Oval Definition:oval:org.opensuse.security:def:5700
Revision Date:2021-01-20Version:1
Title:Security update for xstream (Important)
Description:

This update for xstream fixes the following issues:

xstream was updated to version 1.4.15.

- CVE-2020-26217: Fixed a remote code execution due to insecure XML deserialization when relying on blocklists (bsc#1180994). - CVE-2020-26258: Fixed a server-side request forgery vulnerability (bsc#1180146). - CVE-2020-26259: Fixed an arbitrary file deletion vulnerability (bsc#1180145).
Family:unixClass:patch
Status:Reference(s):1174321
1176410
1177143
1180145
1180146
1180994
CVE-2009-3297
CVE-2010-2242
CVE-2011-0541
CVE-2011-0904
CVE-2011-0905
CVE-2011-1146
CVE-2011-1164
CVE-2011-2483
CVE-2011-2511
CVE-2011-2709
CVE-2011-3177
CVE-2011-3389
CVE-2011-4600
CVE-2011-4944
CVE-2012-0845
CVE-2012-1150
CVE-2012-3445
CVE-2013-0170
CVE-2013-1752
CVE-2013-1962
CVE-2013-1990
CVE-2013-1999
CVE-2013-2218
CVE-2013-2230
CVE-2013-2492
CVE-2013-4153
CVE-2013-4154
CVE-2013-4238
CVE-2013-4239
CVE-2013-4296
CVE-2013-4297
CVE-2013-4311
CVE-2013-4399
CVE-2013-4400
CVE-2013-4401
CVE-2013-6369
CVE-2013-6436
CVE-2013-6457
CVE-2013-6458
CVE-2014-0011
CVE-2014-0028
CVE-2014-0139
CVE-2014-0179
CVE-2014-1447
CVE-2014-2667
CVE-2014-3633
CVE-2014-3657
CVE-2014-4650
CVE-2014-7823
CVE-2014-8136
CVE-2014-8169
CVE-2014-8240
CVE-2015-0236
CVE-2015-0255
CVE-2015-3202
CVE-2015-5247
CVE-2015-5313
CVE-2016-7953
CVE-2016-9082
CVE-2017-7475
CVE-2020-15103
CVE-2020-25219
CVE-2020-26154
CVE-2020-26217
CVE-2020-26258
CVE-2020-26259
SUSE-SU-2020:2408-1
SUSE-SU-2020:2901-1
Platform(s):openSUSE 13.1
openSUSE 13.1 NonFree
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise for SAP 12 SP1
SUSE Linux Enterprise High Availability 12
SUSE Linux Enterprise High Availability 12 SP1
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT
SUSE Linux Enterprise Server 11 SP1-CLIENT-TOOLS
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP4
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE Linux Enterprise Workstation Extension 12 SP3
SUSE Linux Enterprise Workstation Extension 12 SP4
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE Linux Enterprise Workstation Extension 15 SP2
SUSE OpenStack Cloud 5
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND haproxy-1.5.4-2.4.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • libXvnc1-1.6.0-12 is installed
  • OR tigervnc-1.6.0-12 is installed
  • OR xorg-x11-Xvnc-1.6.0-12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND autofs-5.0.9-27 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • MozillaFirefox-52.9.0esr-109.38 is installed
  • OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 is installed
  • AND Package Information
  • libstorage-2.25.16.1-3.1 is installed
  • OR libstorage-ruby-2.25.16.1-3.1 is installed
  • OR libstorage5-2.25.16.1-3.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 SP1 is installed
  • AND Package Information
  • kernel-default-3.12.74-60.64.48.1 is installed
  • OR kernel-default-base-3.12.74-60.64.48.1 is installed
  • OR kernel-default-devel-3.12.74-60.64.48.1 is installed
  • OR kernel-devel-3.12.74-60.64.48.1 is installed
  • OR kernel-macros-3.12.74-60.64.48.1 is installed
  • OR kernel-source-3.12.74-60.64.48.1 is installed
  • OR kernel-syms-3.12.74-60.64.48.1 is installed
  • OR kernel-xen-3.12.74-60.64.48.1 is installed
  • OR kernel-xen-base-3.12.74-60.64.48.1 is installed
