Oval Definition:	oval:org.opensuse.security:def:5636
Revision Date: 2021-01-13 Version: 1 Title: Security update for libzypp, zypper (Moderate) Description: This update for libzypp, zypper fixes the following issues: Update zypper to version 1.14.41 Update libzypp to 17.25.4 - CVE-2017-9271: Fixed information leak in the log file (bsc#1050625 bsc#1177583) - RepoManager: Force refresh if repo url has changed (bsc#1174016) - RepoManager: Carefully tidy up the caches. Remove non-directory entries. (bsc#1178966) - RepoInfo: ignore legacy type= in a .repo file and let RepoManager probe (bsc#1177427). - RpmDb: If no database exists use the _dbpath configured in rpm. Still makes sure a compat symlink at /var/lib/rpm exists in case the configures _dbpath is elsewhere. (bsc#1178910) - Fixed update of gpg keys with elongated expire date (bsc#179222) - needreboot: remove udev from the list (bsc#1179083) - Fix lsof monitoring (bsc#1179909) yast-installation was updated to 4.2.48: - Do not cleanup the libzypp cache when the system has low memory, incomplete cache confuses libzypp later (bsc#1179415) Family: unix Class: patch Status: Reference(s): 1046305 1046306 1050252 1050549 1050625 1051510 1054610 1055121 1056658 1056662 1056787 1060463 1063638 1065600 1070995 1071995 1078355 1082943 1083548 1083647 1084216 1086095 1086282 1086301 1086313 1086314 1086323 1087082 1087092 1088133 1094555 1098382 1098425 1098995 1103429 1104353 1106105 1106434 1106811 1107078 1107665 1108101 1108870 1109695 1110096 1110705 1111666 1113042 1113712 1113722 1113939 1114279 1114585 1117108 1117155 1117645 1118338 1119019 1119086 1119766 1119843 1120008 1120318 1120601 1120758 1120854 1120902 1120909 1120955 1121317 1121726 1121789 1121805 1122019 1122192 1122324 1122554 1122662 1122764 1122779 1122822 1122885 1122927 1122944 1122971 1122982 1123060 1123061 1123161 1123317 1123348 1123357 1123456 1123538 1123697 1123882 1123933 1124055 1124204 1124235 1124579 1124589 1124728 1124732 1124735 1124969 1124974 1124975 1124976 1124978 1124979 1124980 1124981 1124982 1124984 1124985 1125109 1125125 1125252 1125315 1125614 1125728 1125780 1125797 1125799 1125800 1125907 1125947 1126131 1126209 1126389 1126393 1126476 1126480 1126481 1126488 1126495 1126555 1126579 1126789 1126790 1126802 1126803 1126804 1126805 1126806 1126807 1127042 1127062 1127082 1127154 1127285 1127286 1127307 1127363 1127493 1127494 1127495 1127496 1127497 1127498 1127534 1127561 1127567 1127595 1127603 1127682 1127731 1127750 1127836 1127961 1128094 1128166 1128351 1128451 1128895 1129046 1129080 1129163 1129179 1129181 1129182 1129183 1129184 1129205 1129281 1129284 1129285 1129291 1129292 1129293 1129294 1129295 1129296 1129326 1129327 1129330 1129363 1129366 1129497 1129519 1129543 1129547 1129551 1129581 1129625 1129664 1129739 1129923 1153163 1153164 1174016 1177238 1177275 1177427 1177583 1178910 1178966 1179083 1179222 1179415 1179909 824948 CVE-2008-2109 CVE-2009-5029 CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-1709 CVE-2012-1571 CVE-2012-2451 CVE-2012-3406 CVE-2012-4412 CVE-2013-0242 CVE-2013-1914 CVE-2013-2207 CVE-2013-4237 CVE-2013-4314 CVE-2013-4332 CVE-2013-4458 CVE-2013-7423 CVE-2014-0011 CVE-2014-0475 CVE-2014-3710 CVE-2014-4043 CVE-2014-5119 CVE-2014-6040 CVE-2014-7300 CVE-2014-7817 CVE-2014-8116 CVE-2014-8117 CVE-2014-8121 CVE-2014-8240 CVE-2014-9402 CVE-2014-9654 CVE-2014-9761 CVE-2015-0255 CVE-2015-1472 CVE-2015-1473 CVE-2015-1781 CVE-2015-7547 CVE-2015-8025 CVE-2015-8370 CVE-2015-8776 CVE-2015-8777 CVE-2015-8778 CVE-2015-8779 CVE-2015-8872 CVE-2016-1234 CVE-2016-3075 CVE-2016-3706 CVE-2016-4429 CVE-2016-4804 CVE-2017-9271 CVE-2018-20669 CVE-2019-17177 CVE-2019-17178 CVE-2019-2024 CVE-2019-3459 CVE-2019-3460 CVE-2019-3819 CVE-2019-6974 CVE-2019-7221 CVE-2019-7222 CVE-2019-7308 CVE-2019-8912 CVE-2019-8980 CVE-2019-9213 SUSE-SU-2019:0784-1 SUSE-SU-2019:3079-1 Platform(s): openSUSE 13.1 openSUSE 13.1 NonFree SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability Extension 11 SP3 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Toolchain 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 5 SUSE OpenStack Cloud 6 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information file-5.19-9 is installed OR file-magic-5.19-9 is installed OR libmagic1-5.19-9 is installed OR libmagic1-32bit-5.19-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND dosfstools-3.0.26-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information