Oval Definition:oval:org.opensuse.security:def:56371
Revision Date:2020-12-01Version:1
Title:Security update for puppet (Moderate)
Description:

This update for puppet fixes the following issues:

- CVE-2017-10689: Reset permissions when unpacking tar in PMT. When using minitar, files were unpacked with whatever permissions are in the tarball. This is potentially unsafe, as tarballs can be easily created with weird permissions (bsc#1080288)
Family:unixClass:patch
Status:Reference(s):1045327
1053431
1057950
1080288
1088681
1090518
1112039
1144903
1153108
1153158
1153161
929629
954204
CVE-2006-4197
CVE-2008-4989
CVE-2010-4530
CVE-2011-0904
CVE-2011-0905
CVE-2011-1164
CVE-2011-1526
CVE-2011-3602
CVE-2011-4128
CVE-2011-4862
CVE-2012-0390
CVE-2012-1569
CVE-2012-1573
CVE-2013-6393
CVE-2014-0092
CVE-2014-1959
CVE-2014-2525
CVE-2014-3466
CVE-2014-3566
CVE-2014-8146
CVE-2014-8147
CVE-2014-8564
CVE-2014-9130
CVE-2015-0294
CVE-2015-2698
CVE-2015-3622
CVE-2015-6251
CVE-2017-1000251
CVE-2017-10053
CVE-2017-10067
CVE-2017-10074
CVE-2017-10078
CVE-2017-10081
CVE-2017-10087
CVE-2017-10089
CVE-2017-10090
CVE-2017-10096
CVE-2017-10101
CVE-2017-10102
CVE-2017-10105
CVE-2017-10107
CVE-2017-10108
CVE-2017-10109
CVE-2017-10110
CVE-2017-10111
CVE-2017-10115
CVE-2017-10116
CVE-2017-10125
CVE-2017-10243
CVE-2017-10689
CVE-2017-15274
CVE-2018-18386
CVE-2018-2755
CVE-2018-2761
CVE-2018-2766
CVE-2018-2767
CVE-2018-2771
CVE-2018-2781
CVE-2018-2782
CVE-2018-2784
CVE-2018-2787
CVE-2018-2813
CVE-2018-2817
CVE-2018-2819
CVE-2019-10220
CVE-2019-17133
SUSE-SU-2015:2302-1
SUSE-SU-2017:2263-1
SUSE-SU-2017:2318-1
SUSE-SU-2017:2788-1
SUSE-SU-2018:0571-1
SUSE-SU-2018:1781-1
SUSE-SU-2019:2829-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • ghostscript-9.23-lp150.1 is installed
  • OR ghostscript-x11-9.23-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • pdns-4.1.11-20 is installed
  • OR pdns-backend-geoip-4.1.8-lp151.2.3 is installed
  • OR pdns-backend-godbc-4.1.11-20 is installed
  • OR pdns-backend-ldap-4.1.11-20 is installed
  • OR pdns-backend-lua-4.1.11-20 is installed
  • OR pdns-backend-mydns-4.1.11-20 is installed
  • OR pdns-backend-mysql-4.1.11-20 is installed
  • OR pdns-backend-postgresql-4.1.11-20 is installed
  • OR pdns-backend-remote-4.1.11-20 is installed
  • OR pdns-backend-sqlite3-4.1.11-20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND puppet-3.8.5-15.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • icu-52.1-8.3 is installed
  • OR libicu52_1-52.1-8.3 is installed
  • OR libicu52_1-32bit-52.1-8.3 is installed
  • OR libicu52_1-data-52.1-8.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • gnutls-3.2.15-11 is installed
  • OR libgnutls-openssl27-3.2.15-11 is installed
  • OR libgnutls28-3.2.15-11 is installed
  • OR libgnutls28-32bit-3.2.15-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_45-default-5-4 is installed
  • OR kgraft-patch-3_12_74-60_64_45-xen-5-4 is installed
  • OR kgraft-patch-SLE12-SP1_Update_16-5-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • krb5-appl-clients-1.0.3-1 is installed
  • OR krb5-appl-servers-1.0.3-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • python3-rpm-4.11.2-16.21 is installed
  • OR rpm-4.11.2-16.21 is installed
  • OR rpm-32bit-4.11.2-16.21 is installed
  • OR rpm-build-4.11.2-16.21 is installed
  • OR rpm-python-4.11.2-16.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.212-27.32 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.212-27.32 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.212-27.32 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.212-27.32 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND ucode-intel-20180807-13.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • alsa-1.0.27.2-15 is installed
  • OR alsa-docs-1.0.27.2-15 is installed
  • OR libasound2-1.0.27.2-15 is installed
  • OR libasound2-32bit-1.0.27.2-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_178-94_91-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_25-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • djvulibre-3.5.25.3-5.3 is installed
  • OR libdjvulibre21-3.5.25.3-5.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • audiofile-0.3.6-10 is installed
  • OR libaudiofile1-0.3.6-10 is installed
  • OR libaudiofile1-32bit-0.3.6-10 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr4.10-30.5 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr4.10-30.5 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr4.10-30.5 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr4.10-30.5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • kernel-default-4.4.121-92.73 is installed
  • OR kernel-default-base-4.4.121-92.73 is installed
  • OR kernel-default-devel-4.4.121-92.73 is installed
  • OR kernel-default-man-4.4.121-92.73 is installed
  • OR kernel-devel-4.4.121-92.73 is installed
  • OR kernel-macros-4.4.121-92.73 is installed
  • OR kernel-source-4.4.121-92.73 is installed
  • OR kernel-syms-4.4.121-92.73 is installed
  • OR kgraft-patch-4_4_121-92_73-default-1-3.3 is installed
  • OR kgraft-patch-SLE12-SP2_Update_21-1-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND cobbler-2.6.6-49.14 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libpcap-1.8.1-10.3 is installed
  • OR libpcap1-1.8.1-10.3 is installed
  • OR tcpdump-4.9.2-14.14 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Django1-1.11.20-3.6 is installed
    • BACK