  • OR kernel-xen-devel-3.12.74-60.64.48.1 is installed
  • OR kgraft-patch-3_12_74-60_64_48-default-1-2.1 is installed
  • OR kgraft-patch-3_12_74-60_64_48-xen-1-2.1 is installed
  • OR kgraft-patch-SLE12-SP1_Update_17-1-2.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 is installed
  • AND python-requests-2.8.1-6.9 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP1 is installed
  • AND Package Information
  • ctdb-4.2.4-26 is installed
  • OR samba-4.2.4-26 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND Package Information
  • libpacemaker3-1.1.15-21 is installed
  • OR pacemaker-1.1.15-21 is installed
  • OR pacemaker-cli-1.1.15-21 is installed
  • OR pacemaker-cts-1.1.15-21 is installed
  • OR pacemaker-remote-1.1.15-21 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND conntrack-tools-1.4.2-5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND Package Information
  • cups-pk-helper-0.2.5-5 is installed
  • OR cups-pk-helper-lang-0.2.5-5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND apache2-mod_wsgi-4.4.13-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP1-CLIENT-TOOLS is installed
  • AND Package Information
  • rhn-virtualization-common-5.4.15-0.15.2 is installed
  • OR rhn-virtualization-host-5.4.15-0.15.2 is installed
  • OR rhncfg-5.9.33-0.20.1 is installed
  • OR rhncfg-actions-5.9.33-0.20.1 is installed
  • OR rhncfg-client-5.9.33-0.20.1 is installed
  • OR rhncfg-management-5.9.33-0.20.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP1-LTSS is installed
  • AND Package Information
  • curl-7.19.7-1.20.27.9 is installed
  • OR libcurl4-7.19.7-1.20.27.9 is installed
  • OR libcurl4-32bit-7.19.7-1.20.27.9 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND Package Information
  • apache2-mod_php53-5.3.8-0.19.6 is installed
  • OR php53-5.3.8-0.19.6 is installed
  • OR php53-bcmath-5.3.8-0.19.6 is installed
  • OR php53-bz2-5.3.8-0.19.6 is installed
  • OR php53-calendar-5.3.8-0.19.6 is installed
  • OR php53-ctype-5.3.8-0.19.6 is installed
  • OR php53-curl-5.3.8-0.19.6 is installed
  • OR php53-dba-5.3.8-0.19.6 is installed
  • OR php53-dom-5.3.8-0.19.6 is installed
  • OR php53-exif-5.3.8-0.19.6 is installed
  • OR php53-fastcgi-5.3.8-0.19.6 is installed
  • OR php53-fileinfo-5.3.8-0.19.6 is installed
  • OR php53-ftp-5.3.8-0.19.6 is installed
  • OR php53-gd-5.3.8-0.19.6 is installed
  • OR php53-gettext-5.3.8-0.19.6 is installed
  • OR php53-gmp-5.3.8-0.19.6 is installed
  • OR php53-iconv-5.3.8-0.19.6 is installed
  • OR php53-intl-5.3.8-0.19.6 is installed
  • OR php53-json-5.3.8-0.19.6 is installed
  • OR php53-ldap-5.3.8-0.19.6 is installed
  • OR php53-mbstring-5.3.8-0.19.6 is installed
  • OR php53-mcrypt-5.3.8-0.19.6 is installed
  • OR php53-mysql-5.3.8-0.19.6 is installed
  • OR php53-odbc-5.3.8-0.19.6 is installed
  • OR php53-openssl-5.3.8-0.19.6 is installed
  • OR php53-pcntl-5.3.8-0.19.6 is installed
  • OR php53-pdo-5.3.8-0.19.6 is installed
  • OR php53-pear-5.3.8-0.19.6 is installed
  • OR php53-pgsql-5.3.8-0.19.6 is installed
  • OR php53-pspell-5.3.8-0.19.6 is installed
  • OR php53-shmop-5.3.8-0.19.6 is installed
  • OR php53-snmp-5.3.8-0.19.6 is installed
  • OR php53-soap-5.3.8-0.19.6 is installed
  • OR php53-suhosin-5.3.8-0.19.6 is installed
  • OR php53-sysvmsg-5.3.8-0.19.6 is installed
  • OR php53-sysvsem-5.3.8-0.19.6 is installed
  • OR php53-sysvshm-5.3.8-0.19.6 is installed
