OVAL Reference oval:org.opensuse.security:def:56369

Oval Definition:

oval:org.opensuse.security:def:56369

Revision Date:	2020-12-01	Version:	1
Title:	Security update for systemd (Moderate)
Description:	This update for systemd fixes the following issues: Security issue fixed: - CVE-2017-18078: tmpfiles: refuse to chown()/chmod() files which are hardlinked, unless protected_hardlinks sysctl is on. This could be used by local attackers to gain privileges (bsc#1077925) Non Security issues fixed: - core: use id unit when retrieving unit file state (#8038) (bsc#1075801) - cryptsetup-generator: run cryptsetup service before swap unit (#5480) - udev-rules: all values can contain escaped double quotes now (#6890) - strv: fix buffer size calculation in strv_join_quoted() - tmpfiles: change ownership of symlinks too - stdio-bridge: Correctly propagate error - stdio-bridge: remove dead code - remove bus-proxyd (bsc#1057974) - core/timer: Prevent timer looping when unit cannot start (bsc#1068588) - Make systemd-timesyncd use the openSUSE NTP servers by default Previously systemd-timesyncd used the Google Public NTP servers time{1..4}.google.com - Don't ship /usr/lib/systemd/system/tmp.mnt at all (bsc#1071224) But we still ship a copy in /var. Users who want to use tmpfs on /tmp are supposed to add a symlink in /etc/ pointing to the copy shipped in /var. To support the update path we automatically create the symlink if tmp.mount in use is located in /usr. - Enable systemd-networkd on Leap distros only (bsc#1071311)
Family:	unix	Class:	patch
Status:		Reference(s):	1045327 1047236 1047240 1052311 1052365 1057950 1057974 1068588 1071224 1071311 1075801 1077925 1085449 1093311 1112039 1150733 941939 955131 CVE-2008-0928 CVE-2008-1945 CVE-2008-2382 CVE-2008-4539 CVE-2009-1273 CVE-2009-1885 CVE-2009-3939 CVE-2009-4026 CVE-2009-4027 CVE-2009-4131 CVE-2009-4138 CVE-2009-4536 CVE-2009-4538 CVE-2010-1146 CVE-2010-1436 CVE-2010-1641 CVE-2010-1674 CVE-2010-1675 CVE-2010-2066 CVE-2010-2942 CVE-2010-2954 CVE-2010-2955 CVE-2010-3081 CVE-2010-3296 CVE-2010-3297 CVE-2010-3298 CVE-2010-3301 CVE-2010-3310 CVE-2011-0712 CVE-2011-1020 CVE-2011-1145 CVE-2011-1577 CVE-2011-2203 CVE-2012-0056 CVE-2012-3515 CVE-2013-0160 CVE-2013-0231 CVE-2013-0913 CVE-2013-2850 CVE-2013-4148 CVE-2013-4149 CVE-2013-4150 CVE-2013-4151 CVE-2013-4312 CVE-2013-4526 CVE-2013-4527 CVE-2013-4529 CVE-2013-4530 CVE-2013-4531 CVE-2013-4533 CVE-2013-4534 CVE-2013-4535 CVE-2013-4536 CVE-2013-4537 CVE-2013-4538 CVE-2013-4539 CVE-2013-4540 CVE-2013-4541 CVE-2013-4542 CVE-2013-4544 CVE-2013-6399 CVE-2014-0038 CVE-2014-00691 CVE-2014-0142 CVE-2014-0143 CVE-2014-0144 CVE-2014-0145 CVE-2014-0146 CVE-2014-0147 CVE-2014-0150 CVE-2014-0182 CVE-2014-0196 CVE-2014-0222 CVE-2014-0223 CVE-2014-3461 CVE-2014-3640 CVE-2014-7300 CVE-2014-7840 CVE-2014-8106 CVE-2014-9474 CVE-2015-0252 CVE-2015-1779 CVE-2015-3209 CVE-2015-3456 CVE-2015-4037 CVE-2015-4734 CVE-2015-4803 CVE-2015-4805 CVE-2015-4806 CVE-2015-4810 CVE-2015-4835 CVE-2015-4840 CVE-2015-4842 CVE-2015-4843 CVE-2015-4844 CVE-2015-4860 CVE-2015-4871 CVE-2015-4872 CVE-2015-4882 CVE-2015-4883 CVE-2015-4893 CVE-2015-4902 CVE-2015-4903 