OVAL Reference oval:org.opensuse.security:def:5647

Oval Definition:

oval:org.opensuse.security:def:5647

Revision Date:	2021-04-13	Version:	1
Title:	Security update for opensc (Moderate)
Description:	This update for opensc fixes the following issues: - CVE-2019-15945: Fixed an out-of-bounds access of an ASN.1 Bitstring in decode_bit_string (bsc#1149746). - CVE-2019-15946: Fixed an out-of-bounds access of an ASN.1 Octet string in asn1_decode_entry (bsc#1149747) - CVE-2019-19479: Fixed an incorrect read operation during parsing of a SETCOS file attribute (bsc#1158256) - CVE-2019-19480: Fixed an improper free operation in sc_pkcs15_decode_prkdf_entry (bsc#1158307). - CVE-2019-20792: Fixed a double free in coolkey_free_private_data (bsc#1170809). - CVE-2020-26570: Fixed a buffer overflow in sc_oberthur_read_file (bsc#1177364). - CVE-2020-26571: Fixed a stack-based buffer overflow in gemsafe GPK smart card software driver (bsc#1177380) - CVE-2020-26572: Fixed a stack-based buffer overflow in tcos_decipher (bsc#1177378).
Family:	unix	Class:	patch
Status:		Reference(s):	1124493 1149746 1149747 1158256 1158307 1170809 1171186 1177364 1177378 1177380 CVE-2009-0035 CVE-2009-0793 CVE-2009-4492 CVE-2010-0541 CVE-2010-2529 CVE-2010-2547 CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543 CVE-2011-1004 CVE-2011-1005 CVE-2011-2896 CVE-2011-4815 CVE-2012-3236 CVE-2012-5576 CVE-2013-4238 CVE-2013-4276 CVE-2013-4351 CVE-2013-4402 CVE-2013-7447 CVE-2014-3248 CVE-2014-4617 CVE-2014-6272 CVE-2015-1038 CVE-2015-1606 CVE-2015-1607 CVE-2015-3223 CVE-2015-5330 CVE-2016-2335 CVE-2016-4994 CVE-2016-9445 CVE-2016-9446 CVE-2016-9809 CVE-2016-9812 CVE-2016-9813 CVE-2017-5843 CVE-2017-5848 CVE-2019-15945 CVE-2019-15946 CVE-2019-19479 CVE-2019-19480 CVE-2019-20792 CVE-2019-3820 CVE-2020-12387 CVE-2020-12392 CVE-2020-12393 CVE-2020-12395 CVE-2020-12397 CVE-2020-26570 CVE-2020-26571 CVE-2020-26572 CVE-2020-6831 SUSE-SU-2019:1459-1 SUSE-SU-2020:1225-1
Platform(s):	openSUSE 13.1 openSUSE 13.1 NonFree SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 11 SP3 SUSE Linux Enterprise Point of Sale 12 SP2 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Real Time Extension 12 SP1 SUSE Linux Enterprise Real Time Extension 12 SP2 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 5	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information gimp-2.8.18-4 is installed OR gimp-lang-2.8.18-4 is installed OR gimp-plugins-python-2.8.18-4 is installed OR libgimp-2_0-0-2.8.18-4 is installed OR libgimpui-2_0-0-2.8.18-4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information alsa-1.0.27.2-15 is installed OR libasound2-1.0.27.2-15 is installed OR libasound2-32bit-1.0.27.2-15 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 is installed AND Package Information apache2-2.4.10-14.17.1 is installed OR apache2-doc-2.4.10-14.17.1 is installed OR apache2-example-pages-2.4.10-14.17.1 is installed OR apache2-prefork-2.4.10-14.17.1 is installed OR apache2-utils-2.4.10-14.17.1 is installed OR apache2-worker-2.4.10-14.17.1 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information compat-openssl098-0.9.8j-102.1 is installed OR libopenssl0_9_8-0.9.8j-102.