  • OR php53-tokenizer-5.3.8-0.19.6 is installed
  • OR php53-wddx-5.3.8-0.19.6 is installed
  • OR php53-xmlreader-5.3.8-0.19.6 is installed
  • OR php53-xmlrpc-5.3.8-0.19.6 is installed
  • OR php53-xmlwriter-5.3.8-0.19.6 is installed
  • OR php53-xsl-5.3.8-0.19.6 is installed
  • OR php53-zip-5.3.8-0.19.6 is installed
  • OR php53-zlib-5.3.8-0.19.6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2-LTSS is installed
  • AND Package Information
  • libopenssl-devel-0.9.8j-0.89.1 is installed
  • OR libopenssl0_9_8-0.9.8j-0.89.1 is installed
  • OR libopenssl0_9_8-32bit-0.9.8j-0.89.1 is installed
  • OR libopenssl0_9_8-hmac-0.9.8j-0.89.1 is installed
  • OR libopenssl0_9_8-hmac-32bit-0.9.8j-0.89.1 is installed
  • OR openssl-0.9.8j-0.89.1 is installed
  • OR openssl-doc-0.9.8j-0.89.1 is installed
  • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • MozillaFirefox-24.6.0esr-0.8.1 is installed
  • OR MozillaFirefox-branding-SLED-24-0.7.48 is installed
  • OR MozillaFirefox-translations-24.6.0esr-0.8.1 is installed
  • OR libfreebl3-3.16.1-0.8.1 is installed
  • OR libfreebl3-32bit-3.16.1-0.8.1 is installed
  • OR libfreebl3-x86-3.16.1-0.8.1 is installed
  • OR libsoftokn3-3.16.1-0.8.1 is installed
  • OR libsoftokn3-32bit-3.16.1-0.8.1 is installed
  • OR libsoftokn3-x86-3.16.1-0.8.1 is installed
  • OR mozilla-nspr-4.10.6-0.3.1 is installed
  • OR mozilla-nspr-32bit-4.10.6-0.3.1 is installed
  • OR mozilla-nspr-x86-4.10.6-0.3.1 is installed
  • OR mozilla-nss-3.16.1-0.8.1 is installed
  • OR mozilla-nss-32bit-3.16.1-0.8.1 is installed
  • OR mozilla-nss-tools-3.16.1-0.8.1 is installed
  • OR mozilla-nss-x86-3.16.1-0.8.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for VMWare 11 SP3 is installed
  • AND
  • MozillaFirefox-24.6.0esr-0.8.1 is installed
  • OR MozillaFirefox-branding-SLED-24-0.7.48 is installed
  • OR MozillaFirefox-translations-24.6.0esr-0.8.1 is installed
  • OR libfreebl3-3.16.1-0.8.1 is installed
  • OR libfreebl3-32bit-3.16.1-0.8.1 is installed
  • OR libfreebl3-x86-3.16.1-0.8.1 is installed
  • OR libsoftokn3-3.16.1-0.8.1 is installed
  • OR libsoftokn3-32bit-3.16.1-0.8.1 is installed
  • OR libsoftokn3-x86-3.16.1-0.8.1 is installed
  • OR mozilla-nspr-4.10.6-0.3.1 is installed
  • OR mozilla-nspr-32bit-4.10.6-0.3.1 is installed
  • OR mozilla-nspr-x86-4.10.6-0.3.1 is installed
  • OR mozilla-nss-3.16.1-0.8.1 is installed
  • OR mozilla-nss-32bit-3.16.1-0.8.1 is installed
  • OR mozilla-nss-tools-3.16.1-0.8.1 is installed
  • OR mozilla-nss-x86-3.16.1-0.8.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • ant-1.7.1-20.9.53 is installed
  • OR ant-trax-1.7.1-16.9.65 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND aaa_base-11-6.105.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND apache2-mod_nss-1.0.8-9 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • accountsservice-0.6.35-3 is installed
  • OR accountsservice-lang-0.6.35-3 is installed
  • OR libaccountsservice0-0.6.35-3 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.35-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • glibc-2.19-40.6.1 is installed
  • OR glibc-32bit-2.19-40.6.1 is installed
  • OR glibc-devel-2.19-40.6.1 is installed
  • OR glibc-devel-32bit-2.19-40.6.1 is installed
  • OR glibc-html-2.19-40.6.1 is installed
  • OR glibc-i18ndata-2.19-40.6.1 is installed
  • OR glibc-info-2.19-40.6.1 is installed
  • OR glibc-locale-2.19-40.6.1 is installed
