Oval Definition:oval:org.opensuse.security:def:56521
Revision Date:2020-12-01Version:1
Title:Security update for gpg2 (Important)
Description:

This update for gpg2 fixes the following security issue:

- CVE-2018-12020: GnuPG mishandled the original filename during decryption and verification actions, which allowed remote attackers to spoof the output that GnuPG sends on file descriptor 2 to other programs that use the '--status-fd 2' option (bsc#1096745)
Family:unixClass:patch
Status:Reference(s):1001374
1008047
1008050
1031450
1031451
1044947
1056284
1057406
1070960
1083125
1083304
1083305
1085207
1085447
1086774
1086775
1086813
1086814
1086817
1086820
1090368
1090646
1096745
1103511
1109961
1122706
928193
948902
951734
951735
954429
956018
956021
956260
957105
957106
957107
957109
957110
981654
989363
992533
CVE-2012-1152
CVE-2012-4406
CVE-2013-4566
CVE-2013-6393
CVE-2014-2525
CVE-2014-3566
CVE-2014-4038
CVE-2014-4039
CVE-2014-7960
CVE-2014-9130
CVE-2015-1819
CVE-2015-1856
CVE-2015-5223
CVE-2015-5244
CVE-2015-5312
CVE-2015-7497
CVE-2015-7498
CVE-2015-7499
CVE-2015-7500
CVE-2015-7941
CVE-2015-7942
CVE-2015-8035
CVE-2015-8241
CVE-2015-8242
CVE-2015-8317
CVE-2015-9262
CVE-2016-3099
CVE-2016-6210
CVE-2016-6515
CVE-2016-7401
CVE-2016-9013
CVE-2016-9014
CVE-2017-1000385
CVE-2017-12794
CVE-2017-13166
CVE-2017-15710
CVE-2017-15715
CVE-2017-5715
CVE-2017-7233
CVE-2017-7234
CVE-2017-7508
CVE-2017-7520
CVE-2017-7521
CVE-2018-11763
CVE-2018-12020
CVE-2018-1283
CVE-2018-1301
CVE-2018-1303
CVE-2018-1312
CVE-2018-7536
CVE-2018-7537
CVE-2018-8781
CVE-2018-8897
CVE-2019-3813
SUSE-SU-2016:0049-1
SUSE-SU-2016:2280-1
SUSE-SU-2017:1635-1
SUSE-SU-2018:0708-1
SUSE-SU-2018:0879-1
SUSE-SU-2018:0973-1
SUSE-SU-2018:0974-1
SUSE-SU-2018:1514-1
SUSE-SU-2018:1698-1
SUSE-SU-2018:2841-1
SUSE-SU-2018:3582-1
SUSE-SU-2019:0231-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • kernel-firmware-20180416-lp150.1 is installed
  • OR ucode-amd-20180416-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • update-test-32bit-pkg-5.1-lp151.12 is installed
  • OR update-test-affects-package-manager-5.1-lp151.12 is installed
  • OR update-test-broken-5.1-lp151.12 is installed
  • OR update-test-feature-5.1-lp151.12 is installed
  • OR update-test-interactive-5.1-lp151.12 is installed
  • OR update-test-optional-5.1-lp151.12 is installed
  • OR update-test-reboot-needed-5.1-lp151.12 is installed
  • OR update-test-relogin-suggested-5.1-lp151.12 is installed
  • OR update-test-security-5.1-lp151.12 is installed
  • OR update-test-trivial-5.1-lp151.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • gpg2-2.0.24-9.3 is installed
  • OR gpg2-lang-2.0.24-9.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND perl-YAML-LibYAML-0.38-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_48-default-10-2 is installed
  • OR kgraft-patch-3_12_74-60_64_48-xen-10-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_17-10-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND apache2-mod_nss-1.0.14-18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.20-30.36 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kernel-default-4.4.121-92.95 is installed
  • OR kernel-default-base-4.4.121-92.95 is installed
  • OR kernel-default-devel-4.4.121-92.95 is installed
  • OR kernel-devel-4.4.121-92.95 is installed
  • OR kernel-macros-4.4.121-92.95 is installed
  • OR kernel-source-4.4.121-92.95 is installed
  • OR kernel-syms-4.4.121-92.95 is installed
  • OR lttng-modules-2.7.1-9.6 is installed
  • OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.95-9.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_114-92_67-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_19-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • gnome-shell-3.20.4-76 is installed
  • OR gnome-shell-browser-plugin-3.20.4-76 is installed
  • OR gnome-shell-lang-3.20.4-76 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_162-94_69-default-5-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_21-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.65-38.53 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.65-38.53 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.65-38.53 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.65-38.53 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.65-38.53 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • gnome-shell-search-provider-nautilus-3.20.3-23.6 is installed
  • OR libnautilus-extension1-3.20.3-23.6 is installed
  • OR nautilus-3.20.3-23.6 is installed
  • OR nautilus-lang-3.20.3-23.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • openstack-swift-2.1.0-4 is installed
  • OR openstack-swift-account-2.1.0-4 is installed
  • OR openstack-swift-container-2.1.0-4 is installed
  • OR openstack-swift-object-2.1.0-4 is installed
  • OR openstack-swift-proxy-2.1.0-4 is installed
  • OR python-swift-2.1.0-4 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • apache2-2.4.23-29.27 is installed
  • OR apache2-doc-2.4.23-29.27 is installed
  • OR apache2-example-pages-2.4.23-29.27 is installed
  • OR apache2-prefork-2.4.23-29.27 is installed
  • OR apache2-utils-2.4.23-29.27 is installed
  • OR apache2-worker-2.4.23-29.27 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • kernel-default-4.4.180-94.127 is installed
  • OR kernel-default-base-4.4.180-94.127 is installed
  • OR kernel-default-devel-4.4.180-94.127 is installed
  • OR kernel-default-kgraft-4.4.180-94.127 is installed
  • OR kernel-devel-4.4.180-94.127 is installed
  • OR kernel-macros-4.4.180-94.127 is installed
  • OR kernel-source-4.4.180-94.127 is installed
  • OR kernel-syms-4.4.180-94.127 is installed
  • OR kgraft-patch-4_4_180-94_127-default-1-4.3 is installed
  • OR kgraft-patch-SLE12-SP3_Update_34-1-4.3 is installed
    • BACK