Oval Definition:oval:org.opensuse.security:def:56631
Revision Date:2020-12-01Version:1
Title:Security update for pam_pkcs11 (Moderate)
Description:

This update for pam_pkcs11 provides the following fixes:

Security issues fixed (bsc#1105012):

- Fixed a logic bug in pampkcs11.c, leading to an authentication replay vulnerability - Fixed a stack-based buffer overflow in opensshmapper.c - Make sure memory is properly cleaned before invoking free()

Other changes:

- Add a systemd service file. (bsc#1049219)
Family:unixClass:patch
Status:Reference(s):1021483
1049219
1052311
1052368
1076366
1083424
1084724
1095482
1098531
1099902
1100751
1102151
1105012
1111853
1123371
1123377
1123378
1129180
1131863
1134156
1140359
1142880
1142882
1142883
1142885
1146882
1146884
1150011
1171252
1171254
933336
939367
961964
967026
970258
982426
983671
983807
984442
984443
988729
991012
991013
991015
991016
991017
991018
991019
991020
CVE-2012-2150
CVE-2014-0011
CVE-2014-8240
CVE-2015-0255
CVE-2016-0787
CVE-2016-10169
CVE-2016-10170
CVE-2016-10171
CVE-2016-10172
CVE-2016-2140
CVE-2016-4428
CVE-2016-5350
CVE-2016-5351
CVE-2016-5352
CVE-2016-5353
CVE-2016-5354
CVE-2016-5355
CVE-2016-5356
CVE-2016-5357
CVE-2016-5358
CVE-2016-5359
CVE-2016-5362
CVE-2016-5363
CVE-2016-6504
CVE-2016-6505
CVE-2016-6506
CVE-2016-6507
CVE-2016-6508
CVE-2016-6509
CVE-2016-6510
CVE-2016-6511
CVE-2017-1000112
CVE-2018-12327
CVE-2018-14432
CVE-2018-16890
CVE-2018-2579
CVE-2018-2582
CVE-2018-2588
CVE-2018-2599
CVE-2018-2602
CVE-2018-2603
CVE-2018-2618
CVE-2018-2629
CVE-2018-2633
CVE-2018-2634
CVE-2018-2637
CVE-2018-2641
CVE-2018-2663
CVE-2018-2677
CVE-2018-2678
CVE-2018-7170
CVE-2019-12973
CVE-2019-14232
CVE-2019-14233
CVE-2019-14234
CVE-2019-14235
CVE-2019-14811
CVE-2019-14812
CVE-2019-14813
CVE-2019-14817
CVE-2019-14822
CVE-2019-3822
CVE-2019-3823
CVE-2019-3835
CVE-2019-3839
CVE-2020-12653
CVE-2020-12654
SUSE-SU-2015:2384-1
SUSE-SU-2016:0718-1
SUSE-SU-2016:2143-1
SUSE-SU-2016:2453-1
SUSE-SU-2017:2439-1
SUSE-SU-2018:0608-1
SUSE-SU-2018:0663-1
SUSE-SU-2018:2576-1
SUSE-SU-2018:3311-1
SUSE-SU-2018:3342-1
SUSE-SU-2019:0249-1
SUSE-SU-2019:2180-1
SUSE-SU-2019:2388-1
SUSE-SU-2019:2478-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • gnome-settings-daemon-3.26.2-lp150.5 is installed
  • OR gnome-settings-daemon-lang-3.26.2-lp150.5 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • bzip2-1.0.6-lp151.5.3 is installed
  • OR bzip2-doc-1.0.6-lp151.5.3 is installed
  • OR libbz2-1-1.0.6-lp151.5.3 is installed
  • OR libbz2-1-32bit-1.0.6-lp151.5.3 is installed
  • OR libbz2-devel-1.0.6-lp151.5.3 is installed
  • OR libbz2-devel-32bit-1.0.6-lp151.5.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • pam_pkcs11-0.6.8-7.5 is installed
  • OR pam_pkcs11-32bit-0.6.8-7.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND xfsprogs-3.2.1-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_45-default-4-2 is installed
  • OR kgraft-patch-3_12_74-60_64_45-xen-4-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_16-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libXvnc1-1.6.0-12 is installed
  • OR tigervnc-1.6.0-12 is installed
  • OR xorg-x11-Xvnc-1.6.0-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • qemu-2.6.2-41.40 is installed
  • OR qemu-block-curl-2.6.2-41.40 is installed
  • OR qemu-block-rbd-2.6.2-41.40 is installed
  • OR qemu-block-ssh-2.6.2-41.40 is installed
  • OR qemu-guest-agent-2.6.2-41.40 is installed
  • OR qemu-ipxe-1.0.0-41.40 is installed
  • OR qemu-kvm-2.6.2-41.40 is installed
  • OR qemu-lang-2.6.2-41.40 is installed
  • OR qemu-seabios-1.9.1-41.40 is installed
  • OR qemu-sgabios-8-41.40 is installed
  • OR qemu-tools-2.6.2-41.40 is installed
  • OR qemu-vgabios-1.9.1-41.40 is installed
  • OR qemu-x86-2.6.2-41.40 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_73-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_21-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_73-default-2-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_21-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • emacs-24.3-19 is installed