CVE-2015-4911 CVE-2015-5006 CVE-2015-5154 CVE-2015-5225 CVE-2015-5278 CVE-2015-5279 CVE-2015-5745 CVE-2015-6815 CVE-2015-6855 CVE-2015-7295 CVE-2015-7512 CVE-2015-7549 CVE-2015-7833 CVE-2015-7884 CVE-2015-7885 CVE-2015-8345 CVE-2015-8504 CVE-2015-8558 CVE-2015-8567 CVE-2015-8568 CVE-2015-8613 CVE-2015-8619 CVE-2015-8709 CVE-2015-8743 CVE-2015-8744 CVE-2015-8745 CVE-2015-8812 CVE-2016-0617 CVE-2016-0723 CVE-2016-0728 CVE-2016-0758 CVE-2016-1237 CVE-2016-1568 CVE-2016-1583 CVE-2016-1714 CVE-2016-1922 CVE-2016-1981 CVE-2016-2143 CVE-2016-2184 CVE-2016-2185 CVE-2016-2186 CVE-2016-2188 CVE-2016-2198 CVE-2016-2342 CVE-2016-2383 CVE-2016-2384 CVE-2016-2847 CVE-2016-3134 CVE-2016-3135 CVE-2016-3136 CVE-2016-3137 CVE-2016-3138 CVE-2016-3140 CVE-2016-3156 CVE-2016-3672 CVE-2016-3689 CVE-2016-3710 CVE-2016-3712 CVE-2016-3713 CVE-2016-3951 CVE-2016-4002 CVE-2016-4020 CVE-2016-4049 CVE-2016-4439 CVE-2016-4441 CVE-2016-4453 CVE-2016-4454 CVE-2016-4470 CVE-2016-4482 CVE-2016-4486 CVE-2016-4557 CVE-2016-4558 CVE-2016-4569 CVE-2016-4578 CVE-2016-4794 CVE-2016-4805 CVE-2016-4951 CVE-2016-4952 CVE-2016-4964 CVE-2016-4997 CVE-2016-4998 CVE-2016-5105 CVE-2016-5106 CVE-2016-5107 CVE-2016-5126 CVE-2016-5195 CVE-2016-5238 CVE-2016-5244 CVE-2016-5337 CVE-2016-5338 CVE-2016-5403 CVE-2016-5412 CVE-2016-5696 CVE-2016-5828 CVE-2016-5829 CVE-2016-6197 CVE-2016-6351 CVE-2016-6480 CVE-2016-6490 CVE-2016-6828 CVE-2016-6833 CVE-2016-6836 CVE-2016-6888 CVE-2016-7039 CVE-2016-7097 CVE-2016-7116 CVE-2016-7155 CVE-2016-7156 CVE-2016-7157 CVE-2016-8658 CVE-2016-9063 CVE-2017-1000111 CVE-2017-1000112 CVE-2017-1000251 CVE-2017-15274 CVE-2017-18078 CVE-2017-9233 CVE-2018-1417 CVE-2018-18386 CVE-2018-2783 CVE-2018-2790 CVE-2018-2794 CVE-2018-2795 CVE-2018-2796 CVE-2018-2797 CVE-2018-2798 CVE-2018-2799 CVE-2018-2800 CVE-2018-2814 CVE-2019-3689 SUSE-SU-2015:2268-1 SUSE-SU-2017:2150-1 SUSE-SU-2017:2299-1 SUSE-SU-2017:2782-1 SUSE-SU-2018:0546-1 SUSE-SU-2018:1764-1 SUSE-SU-2018:3772-1 SUSE-SU-2019:2771-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information gdm-3.26.2.1-lp150.10 is installed OR gdm-lang-3.26.2.1-lp150.10 is installed OR gdmflexiserver-3.26.2.1-lp150.10 is installed OR libgdm1-3.26.2.1-lp150.10 is installed OR typelib-1_0-Gdm-1_0-3.26.2.1-lp150.10 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information kconf_update5-5.32.0-7 is installed OR kconfig-5.32.0-7 is installed OR kconfig-devel-5.32.0-7 is installed OR kconfig-devel-32bit-5.55.0-lp151.2.5 is installed OR kconfig-devel-64bit-5.32.0-7 is installed OR kdelibs4-4.14.33-7 is installed OR kdelibs4-apidocs-4.14.33-7 is installed OR kdelibs4-branding-upstream-4.14.33-7 is installed OR kdelibs4-core-4.14.33-7 is installed OR kdelibs4-doc-4.14.33-7 is installed OR libKF5ConfigCore5-5.32.0-7 is installed OR libKF5ConfigCore5-32bit-5.55.0-lp151.2.5 is installed OR libKF5ConfigCore5-64bit-5.32.0-7 is installed OR libKF5ConfigCore5-lang-5.32.0-7 is installed OR libKF5ConfigGui5-5.32.0-7 is installed OR libKF5ConfigGui5-32bit-5.55.0-lp151.2.5 is installed OR libKF5ConfigGui5-64bit-5.32.0-7 is installed OR libkde4-4.14.33-7 is installed OR libkde4-32bit-4.14.38-lp151.9.5 is