Oval Definition:oval:org.opensuse.security:def:56807
Revision Date:2020-12-01Version:1
Title:Security update for openssh (Important)
Description:

This update for openssh fixes the following issues:

Security issue fixed:

- CVE-2018-20685: Fixed an issue where scp client allows remote SSH servers to bypass intended access restrictions (bsc#1121571) - CVE-2019-6109: Fixed an issue where the scp client would allow malicious remote SSH servers to manipulate terminal output via the object name, e.g. by inserting ANSI escape sequences (bsc#1121816) - CVE-2019-6110: Fixed an issue where the scp client would allow malicious remote SSH servers to manipulate stderr output, e.g. by inserting ANSI escape sequences (bsc#1121818) - CVE-2019-6111: Fixed an issue where the scp client would allow malicious remote SSH servers to execute directory traversal attacks and overwrite files (bsc#1121821)
Family:unixClass:patch
Status:Reference(s):1010700
1015941
1027575
1038564
1042892
1046191
1050751
1053153
1069708
1072728
1080156
1083125
1085447
1087320
1090368
1090646
1098377
1101877
1106383
1110299
1115034
1118597
1121571
1121816
1121818
1121821
1130246
1133495
1139459
1142772
1145692
1151021
1151377
1151506
1154043
1155574
1156482
1159814
1161167
1162108
1164860
1174117
952849
953110
954872
960305
964465
972968
975394
979688
CVE-2009-0023
CVE-2009-2412
CVE-2009-3560
CVE-2009-3720
CVE-2010-1623
CVE-2013-4566
CVE-2014-0107
CVE-2014-2524
CVE-2014-3566
CVE-2014-6271
CVE-2014-6277
CVE-2014-6278
CVE-2014-7169
CVE-2014-7186
CVE-2014-7187
CVE-2015-5244
CVE-2015-5313
CVE-2016-3099
CVE-2016-9957
CVE-2016-9958
CVE-2016-9959
CVE-2016-9960
CVE-2016-9961
CVE-2017-10661
CVE-2017-13166
CVE-2017-16939
CVE-2017-2636
CVE-2017-7533
CVE-2017-7645
CVE-2017-8890
CVE-2017-9242
CVE-2018-10852
CVE-2018-19870
CVE-2018-19872
CVE-2018-20685
CVE-2018-8781
CVE-2018-8897
CVE-2019-1010180
CVE-2019-14835
CVE-2019-6109
CVE-2019-6110
CVE-2019-6111
CVE-2020-0569
CVE-2020-13935
CVE-2020-1712
CVE-2020-1935
SUSE-SU-2016:0923-1
SUSE-SU-2016:2285-1
SUSE-SU-2016:3250-1
SUSE-SU-2017:2072-1
SUSE-SU-2017:3321-1
SUSE-SU-2018:1521-1
SUSE-SU-2019:0081-1
SUSE-SU-2019:0132-1
SUSE-SU-2019:2914-1
SUSE-SU-2020:0318-1
SUSE-SU-2020:0331-1
SUSE-SU-2020:2611-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • apache2-2.4.33-lp150.1 is installed
  • OR apache2-doc-2.4.33-lp150.1 is installed
  • OR apache2-example-pages-2.4.33-lp150.1 is installed
  • OR apache2-prefork-2.4.33-lp150.1 is installed
  • OR apache2-utils-2.4.33-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • exim-4.88-lp151.4.3 is installed
  • OR eximon-4.88-lp151.4.3 is installed
  • OR eximstats-html-4.88-lp151.4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • openssh-7.2p2-74.35 is installed
  • OR openssh-askpass-gnome-7.2p2-74.35 is installed
  • OR openssh-helpers-7.2p2-74.35 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND apache2-mod_nss-1.0.14-18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_67-60_64_21-default-8-2 is installed
  • OR kgraft-patch-3_12_67-60_64_21-xen-8-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_10-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • bash-4.3-78 is installed
  • OR bash-doc-4.3-78 is installed
  • OR libreadline6-6.3-78 is installed
  • OR libreadline6-32bit-6.3-78 is installed
  • OR readline-doc-6.3-78 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • kernel-default-4.4.121-92.85 is installed
  • OR kernel-default-base-4.4.121-92.85 is installed
  • OR kernel-default-devel-4.4.121-92.85 is installed
  • OR kernel-devel-4.4.121-92.85 is installed
  • OR kernel-macros-4.4.121-92.85 is installed
  • OR kernel-source-4.4.121-92.85 is installed
  • OR kernel-syms-4.4.121-92.85 is installed
  • OR kgraft-patch-4_4_121-92_85-default-1-3.5 is installed
  • OR kgraft-patch-SLE12-SP2_Update_23-1-3.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • freeradius-server-3.0.3-17.12 is installed
  • OR freeradius-server-doc-3.0.3-17.12 is installed
  • OR freeradius-server-krb5-3.0.3-17.12 is installed
  • OR freeradius-server-ldap-3.0.3-17.12 is installed
  • OR freeradius-server-libs-3.0.3-17.12 is installed
  • OR freeradius-server-mysql-3.0.3-17.12 is installed
  • OR freeradius-server-perl-3.0.3-17.12 is installed
  • OR freeradius-server-postgresql-3.0.3-17.12 is installed
  • OR freeradius-server-python-3.0.3-17.12 is installed
  • OR freeradius-server-sqlite-3.0.3-17.12 is installed
  • OR freeradius-server-utils-3.0.3-17.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_120-92_70-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_20-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libXrender1-0.9.8-7 is installed
  • OR libXrender1-32bit-0.9.8-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libgcrypt-1.6.1-16.68 is installed
  • OR libgcrypt20-1.6.1-16.68 is installed
  • OR libgcrypt20-32bit-1.6.1-16.68 is installed
  • OR libgcrypt20-hmac-1.6.1-16.68 is installed
  • OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.252-27.45 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.252-27.45 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.252-27.45 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.252-27.45 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • git-2.26.2-27.36 is installed
  • OR git-core-2.26.2-27.36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libospf0-1.1.1-17.7 is installed
  • OR libospfapiclient0-1.1.1-17.7 is installed
  • OR libquagga_pb0-1.1.1-17.7 is installed
  • OR libzebra1-1.1.1-17.7 is installed
  • OR quagga-1.1.1-17.7 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND gdb-8.3.1-1.12 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • mariadb-10.2.22-4.11 is installed
  • OR mariadb-client-10.2.22-4.11 is installed
  • OR mariadb-errormessages-10.2.22-4.11 is installed
  • OR mariadb-galera-10.2.22-4.11 is installed
  • OR mariadb-tools-10.2.22-4.11 is installed
    • BACK