  • OR emacs-el-24.3-19 is installed
  • OR emacs-info-24.3-19 is installed
  • OR emacs-nox-24.3-19 is installed
  • OR emacs-x11-24.3-19 is installed
  • OR etags-24.3-19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.65-38.53 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.65-38.53 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.65-38.53 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.65-38.53 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.65-38.53 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • MozillaFirefox-68.5.0-109.106 is installed
  • OR MozillaFirefox-translations-common-68.5.0-109.106 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • cron-4.2-58 is installed
  • OR cronie-1.4.11-58 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • openstack-ceilometer-5.0.4~a0~dev6-6 is installed
  • OR openstack-ceilometer-agent-central-5.0.4~a0~dev6-6 is installed
  • OR openstack-ceilometer-agent-compute-5.0.4~a0~dev6-6 is installed
  • OR openstack-ceilometer-agent-ipmi-5.0.4~a0~dev6-6 is installed
  • OR openstack-ceilometer-agent-notification-5.0.4~a0~dev6-6 is installed
  • OR openstack-ceilometer-alarm-evaluator-5.0.4~a0~dev6-6 is installed
  • OR openstack-ceilometer-alarm-notifier-5.0.4~a0~dev6-6 is installed
  • OR openstack-ceilometer-api-5.0.4~a0~dev6-6 is installed
  • OR openstack-ceilometer-collector-5.0.4~a0~dev6-6 is installed
  • OR openstack-ceilometer-doc-5.0.4~a0~dev6-6 is installed
  • OR openstack-ceilometer-polling-5.0.4~a0~dev6-6 is installed
  • OR openstack-cinder-7.0.3~a0~dev2-7 is installed
  • OR openstack-cinder-api-7.0.3~a0~dev2-7 is installed
  • OR openstack-cinder-backup-7.0.3~a0~dev2-7 is installed
  • OR openstack-cinder-doc-7.0.3~a0~dev2-7 is installed
  • OR openstack-cinder-scheduler-7.0.3~a0~dev2-7 is installed
  • OR openstack-cinder-volume-7.0.3~a0~dev2-7 is installed
  • OR openstack-dashboard-8.0.2~a0~dev34-8 is installed
  • OR openstack-glance-11.0.2~a0~dev13-7 is installed
  • OR openstack-glance-doc-11.0.2~a0~dev13-7 is installed
  • OR openstack-heat-5.0.2~a0~dev93-9 is installed
  • OR openstack-heat-api-5.0.2~a0~dev93-9 is installed
  • OR openstack-heat-api-cfn-5.0.2~a0~dev93-9 is installed
  • OR openstack-heat-api-cloudwatch-5.0.2~a0~dev93-9 is installed
  • OR openstack-heat-doc-5.0.2~a0~dev93-9 is installed
  • OR openstack-heat-engine-5.0.2~a0~dev93-9 is installed
  • OR openstack-heat-plugin-heat_docker-5.0.2~a0~dev93-9 is installed
  • OR openstack-keystone-8.1.1~a0~dev13-3 is installed
  • OR openstack-keystone-doc-8.1.1~a0~dev13-3 is installed
  • OR openstack-manila-1.0.2~a0~dev11-9 is installed
  • OR openstack-manila-api-1.0.2~a0~dev11-9 is installed
  • OR openstack-manila-doc-1.0.2~a0~dev11-9 is installed
  • OR openstack-manila-scheduler-1.0.2~a0~dev11-9 is installed
  • OR openstack-manila-share-1.0.2~a0~dev11-9 is installed
  • OR openstack-neutron-7.1.2~a0~dev29-10 is installed
  • OR openstack-neutron-dhcp-agent-7.1.2~a0~dev29-10 is installed
  • OR openstack-neutron-doc-7.1.2~a0~dev29-10 is installed
  • OR openstack-neutron-fwaas-7.1.2~a0~dev1-6 is installed
  • OR openstack-neutron-fwaas-doc-7.1.2~a0~dev1-6 is installed
  • OR openstack-neutron-ha-tool-7.1.2~a0~dev29-10 is installed
  • OR openstack-neutron-l3-agent-7.1.2~a0~dev29-10 is installed
  • OR openstack-neutron-lbaas-7.1.2~a0~dev1-6 is installed
  • OR openstack-neutron-lbaas-agent-7.1.2~a0~dev1-6 is installed
  • OR openstack-neutron-lbaas-doc-7.1.2~a0~dev1-6 is installed
  • OR openstack-neutron-linuxbridge-agent-7.1.2~a0~dev29-10 is installed
  • OR openstack-neutron-metadata-agent-7.1.2~a0~dev29-10 is installed
  • OR openstack-neutron-metering-agent-7.1.2~a0~dev29-10 is installed
  • OR openstack-neutron-mlnx-agent-7.1.2~a0~dev29-10 is installed
