Oval Definition:oval:org.opensuse.security:def:57168
Revision Date:2021-02-19Version:1
Title:Security update for krb5-appl (Important)
Description:

This update for krb5-appl fixes the following issues:

- CVE-2019-25017: Check the filenames sent by the server match those requested by the client (bsc#1131109). - CVE-2019-25018: Disallow empty incoming filename or ones that refer to the current directory (bsc#1131109).
Family:unixClass:patch
Status:Reference(s):1037559
1039567
1040311
1040312
1040313
1050577
1050578
1050579
1050581
1055123
1055960
1057460
1061832
1076390
1082810
1083125
1085018
1087066
1090023
1090024
1090025
1090026
1090027
1090028
1090029
1090030
1090032
1090033
1090368
1090646
1090869
1096564
1097108
1099306
1102682
1103203
1105323
1111622
1111789
1123022
1130116
1131109
1137597
1140747
1158809
1174662
806793
929900
955131
966304
CVE-2012-2738
CVE-2013-1788
CVE-2013-1789
CVE-2013-1790
CVE-2017-11600
CVE-2017-11624
CVE-2017-11625
CVE-2017-11626
CVE-2017-11627
CVE-2017-12173
CVE-2017-12595
CVE-2017-8779
CVE-2017-9208
CVE-2017-9209
CVE-2017-9210
CVE-2018-10853
CVE-2018-1087
CVE-2018-10902
CVE-2018-18074
CVE-2018-2579
CVE-2018-2582
CVE-2018-2588
CVE-2018-2599
CVE-2018-2602
CVE-2018-2603
CVE-2018-2618
CVE-2018-2633
CVE-2018-2634
CVE-2018-2637
CVE-2018-2641
CVE-2018-2657
CVE-2018-2663
CVE-2018-2677
CVE-2018-2678
CVE-2018-2790
CVE-2018-2794
CVE-2018-2795
CVE-2018-2796
CVE-2018-2797
CVE-2018-2798
CVE-2018-2799
CVE-2018-2800
CVE-2018-2814
CVE-2018-2815
CVE-2018-3646
CVE-2018-5390
CVE-2018-8781
CVE-2018-8897
CVE-2019-11477
CVE-2019-11478
CVE-2019-1551
CVE-2019-25017
CVE-2019-25018
CVE-2019-3814
CVE-2019-7524
CVE-2020-9862
CVE-2020-9893
CVE-2020-9894
CVE-2020-9895
CVE-2020-9915
CVE-2020-9925
SUSE-SU-2017:1306-1
SUSE-SU-2017:2937-1
SUSE-SU-2018:0743-1
SUSE-SU-2018:1523-1
SUSE-SU-2018:1690-1
SUSE-SU-2018:1692-1
SUSE-SU-2018:2355-1
SUSE-SU-2018:3066-1
SUSE-SU-2019:0900-1
SUSE-SU-2019:2027-1
SUSE-SU-2020:0028-1
SUSE-SU-2020:2232-1
SUSE-SU-2021:0527-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • coreutils-8.29-lp150.2 is installed
  • OR coreutils-lang-8.29-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • graphviz-2.40.1-lp151.6.3 is installed
  • OR graphviz-addons-2.40.1-lp151.6.3 is installed
  • OR graphviz-devel-2.40.1-lp151.6.3 is installed
  • OR graphviz-doc-2.40.1-lp151.6.3 is installed
  • OR graphviz-gd-2.40.1-lp151.6.3 is installed
  • OR graphviz-gnome-2.40.1-lp151.6.3 is installed
  • OR graphviz-guile-2.40.1-lp151.6.3 is installed
  • OR graphviz-gvedit-2.40.1-lp151.6.3 is installed
  • OR graphviz-java-2.40.1-lp151.6.3 is installed
  • OR graphviz-lua-2.40.1-lp151.6.3 is installed
  • OR graphviz-perl-2.40.1-lp151.6.3 is installed
  • OR graphviz-php-2.40.1-lp151.6.3 is installed
  • OR graphviz-plugins-core-2.40.1-lp151.6.3 is installed
  • OR graphviz-python-2.40.1-lp151.6.3 is installed
  • OR graphviz-ruby-2.40.1-lp151.6.3 is installed
  • OR graphviz-smyrna-2.40.1-lp151.6.3 is installed
  • OR graphviz-tcl-2.40.1-lp151.6.3 is installed
  • OR libgraphviz6-2.40.1-lp151.6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • libpoppler-glib4-0.12.3-1.8 is installed
  • OR libpoppler-qt4-3-0.12.3-1.8 is installed
  • OR libpoppler5-0.12.3-1.8 is installed
  • OR poppler-tools-0.12.3-1.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • libopenssl-1_0_0-devel-1.0.2p-3.14 is installed
  • OR libopenssl1_0_0-1.0.2p-3.14 is installed
  • OR libopenssl1_0_0-32bit-1.0.2p-3.14 is installed
  • OR openssl-1_0_0-1.0.2p-3.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libtirpc-0.2.3-13.3 is installed
  • OR libtirpc1-0.2.3-13.3 is installed
