OVAL Reference oval:org.opensuse.security:def:56491

Oval Definition:

oval:org.opensuse.security:def:56491

Revision Date:	2020-12-01	Version:	1
Title:	Security update for perl (Moderate)
Description:	This update for perl fixes the following issues: Security issues fixed: - CVE-2017-12837: Heap-based buffer overflow in the S_regatom function in regcomp.c in Perl 5 before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 allows remote attackers to cause a denial of service (out-of-bounds write) via a regular expression with a '\N{}' escape and the case-insensitive modifier. (bnc#1057724) - CVE-2017-12883: Buffer overflow in the S_grok_bslash_N function in regcomp.c in Perl 5 before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 allows remote attackers to disclose sensitive information or cause a denial of service (application crash) via a crafted regular expression with an invalid '\N{U+...}' escape. (bnc#1057721) - CVE-2017-6512: Race condition in the rmtree and remove_tree functions in the File-Path module before 2.13 for Perl allows attackers to set the mode on arbitrary files via vectors involving directory-permission loosening logic. (bnc#1047178) Bug fixes: - backport set_capture_string changes from upstream (bsc#999735) - reformat baselibs.conf as source validator workaround
Family:	unix	Class:	patch
Status:		Reference(s):	1005591 1009434 1011377 1011390 1011395 1011398 1011404 1011406 1011411 1011417 1012382 1020950 1021578 1024749 1027593 1029907 1029908 1029909 1030296 1030297 1030298 1030584 1030585 1030588 1030589 1031590 1031593 1031595 1031638 1031644 1031656 1035905 1037052 1037057 1037061 1037066 1037273 1042286 1044891 1044897 1044901 1044909 1044925 1044927 1047178 1050469 1057721 1057724 1060427 1062604 1063008 1064232 1065364 1065643 1065689 1065693 1066892 1068640 1068643 1068887 1068888 1068950 1069176 1069202 1069925 1073654 1074741 1075419 1077745 1079103 1079741 1080556 1081527 1082519 1082863 1083528 1083532 1084536 1084724 1085042 1085784 1086608 1086784 1086786 1086788 1088810 1089066 1090997 1091015 1091365 1091368 1092903 1094466 1095344 1095482 1096547 1097104 1099597 1099811 1099813 1099844 1099845 1099846 1099849 1099863 1099864 1099902 1099922 1099993 1099999 1100000 1100001 1100152 1100751 1102151 1102517 1102715 1102870 1103445 1104319 1104495 1105292 1105296 1105322 1105348 1105396 1105536 1106016 1106095 1106369 1106509 1106511 1106512 1106594 1107689 1107735 1107966 1108239 1108399 1109333 1111634 1111635 1124211 1133191 1136446 1137597 1141493 934119 943216 952474 956365 981252 984990 985609 985665 985669 985673 985675 985679 985682 985685 985688 985689 985697 985698 985700 985703 985704 985706 985826 985832 985835 988028 992038 992606 999735 CVE-2011-0421 CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2012-1162 CVE-2012-1163 CVE-2014-9622 CVE-2014-9939 CVE-2015-1852 CVE-2015-2331 CVE-2015-5219 CVE-2015-7995 CVE-2015-8918 CVE-2015-8919 CVE-2015-8920 CVE-2015-8921 CVE-2015-8922 CVE-2015-8923 CVE-2015-8924 CVE-2015-8925 CVE-2015-8926 CVE-2015-8928 CVE-2015-8929 CVE-2015-8930 CVE-2015-8931 CVE-2015-8932 CVE-2015-8933 CVE-2015-8934 CVE-2015-9019 CVE-2016-4300 CVE-2016-4301 CVE-2016-4302 CVE-2016-4692 CVE-2016-4738 CVE-2016-4743 CVE-2016-4809 CVE-2016-7426 CVE-2016-7427 CVE-2016-7428 CVE-2016-7429 CVE-2016-7431 CVE-2016-7433 CVE-2016-7434 CVE-2016-7586 CVE-2016-7587 CVE-2016-7589 CVE-2016-7592 CVE-2016-7598 CVE-2016-7599 