Oval Definition:oval:org.opensuse.security:def:57298
Revision Date:2020-12-01Version:1
Title:Security update for augeas (Moderate)
Description:



This update fixes an untrusted argument escaping problem (CVE-2014-8119):

new API - aug_escape_name() - which can be used to escape untrusted inputs before using them as part of path expressions * aug_match() is changed to return properly escaped output
Family:unixClass:patch
Status:Reference(s):1007280
1010161
1010163
1011103
1011107
1029907
1029908
1029909
1030296
1030297
1030298
1030584
1030585
1030588
1030589
1031590
1031593
1031595
1031638
1031644
1031656
1037052
1037057
1037061
1037066
1037273
1044891
1044897
1044901
1044909
1044925
1044927
1065643
1065689
1065693
1068640
1068643
1068887
1068888
1068950
1069176
1069202
1074741
1077745
1079103
1079741
1080556
1081527
1083488
1083528
1083532
1085784
1086608
1086784
1086786
1086788
1090997
1091015
1091365
1091368
1091764
1097375
1103098
1107832
1108963
1110233
1132728
1132729
1132732
1132734
1134718
1136085
1149496
1153332
1159723
1159729
1164825
1171252
1171254
1171928
808355
835827
836937
852368
914890
925225
974449
974840
984813
984815
987351
991464
CVE-2013-0200
CVE-2013-4325
CVE-2013-6402
CVE-2014-8119
CVE-2014-8127
CVE-2014-9939
CVE-2016-3622
CVE-2016-3658
CVE-2016-5321
CVE-2016-5323
CVE-2016-5384
CVE-2016-5652
CVE-2016-5875
CVE-2016-6489
CVE-2016-9273
CVE-2016-9297
CVE-2016-9448
CVE-2016-9453
CVE-2017-15938
CVE-2017-15939
CVE-2017-15996
CVE-2017-16826
CVE-2017-16827
CVE-2017-16828
CVE-2017-16829
CVE-2017-16830
CVE-2017-16831
CVE-2017-16832
CVE-2017-6965
CVE-2017-6966
CVE-2017-6969
CVE-2017-7209
CVE-2017-7210
CVE-2017-7223
CVE-2017-7224
CVE-2017-7225
CVE-2017-7226
CVE-2017-7299
CVE-2017-7300
CVE-2017-7301
CVE-2017-7302
CVE-2017-7303
CVE-2017-7304
CVE-2017-8392
CVE-2017-8393
CVE-2017-8394
CVE-2017-8396
CVE-2017-8421
CVE-2017-9746
CVE-2017-9747
CVE-2017-9748
CVE-2017-9750
CVE-2017-9755
CVE-2017-9756
CVE-2018-10372
CVE-2018-10373
CVE-2018-10534
CVE-2018-10535
CVE-2018-14633
CVE-2018-14634
CVE-2018-16301
CVE-2018-17182
CVE-2018-5391
CVE-2018-6323
CVE-2018-6543
CVE-2018-6759
CVE-2018-6872
CVE-2018-7167
CVE-2018-7208
CVE-2018-7566
CVE-2018-7568
CVE-2018-7569
CVE-2018-7570
CVE-2018-7642
CVE-2018-7643
CVE-2018-8945
CVE-2019-0221
CVE-2019-10245
CVE-2019-12418
CVE-2019-15165
CVE-2019-17563
CVE-2019-17569
CVE-2019-2602
CVE-2019-2684
CVE-2019-2697
CVE-2019-2698
CVE-2019-5482
CVE-2020-12653
CVE-2020-12654
CVE-2020-9484
SUSE-SU-2015:1792-1
SUSE-SU-2016:3301-1
SUSE-SU-2017:1481-1
SUSE-SU-2018:0991-1
SUSE-SU-2018:1892-1
SUSE-SU-2018:3207-1
SUSE-SU-2019:1345-1
SUSE-SU-2019:2339-2
SUSE-SU-2019:2669-1
SUSE-SU-2020:1498-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
openSUSE Leap 15.1 NonFree
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • NetworkManager-1.10.6-lp150.3 is installed
  • OR NetworkManager-lang-1.10.6-lp150.3 is installed
  • OR libnm-glib-vpn1-1.10.6-lp150.3 is installed
  • OR libnm-glib4-1.10.6-lp150.3 is installed
  • OR libnm-util2-1.10.6-lp150.3 is installed
  • OR libnm0-1.10.6-lp150.3 is installed
  • OR typelib-1_0-NM-1_0-1.10.6-lp150.3 is installed
  • OR typelib-1_0-NMClient-1_0-1.10.6-lp150.3 is installed
  • OR typelib-1_0-NetworkManager-1_0-1.10.6-lp150.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libruby2_5-2_5-2.5.5-lp151.4.3 is installed
  • OR ruby-bundled-gems-rpmhelper-0.0.2-lp151.2 is installed
  • OR ruby2.5-2.5.5-lp151.4.3 is installed
  • OR ruby2.5-devel-2.5.5-lp151.4.3 is installed
  • OR ruby2.5-devel-extra-2.5.5-lp151.4.3 is installed
  • OR ruby2.5-doc-2.5.5-lp151.4.3 is installed
  • OR ruby2.5-doc-ri-2.5.5-lp151.4.3 is installed
  • OR ruby2.5-stdlib-2.5.5-lp151.4.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 NonFree is installed
  • AND opera-68.0.3618.63-lp151.2.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • augeas-0.9.0-3.17 is installed
  • OR libaugeas0-0.9.0-3.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_88-default-6-2 is installed
  • OR kgraft-patch-3_12_74-60_64_88-xen-6-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_27-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • fontconfig-2.11.1-7 is installed
  • OR fontconfig-32bit-2.11.1-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • openssh-7.2p2-74.25 is installed
  • OR openssh-askpass-gnome-7.2p2-74.25 is installed
  • OR openssh-fips-7.2p2-74.25 is installed
  • OR openssh-helpers-7.2p2-74.25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND binutils-2.31-9.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND dnsmasq-2.76-17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • MozillaFirefox-68.2.0-109.95 is installed
  • OR MozillaFirefox-translations-common-68.2.0-109.95 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_156-94_64-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_20-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-71.74 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-71.74 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-71.74 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • mariadb-10.2.22-3.14 is installed
  • OR mariadb-client-10.2.22-3.14 is installed
  • OR mariadb-errormessages-10.2.22-3.14 is installed
  • OR mariadb-tools-10.2.22-3.14 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND nodejs6-6.14.3-11.15 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • kernel-default-4.4.180-94.103 is installed
  • OR kernel-default-base-4.4.180-94.103 is installed
  • OR kernel-default-devel-4.4.180-94.103 is installed
  • OR kernel-devel-4.4.180-94.103 is installed
  • OR kernel-macros-4.4.180-94.103 is installed
  • OR kernel-source-4.4.180-94.103 is installed
  • OR kernel-syms-4.4.180-94.103 is installed
  • OR kgraft-patch-4_4_180-94_103-default-1-4.3 is installed
  • OR kgraft-patch-SLE12-SP3_Update_28-1-4.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND python-Twisted-15.2.1-9.8 is installed
    • BACK