OVAL Reference oval:org.opensuse.security:def:57308

Oval Definition:

oval:org.opensuse.security:def:57308

Revision Date:	2020-12-01	Version:	1
Title:	Security update for compat-openssl097g
Description:	OpenSSL was updated to fix several security issues: * CVE-2015-4000: The Logjam Attack ( weakdh.org ) has been addressed by rejecting connections with DH parameters shorter than 1024 bits. 2048-bit DH parameters are now generated by default. * CVE-2015-1789: An out-of-bounds read in X509_cmp_time was fixed. * CVE-2015-1790: A PKCS7 decoder crash with missing EnvelopedContent was fixed. * Fixed a timing side channel in RSA decryption. (bsc#929678) Additional changes: * In the default SSL cipher string EXPORT ciphers are now disabled. This will only get active if applications get rebuilt and actually use this string. (bsc#931698) Security Issues: * CVE-2015-1789 * CVE-2015-1790 * CVE-2015-4000
Family:	unix	Class:	patch
Status:		Reference(s):	1004959 1012422 1039357 1040043 1040170 1042803 1045205 1050231 1066569 1066693 1067678 1068032 1068671 1070130 1070771 1070781 1071074 1071470 1071693 1071694 1071695 1072561 1072648 1072876 1072887 1073973 1076500 1077993 1078806 1078813 1081741 1084632 1088268 1090036 1103411 1104076 1111056 1117665 1122319 1123959 1137586 1137865 1137944 1138461 1139073 1139751 1142857 1144903 1145477 1145922 1146042 1146163 1146285 1146361 1146378 1146391 1146413 1146425 1146512 1146514 1146516 1146519 1146524 1146526 1146529 1146540 1146543 1146547 1146584 1146612 1147122 1148938 1149376 1149522 1149527 1149555 1150025 1150112 1150452 1150457 1150465 1151347 1151350 1152782 1152788 1153119 1154824 1155671 1156353 1168994 1172466 1173812 1174463 1174519 1174570 1175049 904625 929678 929718 931698 934489 934491 999278 CVE-2011-2186 CVE-2014-8651 CVE-2014-9390 CVE-2015-1789 CVE-2015-1790 CVE-2015-4000 CVE-2016-10906 CVE-2016-2315 CVE-2016-2324 CVE-2016-5131 CVE-2017-0861 CVE-2017-1000366 CVE-2017-11600 CVE-2017-13167 CVE-2017-15115 CVE-2017-15412 CVE-2017-15868 CVE-2017-16534 CVE-2017-16538 CVE-2017-17448 CVE-2017-17449 CVE-2017-17450 CVE-2017-17558 CVE-2017-18509 CVE-2017-18551 CVE-2017-18595 CVE-2017-5130 CVE-2017-5715 CVE-2017-5753 CVE-2017-5754 CVE-2017-8824 CVE-2017-9083 CVE-2017-9406 CVE-2018-1000199 CVE-2018-1050 CVE-2018-10858 CVE-2018-12207 CVE-2018-12472 CVE-2018-20976 CVE-2018-5748 CVE-2019-10207 CVE-2019-10220 CVE-2019-11135 CVE-2019-11477 CVE-2019-12855 CVE-2019-14814 CVE-2019-14815 CVE-2019-14816 CVE-2019-14821 CVE-2019-14835 CVE-2019-15098 CVE-2019-15118 CVE-2019-15212 CVE-2019-15215 CVE-2019-15216 CVE-2019-15217 CVE-2019-15218 CVE-2019-15219 CVE-2019-15220 CVE-2019-15221 CVE-2019-15290 CVE-2019-15291 CVE-2019-15505 CVE-2019-15807 CVE-2019-15902 CVE-2019-15926 CVE-2019-15927 CVE-2019-16232 CVE-2019-16233 CVE-2019-16234 CVE-2019-16413 CVE-2019-17055 CVE-2019-17056 CVE-2019-6116 CVE-2019-9456 CVE-2019-9506 CVE-2020-0543 CVE-2020-0548 CVE-2020-0549 CVE-2020-10713 CVE-2020-14308 CVE-2020-14309 CVE-2020-14310 CVE-2020-14311 CVE-2020-15706 CVE-2020-15707 SUSE-SU-2015:1183-2 SUSE-SU-2016:0303-1 SUSE-SU-2017:1619-1 SUSE-SU-2017:1672-1 SUSE-SU-2018:0031-1 SUSE-SU-2018:0385-1 SUSE-SU-2018:0401-1 SUSE-SU-2018:1251-1 SUSE-SU-2018:2339-1 SUSE-SU-2018:3467-1 SUSE-SU-2019:0144-1 SUSE-SU-2019:2453-1 SUSE-SU-2019:2950-1 SUSE-SU-2020:1595-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information augeas-1.10.1-lp150.1 is installed OR augeas-lenses-1.10.1-lp150.1 is installed OR libaugeas0-1.10.1-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND teeworlds-0.7.3.1-lp151.2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information compat-openssl097g-0.9.7g-146.22.31 is installed OR compat-openssl097g-32bit-0.9.7g-146.22.31 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kernel-default-3.12.74-60.64.69 is installed OR kernel-default-base-3.12.74-60.64.69 is installed OR kernel-default-devel-3.12.74-60.64.69 is installed OR kernel-default-man-3.12.74-60.64.69 is installed OR kernel-devel-3.12.74-60.64.69 is installed OR kernel-macros-3.12.74-60.64.69 is installed OR kernel-source-3.12.74-60.64.69 is installed OR kernel-syms-3.12.74-60.64.69 is installed OR kernel-xen-3.12.74-60.64.69 is installed OR kernel-xen-base-3.12.74-60.64.69 is installed OR kernel-xen-devel-3.12.74-60.64.69 is installed OR kgraft-patch-3_12_74-60_64_69-default-1-2.3 is installed OR kgraft-patch-3_12_74-60_64_69-xen-1-2.3 