OVAL Reference oval:org.opensuse.security:def:56597

Oval Definition:

oval:org.opensuse.security:def:56597

Revision Date:	2020-12-01	Version:	1
Title:	Security update for gnutls (Moderate)
Description:	This update for gnutls fixes the following issues: Security issues fixed: * - Improved mitigations against Lucky 13 class of attacks - 'Just in Time' PRIME + PROBE cache-based side channel attack can lead to plaintext recovery (CVE-2018-10846, bsc#1105460) - HMAC-SHA-384 vulnerable to Lucky thirteen attack due to use of wrong constant (CVE-2018-10845, bsc#1105459) - HMAC-SHA-256 vulnerable to Lucky thirteen attack due to not enough dummy function calls (CVE-2018-10844, bsc#1105437) - The _asn1_check_identifier function in Libtasn1 caused a NULL pointer dereference and crash (CVE-2017-10790, bsc#1047002)
Family:	unix	Class:	patch
Status:		Reference(s):	1007869 1007870 1007871 1039496 1047002 1056865 1059777 1061076 1061077 1061080 1061081 1061082 1061084 1061086 1061087 1099257 1103098 1104668 1105437 1105459 1105460 1113094 1113672 1115375 1124729 1124734 1124991 1128378 1133191 1133375 1136446 1137597 1141780 1141782 1141783 1141784 1141785 1141786 1141787 1141789 798458 817781 857188 858676 858677 937787 957174 958789 984751 985177 985348 989523 998182 CVE-2011-4971 CVE-2013-0179 CVE-2013-2069 CVE-2013-4509 CVE-2013-7239 CVE-2013-7290 CVE-2013-7291 CVE-2014-0040 CVE-2014-0041 CVE-2014-0042 CVE-2015-4792 CVE-2015-4802 CVE-2015-4807 CVE-2015-4815 CVE-2015-4826 CVE-2015-4830 CVE-2015-4836 CVE-2015-4858 CVE-2015-4861 CVE-2015-4870 CVE-2015-4913 CVE-2015-5969 CVE-2016-0705 CVE-2016-0772 CVE-2016-1000110 CVE-2016-5636 CVE-2016-5699 CVE-2016-7404 CVE-2016-8704 CVE-2016-8705 CVE-2016-8706 CVE-2017-1000364 CVE-2017-10790 CVE-2017-15588 CVE-2017-15589 CVE-2017-15590 CVE-2017-15591 CVE-2017-15592 CVE-2017-15593 CVE-2017-15594 CVE-2017-15595 CVE-2017-3732 CVE-2017-3736 CVE-2017-5526 CVE-2017-9951 CVE-2018-10844 CVE-2018-10845 CVE-2018-10846 CVE-2018-12539 CVE-2018-12900 CVE-2018-1517 CVE-2018-1656 CVE-2018-18557 CVE-2018-18661 CVE-2018-2940 CVE-2018-2952 CVE-2018-2964 CVE-2018-2973 CVE-2018-5391 CVE-2019-11477 CVE-2019-11478 CVE-2019-11487 CVE-2019-2745 CVE-2019-2762 CVE-2019-2766 CVE-2019-2769 CVE-2019-2786 CVE-2019-2816 CVE-2019-2842 CVE-2019-3846 CVE-2019-6974 CVE-2019-6975 CVE-2019-7221 CVE-2019-7317 CVE-2019-9213 CVE-2019-9928 SUSE-SU-2016:0296-1 SUSE-SU-2016:2106-1 SUSE-SU-2017:1233-1 SUSE-SU-2017:1943-1 SUSE-SU-2017:2873-1 SUSE-SU-2018:0807-1 SUSE-SU-2018:2839-1 SUSE-SU-2018:2842-1 SUSE-SU-2018:3911-1 SUSE-SU-2019:1600-1 SUSE-SU-2019:2036-1 SUSE-SU-2019:2042-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information cups-2.2.7-lp150.1 is installed OR cups-client-2.2.7-lp150.1 is installed OR cups-config-2.2.7-lp150.1 is installed OR libcups2-2.2.7-lp150.1 is installed OR libcupscgi1-2.2.7-lp150.1 is installed OR libcupsimage2-2.2.7-lp150.1 is installed OR libcupsmime1-2.2.7-lp150.1 is installed OR libcupsppdc1-2.2.7-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information chromedriver-74.0.3729.157-lp151.2.3 is installed OR chromium-74.0.3729.157-lp151.2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information gnutls-3.3.27-3.3 is installed OR libgnutls28-3.3.27-3.3 is installed OR libgnutls28-32bit-3.3.27-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libpython2_7-1_0-2.7.9-24 is installed OR libpython2_7-1_0-32bit-2.7.9-24 is installed OR python-2.7.9-24 is installed OR python-32bit-2.7.9-24 