installed OR libkde4-64bit-4.14.33-7 is installed OR libkde4-devel-4.14.33-7 is installed OR libkdecore4-4.14.33-7 is installed OR libkdecore4-32bit-4.14.38-lp151.9.5 is installed OR libkdecore4-64bit-4.14.33-7 is installed OR libkdecore4-devel-4.14.33-7 is installed OR libksuseinstall-devel-4.14.33-7 is installed OR libksuseinstall1-4.14.33-7 is installed OR libksuseinstall1-32bit-4.14.38-lp151.9.5 is installed OR libksuseinstall1-64bit-4.14.33-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libsystemd0-228-150.32 is installed OR libsystemd0-32bit-228-150.32 is installed OR libudev1-228-150.32 is installed OR libudev1-32bit-228-150.32 is installed OR systemd-228-150.32 is installed OR systemd-32bit-228-150.32 is installed OR systemd-bash-completion-228-150.32 is installed OR systemd-sysvinit-228-150.32 is installed OR udev-228-150.32 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information expat-2.1.0-21.3 is installed OR libexpat1-2.1.0-21.3 is installed OR libexpat1-32bit-2.1.0-21.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information gnome-settings-daemon-3.10.2-20 is installed OR gnome-settings-daemon-lang-3.10.2-20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_32-default-7-4 is installed OR kgraft-patch-3_12_69-60_64_32-xen-7-4 is installed OR kgraft-patch-SLE12-SP1_Update_13-7-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information kernel-default-4.4.21-69 is installed OR kernel-default-base-4.4.21-69 is installed OR kernel-default-devel-4.4.21-69 is installed OR kernel-default-man-4.4.21-69 is installed OR kernel-devel-4.4.21-69 is installed OR kernel-macros-4.4.21-69 is installed OR kernel-source-4.4.21-69 is installed OR kernel-syms-4.4.21-69 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libsystemd0-228-150.53 is installed OR libsystemd0-32bit-228-150.53 is installed OR libudev1-228-150.53 is installed OR libudev1-32bit-228-150.53 is installed OR systemd-228-150.53 is installed OR systemd-32bit-228-150.53 is installed OR systemd-bash-completion-228-150.53 is installed OR systemd-sysvinit-228-150.53 is installed OR udev-228-150.53 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libdcerpc-binding0-4.4.2-38.25 is installed OR libdcerpc-binding0-32bit-4.4.2-38.25 is installed OR libdcerpc0-4.4.2-38.25 is installed OR libdcerpc0-32bit-4.4.2-38.25 is installed OR libndr-krb5pac0-4.4.2-38.25 is installed OR libndr-krb5pac0-32bit-4.4.2-38.25 is installed OR libndr-nbt0-4.4.2-38.25 is installed OR libndr-nbt0-32bit-4.4.2-38.25 is installed OR libndr-standard0-4.4.2-38.25 is installed OR libndr-standard0-32bit-4.4.2-38.25 is installed OR libndr0-4.4.2-38.25 is installed OR libndr0-32bit-4.4.2-38.25 is installed OR libnetapi0-4.4.2-38.25 is installed OR libnetapi0-32bit-4.4.2-38.25 is installed OR libsamba-credentials0-4.4.2-38.25 is installed OR libsamba-credentials0-32bit-4.4.2-38.25 is installed OR libsamba-errors0-4.4.2-38.25 is installed OR libsamba-errors0-32bit-4.4.2-38.25 is installed OR libsamba-hostconfig0-4.4.2-38.25 is installed OR libsamba-hostconfig0-32bit-4.4.2-38.25 is installed OR libsamba-passdb0-4.4.2-38.25 is installed OR