OVAL Reference oval:org.opensuse.security:def:57309

Oval Definition:

oval:org.opensuse.security:def:57309

Revision Date:	2020-12-01	Version:	1
Title:	Security update for compat-openssl097g (Moderate)
Description:	This update for compat-openssl097g fixes the following issues: Security issue fixed: - CVE-2015-3195: When presented with a malformed X509_ATTRIBUTE structure OpenSSL would leak memory. This structure is used by the PKCS#7 and CMS routines so any application which reads PKCS#7 or CMS data from untrusted sources is affected. SSL/TLS is not affected. (bsc#957812) A non security issue fixed: - Prevent segfault in s_client with invalid options (bsc#952099)
Family:	unix	Class:	patch
Status:		Reference(s):	1037384 1037603 1037624 1038293 1039348 1064232 1076110 1077993 1078806 1078813 1083424 1083635 1085042 1086652 1087081 1088268 1089343 1090036 1090123 1091171 1094248 1096130 1096480 1096978 1097140 1097551 1098016 1098425 1098435 1098531 1099924 1100089 1100416 1100418 1100491 1101557 1102340 1102682 1102851 1103097 1103119 1103580 1107832 1111331 1111853 1112209 1113534 1113652 1113742 1135273 1139073 1141035 1145559 1154043 1154212 1154824 1155988 1158442 1164871 1171098 1171195 1171202 1171218 1171219 1171689 1171698 1172221 1172317 865241 952099 957812 CVE-2008-4316 CVE-2012-3524 CVE-2015-3195 CVE-2016-5131 CVE-2017-0861 CVE-2017-1000364 CVE-2017-15412 CVE-2017-18344 CVE-2017-5130 CVE-2017-7484 CVE-2017-7485 CVE-2017-7486 CVE-2018-0734 CVE-2018-1000199 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-12327 CVE-2018-13053 CVE-2018-13405 CVE-2018-13406 CVE-2018-14633 CVE-2018-14734 CVE-2018-3620 CVE-2018-3646 CVE-2018-5390 CVE-2018-5390 CVE-2018-5391 CVE-2018-5407 CVE-2018-5814 CVE-2018-7170 CVE-2018-9385 CVE-2019-11091 CVE-2019-11135 CVE-2019-11139 CVE-2019-11500 CVE-2019-17631 CVE-2019-2933 CVE-2019-2945 CVE-2019-2958 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2975 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2988 CVE-2019-2989 CVE-2019-2992 CVE-2019-2996 CVE-2019-2999 CVE-2020-0543 CVE-2020-10757 CVE-2020-12114 CVE-2020-12652 CVE-2020-12653 CVE-2020-12654 CVE-2020-12656 SUSE-SU-2015:2251-1 SUSE-SU-2017:1617-1 SUSE-SU-2017:1690-1 SUSE-SU-2018:0401-1 SUSE-SU-2018:1264-1 SUSE-SU-2018:2344-1 SUSE-SU-2018:3342-1 SUSE-SU-2018:3470-1 SUSE-SU-2018:3866-1 SUSE-SU-2019:1452-1 SUSE-SU-2019:2454-1 SUSE-SU-2019:2959-1 SUSE-SU-2020:0024-1 SUSE-SU-2020:1597-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND autofs-5.1.3-lp150.5 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information mumble-1.2.19-9 is installed OR mumble-32bit-1.2.19-lp151.4.6 is installed OR mumble-server-1.2.19-9 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information compat-openssl097g-0.9.7g-146.22.36 is installed OR compat-openssl097g-32bit-0.9.7g-146.22.36 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information ntp-4.2.8p12-64.8 is installed OR ntp-doc-4.2.8p12-64.