Oval Definition:	oval:org.opensuse.security:def:57373
Revision Date: 2020-12-01 Version: 1 Title: Security update for icedtea-web Description: The OpenJDK Java Plugin IcedTea Web was released to fix a temporary file access problem. Changes: * Dialogs center on screen before becoming visible. * Support for u45 new manifest attributes (Application-Name). * Custom applet permission policies panel in itweb-settings control panel. * Plugin fixes: o PR1271: icedtea-web does not handle 'javascript:'-protocol URLs o RH976833: Multiple applets on one page cause deadlock o Enabled javaconsole. * Security fixes: o CVE-2013-6493/RH1010958: Insecure temporary file use flaw in LiveConnect implementation. * Additional fixes and changes: o Christmas splashscreen extension o Fixed classloading deadlocks o Cleaned code from warnings o Pipes moved to XDG runtime dir. Security Issue references: * CVE-2013-6493 Family: unix Class: patch Status: Reference(s): 1003898 1018556 1027519 1051042 1053188 1054849 1063675 1064569 1064580 1064583 1070905 1071319 1073231 1074293 1076017 1081294 1083488 1085114 1085447 1086039 1086730 1089152 1089635 1090820 1090822 1090823 1100078 1103411 1113975 1117080 1117951 1127080 1129346 1137597 1140747 1150733 1154434 1164140 1171823 1172450 1173413 1173416 1173418 1174583 1175484 864364 954447 963520 963632 963635 963731 965582 CVE-2007-4772 CVE-2007-6600 CVE-2009-4034 CVE-2009-4136 CVE-2010-0405 CVE-2010-1169 CVE-2010-1170 CVE-2010-3433 CVE-2011-2721 CVE-2011-3627 CVE-2012-0866 CVE-2012-0867 CVE-2012-0868 CVE-2012-1457 CVE-2012-1458 CVE-2012-1459 CVE-2012-2143 CVE-2012-2655 CVE-2012-3488 CVE-2012-3489 CVE-2013-0255 CVE-2013-1899 CVE-2013-1900 CVE-2013-1901 CVE-2013-6493 CVE-2013-6497 CVE-2014-0060 CVE-2014-0061 CVE-2014-0062 CVE-2014-0063 CVE-2014-0064 CVE-2014-0065 CVE-2014-0066 CVE-2014-0067 CVE-2014-9050 CVE-2014-9328 CVE-2015-1461 CVE-2015-1462 CVE-2015-1463 CVE-2015-2170 CVE-2015-2221 CVE-2015-2222 CVE-2015-2305 CVE-2015-2668 CVE-2015-3165 CVE-2015-3166 CVE-2015-3167 CVE-2015-5288 CVE-2015-5289 CVE-2016-0766 CVE-2016-0773 CVE-2016-0775 CVE-2016-1930 CVE-2016-1935 CVE-2016-1938 CVE-2016-5423 CVE-2016-5424 CVE-2017-1000408 CVE-2017-1000409 CVE-2017-13166 CVE-2017-15670 CVE-2017-15671 CVE-2017-15804 CVE-2017-16997 CVE-2018-1000001 CVE-2018-1000004 CVE-2018-1000140 CVE-2018-10471 CVE-2018-10472 CVE-2018-1068 CVE-2018-10858 CVE-2018-17954 CVE-2018-18623 CVE-2018-18624 CVE-2018-18625 CVE-2018-7169 CVE-2018-7566 CVE-2018-8897 CVE-2019-11477 CVE-2019-11478 CVE-2019-15043 CVE-2019-1559 CVE-2019-3689 CVE-2019-9636 CVE-2020-10177 CVE-2020-10378 CVE-2020-10744 CVE-2020-10994 CVE-2020-11110 CVE-2020-12052 CVE-2020-13379 CVE-2020-1733 CVE-2020-17376 SUSE-SU-2016:0334-1 SUSE-SU-2017:0292-1 SUSE-SU-2018:0074-1 SUSE-SU-2018:0662-1 SUSE-SU-2018:0828-1 SUSE-SU-2018:1005-1 SUSE-SU-2018:1216-1 SUSE-SU-2018:2320-1 SUSE-SU-2019:0803-1 SUSE-SU-2019:0961-1 SUSE-SU-2019:2771-1 SUSE-SU-2020:2911-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information guestfs-data-1.38.0-lp150.2 is installed OR libguestfs0-1.38.0-lp150.2 is installed OR virt-v2v-1.38.0-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libtasn1-4.13-lp151.4.3 is installed OR libtasn1-6-4.13-lp151.4.3 is installed OR libtasn1-6-32bit-4.13-lp151.4.3 is installed OR libtasn1-devel-4.13-lp151.4.3 is installed OR libtasn1-devel-32bit-4.13-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND icedtea-web-1.4.2-0.