4729
CVE-2015-4731
CVE-2015-4732
CVE-2015-4733
CVE-2015-4734
CVE-2015-4748
CVE-2015-4749
CVE-2015-4760
CVE-2015-4803
CVE-2015-4805
CVE-2015-4806
CVE-2015-4810
CVE-2015-4835
CVE-2015-4840
CVE-2015-4842
CVE-2015-4843
CVE-2015-4844
CVE-2015-4860
CVE-2015-4871
CVE-2015-4872
CVE-2015-4882
CVE-2015-4883
CVE-2015-4893
CVE-2015-4902
CVE-2015-4903
CVE-2015-4911
CVE-2015-5006
CVE-2015-5041
CVE-2015-5288
CVE-2015-5289
CVE-2015-7547
CVE-2015-7575
CVE-2015-7981
CVE-2015-8126
CVE-2015-8472
CVE-2015-8540
CVE-2015-8776
CVE-2015-8777
CVE-2015-8778
CVE-2015-8779
CVE-2016-0264
CVE-2016-0363
CVE-2016-0376
CVE-2016-0402
CVE-2016-0448
CVE-2016-0466
CVE-2016-0475
CVE-2016-0483
CVE-2016-0494
CVE-2016-0686
CVE-2016-0687
CVE-2016-0755
CVE-2016-1234
CVE-2016-3075
CVE-2016-3422
CVE-2016-3426
CVE-2016-3427
CVE-2016-3443
CVE-2016-3449
CVE-2016-3485
CVE-2016-3511
CVE-2016-3598
CVE-2016-3706
CVE-2016-4429
CVE-2016-7969
CVE-2016-7970
CVE-2016-7971
CVE-2016-7972
CVE-2016-9586
CVE-2017-1000251
CVE-2017-12173
CVE-2017-15274
CVE-2017-17740
CVE-2017-5843
CVE-2017-5848
CVE-2017-7407
CVE-2017-9287
CVE-2018-18386
SUSE-SU-2016:0347-1
SUSE-SU-2016:0482-1
SUSE-SU-2016:3107-1
SUSE-SU-2017:0962-1
SUSE-SU-2017:1042-1
SUSE-SU-2017:2783-1
SUSE-SU-2017:2937-1
SUSE-SU-2019:0931-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
openSUSE Leap 15.1 NonFree
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • apache2-mod_php7-7.2.5-lp150.1 is installed
  • OR php7-7.2.5-lp150.1 is installed
  • OR php7-ctype-7.2.5-lp150.1 is installed
  • OR php7-dom-7.2.5-lp150.1 is installed
  • OR php7-iconv-7.2.5-lp150.1 is installed
  • OR php7-json-7.2.5-lp150.1 is installed
  • OR php7-mysql-7.2.5-lp150.1 is installed
  • OR php7-pdo-7.2.5-lp150.1 is installed
  • OR php7-pgsql-7.2.5-lp150.1 is installed
  • OR php7-sqlite-7.2.5-lp150.1 is installed
  • OR php7-tokenizer-7.2.5-lp150.1 is installed
  • OR php7-xmlreader-7.2.5-lp150.1 is installed
  • OR php7-xmlwriter-7.2.5-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • kernel-firmware-20190618-lp151.2.6 is installed
  • OR ucode-amd-20190618-lp151.2.6 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 NonFree is installed
  • AND opera-65.0.3467.62-lp151.2.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • curl-7.19.7-1.46 is installed
  • OR libcurl4-7.19.7-1.46 is installed
  • OR libcurl4-32bit-7.19.7-1.46 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • libipa_hbac0-1.13.4-34.7 is installed
  • OR libsss_idmap0-1.13.4-34.7 is installed
  • OR libsss_sudo-1.13.4-34.7 is installed
  • OR python-sssd-config-1.13.4-34.7 is installed
  • OR sssd-1.13.4-34.7 is installed
  • OR sssd-32bit-1.13.4-34.7 is installed
  • OR sssd-ad-1.13.4-34.7 is installed
  • OR sssd-ipa-1.13.4-34.7 is installed
  • OR sssd-krb5-1.13.4-34.7 is installed
  • OR sssd-krb5-common-1.13.4-34.7 is installed
  • OR sssd-ldap-1.13.4-34.7 is installed
  • OR sssd-proxy-1.13.4-34.7 is installed
  • OR sssd-tools-1.13.4-34.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND autofs-5.0.9-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_69-60_64_29-default-8-4 is installed
