Oval Definition:oval:org.opensuse.security:def:56869
Revision Date:2020-12-01Version:1
Title:Security update for lftp (Moderate)
Description:

This update for lftp fixes the following issues:

Security issue fixed:

- CVE-2018-10916: Fixed an improper file name sanitization which could lead to loss of integrity of the local system (bsc#1103367). Other issue addressed:

- The SSH login handling code detects password prompts more reliably (bsc#1120946).
Family:unixClass:patch
Status:Reference(s):1002991
1007829
1008831
1011685
1012754
1012964
1014172
1025013
1025254
1030050
1030575
1031481
1031660
1039496
1054979
1059777
1061076
1061077
1061080
1061081
1061082
1061084
1061086
1061087
1084724
1095482
1099498
1099902
1100751
1102151
1103098
1103367
1104668
1115245
1117751
1117776
1118460
1118462
1118463
1120946
1124729
1124734
1125623
1125666
1128378
1129346
965748
977646
977648
977650
979252
CVE-2011-1521
CVE-2011-3389
CVE-2011-4944
CVE-2012-0845
CVE-2012-1150
CVE-2013-1752
CVE-2013-1753
CVE-2013-2124
CVE-2013-4238
CVE-2013-4419
CVE-2014-1912
CVE-2014-4650
CVE-2014-7185
CVE-2016-0264
CVE-2016-0363
CVE-2016-0376
CVE-2016-0686
CVE-2016-0687
CVE-2016-0772
CVE-2016-1000110
CVE-2016-3422
CVE-2016-3426
CVE-2016-3427
CVE-2016-3443
CVE-2016-3449
CVE-2016-5636
CVE-2016-5699
CVE-2016-7942
CVE-2016-8632
CVE-2016-8655
CVE-2016-8864
CVE-2016-9042
CVE-2016-9079
CVE-2016-9555
CVE-2017-1000364
CVE-2017-15588
CVE-2017-15589
CVE-2017-15590
CVE-2017-15591
CVE-2017-15592
CVE-2017-15593
CVE-2017-15594
CVE-2017-15595
CVE-2017-5526
CVE-2017-6451
CVE-2017-6458
CVE-2017-6460
CVE-2017-6462
CVE-2017-6463
CVE-2017-6464
CVE-2018-10916
CVE-2018-12539
CVE-2018-14432
CVE-2018-1517
CVE-2018-1656
CVE-2018-19636
CVE-2018-19637
CVE-2018-19638
CVE-2018-19639
CVE-2018-19640
CVE-2018-2940
CVE-2018-2952
CVE-2018-2973
CVE-2018-5391
CVE-2019-6974
CVE-2019-7221
CVE-2019-9213
CVE-2019-9636
SUSE-SU-2016:1299-1
SUSE-SU-2016:2697-1
SUSE-SU-2016:3001-1
SUSE-SU-2016:3048-1
SUSE-SU-2016:3049-1
SUSE-SU-2017:1048-1
SUSE-SU-2017:1937-1
SUSE-SU-2017:2873-1
SUSE-SU-2018:2576-1
SUSE-SU-2018:2649-1
SUSE-SU-2019:0642-1
SUSE-SU-2019:0961-1
SUSE-SU-2019:1122-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • groff-1.22.3-lp150.3 is installed
  • OR groff-full-1.22.3-lp150.3 is installed
  • OR gxditview-1.22.3-lp150.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • GraphicsMagick-1.3.29-lp151.4.3 is installed
  • OR GraphicsMagick-devel-1.3.29-lp151.4.3 is installed
  • OR libGraphicsMagick++-Q16-12-1.3.29-lp151.4.3 is installed
  • OR libGraphicsMagick++-devel-1.3.29-lp151.4.3 is installed
  • OR libGraphicsMagick-Q16-3-1.3.29-lp151.4.3 is installed
  • OR libGraphicsMagick3-config-1.3.29-lp151.4.3 is installed
  • OR libGraphicsMagickWand-Q16-2-1.3.29-lp151.4.3 is installed
  • OR perl-GraphicsMagick-1.3.29-lp151.4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND lftp-4.7.4-3.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND supportutils-3.0-95.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libX11-1.6.2-11 is installed
  • OR libX11-6-1.6.2-11 is installed
  • OR libX11-6-32bit-1.6.2-11 is installed
  • OR libX11-data-1.6.2-11 is installed
  • OR libX11-xcb1-1.6.2-11 is installed
  • OR libX11-xcb1-32bit-1.6.2-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_69-60_64_29-default-5-3 is installed
  • OR kgraft-patch-3_12_69-60_64_29-xen-5-3 is installed
  • OR kgraft-patch-SLE12-SP1_Update_12-5-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • guestfs-data-1.32.4-14 is installed
  • OR guestfs-tools-1.32.4-14 is installed
  • OR guestfsd-1.32.4-14 is installed
  • OR libguestfs0-1.32.4-14 is installed
  • OR perl-Sys-Guestfs-1.32.4-14 is installed
  • OR python-libguestfs-1.32.4-14 is installed