  • OR openstack-neutron-nvsd-agent-7.1.2~a0~dev29-10 is installed
  • OR openstack-neutron-openvswitch-agent-7.1.2~a0~dev29-10 is installed
  • OR openstack-neutron-restproxy-agent-7.1.2~a0~dev29-10 is installed
  • OR openstack-neutron-server-7.1.2~a0~dev29-10 is installed
  • OR openstack-nova-12.0.5~a0~dev2-7 is installed
  • OR openstack-nova-api-12.0.5~a0~dev2-7 is installed
  • OR openstack-nova-cells-12.0.5~a0~dev2-7 is installed
  • OR openstack-nova-cert-12.0.5~a0~dev2-7 is installed
  • OR openstack-nova-compute-12.0.5~a0~dev2-7 is installed
  • OR openstack-nova-conductor-12.0.5~a0~dev2-7 is installed
  • OR openstack-nova-console-12.0.5~a0~dev2-7 is installed
  • OR openstack-nova-consoleauth-12.0.5~a0~dev2-7 is installed
  • OR openstack-nova-doc-12.0.5~a0~dev2-7 is installed
  • OR openstack-nova-novncproxy-12.0.5~a0~dev2-7 is installed
  • OR openstack-nova-objectstore-12.0.5~a0~dev2-7 is installed
  • OR openstack-nova-scheduler-12.0.5~a0~dev2-7 is installed
  • OR openstack-nova-serialproxy-12.0.5~a0~dev2-7 is installed
  • OR openstack-nova-vncproxy-12.0.5~a0~dev2-7 is installed
  • OR openstack-resource-agents-1.0+git.1467079370.4f2c49d-7 is installed
  • OR python-ceilometer-5.0.4~a0~dev6-6 is installed
  • OR python-cinder-7.0.3~a0~dev2-7 is installed
  • OR python-glance-11.0.2~a0~dev13-7 is installed
  • OR python-heat-5.0.2~a0~dev93-9 is installed
  • OR python-horizon-8.0.2~a0~dev34-8 is installed
  • OR python-keystone-8.1.1~a0~dev13-3 is installed
  • OR python-manila-1.0.2~a0~dev11-9 is installed
  • OR python-networking-cisco-2.1.1-6 is installed
  • OR python-neutron-7.1.2~a0~dev29-10 is installed
  • OR python-neutron-fwaas-7.1.2~a0~dev1-6 is installed
  • OR python-neutron-lbaas-7.1.2~a0~dev1-6 is installed
  • OR python-nova-12.0.5~a0~dev2-7 is installed
  • OR python-openstackclient-1.7.2-4 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • openstack-dashboard-10.0.6~dev4-4.15 is installed
  • OR openstack-heat-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-api-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-api-cfn-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-api-cloudwatch-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-doc-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-engine-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-plugin-heat_docker-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-test-7.0.7~dev10-5.12 is installed
  • OR openstack-horizon-plugin-designate-ui-3.0.2~dev1-3.6 is installed
  • OR openstack-keystone-10.0.3~dev9-7.12 is installed
  • OR openstack-keystone-doc-10.0.3~dev9-7.12 is installed
  • OR openstack-nova-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-api-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-cells-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-cert-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-compute-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-conductor-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-console-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-consoleauth-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-doc-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-novncproxy-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-placement-api-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-scheduler-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-serialproxy-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-vncproxy-14.0.11~dev13-4.25 is installed
  • OR python-heat-7.0.7~dev10-5.12 is installed
  • OR python-horizon-10.0.6~dev4-4.15 is installed
  • OR python-horizon-plugin-designate-ui-3.0.2~dev1-3.6 is installed
  • OR python-keystone-10.0.3~dev9-7.12 is installed
  • OR python-nova-14.0.11~dev13-4.25 is installed
  • OR python-os-vif-1.2.1-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND binutils-2.32-9.33 is installed
    • BACK