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_57-default-7-2 is installed OR kgraft-patch-3_12_74-60_64_57-xen-7-2 is installed OR kgraft-patch-SLE12-SP1_Update_20-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND clamav-0.99.2-25 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information ghostscript-9.25-23.13 is installed OR ghostscript-x11-9.25-23.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information ntp-4.2.8p11-64.5 is installed OR ntp-doc-4.2.8p11-64.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information libdcerpc-binding0-4.4.2-38.20 is installed OR libdcerpc-binding0-32bit-4.4.2-38.20 is installed OR libdcerpc0-4.4.2-38.20 is installed OR libdcerpc0-32bit-4.4.2-38.20 is installed OR libndr-krb5pac0-4.4.2-38.20 is installed OR libndr-krb5pac0-32bit-4.4.2-38.20 is installed OR libndr-nbt0-4.4.2-38.20 is installed OR libndr-nbt0-32bit-4.4.2-38.20 is installed OR libndr-standard0-4.4.2-38.20 is installed OR libndr-standard0-32bit-4.4.2-38.20 is installed OR libndr0-4.4.2-38.20 is installed OR libndr0-32bit-4.4.2-38.20 is installed OR libnetapi0-4.4.2-38.20 is installed OR libnetapi0-32bit-4.4.2-38.20 is installed OR libsamba-credentials0-4.4.2-38.20 is installed OR libsamba-credentials0-32bit-4.4.2-38.20 is installed OR libsamba-errors0-4.4.2-38.20 is installed OR libsamba-errors0-32bit-4.4.2-38.20 is installed OR libsamba-hostconfig0-4.4.2-38.20 is installed OR libsamba-hostconfig0-32bit-4.4.2-38.20 is installed OR libsamba-passdb0-4.4.2-38.20 is installed OR libsamba-passdb0-32bit-4.4.2-38.20 is installed OR libsamba-util0-4.4.2-38.20 is installed OR libsamba-util0-32bit-4.4.2-38.20 is installed OR libsamdb0-4.4.2-38.20 is installed OR libsamdb0-32bit-4.4.2-38.20 is installed OR libsmbclient0-4.4.2-38.20 is installed OR libsmbclient0-32bit-4.4.2-38.20 is installed OR libsmbconf0-4.4.2-38.20 is installed OR libsmbconf0-32bit-4.4.2-38.20 is installed OR libsmbldap0-4.4.2-38.20 is installed OR libsmbldap0-32bit-4.4.2-38.20 is installed OR libtevent-util0-4.4.2-38.20 is installed OR libtevent-util0-32bit-4.4.2-38.20 is installed OR libwbclient0-4.4.2-38.20 is installed OR libwbclient0-32bit-4.4.2-38.20 is installed OR samba-4.4.2-38.20 is installed OR samba-client-4.4.2-38.20 is installed OR samba-client-32bit-4.4.2-38.20 is installed OR samba-doc-4.4.2-38.20 is installed OR samba-libs-4.4.2-38.20 is installed OR samba-libs-32bit-4.4.2-38.20 is installed OR samba-winbind-4.4.2-38.20 is installed OR samba-winbind-32bit-4.4.2-38.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information dovecot22-2.2.30.2-14 is installed OR dovecot22-backend-mysql-2.2.30.2-14 is installed OR dovecot22-backend-pgsql-2.2.30.2-14 is installed OR dovecot22-backend-sqlite-2.2.30.2-14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND mailman-2.1.17-3.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information git-2.12.3-27.17 is installed OR git-core-2.12.3-27.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information at-3.1.14-8.6 is installed OR flex-2.5.37-8 is installed OR flex-32bit-2.5.37-8 is installed OR libQtWebKit4-4.8.7+2.3.4-4.7 is installed OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-doc-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information xen-4.7.5_02-43.30 is installed OR xen-doc-html-4.7.5_02-43.30 is installed OR xen-libs-4.7.5_02-43.30 is installed OR xen-libs-32bit-4.7.5_02-43.30 is installed OR xen-tools-4.7.5_02-43.30 is installed OR xen-tools-domU-4.7.5_02-43.30 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND cobbler-2.6.6-49.14 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information adns-1.4-103.3 is installed OR libadns1-1.4-103.3 is installed
BACK