Oval Definition:oval:org.opensuse.security:def:56500
Revision Date:2020-12-01Version:1
Title:Security update for openssh (Moderate)
Description:

This update for openssh fixes the following issues:

Security issue fixed:

- CVE-2017-15906: Stricter checking of operations in read-only mode in sftp server (bsc#1065000).

Bug fixes:

- FIPS: Startup selfchecks (bsc#1068310). - FIPS: Silent complaints about unsupported key exchange methods (bsc#1006166). - Refine handling of sockets for X11 forwarding to remove reintroduced CVE-2008-1483 (bsc#1069509). - Test configuration before running daemon to prevent looping resulting in service shutdown (bsc#1048367)
Family:unixClass:patch
Status:Reference(s):1006166
1012102
1012103
1012104
1012260
1013653
1013655
1013663
1021577
1022043
1026191
1038505
1041469
1041894
1047002
1048367
1049703
1061204
1064786
1065000
1065464
1066489
1068310
1069509
1072947
1073210
1078436
1078662
1080740
1084300
1091551
1092697
1094767
1096515
1105437
1105459
1105460
1107343
1108771
1108986
1109363
1109465
1110506
1110507
1111647
1118277
1118319
1155094
1162224
1162367
1162825
1165894
703591
839074
857131
893359
991444
991445
991872
CVE-2008-1483
CVE-2010-3609
CVE-2011-2483
CVE-2011-3177
CVE-2015-1545
CVE-2015-1546
CVE-2015-3226
CVE-2015-3227
CVE-2016-5010
CVE-2016-6354
CVE-2016-6491
CVE-2016-6520
CVE-2016-9634
CVE-2016-9635
CVE-2016-9636
CVE-2016-9807
CVE-2016-9808
CVE-2016-9810
CVE-2016-9840
CVE-2016-9841
CVE-2016-9842
CVE-2016-9843
CVE-2017-10790
CVE-2017-1289
CVE-2017-15906
CVE-2017-16541
CVE-2017-2592
CVE-2017-3509
CVE-2017-3511
CVE-2017-3533
CVE-2017-3539
CVE-2017-3544
CVE-2018-10844
CVE-2018-10845
CVE-2018-10846
CVE-2018-12086
CVE-2018-12376
CVE-2018-12377
CVE-2018-12378
CVE-2018-12379
CVE-2018-12381
CVE-2018-12383
CVE-2018-12385
CVE-2018-12386
CVE-2018-12387
CVE-2018-18227
CVE-2018-19788
CVE-2018-7738
CVE-2018-9568
CVE-2019-18348
CVE-2019-9674
CVE-2020-8492
SUSE-SU-2016:2076-1
SUSE-SU-2016:3288-1
SUSE-SU-2017:0848-1
SUSE-SU-2017:1386-1
SUSE-SU-2017:3230-1
SUSE-SU-2018:2825-1
SUSE-SU-2018:3590-1
SUSE-SU-2018:3591-1
SUSE-SU-2018:3926-1
SUSE-SU-2018:4154-1
SUSE-SU-2019:0019-1
SUSE-SU-2020:0854-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • gstreamer-plugins-bad-1.12.5-lp150.1 is installed
  • OR gstreamer-plugins-bad-lang-1.12.5-lp150.1 is installed
  • OR libgstadaptivedemux-1_0-0-1.12.5-lp150.1 is installed
  • OR libgstbadaudio-1_0-0-1.12.5-lp150.1 is installed
  • OR libgstbadbase-1_0-0-1.12.5-lp150.1 is installed
  • OR libgstbadvideo-1_0-0-1.12.5-lp150.1 is installed
  • OR libgstbasecamerabinsrc-1_0-0-1.12.5-lp150.1 is installed
  • OR libgstcodecparsers-1_0-0-1.12.5-lp150.1 is installed
  • OR libgstgl-1_0-0-1.12.5-lp150.1 is installed
  • OR libgstmpegts-1_0-0-1.12.5-lp150.1 is installed
  • OR libgstphotography-1_0-0-1.12.5-lp150.1 is installed
  • OR libgsturidownloader-1_0-0-1.12.5-lp150.1 is installed
  • OR libgstwayland-1_0-0-1.12.5-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • evolution-3.26.6-lp151.4.3 is installed
  • OR evolution-devel-3.26.6-lp151.4.3 is installed
  • OR evolution-lang-3.26.6-lp151.4.3 is installed
  • OR evolution-plugin-bogofilter-3.26.6-lp151.4.3 is installed
  • OR evolution-plugin-pst-import-3.26.6-lp151.4.3 is installed
  • OR evolution-plugin-spamassassin-3.26.6-lp151.4.3 is installed
  • OR glade-catalog-evolution-3.26.6-lp151.4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • openssh-7.2p2-74.11 is installed
  • OR openssh-askpass-gnome-7.2p2-74.11 is installed
  • OR openssh-helpers-7.2p2-74.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • openldap2-2.4.41-18.3 is installed
  • OR openldap2-back-meta-2.4.41-18.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_104-default-4-2 is installed