  • OR libtirpc1-32bit-0.2.3-13.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_57-default-11-2 is installed
  • OR kgraft-patch-3_12_74-60_64_57-xen-11-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_20-11-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libvte9-0.28.2-19 is installed
  • OR python-vte-0.28.2-19 is installed
  • OR vte2-lang-0.28.2-19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libdcerpc-atsvc0-4.2.4-28.32 is installed
  • OR samba-4.2.4-28.32 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • cups-filters-1.0.58-15.2 is installed
  • OR cups-filters-cups-browsed-1.0.58-15.2 is installed
  • OR cups-filters-foomatic-rip-1.0.58-15.2 is installed
  • OR cups-filters-ghostscript-1.0.58-15.2 is installed
  • OR libqpdf18-7.1.1-3.3 is installed
  • OR qpdf-7.1.1-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_120-92_70-default-3-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_20-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • cracklib-2.9.0-7 is installed
  • OR libcrack2-2.9.0-7 is installed
  • OR libcrack2-32bit-2.9.0-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • krb5-appl-1.0.3-3.3 is installed
  • OR krb5-appl-clients-1.0.3-3.3 is installed
  • OR krb5-appl-servers-1.0.3-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • krb5-appl-clients-1.0.3-3.6.1 is installed
  • OR krb5-appl-servers-1.0.3-3.6.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • gnutls-3.3.27-3.3 is installed
  • OR libgnutls-openssl27-3.3.27-3.3 is installed
  • OR libgnutls28-3.3.27-3.3 is installed
  • OR libgnutls28-32bit-3.3.27-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • cron-4.2-59.10 is installed
  • OR cronie-1.4.11-59.10 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • cups-filters-1.0.58-15.2 is installed
  • OR cups-filters-cups-browsed-1.0.58-15.2 is installed
  • OR cups-filters-foomatic-rip-1.0.58-15.2 is installed
  • OR cups-filters-ghostscript-1.0.58-15.2 is installed
  • OR libqpdf18-7.1.1-3.3 is installed
  • OR qpdf-7.1.1-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libfreebl3-3.53.1-58.48 is installed
  • OR libfreebl3-32bit-3.53.1-58.48 is installed
  • OR libfreebl3-hmac-3.53.1-58.48 is installed
  • OR libfreebl3-hmac-32bit-3.53.1-58.48 is installed
  • OR libsoftokn3-3.53.1-58.48 is installed
  • OR libsoftokn3-32bit-3.53.1-58.48 is installed
  • OR libsoftokn3-hmac-3.53.1-58.48 is installed
  • OR libsoftokn3-hmac-32bit-3.53.1-58.48 is installed
  • OR mozilla-nspr-4.25-19.15 is installed
  • OR mozilla-nspr-32bit-4.25-19.15 is installed
  • OR mozilla-nspr-devel-4.25-19.15 is installed
  • OR mozilla-nss-3.53.1-58.48 is installed
  • OR mozilla-nss-32bit-3.53.1-58.48 is installed
  • OR mozilla-nss-certs-3.53.1-58.48 is installed
  • OR mozilla-nss-certs-32bit-3.53.1-58.48 is installed
  • OR mozilla-nss-devel-3.53.1-58.48 is installed
  • OR mozilla-nss-sysinit-3.53.1-58.48 is installed
  • OR mozilla-nss-sysinit-32bit-3.53.1-58.48 is installed
  • OR mozilla-nss-tools-3.53.1-58.48 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • evince-3.20.2-6.27 is installed
  • OR evince-browser-plugin-3.20.2-6.27 is installed
  • OR evince-lang-3.20.2-6.27 is installed
  • OR evince-plugin-djvudocument-3.20.2-6.27 is installed
  • OR evince-plugin-dvidocument-3.20.2-6.27 is installed
  • OR evince-plugin-pdfdocument-3.20.2-6.27 is installed
  • OR evince-plugin-psdocument-3.20.2-6.27 is installed
  • OR evince-plugin-tiffdocument-3.20.2-6.27 is installed
  • OR evince-plugin-xpsdocument-3.20.2-6.27 is installed
  • OR libevdocument3-4-3.20.2-6.27 is installed
  • OR libevview3-3-3.20.2-6.27 is installed
  • OR nautilus-evince-3.20.2-6.27 is installed
    • BACK