bind-utils-9.11.2-1 is installed OR libbind9-160-9.11.2-1 is installed OR libdns169-9.11.2-1 is installed OR libirs160-9.11.2-1 is installed OR libisc166-9.11.2-1 is installed OR libisc166-32bit-9.11.2-1 is installed OR libisccc160-9.11.2-1 is installed OR libisccfg160-9.11.2-1 is installed OR liblwres160-9.11.2-1 is installed OR python-bind-9.11.2-1 is installed Definition Synopsis SUSE Linux Enterprise for SAP 12 is installed AND Package Information compat-libldap-2_3-0-2.3.37-16.1 is installed OR openldap2-2.4.39-16.1 is installed Definition Synopsis SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information kernel-default-3.12.74-60.64.48.1 is installed OR kernel-default-base-3.12.74-60.64.48.1 is installed OR kernel-default-devel-3.12.74-60.64.48.1 is installed OR kernel-devel-3.12.74-60.64.48.1 is installed OR kernel-macros-3.12.74-60.64.48.1 is installed OR kernel-source-3.12.74-60.64.48.1 is installed OR kernel-syms-3.12.74-60.64.48.1 is installed OR kernel-xen-3.12.74-60.64.48.1 is installed OR kernel-xen-base-3.12.74-60.64.48.1 is installed OR kernel-xen-devel-3.12.74-60.64.48.1 is installed OR kgraft-patch-3_12_74-60_64_48-default-1-2.1 is installed OR kgraft-patch-3_12_74-60_64_48-xen-1-2.1 is installed OR kgraft-patch-SLE12-SP1_Update_17-1-2.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND Package Information libpacemaker3-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-cli-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-cts-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-remote-1.1.19+20180928.0d2680780-1 is installed Definition Synopsis SUSE Linux Enterprise High Availability Extension 11 SP3 is installed AND Package Information cluster-network-kmp-bigsmp-1.4_3.0.101_0.40-2.27.98 is installed OR drbd-kmp-bigsmp-8.4.4_3.0.101_0.40-0.22.64 is installed OR gfs2-kmp-bigsmp-2_3.0.101_0.40-0.16.104 is installed OR ocfs2-kmp-bigsmp-1.6_3.0.101_0.40-0.20.98 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information MozillaFirefox-68.1.0-109.92 is installed OR MozillaFirefox-translations-common-68.1.0-109.92 is installed Definition Synopsis SUSE Linux Enterprise Module for Toolchain 12 is installed AND Package Information cpp5-5.3.1+r233831-9 is installed OR gcc5-5.3.1+r233831-9 is installed OR gcc5-32bit-5.3.1+r233831-9 is installed OR gcc5-ada-5.3.1+r233831-9 is installed OR gcc5-ada-32bit-5.3.1+r233831-9 is installed OR gcc5-c++-5.3.1+r233831-9 is installed OR gcc5-c++-32bit-5.3.1+r233831-9 is installed OR gcc5-fortran-5.3.1+r233831-9 is installed OR gcc5-fortran-32bit-5.3.1+r233831-9 is installed OR gcc5-info-5.3.1+r233831-9 is installed OR gcc5-locale-5.3.1+r233831-9 is installed OR libada5-5.3.1+r233831-9 is installed OR libada5-32bit-5.3.1+r233831-9 is installed OR libffi-devel-gcc5-5.3.1+r233831-9 is installed OR libffi-devel-gcc5-32bit-5.3.1+r233831-9 is installed OR libffi-gcc5-5.3.1+r233831-9 is installed OR libstdc++6-devel-gcc5-5.3.1+r233831-9 is installed OR libstdc++6-devel-gcc5-32bit-5.3.1+r233831-9 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php5-5.5.14-7 is installed OR php5-5.5.14-7 is installed OR php5-bcmath-5.5.14-7 is installed OR php5-bz2-5.5.14-7 is installed OR php5-calendar-5.5.14-7 is installed OR php5-ctype-5.5.14-7 is installed OR php5-curl-5.5.14-7 is installed OR php5-dba-5.5.14-7 is installed OR php5-dom-5.5.14-7 is installed OR php5-enchant-5.5.14-7 is installed OR php5-exif-5.5.14-7 is installed OR php5-fastcgi-5.5.14-7 is installed OR php5-fileinfo-5.5.14-7 is installed OR php5-fpm-5.5.14-7 is installed OR php5-ftp-5.5.14-7 is installed OR php5-gd-5.5.14-7 is installed OR php5-gettext-5.5.14-7 is installed OR php5-gmp-5.5.14-7 is installed OR php5-iconv-5.5.14-7 is installed OR php5-intl-5.5.14-7 is installed OR php5-json-5.5.14-7 is installed OR php5-ldap-5.5.14-7 is installed OR php5-mbstring-5.5.14-7 is installed OR php5-mcrypt-5.5.14-7 is installed OR php5-mysql-5.5.14-7 is installed OR php5-odbc-5.5.14-7 is installed OR php5-openssl-5.5.14-7 is installed OR php5-pcntl-5.5.14-7 is installed OR php5-pdo-5.5.14-7 is installed OR php5-pear-5.5.14-7 is installed OR php5-pgsql-5.5.14-7 is installed OR php5-pspell-5.5.14-7 is installed OR php5-shmop-5.5.14-7 is installed OR php5-snmp-5.5.14-7 is installed OR php5-soap-5.5.14-7 is installed OR php5-sockets-5.5.14-7 is installed OR php5-sqlite-5.5.14-7 is installed OR php5-suhosin-5.5.14-7 is installed OR php5-sysvmsg-5.5.14-7 is installed OR php5-sysvsem-5.5.14-7 is installed OR php5-sysvshm-5.5.14-7 is installed OR php5-tokenizer-5.5.14-7 is installed OR php5-wddx-5.5.14-7 is installed OR php5-xmlreader-5.5.14-7 is installed OR php5-xmlrpc-5.5.14-7 is installed OR php5-xmlwriter-5.5.14-7 is installed OR php5-xsl-5.5.14-7 is installed OR php5-zip-5.5.14-7 is installed OR php5-zlib-5.5.14-7 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2 is installed AND Package Information salt-2016.11.4-46.7.1 is installed OR salt-minion-2016.11.4-46.7.