is installed OR python-base-2.7.9-24 is installed OR python-base-32bit-2.7.9-24 is installed OR python-curses-2.7.9-24 is installed OR python-demo-2.7.9-24 is installed OR python-doc-2.7.9-24 is installed OR python-doc-pdf-2.7.9-24 is installed OR python-gdbm-2.7.9-24 is installed OR python-idle-2.7.9-24 is installed OR python-tk-2.7.9-24 is installed OR python-xml-2.7.9-24 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_40-default-2-3 is installed OR kgraft-patch-3_12_74-60_64_40-xen-2-3 is installed OR kgraft-patch-SLE12-SP1_Update_15-2-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information ibus-chewing-1.4.14-4 is installed OR ibus-pinyin-1.5.0-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information qemu-2.6.2-41.43 is installed OR qemu-block-curl-2.6.2-41.43 is installed OR qemu-block-rbd-2.6.2-41.43 is installed OR qemu-block-ssh-2.6.2-41.43 is installed OR qemu-guest-agent-2.6.2-41.43 is installed OR qemu-ipxe-1.0.0-41.43 is installed OR qemu-kvm-2.6.2-41.43 is installed OR qemu-lang-2.6.2-41.43 is installed OR qemu-seabios-1.9.1-41.43 is installed OR qemu-sgabios-8-41.43 is installed OR qemu-tools-2.6.2-41.43 is installed OR qemu-vgabios-1.9.1-41.43 is installed OR qemu-x86-2.6.2-41.43 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kernel-default-4.4.121-92.85 is installed OR kernel-default-base-4.4.121-92.85 is installed OR kernel-default-devel-4.4.121-92.85 is installed OR kernel-devel-4.4.121-92.85 is installed OR kernel-macros-4.4.121-92.85 is installed OR kernel-source-4.4.121-92.85 is installed OR kernel-syms-4.4.121-92.85 is installed OR kgraft-patch-4_4_121-92_85-default-1-3.5 is installed OR kgraft-patch-SLE12-SP2_Update_23-1-3.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_80-default-2-2 is installed OR kgraft-patch-SLE12-SP2_Update_22-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information bind-9.9.9P1-62 is installed OR bind-chrootenv-9.9.9P1-62 is installed OR bind-doc-9.9.9P1-62 is installed OR bind-libs-9.9.9P1-62 is installed OR bind-libs-32bit-9.9.9P1-62 is installed OR bind-utils-9.9.9P1-62 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information freeradius-server-3.0.15-2.14 is installed OR freeradius-server-doc-3.0.15-2.14 is installed OR freeradius-server-krb5-3.0.15-2.14 is installed OR freeradius-server-ldap-3.0.15-2.14 is installed OR freeradius-server-libs-3.0.15-2.14 is installed OR freeradius-server-mysql-3.0.15-2.14 is installed OR freeradius-server-perl-3.0.15-2.14 is installed OR freeradius-server-postgresql-3.0.15-2.14 is installed OR freeradius-server-python-3.0.15-2.14 is installed OR freeradius-server-sqlite-3.0.15-2.14 is installed OR freeradius-server-utils-3.0.15-2.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND mailman-2.1.17-3.11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information alsa-1.0.27.2-15 is installed OR alsa-docs-1.0.27.2-15 is installed OR libasound2-1.0.27.2-15 is installed OR libasound2-32bit-1.0.27.2-15 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND openstack-heat-templates-0.0.0+git.1452795102.e53f5d3-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information openstack-magnum-3.1.2~a0~dev20-9 is installed OR openstack-magnum-api-3.1.2~a0~dev20-9 is installed OR openstack-magnum-conductor-3.1.2~a0~dev20-9 is installed OR openstack-magnum-doc-3.1.2~a0~dev20-9 is installed OR python-magnum-3.1.2~a0~dev20-9 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed

BACK