  • OR glibc-locale-32bit-2.19-40.6.1 is installed
  • OR glibc-profile-2.19-40.6.1 is installed
  • OR glibc-profile-32bit-2.19-40.6.1 is installed
  • OR nscd-2.19-40.6.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND apache2-mod_jk-1.2.40-5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libHX28-3.18-1 is installed
  • OR libHX28-32bit-3.18-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12-LTSS is installed
  • AND Package Information
  • tomcat-7.0.78-7.13.4 is installed
  • OR tomcat-admin-webapps-7.0.78-7.13.4 is installed
  • OR tomcat-docs-webapp-7.0.78-7.13.4 is installed
  • OR tomcat-el-2_2-api-7.0.78-7.13.4 is installed
  • OR tomcat-javadoc-7.0.78-7.13.4 is installed
  • OR tomcat-jsp-2_2-api-7.0.78-7.13.4 is installed
  • OR tomcat-lib-7.0.78-7.13.4 is installed
  • OR tomcat-servlet-3_0-api-7.0.78-7.13.4 is installed
  • OR tomcat-webapps-7.0.78-7.13.4 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_63-default-9-2 is installed
  • OR kgraft-patch-3_12_74-60_64_63-xen-9-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_22-9-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP2 is installed
  • AND Package Information
  • finch-2.6.6-0.19.1 is installed
  • OR finch-devel-2.6.6-0.19.1 is installed
  • OR libpurple-2.6.6-0.19.1 is installed
  • OR libpurple-devel-2.6.6-0.19.1 is installed
  • OR libpurple-lang-2.6.6-0.19.1 is installed
  • OR pidgin-2.6.6-0.19.1 is installed
  • OR pidgin-devel-2.6.6-0.19.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-devel-24.5.0esr-0.8.1 is installed
  • OR mozilla-nspr-devel-4.10.4-0.3.1 is installed
  • OR mozilla-nss-devel-3.16-0.8.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND Package Information
  • dbus-1-devel-1.8.8-1 is installed
  • OR dbus-1-devel-doc-1.8.8-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND accountsservice-devel-0.6.35-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
  • AND libdmx-devel-1.1.3-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND bogofilter-1.2.4-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-8 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-8 is installed
  • OR libMagickCore-6_Q16-1-32bit-6.8.8.1-8 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND Package Information
  • finch-2.11.0-12 is installed
  • OR libpurple-2.11.0-12 is installed
  • OR libpurple-lang-2.11.0-12 is installed
  • OR libpurple-meanwhile-2.11.0-12 is installed
  • OR libpurple-tcl-2.11.0-12 is installed
  • OR pidgin-2.11.0-12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP3 is installed
  • AND Package Information
  • NetworkManager-1.0.12-12 is installed
  • OR NetworkManager-lang-1.0.12-12 is installed
  • OR typelib-1_0-NM-1_0-1.0.12-12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP4 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-71.85 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-71.85 is installed
  • OR libMagickCore-6_Q16-1-32bit-6.8.8.1-71.85 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • libproxy-plugins-0.4.15-4.3 is installed
  • OR libproxy1-config-gnome3-0.4.15-4.3 is installed
  • OR libproxy1-networkmanager-0.4.15-4.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
  • AND Package Information
  • freerdp-2.1.2-15.10 is installed
  • OR freerdp-devel-2.1.2-15.10 is installed
  • OR libfreerdp2-2.1.2-15.10 is installed
  • OR libwinpr2-2.1.2-15.10 is installed
  • OR winpr2-devel-2.1.2-15.10 is installed
  • BACK