OVAL Reference oval:org.opensuse.security:def:56940

Oval Definition:

oval:org.opensuse.security:def:56940

Revision Date:	2020-12-01	Version:	1
Title:	Security update for glibc (Moderate)
Description:	This update for glibc fixes the following issues: Security issues fixed: - CVE-2019-9169: regex: fix read overrun (bsc#1127308, BZ #24114) - CVE-2016-10739: Fully parse IPv4 address strings (bsc#1122729, BZ #20018) - CVE-2009-5155: ERE '0\|()0\|\1\|0' causes regexec undefined behavior (bsc#1127223, BZ #18986) Non-security issues fixed: - Enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (bsc#1131994, fate#322271) - Add more checks for valid ld.so.cache file (bsc#1110661, BZ #18093) - Added cfi information for start routines in order to stop unwinding (bsc#1128574) - ja_JP locale: Add entry for the new Japanese era (bsc#1100396, fate#325570, BZ #22964)
Family:	unix	Class:	patch
Status:		Reference(s):	1016712 1016714 1016715 1024718 1046299 1046607 1046853 1046858 1047964 1047965 1049344 1049607 1050242 1050244 1051510 1052311 1052368 1055121 1055186 1058115 1060463 1060877 1065729 1078248 1079935 1082387 1083647 1086282 1086283 1086423 1087084 1087978 1088386 1090338 1090888 1091405 1094244 1096740 1097593 1100396 1102875 1102877 1102879 1102882 1102896 1103257 1104353 1104427 1104967 1105168 1106105 1106110 1106615 1106913 1108270 1109272 1110558 1110661 1111188 1111469 1111696 1111795 1112128 1113722 1114648 1114871 1116040 1116336 1116574 1116803 1116841 1117115 1117162 1117165 1117186 1117561 1117656 1117953 1118215 1118319 1118428 1118484 1118505 1118752 1118760 1118761 1118762 1118766 1118767 1118768 1118769 1118771 1118772 1118773 1118774 1118775 1118787 1118788 1118798 1118809 1118962 1119017 1119086 1119212 1119322 1119410 1119714 1119749 1119804 1119946 1119962 1119968 1120036 1120046 1120053 1120054 1120055 1120058 1120088 1120092 1120094 1120096 1120097 1120173 1120214 1120223 1120228 1120230 1120232 1120234 1120235 1120238 1120594 1120598 1120600 1120601 1120602 1120603 1120604 1120606 1120612 1120613 1120614 1120615 1120616 1120617 1120618 1120620 1120621 1120632 1120633 1120743 1120954 1121017 1121058 1121263 1121273 1121477 1121483 1121599 1121621 1121714 1121715 1121973 1122729 1127223 1127308 1128574 1131994 1133114 1133145 1163985 1174157 1175259 971804 973639 974220 980663 CVE-2009-5155 CVE-2013-6401 CVE-2013-6418 CVE-2016-0736 CVE-2016-10739 CVE-2016-1601 CVE-2016-2161 CVE-2016-8743 CVE-2017-1000112 CVE-2017-10684 CVE-2017-10685 CVE-2017-11112 CVE-2017-11113 CVE-2017-11464 CVE-2017-12166 CVE-2017-7526 CVE-2018-12232 CVE-2018-13785 CVE-2018-14625 CVE-2018-16862 CVE-2018-16884 CVE-2018-18397 CVE-2018-19407 CVE-2018-19854 CVE-2018-19985 CVE-2018-20169 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3214 CVE-2018-3665 CVE-2018-9568 CVE-2019-11365 CVE-2019-11366 CVE-2019-17639 CVE-2019-9169 CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-1720 SUSE-SU-2016:1138-1 SUSE-SU-2017:0801-1 SUSE-SU-2017:1794-1 SUSE-SU-2017:2075-1 SUSE-SU-2017:2117-1 SUSE-SU-2017:2437-1 SUSE-SU-2017:2839-1 SUSE-SU-2018:2106-1 SUSE-SU-2018:3933-1 SUSE-SU-2019:1091-1 SUSE-SU-2019:1102-1 SUSE-SU-2020:0715-1 SUSE-SU-2020:2461-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information libcdio16-0.94-lp150.4 is installed OR libiso9660-10-0.94-lp150.4 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information proftpd-1.3.5e-lp151.3.3 is installed OR proftpd-devel-1.3.5e-lp151.3.3 is installed OR proftpd-doc-1.3.5e-lp151.3.3 is installed OR proftpd-lang-1.3.5e-lp151.3.3 is installed OR proftpd-ldap-1.3.5e-lp151.3.3 is installed OR proftpd-mysql-1.3.5e-lp151.3.3 is installed OR proftpd-pgsql-1.3.5e-lp151.3.3 is installed OR proftpd-radius-1.3.5e-lp151.3.3 is installed OR proftpd-sqlite-1.3.5e-lp151.3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information glibc-2.22-100.8 is installed OR glibc-32bit-2.22-100.8 is installed OR glibc-devel-2.22-100.8 is installed OR glibc-devel-32bit-2.22-100.8 is installed OR glibc-i18ndata-2.22-100.8 is installed OR glibc-locale-2.22-100.8 is installed OR glibc-locale-32bit-2.22-100.8 is installed OR nscd-2.22-100.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND yast2-users-3.1.41.3-9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_29-default-7-2 is installed OR kgraft-patch-3_12_69-60_64_29-xen-7-2 is installed OR kgraft-patch-SLE12-SP1_Update_12-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND libjansson4-2.7-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information git-2.12.3-27.14 is installed OR git-core-2.12.3-27.14 is installed OR git-doc-2.12.3-27.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_103-92_56-default-10-2 is installed OR kgraft-patch-SLE12-SP2_Update_17-10-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_35-default-10-2 is installed OR kgraft-patch-SLE12-SP2_Update_12-10-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cpio-2.11-35 is installed OR cpio-lang-2.11-35 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information MozillaFirefox-68.1.0-109.89 is installed OR MozillaFirefox-branding-SLE-68-32.8 is installed OR MozillaFirefox-translations-common-68.1.0-109.89 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information postgresql96-9.6.15-3.29 is installed OR postgresql96-contrib-9.6.15-3.29 is installed OR postgresql96-docs-9.6.15-3.29 is installed OR postgresql96-libs-9.6.15-3.29 is installed OR postgresql96-plperl-9.6.15-3.29 is installed OR postgresql96-plpython-9.6.15-3.29 is installed OR postgresql96-pltcl-9.6.15-3.29 is installed OR postgresql96-server-9.6.15-3.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ImageMagick-6.8.8.1-71.79 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.79 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.79 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND squid-3.5.21-26.9 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND atftp-0.7.0-160.8 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-60.7.2-109.80 is installed OR MozillaFirefox-translations-common-60.7.2-109.80 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libmariadb3-3.0.3-3.3 is installed OR mariadb-10.2.15-4.3 is installed OR mariadb-client-10.2.15-4.3 is installed OR mariadb-connector-c-3.0.3-3.3 is installed OR mariadb-errormessages-10.2.15-4.3 is installed OR mariadb-galera-10.2.15-4.3 is installed OR mariadb-tools-10.2.15-4.3 is installed OR xtrabackup-2.4.10-4.3 is installed

BACK