CVE-2016-7610 CVE-2016-7623 CVE-2016-7632 CVE-2016-7635 CVE-2016-7639 CVE-2016-7641 CVE-2016-7645 CVE-2016-7652 CVE-2016-7654 CVE-2016-7656 CVE-2016-9310 CVE-2016-9311 CVE-2017-12652 CVE-2017-12837 CVE-2017-12883 CVE-2017-13788 CVE-2017-13798 CVE-2017-13803 CVE-2017-13856 CVE-2017-13866 CVE-2017-13870 CVE-2017-14746 CVE-2017-15275 CVE-2017-15938 CVE-2017-15939 CVE-2017-15996 CVE-2017-16826 CVE-2017-16827 CVE-2017-16828 CVE-2017-16829 CVE-2017-16830 CVE-2017-16831 CVE-2017-16832 CVE-2017-2350 CVE-2017-2354 CVE-2017-2355 CVE-2017-2356 CVE-2017-2362 CVE-2017-2363 CVE-2017-2364 CVE-2017-2365 CVE-2017-2366 CVE-2017-2369 CVE-2017-2371 CVE-2017-2373 CVE-2017-2496 CVE-2017-2510 CVE-2017-2539 CVE-2017-5029 CVE-2017-5715 CVE-2017-5753 CVE-2017-5754 CVE-2017-6512 CVE-2017-6965 CVE-2017-6966 CVE-2017-6969 CVE-2017-7006 CVE-2017-7011 CVE-2017-7012 CVE-2017-7018 CVE-2017-7019 CVE-2017-7020 CVE-2017-7030 CVE-2017-7034 CVE-2017-7037 CVE-2017-7038 CVE-2017-7039 CVE-2017-7040 CVE-2017-7041 CVE-2017-7042 CVE-2017-7043 CVE-2017-7046 CVE-2017-7048 CVE-2017-7049 CVE-2017-7052 CVE-2017-7055 CVE-2017-7056 CVE-2017-7059 CVE-2017-7061 CVE-2017-7064 CVE-2017-7081 CVE-2017-7087 CVE-2017-7089 CVE-2017-7090 CVE-2017-7091 CVE-2017-7092 CVE-2017-7093 CVE-2017-7094 CVE-2017-7095 CVE-2017-7096 CVE-2017-7098 CVE-2017-7099 CVE-2017-7100 CVE-2017-7102 CVE-2017-7104 CVE-2017-7107 CVE-2017-7109 CVE-2017-7111 CVE-2017-7117 CVE-2017-7120 CVE-2017-7142 CVE-2017-7156 CVE-2017-7157 CVE-2017-7209 CVE-2017-7210 CVE-2017-7223 CVE-2017-7224 CVE-2017-7225 CVE-2017-7226 CVE-2017-7299 CVE-2017-7300 CVE-2017-7301 CVE-2017-7302 CVE-2017-7303 CVE-2017-7304 CVE-2017-8392 CVE-2017-8393 CVE-2017-8394 CVE-2017-8396 CVE-2017-8421 CVE-2017-9746 CVE-2017-9747 CVE-2017-9748 CVE-2017-9750 CVE-2017-9755 CVE-2017-9756 CVE-2018-1000807 CVE-2018-1000808 CVE-2018-10372 CVE-2018-10373 CVE-2018-10534 CVE-2018-10535 CVE-2018-10853 CVE-2018-10876 CVE-2018-10877 CVE-2018-10878 CVE-2018-10879 CVE-2018-10880 CVE-2018-10881 CVE-2018-10882 CVE-2018-10883 CVE-2018-10902 CVE-2018-10938 CVE-2018-10940 CVE-2018-12896 CVE-2018-13093 CVE-2018-13094 CVE-2018-13095 CVE-2018-14432 CVE-2018-14617 CVE-2018-14678 CVE-2018-15572 CVE-2018-15594 CVE-2018-16276 CVE-2018-16658 CVE-2018-17182 CVE-2018-6323 CVE-2018-6543 CVE-2018-6554 CVE-2018-6555 CVE-2018-6759 CVE-2018-6872 CVE-2018-7208 CVE-2018-7480 CVE-2018-7568 CVE-2018-7569 CVE-2018-7570 CVE-2018-7642 CVE-2018-7643 CVE-2018-7757 CVE-2018-8945 CVE-2018-9363 CVE-2019-11477 CVE-2019-11478 CVE-2019-11487 CVE-2019-3846 CVE-2019-7317 SUSE-SU-2016:1909-1 SUSE-SU-2016:3195-1 SUSE-SU-2017:1313-1 SUSE-SU-2017:3086-1 SUSE-SU-2017:3092-1 SUSE-SU-2018:0219-1 SUSE-SU-2018:2576-1 SUSE-SU-2018:3084-1 SUSE-SU-2018:3207-1 SUSE-SU-2018:4063-1 SUSE-SU-2019:3060-2
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information gnome-shell-3.26.2+20180130.0d9c74212-lp150.2 is installed OR gnome-shell-calendar-3.26.2+20180130.0d9c74212-lp150.2 is installed OR gnome-shell-lang-3.26.2+20180130.0d9c74212-lp150.2 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND enigmail-2.0.11-31 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information perl-5.18.2-12.3 is installed OR perl-32bit-5.18.2-12.3 is installed OR perl-base-5.18.2-12.3 is installed OR perl-doc-5.18.2-12.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND libzip2-0.11.1-9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information python-setuptools-18.0.1-4.8 is installed OR python3-setuptools-18.0.1-4.