is installed OR kgraft-patch-SLE12-SP1_Update_24-1-2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND git-core-1.8.5.6-18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libdcerpc-binding0-4.4.2-38.20 is installed OR libdcerpc-binding0-32bit-4.4.2-38.20 is installed OR libdcerpc0-4.4.2-38.20 is installed OR libdcerpc0-32bit-4.4.2-38.20 is installed OR libndr-krb5pac0-4.4.2-38.20 is installed OR libndr-krb5pac0-32bit-4.4.2-38.20 is installed OR libndr-nbt0-4.4.2-38.20 is installed OR libndr-nbt0-32bit-4.4.2-38.20 is installed OR libndr-standard0-4.4.2-38.20 is installed OR libndr-standard0-32bit-4.4.2-38.20 is installed OR libndr0-4.4.2-38.20 is installed OR libndr0-32bit-4.4.2-38.20 is installed OR libnetapi0-4.4.2-38.20 is installed OR libnetapi0-32bit-4.4.2-38.20 is installed OR libsamba-credentials0-4.4.2-38.20 is installed OR libsamba-credentials0-32bit-4.4.2-38.20 is installed OR libsamba-errors0-4.4.2-38.20 is installed OR libsamba-errors0-32bit-4.4.2-38.20 is installed OR libsamba-hostconfig0-4.4.2-38.20 is installed OR libsamba-hostconfig0-32bit-4.4.2-38.20 is installed OR libsamba-passdb0-4.4.2-38.20 is installed OR libsamba-passdb0-32bit-4.4.2-38.20 is installed OR libsamba-util0-4.4.2-38.20 is installed OR libsamba-util0-32bit-4.4.2-38.20 is installed OR libsamdb0-4.4.2-38.20 is installed OR libsamdb0-32bit-4.4.2-38.20 is installed OR libsmbclient0-4.4.2-38.20 is installed OR libsmbclient0-32bit-4.4.2-38.20 is installed OR libsmbconf0-4.4.2-38.20 is installed OR libsmbconf0-32bit-4.4.2-38.20 is installed OR libsmbldap0-4.4.2-38.20 is installed OR libsmbldap0-32bit-4.4.2-38.20 is installed OR libtevent-util0-4.4.2-38.20 is installed OR libtevent-util0-32bit-4.4.2-38.20 is installed OR libwbclient0-4.4.2-38.20 is installed OR libwbclient0-32bit-4.4.2-38.20 is installed OR samba-4.4.2-38.20 is installed OR samba-client-4.4.2-38.20 is installed OR samba-client-32bit-4.4.2-38.20 is installed OR samba-doc-4.4.2-38.20 is installed OR samba-libs-4.4.2-38.20 is installed OR samba-libs-32bit-4.4.2-38.20 is installed OR samba-winbind-4.4.2-38.20 is installed OR samba-winbind-32bit-4.4.2-38.20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information res-signingkeys-3.0.37-52.23 is installed OR smt-3.0.37-52.23 is installed OR smt-support-3.0.37-52.23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information res-signingkeys-3.0.38-52.26 is installed OR smt-3.0.38-52.26 is installed OR smt-support-3.0.38-52.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information evince-3.20.1-5 is installed OR evince-browser-plugin-3.20.1-5 is installed OR evince-lang-3.20.1-5 is installed OR evince-plugin-djvudocument-3.20.1-5 is installed OR evince-plugin-dvidocument-3.20.1-5 is installed OR evince-plugin-pdfdocument-3.20.1-5 is installed OR evince-plugin-psdocument-3.20.1-5 is installed OR evince-plugin-tiffdocument-3.20.1-5 is installed OR evince-plugin-xpsdocument-3.20.1-5 is installed OR libevdocument3-4-3.20.1-5 is installed OR libevview3-3-3.20.1-5 is installed OR nautilus-evince-3.20.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libsqlite3-0-3.8.10.2-9.15 is installed OR libsqlite3-0-32bit-3.8.10.2-9.15 is installed OR sqlite3-3.8.10.2-9.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_100-default-2-2 is installed OR kgraft-patch-SLE12-SP3_Update_27-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND shadow-4.2.1-27.19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information ovmf-2017+git1510945757.b2662641d5-3.13 is installed OR ovmf-tools-2017+git1510945757.b2662641d5-3.13 is installed OR qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-3.13 is installed OR qemu-uefi-aarch64-2017+git1510945757.b2662641d5-3.13 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information libdcerpc-atsvc0-4.2.4-28.29 is installed OR samba-4.2.4-28.29 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information ibus-1.5.13-15.11 is installed OR ibus-gtk-1.5.13-15.11 is installed OR ibus-gtk3-1.5.13-15.11 is installed OR ibus-lang-1.5.13-15.11 is installed OR libibus-1_0-5-1.5.13-15.11 is installed OR typelib-1_0-IBus-1_0-1.5.13-15.11 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information nfs-client-1.3.0-34.22 is installed OR nfs-doc-1.3.0-34.22 is installed OR nfs-kernel-server-1.3.0-34.22 is installed OR nfs-utils-1.3.0-34.22 is installed

BACK