libsamba-passdb0-32bit-4.4.2-38.25 is installed OR libsamba-util0-4.4.2-38.25 is installed OR libsamba-util0-32bit-4.4.2-38.25 is installed OR libsamdb0-4.4.2-38.25 is installed OR libsamdb0-32bit-4.4.2-38.25 is installed OR libsmbclient0-4.4.2-38.25 is installed OR libsmbclient0-32bit-4.4.2-38.25 is installed OR libsmbconf0-4.4.2-38.25 is installed OR libsmbconf0-32bit-4.4.2-38.25 is installed OR libsmbldap0-4.4.2-38.25 is installed OR libsmbldap0-32bit-4.4.2-38.25 is installed OR libtevent-util0-4.4.2-38.25 is installed OR libtevent-util0-32bit-4.4.2-38.25 is installed OR libwbclient0-4.4.2-38.25 is installed OR libwbclient0-32bit-4.4.2-38.25 is installed OR samba-4.4.2-38.25 is installed OR samba-client-4.4.2-38.25 is installed OR samba-client-32bit-4.4.2-38.25 is installed OR samba-doc-4.4.2-38.25 is installed OR samba-libs-4.4.2-38.25 is installed OR samba-libs-32bit-4.4.2-38.25 is installed OR samba-winbind-4.4.2-38.25 is installed OR samba-winbind-32bit-4.4.2-38.25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-devel-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-36 is installed OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information MozillaFirefox-60.9.0-109.86 is installed OR MozillaFirefox-translations-common-60.9.0-109.86 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND apache2-mod_perl-2.0.8-11 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information kernel-default-3.12.74-60.64.54 is installed OR kernel-default-base-3.12.74-60.64.54 is installed OR kernel-default-devel-3.12.74-60.64.54 is installed OR kernel-devel-3.12.74-60.64.54 is installed OR kernel-macros-3.12.74-60.64.54 is installed OR kernel-source-3.12.74-60.64.54 is installed OR kernel-syms-3.12.74-60.64.54 is installed OR kernel-xen-3.12.74-60.64.54 is installed OR kernel-xen-base-3.12.74-60.64.54 is installed OR kernel-xen-devel-3.12.74-60.64.54 is installed OR kgraft-patch-3_12_74-60_64_54-default-1-2 is installed OR kgraft-patch-3_12_74-60_64_54-xen-1-2 is installed OR kgraft-patch-SLE12-SP1_Update_19-1-2 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND python-Django-1.8.19-3.4 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libmariadb3-3.0.3-3.3 is installed OR mariadb-10.2.15-4.3 is installed OR mariadb-client-10.2.15-4.3 is installed OR mariadb-connector-c-3.0.3-3.3 is installed OR mariadb-errormessages-10.2.15-4.3 is installed OR mariadb-galera-10.2.15-4.3 is installed OR mariadb-tools-10.2.15-4.3 is installed OR xtrabackup-2.4.10-4.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND Package Information openstack-manila-7.3.1~dev15-4.18 is installed OR openstack-manila-api-7.3.1~dev15-4.18 is installed OR openstack-manila-data-7.3.1~dev15-4.18 is installed OR openstack-manila-scheduler-7.3.1~dev15-4.18 is installed OR openstack-manila-share-7.3.1~dev15-4.18 is installed OR python-manila-7.3.1~dev15-4.18 is installed OR venv-openstack-manila-7.3.1~dev15-3.17 is installed OR venv-openstack-manila-x86_64-7.3.1~dev15-3.17 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND binutils-2.32-9.33 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND python-urllib3-1.23-3.6 is installed

BACK