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP5 is installed AND Package Information libpacemaker3-1.1.21+20190809.bf34b44fa-1 is installed OR pacemaker-1.1.21+20190809.bf34b44fa-1 is installed OR pacemaker-cli-1.1.21+20190809.bf34b44fa-1 is installed OR pacemaker-cts-1.1.21+20190809.bf34b44fa-1 is installed OR pacemaker-remote-1.1.21+20190809.bf34b44fa-1 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information apache2-mod_apparmor-2.8.2-51.18 is installed OR apparmor-docs-2.8.2-51.18 is installed OR apparmor-parser-2.8.2-51.18 is installed OR apparmor-profiles-2.8.2-51.18 is installed OR apparmor-utils-2.8.2-51.18 is installed OR libapparmor1-2.8.2-51.18 is installed OR libapparmor1-32bit-2.8.2-51.18 is installed OR pam_apparmor-2.8.2-51.18 is installed OR pam_apparmor-32bit-2.8.2-51.18 is installed OR perl-apparmor-2.8.2-51.18 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information nodejs4-4.6.0-8 is installed OR nodejs4-devel-4.6.0-8 is installed OR nodejs4-docs-4.6.0-8 is installed OR npm4-4.6.0-8 is installed
Definition Synopsis
SUSE Linux Enterprise Point of Sale 11 SP3 is installed AND Package Information MozillaFirefox-45.3.0esr-50.1 is installed OR MozillaFirefox-translations-45.3.0esr-50.1 is installed
Definition Synopsis
SUSE Linux Enterprise Point of Sale 12 SP2 is installed AND Package Information salt-2016.11.4-45.2 is installed OR salt-minion-2016.11.4-45.2 is installed
Definition Synopsis
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed AND Package Information curl-7.37.0-37.23.1 is installed OR libcurl4-7.37.0-37.23.1 is installed OR libcurl4-32bit-7.37.0-37.23.1 is installed
Definition Synopsis
SUSE Linux Enterprise Real Time Extension 12 SP1 is installed AND Package Information kernel-compute-3.12.61-60.18.1 is installed OR kernel-compute-base-3.12.61-60.18.1 is installed OR kernel-compute-devel-3.12.61-60.18.1 is installed OR kernel-compute_debug-3.12.61-60.18.1 is installed OR kernel-compute_debug-devel-3.12.61-60.18.1 is installed OR kernel-devel-rt-3.12.61-60.18.1 is installed OR kernel-rt-3.12.61-60.18.1 is installed OR kernel-rt-base-3.12.61-60.18.1 is installed OR kernel-rt-devel-3.12.61-60.18.1 is installed OR kernel-rt_debug-3.12.61-60.18.1 is installed OR kernel-rt_debug-devel-3.12.61-60.18.1 is installed OR kernel-source-rt-3.12.61-60.18.1 is installed OR kernel-syms-rt-3.12.61-60.18.1 is installed
Definition Synopsis
SUSE Linux Enterprise Real Time Extension 12 SP2 is installed AND Package Information cluster-md-kmp-rt-4.4.95-21.1 is installed OR cluster-network-kmp-rt-4.4.95-21.1 is installed OR dlm-kmp-rt-4.4.95-21.1 is installed OR gfs2-kmp-rt-4.4.95-21.1 is installed OR kernel-devel-rt-4.4.95-21.1 is installed OR kernel-rt-4.4.95-21.1 is installed OR kernel-rt-base-4.4.95-21.1 is installed OR kernel-rt-devel-4.4.95-21.1 is installed OR kernel-rt_debug-4.4.95-21.1 is installed OR kernel-rt_debug-devel-4.4.95-21.1 is installed OR kernel-source-rt-4.4.95-21.1 is installed OR kernel-syms-rt-4.4.95-21.1 is installed OR ocfs2-kmp-rt-4.4.95-21.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 is installed AND Package Information libxml2-2.7.1-10.11.1 is installed OR libxml2-32bit-2.7.1-10.11.1 is installed OR libxml2-doc-2.7.1-10.11.1 is installed OR libxml2-x86-2.7.1-10.11.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2 is installed AND apache2-mod_jk-1.2.26-1.30.110 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2-LTSS is installed AND Package Information java-1_7_0-ibm-1.7.0_sr9.10-9.1 is installed OR java-1_7_0-ibm-alsa-1.7.0_sr9.10-9.1 is installed OR java-1_7_0-ibm-devel-1.7.0_sr9.10-9.1 is installed OR java-1_7_0-ibm-jdbc-1.7.0_sr9.10-9.1 is installed OR java-1_7_0-ibm-plugin-1.7.0_sr9.10-9.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND fvwm2-2.5.26-1.25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information MozillaFirefox-31.7.0esr-0.8.1 is installed OR MozillaFirefox-translations-31.7.0esr-0.8.