  • OR virt-p2v-1.32.4-14 is installed
  • OR virt-v2v-1.32.4-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • libjpeg-turbo-1.5.3-31.19 is installed
  • OR libjpeg62-62.2.0-31.19 is installed
  • OR libjpeg62-32bit-62.2.0-31.19 is installed
  • OR libjpeg62-turbo-1.5.3-31.19 is installed
  • OR libjpeg8-8.1.2-31.19 is installed
  • OR libjpeg8-32bit-8.1.2-31.19 is installed
  • OR libturbojpeg0-8.1.2-31.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_74-92_35-default-10-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_12-10-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • at-3.1.14-7 is installed
  • OR flex-2.5.37-8 is installed
  • OR flex-32bit-2.5.37-8 is installed
  • OR libQtWebKit4-4.8.6+2.3.3-3 is installed
  • OR libQtWebKit4-32bit-4.8.6+2.3.3-3 is installed
  • OR libbonobo-2.32.1-16 is installed
  • OR libbonobo-32bit-2.32.1-16 is installed
  • OR libbonobo-doc-2.32.1-16 is installed
  • OR libbonobo-lang-2.32.1-16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • perl-5.18.2-12.23 is installed
  • OR perl-32bit-5.18.2-12.23 is installed
  • OR perl-base-5.18.2-12.23 is installed
  • OR perl-doc-5.18.2-12.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-68.2.0-109.95 is installed
  • OR MozillaFirefox-translations-common-68.2.0-109.95 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr6.0-30.60 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr6.0-30.60 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr6.0-30.60 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND libzip2-0.11.1-13.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • openstack-dashboard-10.0.6~dev4-4.15 is installed
  • OR openstack-heat-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-api-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-api-cfn-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-api-cloudwatch-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-doc-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-engine-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-plugin-heat_docker-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-test-7.0.7~dev10-5.12 is installed
  • OR openstack-horizon-plugin-designate-ui-3.0.2~dev1-3.6 is installed
  • OR openstack-keystone-10.0.3~dev9-7.12 is installed
  • OR openstack-keystone-doc-10.0.3~dev9-7.12 is installed
  • OR openstack-nova-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-api-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-cells-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-cert-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-compute-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-conductor-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-console-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-consoleauth-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-doc-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-novncproxy-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-placement-api-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-scheduler-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-serialproxy-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-vncproxy-14.0.11~dev13-4.25 is installed
  • OR python-heat-7.0.7~dev10-5.12 is installed
  • OR python-horizon-10.0.6~dev4-4.15 is installed
  • OR python-horizon-plugin-designate-ui-3.0.2~dev1-3.6 is installed
  • OR python-keystone-10.0.3~dev9-7.12 is installed
  • OR python-nova-14.0.11~dev13-4.25 is installed
  • OR python-os-vif-1.2.1-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND python-ecdsa-0.13.3-5.10 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Werkzeug-0.14.1-3.3 is installed
    • BACK