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information glib2-lang-2.48.2-10 is installed OR glib2-tools-2.48.2-10 is installed OR libgio-2_0-0-2.48.2-10 is installed OR libgio-2_0-0-32bit-2.48.2-10 is installed OR libglib-2_0-0-2.48.2-10 is installed OR libglib-2_0-0-32bit-2.48.2-10 is installed OR libgmodule-2_0-0-2.48.2-10 is installed OR libgmodule-2_0-0-32bit-2.48.2-10 is installed OR libgobject-2_0-0-2.48.2-10 is installed OR libgobject-2_0-0-32bit-2.48.2-10 is installed OR libgthread-2_0-0-2.48.2-10 is installed OR libgthread-2_0-0-32bit-2.48.2-10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-devel-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_95-default-2-2 is installed OR kgraft-patch-SLE12-SP2_Update_25-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libvmtools0-10.1.5-2 is installed OR open-vm-tools-10.1.5-2 is installed OR open-vm-tools-desktop-10.1.5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information cups-1.7.5-20.26 is installed OR cups-client-1.7.5-20.26 is installed OR cups-libs-1.7.5-20.26 is installed OR cups-libs-32bit-1.7.5-20.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_97-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_26-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libwireshark9-2.4.9-48.29 is installed OR libwiretap7-2.4.9-48.29 is installed OR libwscodecs1-2.4.9-48.29 is installed OR libwsutil8-2.4.9-48.29 is installed OR wireshark-2.4.9-48.29 is installed OR wireshark-gtk-2.4.9-48.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information kernel-azure-4.12.14-6.9 is installed OR kernel-azure-base-4.12.14-6.9 is installed OR kernel-azure-devel-4.12.14-6.9 is installed OR kernel-devel-azure-4.12.14-6.9 is installed OR kernel-source-azure-4.12.14-6.9 is installed OR kernel-syms-azure-4.12.14-6.9 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information kernel-default-4.4.121-92.92 is installed OR kernel-default-base-4.4.121-92.92 is installed OR kernel-default-devel-4.4.121-92.92 is installed OR kernel-default-man-4.4.121-92.92 is installed OR kernel-devel-4.4.121-92.92 is installed OR kernel-macros-4.4.121-92.92 is installed OR kernel-source-4.4.121-92.92 is installed OR kernel-syms-4.4.121-92.92 is installed OR kgraft-patch-4_4_121-92_92-default-1-3.7 is installed OR kgraft-patch-SLE12-SP2_Update_24-1-3.7 is installed OR lttng-modules-2.7.1-9.4 is installed OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.92-9.4 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libopenssl-devel-1.0.2j-60.55 is installed OR libopenssl1_0_0-1.0.2j-60.55 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed OR openssl-1.0.2j-60.55 is installed OR openssl-doc-1.0.2j-60.55 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information crowbar-core-5.0+git.1569597589.1f025c557-3.32 is installed OR crowbar-core-branding-upstream-5.0+git.1569597589.1f025c557-3.32 is installed OR crowbar-ha-5.0+git.1567673535.607aada-3.26 is installed OR crowbar-openstack-5.0+git.1570141351.058c8bd44-4.31 is installed OR crowbar-ui-1.2.0+git.1568396400.0344a727-3.12 is installed OR galera-3-25.3.25-4.6 is installed OR galera-3-wsrep-provider-25.3.25-4.6 is installed OR grafana-4.6.5-4.6 is installed OR libmariadb3-3.1.2-3.12 is installed OR mariadb-10.2.25-4.14 is installed OR mariadb-client-10.2.25-4.14 is installed OR mariadb-connector-c-3.1.2-3.12 is installed OR mariadb-errormessages-10.2.25-4.14 is installed OR mariadb-galera-10.2.25-4.14 is installed OR mariadb-tools-10.2.25-4.14 is installed OR novnc-1.0.0-3.6 is installed OR openstack-cinder-11.2.3~dev16-3.21 is installed OR openstack-cinder-api-11.2.3~dev16-3.21 is installed OR openstack-cinder-backup-11.2.3~dev16-3.21 is installed OR openstack-cinder-doc-11.2.3~dev16-3.21 is installed OR openstack-cinder-scheduler-11.2.3~dev16-3.21 is