Oval Definition:oval:org.opensuse.security:def:56727
Revision Date:2020-12-01Version:1
Title:Security update for glibc (Important)
Description:

This update for glibc fixes the following issues:

- A privilege escalation bug in the realpath() function has been fixed. [CVE-2018-1000001, bsc#1074293]

- A memory leak and a buffer overflow in the dynamic ELF loader has been fixed. [CVE-2017-1000408, CVE-2017-1000409, bsc#1071319]

- An issue in the code handling RPATHs was fixed that could have been exploited by an attacker to execute code loaded from arbitrary libraries. [CVE-2017-16997, bsc#1073231]

- A potential crash caused by a use-after-free bug in pthread_create() has been fixed. [bsc#1053188]

- A bug that prevented users to build shared objects which use the optimized libmvec.so API has been fixed. [bsc#1070905]

- A memory leak in the glob() function has been fixed. [CVE-2017-15670, CVE-2017-15671, CVE-2017-15804, bsc#1064569, bsc#1064580, bsc#1064583]

- A bug that would lose the syscall error code value in case of crashes has been fixed. [bsc#1063675]
Family:unixClass:patch
Status:Reference(s):1005633
1005634
1005635
1005637
1005638
1005640
1005642
1005643
1005645
1005646
1008965
1012382
1012504
1012632
1019332
1020077
1020645
1020989
1023041
1026236
1027519
1031492
1047487
1051042
1051510
1053043
1053188
1053431
1062056
1063638
1063675
1064569
1064580
1064583
1066223
1070872
1070905
1071319
1073231
1074293
1083292
1085539
1087092
1089152
1089635
1090820
1090822
1090823
1094244
1096480
1096728
1097104
1100132
1105348
1106110
1106913
1106929
1111331
1112178
1113399
1114542
1114638
1114648
1114828
1114893
1114988
1116600
1118338
1118506
1119086
1120902
1122822
1123156
1123157
1125580
1126140
1126141
1126192
1126195
1126196
1126198
1126201
1126356
1127400
1127445
1129278
1129326
1129623
1129770
1130130
1130343
1130344
1130345
1130346
1130347
1130356
1130425
1130567
1130737
1131107
1131416
1131427
1131587
1131659
1131857
1131900
1131934
1131935
1131980
1132227
1132534
1132589
1132618
1132619
1132634
1132635
1132636
1132637
1132638
1132727
1132828
1133114
1133145
1133308
1133584
1146873
1149811
1157471
1161066
1163018
1165787
1166240
1170940
965803
965807
965810
982176
987577
988032
991436
991622
991710
994770
995034
998760
CVE-2013-6393
CVE-2014-2525
CVE-2014-9130
CVE-2015-3294
CVE-2016-1521
CVE-2016-1523
CVE-2016-1526
CVE-2016-5116
CVE-2016-6128
CVE-2016-6132
CVE-2016-6161
CVE-2016-6207
CVE-2016-6214
CVE-2016-6905
CVE-2016-7167
CVE-2016-8615
CVE-2016-8616
CVE-2016-8617
CVE-2016-8618
CVE-2016-8619
CVE-2016-8620
CVE-2016-8621
CVE-2016-8622
CVE-2016-8623
CVE-2016-8624
CVE-2017-1000408
CVE-2017-1000409
CVE-2017-10053
CVE-2017-10067
CVE-2017-10074
CVE-2017-10081
CVE-2017-10087
CVE-2017-10089
CVE-2017-10090
CVE-2017-10096
CVE-2017-10101
CVE-2017-10102
CVE-2017-10105
CVE-2017-10107
CVE-2017-10108
CVE-2017-10109
CVE-2017-10110
CVE-2017-10111
CVE-2017-10115
CVE-2017-10116
CVE-2017-10125
CVE-2017-10243
CVE-2017-15670
CVE-2017-15671
CVE-2017-15804
CVE-2017-16997
CVE-2017-2616
CVE-2018-1000001
CVE-2018-1000204
CVE-2018-10471
CVE-2018-10472
CVE-2018-10853
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2018-15594
CVE-2018-16471
CVE-2018-19967
CVE-2018-5814
CVE-2018-7550
CVE-2018-8897
CVE-2019-11091
CVE-2019-11365
CVE-2019-11366
CVE-2019-12068
CVE-2019-15890
CVE-2019-19191
CVE-2019-3882
CVE-2019-6778
CVE-2019-9503
CVE-2019-9824
CVE-2020-10188
CVE-2020-1711
CVE-2020-1983
CVE-2020-7039
CVE-2020-8608
SUSE-SU-2016:0779-1
SUSE-SU-2016:2303-1
SUSE-SU-2016:2699-1
SUSE-SU-2017:0555-1
SUSE-SU-2017:2280-1
SUSE-SU-2018:0074-1
SUSE-SU-2018:1202-1
SUSE-SU-2019:0921-1
SUSE-SU-2019:1091-1
SUSE-SU-2019:1245-1
SUSE-SU-2019:1440-1
SUSE-SU-2020:0115-1
SUSE-SU-2020:1526-1
SUSE-SU-2020:1533-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND cups-filters-1.20.3-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libmariadb-devel-3.1.2-lp151.3.3 is installed
  • OR libmariadb3-3.1.2-lp151.3.3 is installed
  • OR libmariadb3-32bit-3.1.2-lp151.3.3 is installed
  • OR libmariadb_plugins-3.1.2-lp151.3.3 is installed
  • OR libmariadbprivate-3.1.2-lp151.3.3 is installed
  • OR libmysqld-devel-10.2.25-lp151.2.3 is installed
  • OR libmysqld19-10.2.25-lp151.2.3 is installed
  • OR mariadb-10.2.25-lp151.2.3 is installed
  • OR mariadb-bench-10.2.25-lp151.2.3 is installed
  • OR mariadb-client-10.2.25-lp151.2.3 is installed
  • OR mariadb-connector-c-3.1.2-lp151.3.3 is installed
  • OR mariadb-errormessages-10.2.25-lp151.2.3 is installed
  • OR mariadb-galera-10.2.25-lp151.2.3 is installed
  • OR mariadb-test-10.2.25-lp151.2.3 is installed
  • OR mariadb-tools-10.2.25-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • glibc-2.22-62.3 is installed
  • OR glibc-32bit-2.22-62.3 is installed
  • OR glibc-devel-2.22-62.3 is installed
  • OR glibc-devel-32bit-2.22-62.3 is installed
  • OR glibc-i18ndata-2.22-62.3 is installed
  • OR glibc-locale-2.22-62.3 is installed
  • OR glibc-locale-32bit-2.22-62.3 is installed
  • OR nscd-2.22-62.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND gd-2.1.0-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.10-38.5 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.10-38.5 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.10-38.5 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.10-38.5 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.10-38.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND dnsmasq-2.71-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • libvirt-2.0.0-27.45 is installed