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information bash-4.2-75 is installed OR bash-doc-4.2-75 is installed OR libreadline6-6.2-75 is installed OR libreadline6-32bit-6.2-75 is installed OR readline-doc-6.2-75 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND binutils-2.25.0-13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND apache-commons-httpclient-3.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information freeradius-server-3.0.15-2.8 is installed OR freeradius-server-doc-3.0.15-2.8 is installed OR freeradius-server-krb5-3.0.15-2.8 is installed OR freeradius-server-ldap-3.0.15-2.8 is installed OR freeradius-server-libs-3.0.15-2.8 is installed OR freeradius-server-mysql-3.0.15-2.8 is installed OR freeradius-server-perl-3.0.15-2.8 is installed OR freeradius-server-postgresql-3.0.15-2.8 is installed OR freeradius-server-python-3.0.15-2.8 is installed OR freeradius-server-sqlite-3.0.15-2.8 is installed OR freeradius-server-utils-3.0.15-2.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_60-52_57-default-2-2.1 is installed OR kgraft-patch-3_12_60-52_57-xen-2-2.1 is installed OR kgraft-patch-SLE12_Update_16-2-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND ant-1.9.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND Package Information glibc-2.19-40.16 is installed OR glibc-32bit-2.19-40.16 is installed OR glibc-devel-2.19-40.16 is installed OR glibc-devel-32bit-2.19-40.16 is installed OR glibc-html-2.19-40.16 is installed OR glibc-i18ndata-2.19-40.16 is installed OR glibc-info-2.19-40.16 is installed OR glibc-locale-2.19-40.16 is installed OR glibc-locale-32bit-2.19-40.16 is installed OR glibc-profile-2.19-40.16 is installed OR glibc-profile-32bit-2.19-40.16 is installed OR nscd-2.19-40.16 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND Package Information apache2-2.2.12-1.40.1 is installed OR apache2-devel-2.2.12-1.40.1 is installed OR apache2-doc-2.2.12-1.40.1 is installed OR apache2-example-pages-2.2.12-1.40.1 is installed OR apache2-prefork-2.2.12-1.40.1 is installed OR apache2-utils-2.2.12-1.40.1 is installed OR apache2-worker-2.2.12-1.40.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information MozillaFirefox-devel-24.5.0esr-0.8.1 is installed OR mozilla-nspr-devel-4.10.4-0.3.1 is installed OR mozilla-nss-devel-3.16-0.8.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND rubygem-activesupport-3_2-3.2.12-0.9.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND MozillaFirefox-devel-31.1.0esr-1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information DirectFB-devel-1.7.1-4 is installed OR lib++dfb-devel-1.7.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND Package Information gstreamer-plugins-bad-devel-1.8.3-17 is installed OR libgstinsertbin-1_0-0-1.8.3-17 is installed OR libgsturidownloader-1_0-0-1.8.3-17 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND argyllcms-1.6.3-1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information finch-2.10.9-8 is installed OR libpurple-2.10.9-8 is installed OR libpurple-lang-2.10.9-8 is installed OR libpurple-meanwhile-2.10.9-8 is installed OR libpurple-tcl-2.10.9-8 is installed OR pidgin-2.10.9-8 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information NetworkManager-1.0.12-8 is installed OR NetworkManager-lang-1.0.12-8 is installed OR typelib-1_0-NM-1_0-1.0.12-8 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND drm-kmp-default-4.9.33_k4.4.73_5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND argyllcms-1.6.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information gnome-shell-3.26.2+20180130.0d9c74212-4.19 is installed OR gnome-shell-calendar-3.26.2+20180130.0d9c74212-4.19 is installed

BACK