Oval Definition:	oval:org.opensuse.security:def:56209
Revision Date: 2020-12-01 Version: 1 Title: Security update for cpio (Moderate) Description: This update for cpio fixes two issues. This security issue was fixed: - CVE-2016-2037: The cpio_safer_name_suffix function in util.c in cpio allowed remote attackers to cause a denial of service (out-of-bounds write) via a crafted cpio file (bsc#963448). This non-security issue was fixed: - bsc#1020108: Always use 32 bit CRC to prevent checksum errors for files greater than 32MB Family: unix Class: patch Status: Reference(s): 1015422 1020108 1020940 1033053 1033054 1033914 1033915 1035686 1038564 1042892 1045327 1052311 1052368 1104199 1141670 1163933 905870 905871 905872 908275 922220 922221 922222 922223 927637 942628 952810 963448 CVE-2009-5044 CVE-2009-5080 CVE-2009-5081 CVE-2010-0405 CVE-2011-0707 CVE-2011-1526 CVE-2011-4862 CVE-2012-4406 CVE-2013-1982 CVE-2014-7960 CVE-2014-8767 CVE-2014-8768 CVE-2014-8769 CVE-2014-8962 CVE-2014-9028 CVE-2015-0261 CVE-2015-1856 CVE-2015-2153 CVE-2015-2154 CVE-2015-2155 CVE-2015-3138 CVE-2015-4513 CVE-2015-5185 CVE-2015-5223 CVE-2015-7181 CVE-2015-7182 CVE-2015-7183 CVE-2015-7188 CVE-2015-7189 CVE-2015-7193 CVE-2015-7194 CVE-2015-7196 CVE-2015-7197 CVE-2015-7198 CVE-2015-7199 CVE-2015-7200 CVE-2015-9542 CVE-2016-2037 CVE-2016-7922 CVE-2016-7923 CVE-2016-7924 CVE-2016-7925 CVE-2016-7926 CVE-2016-7927 CVE-2016-7928 CVE-2016-7929 CVE-2016-7930 CVE-2016-7931 CVE-2016-7932 CVE-2016-7933 CVE-2016-7934 CVE-2016-7935 CVE-2016-7936 CVE-2016-7937 CVE-2016-7938 CVE-2016-7939 CVE-2016-7940 CVE-2016-7973 CVE-2016-7974 CVE-2016-7975 CVE-2016-7983 CVE-2016-7984 CVE-2016-7985 CVE-2016-7986 CVE-2016-7992 CVE-2016-7993 CVE-2016-8574 CVE-2016-8575 CVE-2016-9893 CVE-2016-9895 CVE-2016-9897 CVE-2016-9898 CVE-2016-9899 CVE-2016-9900 CVE-2016-9901 CVE-2016-9902 CVE-2016-9904 CVE-2016-9905 CVE-2017-1000112 CVE-2017-15274 CVE-2017-5202 CVE-2017-5203 CVE-2017-5204 CVE-2017-5205 CVE-2017-5341 CVE-2017-5342 CVE-2017-5482 CVE-2017-5483 CVE-2017-5484 CVE-2017-5485 CVE-2017-5486 CVE-2017-7585 CVE-2017-7586 CVE-2017-7741 CVE-2017-7742 CVE-2017-8890 CVE-2017-9242 CVE-2018-10915 SUSE-SU-2015:1981-1 SUSE-SU-2015:2218-1 SUSE-SU-2016:3222-1 SUSE-SU-2017:0366-1 SUSE-SU-2017:1040-1 SUSE-SU-2017:1110-1 SUSE-SU-2017:2791-1 SUSE-SU-2018:3909-1 SUSE-SU-2020:1117-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information bind-9.11.2-lp150.7 is installed OR bind-chrootenv-9.11.2-lp150.7 is installed OR bind-utils-9.11.2-lp150.7 is installed OR libbind9-160-9.11.2-lp150.7 is installed OR libdns169-9.11.2-lp150.7 is installed OR libirs160-9.11.2-lp150.7 is installed OR libisc166-9.11.2-lp150.7 is installed OR libisccc160-9.11.2-lp150.7 is installed OR libisccfg160-9.11.2-lp150.7 is installed OR liblwres160-9.11.2-lp150.7 is installed OR python3-bind-9.11.2-lp150.7 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND clementine-1.3.1-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information MozillaFirefox-38.4.0esr-25 is installed OR MozillaFirefox-branding-SLED-38-15 is installed OR MozillaFirefox-translations-38.4.0esr-25 is installed OR libfreebl3-3.19.2.1-19 is installed OR libfreebl3-32bit-3.19.2.1-19 is installed OR libsoftokn3-3.19.2.1-19 is installed OR libsoftokn3-32bit-3.19.2.1-19 is installed OR mozilla-nspr-4.10.10-16 is installed OR mozilla-nspr-32bit-4.10.10-16 is installed OR mozilla-nss-3.19.2.1-19 is installed OR mozilla-nss-32bit-3.19.2.1-19 is installed OR mozilla-nss-tools-3.19.2.1-19 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information cpio-2.11-32 is installed OR cpio-lang-2.11-32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information bzip2-1.0.6-27 is installed OR bzip2-doc-1.0.6-27 is installed OR libbz2-1-1.0.6-27 is installed OR libbz2-1-32bit-1.0.6-27 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_60-default-2-4 is installed OR kgraft-patch-3_12_74-60_64_60-xen-2-4 is installed OR kgraft-patch-SLE12-SP1_Update_21-2-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information groff-1.22.2-5 is installed OR groff-full-1.22.2-5 is installed OR gxditview-1.22.2-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information python3-rpm-4.11.2-16.21 is installed OR rpm-4.11.2-16.21 is installed OR rpm-32bit-4.11.2-16.21 is installed OR rpm-build-4.11.2-16.21 is installed OR rpm-python-4.11.2-16.21 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information xen-4.7.6_05-43.42 is installed OR xen-doc-html-4.7.6_05-43.42 is installed OR xen-libs-4.7.6_05-43.42 is installed OR xen-libs-32bit-4.7.6_05-43.42 is installed OR xen-tools-4.7.6_05-43.42 is installed OR xen-tools-domU-4.7.6_05-43.42 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND shadow-4.2.1-27.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND libopus0-1.1-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information audiofile-0.3.6-11.3 is installed OR libaudiofile1-0.3.6-11.3 is installed OR libaudiofile1-32bit-0.3.6-11.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libudisks2-0-2.1.3-1 is installed OR udisks2-2.1.3-1 is installed OR udisks2-lang-2.1.3-1 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information openstack-swift-2.1.0-4 is installed OR openstack-swift-account-2.1.0-4 is installed OR openstack-swift-container-2.1.0-4 is installed OR openstack-swift-object-2.1.0-4 is installed OR openstack-swift-proxy-2.1.0-4 is installed OR python-swift-2.1.0-4 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND python-tablib-0.9.11-3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information icu-52.1-8.10 is installed OR libicu-doc-52.1-8.10 is installed OR libicu52_1-52.1-8.10 is installed OR libicu52_1-32bit-52.1-8.10 is installed OR libicu52_1-data-52.1-8.10 is installed
BACK