  • OR libvirt-client-2.0.0-27.45 is installed
  • OR libvirt-daemon-2.0.0-27.45 is installed
  • OR libvirt-daemon-config-network-2.0.0-27.45 is installed
  • OR libvirt-daemon-config-nwfilter-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-interface-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-libxl-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-lxc-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-network-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-nodedev-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-nwfilter-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-qemu-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-secret-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-storage-2.0.0-27.45 is installed
  • OR libvirt-daemon-hooks-2.0.0-27.45 is installed
  • OR libvirt-daemon-lxc-2.0.0-27.45 is installed
  • OR libvirt-daemon-qemu-2.0.0-27.45 is installed
  • OR libvirt-daemon-xen-2.0.0-27.45 is installed
  • OR libvirt-doc-2.0.0-27.45 is installed
  • OR libvirt-lock-sanlock-2.0.0-27.45 is installed
  • OR libvirt-nss-2.0.0-27.45 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • libmysqlclient18-10.0.35-29.20 is installed
  • OR libmysqlclient18-32bit-10.0.35-29.20 is installed
  • OR mariadb-10.0.35-29.20 is installed
  • OR mariadb-client-10.0.35-29.20 is installed
  • OR mariadb-errormessages-10.0.35-29.20 is installed
  • OR mariadb-tools-10.0.35-29.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND dnsmasq-2.76-17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • pam_radius-1.3.16-239.4 is installed
  • OR pam_radius-32bit-1.3.16-239.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libpcap-1.8.1-10.3 is installed
  • OR libpcap1-1.8.1-10.3 is installed
  • OR tcpdump-4.9.2-14.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.241-43.30 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.241-43.30 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.241-43.30 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.241-43.30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libXi6-1.7.4-17 is installed
  • OR libXi6-32bit-1.7.4-17 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • xen-4.5.5_24-22.46 is installed
  • OR xen-doc-html-4.5.5_24-22.46 is installed
  • OR xen-kmp-default-4.5.5_24_k3.12.74_60.64.85-22.46 is installed
  • OR xen-libs-4.5.5_24-22.46 is installed
  • OR xen-libs-32bit-4.5.5_24-22.46 is installed
  • OR xen-tools-4.5.5_24-22.46 is installed
  • OR xen-tools-domU-4.5.5_24-22.46 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • ruby2.1-rubygem-rack-1.6.11-3.3 is installed
  • OR rubygem-rack-1.6.11-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND git-2.12.3-27.17 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libdcerpc-binding0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libdcerpc-binding0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libdcerpc0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libdcerpc0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr-krb5pac0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr-krb5pac0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr-nbt0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr-nbt0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr-standard0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr-standard0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libnetapi0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libnetapi0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-credentials0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-credentials0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-errors0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-errors0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-hostconfig0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-hostconfig0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-passdb0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-passdb0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-util0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-util0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamdb0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamdb0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsmbclient0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsmbclient0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsmbconf0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsmbconf0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsmbldap0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsmbldap0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libtevent-util0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libtevent-util0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libwbclient0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libwbclient0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-client-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-client-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-doc-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-libs-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-libs-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-winbind-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-winbind-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • mariadb-10.2.29-3.22 is installed
  • OR mariadb-galera-10.2.29-3.22 is installed
    • BACK