Oval Definition:	oval:org.opensuse.security:def:57219
Revision Date: 2020-12-01 Version: 1 Title: Security update for glibc Description: This update for glibc contains the following fixes: * Fix integer overflows in malloc (CVE-2013-4332, bnc#839870) * Fix buffer overflow in glob (bnc#691365) * Fix buffer overflow in strcoll (CVE-2012-4412, bnc#779320) * Update mount flags in (bnc#791928) * Fix buffer overrun in regexp matcher (CVE-2013-0242, bnc#801246) * Fix memory leaks in dlopen (bnc#811979) * Fix stack overflow in getaddrinfo with many results (CVE-2013-1914, bnc#813121) * Fix check for XEN build in glibc_post_upgrade that causes missing init re-exec (bnc#818628) * Don't raise UNDERFLOW in tan/tanf for small but normal argument (bnc#819347) * Properly cross page boundary in SSE4.2 implementation of strcmp (bnc#822210) * Fix robust mutex handling after fork (bnc#827811) * Fix missing character in IBM-943 charset (bnc#828235) * Fix use of alloca in gaih_inet (bnc#828637) * Initialize pointer guard also in static executables (CVE-2013-4788, bnc#830268) * Fix readdir_r with long file names (CVE-2013-4237, bnc#834594). Security Issues: * CVE-2012-4412 * CVE-2013-0242 * CVE-2013-1914 * CVE-2013-4237 * CVE-2013-4332 * CVE-2013-4788 Family: unix Class: patch Status: Reference(s): 1010977 1010979 1011830 1012530 1015993 1052460 1055053 1055063 1056550 1057723 1058422 1063049 1063050 1068565 1082216 1082233 1082234 1096564 1096718 1097108 1099306 1103203 1107832 1108963 1110233 1110949 1111331 1133114 1133145 1138676 1155089 1159646 1160968 1162972 691365 779320 791928 801246 811979 813121 818628 819347 822210 827811 828235 828637 830268 834594 839870 925368 CVE-2012-4412 CVE-2012-6711 CVE-2013-0242 CVE-2013-1914 CVE-2013-4237 CVE-2013-4332 CVE-2013-4788 CVE-2013-6435 CVE-2014-8118 CVE-2015-0801 CVE-2015-0807 CVE-2015-0813 CVE-2015-0814 CVE-2015-0816 CVE-2016-8654 CVE-2016-9395 CVE-2016-9398 CVE-2016-9560 CVE-2016-9591 CVE-2017-1002201 CVE-2017-11600 CVE-2017-12563 CVE-2017-12691 CVE-2017-13061 CVE-2017-13062 CVE-2017-14042 CVE-2017-14174 CVE-2017-14343 CVE-2017-15277 CVE-2017-15281 CVE-2017-18344 CVE-2018-10853 CVE-2018-12015 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-14633 CVE-2018-14634 CVE-2018-17182 CVE-2018-17456 CVE-2018-3646 CVE-2018-6797 CVE-2018-6798 CVE-2018-6913 CVE-2019-11091 CVE-2019-11365 CVE-2019-11366 CVE-2019-17571 CVE-2020-2583 CVE-2020-2593 CVE-2020-2604 CVE-2020-2659 SUSE-SU-2015:0706-1 SUSE-SU-2017:0084-1 SUSE-SU-2018:0017-1 SUSE-SU-2018:1972-1 SUSE-SU-2018:2387-1 SUSE-SU-2018:4088-1 SUSE-SU-2019:1091-1 SUSE-SU-2019:1235-1 SUSE-SU-2019:2932-1 SUSE-SU-2019:2976-1 SUSE-SU-2020:0054-1 SUSE-SU-2020:0456-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information apache2-2.4.33-lp150.1 is installed OR apache2-doc-2.4.33-lp150.1 is installed OR apache2-example-pages-2.4.33-lp150.1 is installed OR apache2-prefork-2.4.33-lp150.1 is installed OR apache2-utils-2.4.33-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information python-requests-2.20.1-lp151.2.3 is installed OR python-requests-test-2.20.1-lp151.2.3 is installed OR python2-requests-2.20.1-lp151.2.3 is installed OR python2-requests-test-2.20.1-lp151.2.3 is installed OR python3-requests-2.20.1-lp151.2.3 is installed OR python3-requests-test-2.20.1-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information glibc-2.11.3-17.45.49 is installed OR glibc-32bit-2.11.3-17.45.49 is installed OR glibc-devel-2.11.3-17.45.49 is installed OR glibc-devel-32bit-2.11.3-17.45.49 is installed OR glibc-i18ndata-2.11.3-17.45.49 is installed OR glibc-locale-2.11.3-17.45.49 is installed OR glibc-locale-32bit-2.11.3-17.45.49 is installed OR nscd-2.11.3-17.45.49 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-31.6.0esr-0.8 is installed OR MozillaFirefox-translations-31.6.0esr-0.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information perl-5.18.2-12.14 is installed OR perl-32bit-5.18.2-12.14 is installed OR perl-base-5.18.2-12.14 is installed OR perl-doc-5.18.2-12.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information rpm-4.11.2-15 is installed OR rpm-32bit-4.11.2-15 is installed OR rpm-build-4.11.2-15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information git-2.12.3-27.14 is installed OR git-core-2.12.3-27.14 is installed OR git-doc-2.12.3-27.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_8_0-openjdk-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-demo-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-devel-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-headless-1.8.0.181-27.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_38-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_13-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information gstreamer-plugins-base-1.8.3-12 is installed OR gstreamer-plugins-base-lang-1.8.3-12 is installed OR libgstallocators-1_0-0-1.8.3-12 is installed OR libgstapp-1_0-0-1.8.3-12 is installed OR libgstapp-1_0-0-32bit-1.8.3-12 is installed OR libgstaudio-1_0-0-1.8.3-12 is installed OR libgstaudio-1_0-0-32bit-1.8.3-12 is installed OR libgstfft-1_0-0-1.8.3-12 is installed OR libgstpbutils-1_0-0-1.8.3-12 is installed OR libgstpbutils-1_0-0-32bit-1.8.3-12 is installed OR libgstriff-1_0-0-1.8.3-12 is installed OR libgstrtp-1_0-0-1.8.3-12 is installed OR libgstrtsp-1_0-0-1.8.3-12 is installed OR libgstsdp-1_0-0-1.8.3-12 is installed OR libgsttag-1_0-0-1.8.3-12 is installed OR libgsttag-1_0-0-32bit-1.8.3-12 is installed OR libgstvideo-1_0-0-1.8.3-12 is installed OR libgstvideo-1_0-0-32bit-1.8.3-12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.0-30.60 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.0-30.60 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.0-30.60 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND python-ipaddress-1.0.18-3.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libecpg6-10.6-1.6 is installed OR libpq5-10.6-1.6 is installed OR libpq5-32bit-10.6-1.6 is installed OR postgresql10-10.6-1.6 is installed OR postgresql10-contrib-10.6-1.6 is installed OR postgresql10-docs-10.6-1.6 is installed OR postgresql10-libs-10.6-1.6 is installed OR postgresql10-server-10.6-1.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information MozillaFirefox-68.1.0-109.89 is installed OR MozillaFirefox-branding-SLE-68-32.8 is installed OR MozillaFirefox-translations-common-68.1.0-109.89 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND atftp-0.7.0-160.8 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-60.7.2-109.80 is installed OR MozillaFirefox-translations-common-60.7.2-109.80 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND mailman-2.1.17-3.11 is installed
BACK