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND logrotate-3.8.7-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information LibVNCServer-0.9.9-17.11 is installed OR libvncclient0-0.9.9-17.11 is installed OR libvncserver0-0.9.9-17.11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND ucode-intel-20180703-13.25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information dhcp-4.3.3-9 is installed OR dhcp-client-4.3.3-9 is installed OR dhcp-relay-4.3.3-9 is installed OR dhcp-server-4.3.3-9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND permissions-2015.09.28.1626-17.20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND squid-3.5.21-26.23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information dovecot22-2.2.31-19.11 is installed OR dovecot22-backend-mysql-2.2.31-19.11 is installed OR dovecot22-backend-pgsql-2.2.31-19.11 is installed OR dovecot22-backend-sqlite-2.2.31-19.11 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND python-keystonemiddleware-2.3.1-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information openstack-dashboard-10.0.6~dev4-4.15 is installed OR openstack-heat-7.0.7~dev10-5.12 is installed OR openstack-heat-api-7.0.7~dev10-5.12 is installed OR openstack-heat-api-cfn-7.0.7~dev10-5.12 is installed OR openstack-heat-api-cloudwatch-7.0.7~dev10-5.12 is installed OR openstack-heat-doc-7.0.7~dev10-5.12 is installed OR openstack-heat-engine-7.0.7~dev10-5.12 is installed OR openstack-heat-plugin-heat_docker-7.0.7~dev10-5.12 is installed OR openstack-heat-test-7.0.7~dev10-5.12 is installed OR openstack-horizon-plugin-designate-ui-3.0.2~dev1-3.6 is installed OR openstack-keystone-10.0.3~dev9-7.12 is installed OR openstack-keystone-doc-10.0.3~dev9-7.12 is installed OR openstack-nova-14.0.11~dev13-4.25 is installed OR openstack-nova-api-14.0.11~dev13-4.25 is installed OR openstack-nova-cells-14.0.11~dev13-4.25 is installed OR openstack-nova-cert-14.0.11~dev13-4.25 is installed OR openstack-nova-compute-14.0.11~dev13-4.25 is installed OR openstack-nova-conductor-14.0.11~dev13-4.25 is installed OR openstack-nova-console-14.0.11~dev13-4.25 is installed OR openstack-nova-consoleauth-14.0.11~dev13-4.25 is installed OR openstack-nova-doc-14.0.11~dev13-4.25 is installed OR openstack-nova-novncproxy-14.0.11~dev13-4.25 is installed OR openstack-nova-placement-api-14.0.11~dev13-4.25 is installed OR openstack-nova-scheduler-14.0.11~dev13-4.25 is installed OR openstack-nova-serialproxy-14.0.11~dev13-4.25 is installed OR openstack-nova-vncproxy-14.0.11~dev13-4.25 is installed OR python-heat-7.0.7~dev10-5.12 is installed OR python-horizon-10.0.6~dev4-4.15 is installed OR python-horizon-plugin-designate-ui-3.0.2~dev1-3.6 is installed OR python-keystone-10.0.3~dev9-7.12 is installed OR python-nova-14.0.11~dev13-4.25 is installed OR python-os-vif-1.2.1-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information xen-4.9.4_06-3.62 is installed OR xen-doc-html-4.9.4_06-3.62 is installed OR xen-libs-4.9.4_06-3.62 is installed OR xen-libs-32bit-4.9.4_06-3.62 is installed OR xen-tools-4.9.4_06-3.62 is installed OR xen-tools-domU-4.9.4_06-3.62 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libpython3_4m1_0-3.4.10-25.39 is installed OR python3-3.4.10-25.39 is installed OR python3-base-3.4.10-25.39 is installed OR python3-curses-3.4.10-25.39 is installed OR python3-devel-3.4.10-25.39 is installed

BACK