Oval Definition:	oval:org.opensuse.security:def:57362
Revision Date: 2020-12-01 Version: 1 Title: Security update for gnutls Description: GnuTLS has been patched to ensure proper parsing of session ids during the TLS/SSL handshake. Additionally, three issues inherited from libtasn1 have been fixed. Further information is available at http://www.gnutls.org/security.html#GNUTLS-SA-2014-3 These security issues have been fixed: * Possible memory corruption during connect (CVE-2014-3466) * Multiple boundary check issues could allow DoS (CVE-2014-3467) * asn1_get_bit_der() can return negative bit length (CVE-2014-3468) * Possible DoS by NULL pointer dereference (CVE-2014-3469) Security Issue references: * CVE-2014-3466 Family: unix Class: patch Status: Reference(s): 1043886 1047236 1047240 1057460 1076390 1077358 1082810 1083247 1085018 1086730 1090338 1096740 1099510 1101288 1104662 1120813 1123371 1123377 1123378 1125401 1127458 1128525 1138872 1176421 880730 880910 925502 929900 943967 943968 943969 955131 966304 995352 CVE-2012-0786 CVE-2013-1991 CVE-2013-2000 CVE-2014-3466 CVE-2014-8119 CVE-2015-2775 CVE-2015-5198 CVE-2015-5199 CVE-2015-5200 CVE-2016-6893 CVE-2016-9063 CVE-2017-9233 CVE-2018-0486 CVE-2018-0489 CVE-2018-0618 CVE-2018-1000140 CVE-2018-13796 CVE-2018-16890 CVE-2018-2579 CVE-2018-2582 CVE-2018-2588 CVE-2018-2599 CVE-2018-2602 CVE-2018-2603 CVE-2018-2618 CVE-2018-2633 CVE-2018-2634 CVE-2018-2637 CVE-2018-2641 CVE-2018-2657 CVE-2018-2663 CVE-2018-2677 CVE-2018-2678 CVE-2018-3665 CVE-2018-5950 CVE-2019-11708 CVE-2019-3822 CVE-2019-3823 CVE-2019-3840 CVE-2019-8936 CVE-2020-15169 SUSE-SU-2015:0675-1 SUSE-SU-2015:1925-1 SUSE-SU-2017:2299-1 SUSE-SU-2018:0510-1 SUSE-SU-2018:0720-1 SUSE-SU-2018:0743-1 SUSE-SU-2018:0828-1 SUSE-SU-2018:2048-1 SUSE-SU-2018:4296-1 SUSE-SU-2019:0249-1 SUSE-SU-2019:0553-1 SUSE-SU-2019:0789-1 SUSE-SU-2019:1684-1 SUSE-SU-2020:2686-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information gnutls-3.6.2-lp150.3 is installed OR libgnutls-dane0-3.6.2-lp150.3 is installed OR libgnutls30-3.6.2-lp150.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information bzip2-1.0.6-lp151.5.3 is installed OR bzip2-doc-1.0.6-lp151.5.3 is installed OR libbz2-1-1.0.6-lp151.5.3 is installed OR libbz2-1-32bit-1.0.6-lp151.5.3 is installed OR libbz2-devel-1.0.6-lp151.5.3 is installed OR libbz2-devel-32bit-1.0.6-lp151.5.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information gnutls-2.4.1-24.39.51 is installed OR libgnutls26-2.4.1-24.39.51 is installed OR libgnutls26-32bit-2.4.1-24.39.51 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information librelp-1.2.7-3.3 is installed OR librelp0-1.2.7-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information augeas-1.2.0-10 is installed OR augeas-lenses-1.2.0-10 is installed OR libaugeas0-1.2.0-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.30-38.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information glibc-2.22-62.13 is installed OR glibc-32bit-2.22-62.13 is installed OR glibc-devel-2.22-62.13 is installed OR glibc-devel-32bit-2.22-62.13 is installed OR glibc-html-2.22-62.13 is installed OR glibc-i18ndata-2.22-62.13 is installed OR glibc-info-2.22-62.13 is installed OR glibc-locale-2.22-62.13 is installed OR glibc-locale-32bit-2.22-62.13 is installed OR glibc-profile-2.22-62.13 is installed OR glibc-profile-32bit-2.22-62.13 is installed OR nscd-2.22-62.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_32-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_11-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cups-filters-1.0.58-17 is installed OR cups-filters-cups-browsed-1.0.58-17 is installed OR cups-filters-foomatic-rip-1.0.58-17 is installed OR cups-filters-ghostscript-1.0.58-17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND mutt-1.10.1-55.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libtiff5-4.0.9-44.27 is installed OR libtiff5-32bit-4.0.9-44.27 is installed OR tiff-4.0.9-44.27 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND mailman-2.1.17-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND ucode-intel-20190618-13.47 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information krb5-appl-1.0.3-3.3 is installed OR krb5-appl-clients-1.0.3-3.3 is installed OR krb5-appl-servers-1.0.3-3.3 is installed
BACK