Oval Definition:oval:org.opensuse.security:def:56710
Revision Date:2020-12-01Version:1
Title:Security update for shadow (Moderate)
Description:

This update for shadow fixes the following issues:

- CVE-2018-7169: Fixed an privilege escalation in newgidmap, which allowed an unprivileged user to be placed in a user namespace where setgroups(2) is allowed. (bsc#1081294)
Family:unixClass:patch
Status:Reference(s):1002991
1002995
1002998
1003000
1003002
1003012
1003017
1003023
1035442
1049483
1061081
1068032
1070158
1070159
1070160
1070163
1074562
1076116
1076180
1080635
1080662
1081294
1088268
1090036
1122292
1122293
1122299
1128158
1129231
1131945
1132728
1132729
1132732
1133135
1141670
1155321
1156318
1159329
1161719
1163809
1163933
1165528
1169658
947337
950998
951844
953048
954847
956491
957990
962742
963655
963762
963964
963968
963975
965087
966245
968667
970114
970506
971770
972933
973378
973499
974165
974308
974620
975531
975533
975772
975788
977417
978401
978469
978822
979074
979213
979419
979485
979489
979521
979548
979681
979867
979879
979922
980348
980363
980371
980856
980883
981038
981143
981344
981597
982282
982354
982544
982698
983143
983213
983215
983216
983318
983721
983904
983977
984148
984456
984755
984764
985232
985978
986362
986365
986569
986572
986573
986811
988215
988498
988552
990058
CVE-2007-4129
CVE-2012-1174
CVE-2012-6702
CVE-2013-4288
CVE-2014-9904
CVE-2015-7833
CVE-2015-8551
CVE-2015-8552
CVE-2015-8629
CVE-2015-8630
CVE-2015-8631
CVE-2015-8845
CVE-2015-9542
CVE-2016-0758
CVE-2016-1583
CVE-2016-2053
CVE-2016-3672
CVE-2016-4470
CVE-2016-4482
CVE-2016-4486
CVE-2016-4565
CVE-2016-4569
CVE-2016-4578
CVE-2016-4805
CVE-2016-4997
CVE-2016-5244
CVE-2016-5300
CVE-2016-5407
CVE-2016-5828
CVE-2016-5829
CVE-2016-7795
CVE-2016-7942
CVE-2016-7944
CVE-2016-7945
CVE-2016-7946
CVE-2016-7947
CVE-2016-7948
CVE-2016-7949
CVE-2016-7950
CVE-2016-7951
CVE-2016-7952
CVE-2016-7953
CVE-2017-0861
CVE-2017-15595
CVE-2017-17563
CVE-2017-17564
CVE-2017-17565
CVE-2017-17566
CVE-2017-18030
CVE-2017-5715
CVE-2017-5753
CVE-2017-5754
CVE-2017-7533
CVE-2018-1000199
CVE-2018-11212
CVE-2018-1890
CVE-2018-3639
CVE-2018-5683
CVE-2018-7169
CVE-2019-10894
CVE-2019-10895
CVE-2019-10896
CVE-2019-10899
CVE-2019-10901
CVE-2019-10903
CVE-2019-2422
CVE-2019-2426
CVE-2019-2449
CVE-2019-2602
CVE-2019-2684
CVE-2019-2698
CVE-2019-8625
CVE-2019-8710
CVE-2019-8720
CVE-2019-8743
CVE-2019-8764
CVE-2019-8766
CVE-2019-8769
CVE-2019-8771
CVE-2019-8782
CVE-2019-8783
CVE-2019-8808
CVE-2019-8811
CVE-2019-8812
CVE-2019-8813
CVE-2019-8814
CVE-2019-8815
CVE-2019-8816
CVE-2019-8819
CVE-2019-8820
CVE-2019-8823
CVE-2019-8835
CVE-2019-8844
CVE-2019-8846
CVE-2020-10018
CVE-2020-11793
CVE-2020-3862
CVE-2020-3864
CVE-2020-3865
CVE-2020-3867
CVE-2020-3868
SUSE-SU-2016:0429-1
SUSE-SU-2016:2105-1
SUSE-SU-2016:2505-1
SUSE-SU-2017:0424-1
SUSE-SU-2017:2042-1
SUSE-SU-2018:0609-1
SUSE-SU-2018:0662-1
SUSE-SU-2018:1269-1
SUSE-SU-2019:0617-1
SUSE-SU-2019:0736-1
SUSE-SU-2019:1038-1
SUSE-SU-2019:1219-1
SUSE-SU-2020:1117-1
SUSE-SU-2020:1135-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND autofs-5.1.3-lp150.5 is installed
  • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libIlmImf-2_2-23-2.2.1-lp151.4.3 is installed
  • OR libIlmImf-2_2-23-32bit-2.2.1-lp151.4.3 is installed
  • OR libIlmImfUtil-2_2-23-2.2.1-lp151.4.3 is installed
  • OR libIlmImfUtil-2_2-23-32bit-2.2.1-lp151.4.3 is installed
  • OR openexr-2.2.1-lp151.4.3 is installed
  • OR openexr-devel-2.2.1-lp151.4.3 is installed
  • OR openexr-doc-2.2.1-lp151.4.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND shadow-4.2.1-27.6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • kernel-default-3.12.62-60.62 is installed
  • OR kernel-default-base-3.12.62-60.62 is installed
  • OR kernel-default-devel-3.12.62-60.62 is installed
  • OR kernel-default-man-3.12.62-60.62 is installed
  • OR kernel-devel-3.12.62-60.62 is installed
  • OR kernel-macros-3.12.62-60.62 is installed
  • OR kernel-source-3.12.62-60.62 is installed