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 is installed AND Package Information libpoppler-glib4-0.10.1-1.37.1 is installed OR libpoppler-qt4-3-0.10.1-1.37.1 is installed OR libpoppler4-0.10.1-1.37.1 is installed OR poppler-tools-0.10.1-1.37.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND jakarta-commons-fileupload-1.1.1-1.35.1 is installed OR jakarta-commons-fileupload-javadoc-1.1.1-1.35.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP2 is installed AND jakarta-commons-fileupload-1.1.1-1.35.1 is installed OR jakarta-commons-fileupload-javadoc-1.1.1-1.35.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND LibVNCServer-0.9.1-154.24 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2-LTSS is installed AND Package Information libopenssl-devel-0.9.8j-0.89.1 is installed OR libopenssl0_9_8-0.9.8j-0.89.1 is installed OR libopenssl0_9_8-32bit-0.9.8j-0.89.1 is installed OR libopenssl0_9_8-hmac-0.9.8j-0.89.1 is installed OR libopenssl0_9_8-hmac-32bit-0.9.8j-0.89.1 is installed OR openssl-0.9.8j-0.89.1 is installed OR openssl-doc-0.9.8j-0.89.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND enscript-1.6.4-152.22.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information NetworkManager-0.7.1_git20090811-3.28.2 is installed OR NetworkManager-glib-0.7.1_git20090811-3.28.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND ant-1.9.4-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND apache-commons-httpclient-3.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND apache-commons-httpclient-3.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND dstat-0.7.3-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_60-52_49-default-4-2.1 is installed OR kgraft-patch-3_12_60-52_49-xen-4-2.1 is installed OR kgraft-patch-SLE12_Update_14-4-2.1 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND apache2-mod_jk-1.2.40-5 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND Package Information kgraft-patch-3_12_74-60_64_93-default-2-2 is installed OR kgraft-patch-3_12_74-60_64_93-xen-2-2 is installed OR kgraft-patch-SLE12-SP1_Update_28-2-2 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND apache2-mod_fcgid-2.2-31.27.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND libcurl-devel-7.19.7-1.40.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND python-logilab-common-0.56.2-1.9.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information firebird-devel-2.5.2.26539-13 is installed OR libfbembed-devel-2.5.2.26539-13 is installed OR libfbembed2_5-2.5.2.26539-13 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information freerdp-devel-1.0.2-7 is installed OR libfreerdp-1_0-1.0.2-7 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND Package Information gimp-devel-2.8.18-9.3 is installed OR libgimp-2_0-0-2.8.18-9.3 is installed OR libgimpui-2_0-0-2.8.18-9.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 is installed AND argyllcms-1.6.3-1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information flash-player-11.2.202.548-111 is installed OR flash-player-gnome-11.2.202.548-111 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND bogofilter-1.2.4-5 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information colord-1.3.3-12 is installed OR colord-lang-1.3.3-12 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND Package Information NetworkManager-1.0.12-13.6 is installed OR NetworkManager-lang-1.0.12-13.6 is installed OR typelib-1_0-NM-1_0-1.0.12-13.6 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-150.14 is installed OR kernel-default-extra-4.12.14-150.14 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information freerdp-2.0.0~rc4-10.4 is installed OR freerdp-devel-2.0.0~rc4-10.4 is installed OR libfreerdp2-2.0.0~rc4-10.4 is installed OR libwinpr2-2.0.0~rc4-10.4 is installed OR winpr2-devel-2.0.0~rc4-10.4 is installed
BACK