  • OR kgraft-patch-3_12_74-60_64_104-xen-4-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_31-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • openslp-2.0.0-11 is installed
  • OR openslp-32bit-2.0.0-11 is installed
  • OR openslp-server-2.0.0-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • kernel-default-4.4.121-92.85 is installed
  • OR kernel-default-base-4.4.121-92.85 is installed
  • OR kernel-default-devel-4.4.121-92.85 is installed
  • OR kernel-devel-4.4.121-92.85 is installed
  • OR kernel-macros-4.4.121-92.85 is installed
  • OR kernel-source-4.4.121-92.85 is installed
  • OR kernel-syms-4.4.121-92.85 is installed
  • OR kgraft-patch-4_4_121-92_85-default-1-3.5 is installed
  • OR kgraft-patch-SLE12-SP2_Update_23-1-3.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kernel-default-4.4.121-92.92 is installed
  • OR kernel-default-base-4.4.121-92.92 is installed
  • OR kernel-default-devel-4.4.121-92.92 is installed
  • OR kernel-devel-4.4.121-92.92 is installed
  • OR kernel-macros-4.4.121-92.92 is installed
  • OR kernel-source-4.4.121-92.92 is installed
  • OR kernel-syms-4.4.121-92.92 is installed
  • OR kgraft-patch-4_4_121-92_92-default-1-3.7 is installed
  • OR kgraft-patch-SLE12-SP2_Update_24-1-3.7 is installed
  • OR lttng-modules-2.7.1-9.4 is installed
  • OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.92-9.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_120-92_70-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_20-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • emacs-24.3-19 is installed
  • OR emacs-el-24.3-19 is installed
  • OR emacs-info-24.3-19 is installed
  • OR emacs-nox-24.3-19 is installed
  • OR emacs-x11-24.3-19 is installed
  • OR etags-24.3-19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • git-2.12.3-27.22 is installed
  • OR git-core-2.12.3-27.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • file-roller-3.20.3-15.6 is installed
  • OR file-roller-lang-3.20.3-15.6 is installed
  • OR nautilus-file-roller-3.20.3-15.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • evince-3.20.2-6.22 is installed
  • OR evince-browser-plugin-3.20.2-6.22 is installed
  • OR evince-lang-3.20.2-6.22 is installed
  • OR evince-plugin-djvudocument-3.20.2-6.22 is installed
  • OR evince-plugin-dvidocument-3.20.2-6.22 is installed
  • OR evince-plugin-pdfdocument-3.20.2-6.22 is installed
  • OR evince-plugin-psdocument-3.20.2-6.22 is installed
  • OR evince-plugin-tiffdocument-3.20.2-6.22 is installed
  • OR evince-plugin-xpsdocument-3.20.2-6.22 is installed
  • OR libevdocument3-4-3.20.2-6.22 is installed
  • OR libevview3-3-3.20.2-6.22 is installed
  • OR nautilus-evince-3.20.2-6.22 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND ruby2.1-rubygem-activesupport-4_2-4.2.2-2 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • gnutls-3.2.15-18.6 is installed
  • OR libgnutls-openssl27-3.2.15-18.6 is installed
  • OR libgnutls28-3.2.15-18.6 is installed
  • OR libgnutls28-32bit-3.2.15-18.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • python-certifi-2018.4.16-3.6 is installed
  • OR python-chardet-3.0.4-5.6 is installed
  • OR python-urllib3-1.22-3.20 is installed
  • OR python3-certifi-2018.4.16-3.6 is installed
  • OR python3-chardet-3.0.4-5.6 is installed
  • OR python3-requests-2.20.1-5 is installed
  • OR python3-urllib3-1.22-3.20 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.251-43.35 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.251-43.35 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.251-43.35 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.251-43.35 is installed
    • BACK