  • OR kernel-syms-3.12.62-60.62 is installed
  • OR kernel-xen-3.12.62-60.62 is installed
  • OR kernel-xen-base-3.12.62-60.62 is installed
  • OR kernel-xen-devel-3.12.62-60.62 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kernel-default-3.12.74-60.64.51 is installed
  • OR kernel-default-base-3.12.74-60.64.51 is installed
  • OR kernel-default-devel-3.12.74-60.64.51 is installed
  • OR kernel-default-man-3.12.74-60.64.51 is installed
  • OR kernel-devel-3.12.74-60.64.51 is installed
  • OR kernel-macros-3.12.74-60.64.51 is installed
  • OR kernel-source-3.12.74-60.64.51 is installed
  • OR kernel-syms-3.12.74-60.64.51 is installed
  • OR kernel-xen-3.12.74-60.64.51 is installed
  • OR kernel-xen-base-3.12.74-60.64.51 is installed
  • OR kernel-xen-devel-3.12.74-60.64.51 is installed
  • OR kgraft-patch-3_12_74-60_64_51-default-1-2 is installed
  • OR kgraft-patch-3_12_74-60_64_51-xen-1-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_18-1-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND coolkey-1.1.0-147 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • apache2-2.4.23-29.24 is installed
  • OR apache2-doc-2.4.23-29.24 is installed
  • OR apache2-example-pages-2.4.23-29.24 is installed
  • OR apache2-prefork-2.4.23-29.24 is installed
  • OR apache2-utils-2.4.23-29.24 is installed
  • OR apache2-worker-2.4.23-29.24 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • ntp-4.2.8p11-64.5 is installed
  • OR ntp-doc-4.2.8p11-64.5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_73-default-2-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_21-2-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • coreutils-8.25-12 is installed
  • OR coreutils-lang-8.25-12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libjpeg-turbo-1.5.3-31.19 is installed
  • OR libjpeg62-62.2.0-31.19 is installed
  • OR libjpeg62-32bit-62.2.0-31.19 is installed
  • OR libjpeg62-turbo-1.5.3-31.19 is installed
  • OR libjpeg8-8.1.2-31.19 is installed
  • OR libjpeg8-32bit-8.1.2-31.19 is installed
  • OR libturbojpeg0-8.1.2-31.19 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • dovecot22-2.2.31-19.17 is installed
  • OR dovecot22-backend-mysql-2.2.31-19.17 is installed
  • OR dovecot22-backend-pgsql-2.2.31-19.17 is installed
  • OR dovecot22-backend-sqlite-2.2.31-19.17 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_100-default-3-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_27-3-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND lftp-4.7.4-3.3 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • xen-4.5.5_24-22.43 is installed
  • OR xen-doc-html-4.5.5_24-22.43 is installed
  • OR xen-kmp-default-4.5.5_24_k3.12.74_60.64.82-22.43 is installed
  • OR xen-libs-4.5.5_24-22.43 is installed
  • OR xen-libs-32bit-4.5.5_24-22.43 is installed
  • OR xen-tools-4.5.5_24-22.43 is installed
  • OR xen-tools-domU-4.5.5_24-22.43 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.212-27.32 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.212-27.32 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.212-27.32 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.212-27.32 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ceph-12.2.13+git.1592168685.85110a3e9d-2.50 is installed
  • OR ceph-common-12.2.13+git.1592168685.85110a3e9d-2.50 is installed
  • OR libcephfs2-12.2.13+git.1592168685.85110a3e9d-2.50 is installed
  • OR librados2-12.2.13+git.1592168685.85110a3e9d-2.50 is installed
  • OR libradosstriper1-12.2.13+git.1592168685.85110a3e9d-2.50 is installed
  • OR librbd1-12.2.13+git.1592168685.85110a3e9d-2.50 is installed
  • OR librgw2-12.2.13+git.1592168685.85110a3e9d-2.50 is installed
  • OR python-cephfs-12.2.13+git.1592168685.85110a3e9d-2.50 is installed
  • OR python-rados-12.2.13+git.1592168685.85110a3e9d-2.50 is installed
  • OR python-rbd-12.2.13+git.1592168685.85110a3e9d-2.50 is installed
  • OR python-rgw-12.2.13+git.1592168685.85110a3e9d-2.50 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Twisted-15.2.1-9.5 is installed
  • BACK