  • OR kgraft-patch-3_12_69-60_64_29-xen-8-4 is installed
  • OR kgraft-patch-SLE12-SP1_Update_12-8-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • glibc-2.22-49 is installed
  • OR glibc-32bit-2.22-49 is installed
  • OR glibc-devel-2.22-49 is installed
  • OR glibc-devel-32bit-2.22-49 is installed
  • OR glibc-html-2.22-49 is installed
  • OR glibc-i18ndata-2.22-49 is installed
  • OR glibc-info-2.22-49 is installed
  • OR glibc-locale-2.22-49 is installed
  • OR glibc-locale-32bit-2.22-49 is installed
  • OR glibc-profile-2.22-49 is installed
  • OR glibc-profile-32bit-2.22-49 is installed
  • OR nscd-2.22-49 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libsnmp30-5.7.3-6.3 is installed
  • OR libsnmp30-32bit-5.7.3-6.3 is installed
  • OR net-snmp-5.7.3-6.3 is installed
  • OR perl-SNMP-5.7.3-6.3 is installed
  • OR snmp-mibs-5.7.3-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_90-92_45-default-11-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_14-11-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_103-92_56-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_17-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libmysqlclient18-10.0.30-28 is installed
  • OR libmysqlclient18-32bit-10.0.30-28 is installed
  • OR mariadb-10.0.30-28 is installed
  • OR mariadb-client-10.0.30-28 is installed
  • OR mariadb-errormessages-10.0.30-28 is installed
  • OR mariadb-tools-10.0.30-28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • res-signingkeys-3.0.38-52.26 is installed
  • OR smt-3.0.38-52.26 is installed
  • OR smt-support-3.0.38-52.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libsystemd0-228-150.49 is installed
  • OR libsystemd0-32bit-228-150.49 is installed
  • OR libudev1-228-150.49 is installed
  • OR libudev1-32bit-228-150.49 is installed
  • OR systemd-228-150.49 is installed
  • OR systemd-32bit-228-150.49 is installed
  • OR systemd-bash-completion-228-150.49 is installed
  • OR systemd-sysvinit-228-150.49 is installed
  • OR udev-228-150.49 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • openstack-glance-11.0.2~a0~dev2-1 is installed
  • OR python-glance-11.0.2~a0~dev2-1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • qemu-2.6.2-41.43 is installed
  • OR qemu-block-curl-2.6.2-41.43 is installed
  • OR qemu-block-rbd-2.6.2-41.43 is installed
  • OR qemu-block-ssh-2.6.2-41.43 is installed
  • OR qemu-guest-agent-2.6.2-41.43 is installed
  • OR qemu-ipxe-1.0.0-41.43 is installed
  • OR qemu-kvm-2.6.2-41.43 is installed
  • OR qemu-lang-2.6.2-41.43 is installed
  • OR qemu-s390-2.6.2-41.43 is installed
  • OR qemu-seabios-1.9.1-41.43 is installed
  • OR qemu-sgabios-8-41.43 is installed
  • OR qemu-tools-2.6.2-41.43 is installed
  • OR qemu-vgabios-1.9.1-41.43 is installed
  • OR qemu-x86-2.6.2-41.43 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • cups-1.7.5-20.29 is installed
  • OR cups-client-1.7.5-20.29 is installed
  • OR cups-libs-1.7.5-20.29 is installed
  • OR cups-libs-32bit-1.7.5-20.29 is installed
    • BACK