installed OR openstack-cinder-volume-11.2.3~dev16-3.21 is installed OR openstack-glance-15.0.3~dev3-3.12 is installed OR openstack-glance-api-15.0.3~dev3-3.12 is installed OR openstack-glance-doc-15.0.3~dev3-3.12 is installed OR openstack-glance-registry-15.0.3~dev3-3.12 is installed OR openstack-heat-9.0.8~dev13-3.24 is installed OR openstack-heat-api-9.0.8~dev13-3.24 is installed OR openstack-heat-api-cfn-9.0.8~dev13-3.24 is installed OR openstack-heat-api-cloudwatch-9.0.8~dev13-3.24 is installed OR openstack-heat-doc-9.0.8~dev13-3.24 is installed OR openstack-heat-engine-9.0.8~dev13-3.24 is installed OR openstack-heat-plugin-heat_docker-9.0.8~dev13-3.24 is installed OR openstack-heat-test-9.0.8~dev13-3.24 is installed OR openstack-horizon-plugin-neutron-vpnaas-ui-1.0.1~dev3-3.6 is installed OR openstack-keystone-12.0.4~dev4-5.27 is installed OR openstack-keystone-doc-12.0.4~dev4-5.27 is installed OR openstack-monasca-installer-20190923_16.32-3.9 is installed OR openstack-neutron-11.0.9~dev51-3.24 is installed OR openstack-neutron-dhcp-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-doc-11.0.9~dev51-3.24 is installed OR openstack-neutron-gbp-7.3.1~dev56-3.9 is installed OR openstack-neutron-ha-tool-11.0.9~dev51-3.24 is installed OR openstack-neutron-l3-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-lbaas-11.0.4~dev6-3.15 is installed OR openstack-neutron-lbaas-agent-11.0.4~dev6-3.15 is installed OR openstack-neutron-lbaas-doc-11.0.4~dev6-3.15 is installed OR openstack-neutron-linuxbridge-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-macvtap-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-metadata-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-metering-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-openvswitch-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-server-11.0.9~dev51-3.24 is installed OR openstack-nova-16.1.9~dev7-3.29 is installed OR openstack-nova-api-16.1.9~dev7-3.29 is installed OR openstack-nova-cells-16.1.9~dev7-3.29 is installed OR openstack-nova-compute-16.1.9~dev7-3.29 is installed OR openstack-nova-conductor-16.1.9~dev7-3.29 is installed OR openstack-nova-console-16.1.9~dev7-3.29 is installed OR openstack-nova-consoleauth-16.1.9~dev7-3.29 is installed OR openstack-nova-doc-16.1.9~dev7-3.29 is installed OR openstack-nova-novncproxy-16.1.9~dev7-3.29 is installed OR openstack-nova-placement-api-16.1.9~dev7-3.29 is installed OR openstack-nova-scheduler-16.1.9~dev7-3.29 is installed OR openstack-nova-serialproxy-16.1.9~dev7-3.29 is installed OR openstack-nova-vncproxy-16.1.9~dev7-3.29 is installed OR python-amqp-2.2.2-3.6 is installed OR python-cinder-11.2.3~dev16-3.21 is installed OR python-glance-15.0.3~dev3-3.12 is installed OR python-heat-9.0.8~dev13-3.24 is installed OR python-horizon-plugin-neutron-vpnaas-ui-1.0.1~dev3-3.6 is installed OR python-keystone-12.0.4~dev4-5.27 is installed OR python-neutron-11.0.9~dev51-3.24 is installed OR python-neutron-gbp-7.3.1~dev56-3.9 is installed OR python-neutron-lbaas-11.0.4~dev6-3.15 is installed OR python-nova-16.1.9~dev7-3.29 is installed OR python-ovs-2.7.2-3.6 is installed OR python-pysaml2-4.0.2-5.3 is installed OR python-urllib3-1.22-5.9 is installed OR release-notes-suse-openstack-cloud-8.20190911-3.20 is installed OR ruby2.1-rubygem-easy_diff-1.0.0-3.4 is installed OR rubygem-easy_diff-1.0.0-3.4 is installed

BACK