Oval Definition:oval:org.opensuse.security:def:57583
Revision Date:2020-12-01Version:1
Title:Security update for icedtea-web (Moderate)
Description:



The Java Plugin IcedTea Web was updated to 1.5.2, fixing bugs and security issues.

permissions sandbox and signed app and unsigned app with permissions all-permissions now run in sandbox instead of not at all. * fixed DownloadService * RH1231441 Unable to read the text of the buttons of the security dialogue * Fixed RH1233697 icedtea-web: applet origin spoofing (CVE-2015-5235, bsc#944208) * Fixed RH1233667 icedtea-web: unexpected permanent authorization of unsigned applets (CVE-2015-5234, bsc#944209) * MissingALACAdialog made available also for unsigned applications (but ignoring actual manifest value) and fixed
Family:unixClass:patch
Status:Reference(s):1012102
1012103
1012104
1013653
1013655
1013663
1047626
1059465
1065274
1066471
1066472
1069496
1088268
1090036
1091764
1096449
1097375
1119947
1156402
1171252
1171254
1172265
860993
944208
944209
975788
CVE-2008-4316
CVE-2011-2709
CVE-2011-3172
CVE-2012-3524
CVE-2014-0038
CVE-2014-2977
CVE-2014-2978
CVE-2015-5234
CVE-2015-5235
CVE-2016-6318
CVE-2016-9634
CVE-2016-9635
CVE-2016-9636
CVE-2016-9807
CVE-2016-9808
CVE-2016-9810
CVE-2017-0861
CVE-2017-1000405
CVE-2017-12193
CVE-2017-15088
CVE-2017-15102
CVE-2017-16525
CVE-2017-16527
CVE-2017-16529
CVE-2017-16531
CVE-2017-16535
CVE-2017-16536
CVE-2017-16537
CVE-2017-16649
CVE-2017-16650
CVE-2017-16939
CVE-2017-9103
CVE-2017-9104
CVE-2017-9105
CVE-2017-9106
CVE-2017-9107
CVE-2017-9108
CVE-2017-9109
CVE-2018-1000199
CVE-2018-16884
CVE-2018-6126
CVE-2018-7167
CVE-2019-2201
CVE-2020-12653
CVE-2020-12654
SUSE-SU-2015:1689-1
SUSE-SU-2016:3303-1
SUSE-SU-2017:2948-1
SUSE-SU-2017:3210-1
SUSE-SU-2018:1272-1
SUSE-SU-2018:1783-1
SUSE-SU-2018:1892-1
SUSE-SU-2019:0356-1
SUSE-SU-2019:2972-1
SUSE-SU-2020:1612-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libXxf86dga1-1.1.4-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • ImageMagick-7.0.7.34-lp151.7.9 is installed
  • OR ImageMagick-config-7-SUSE-7.0.7.34-lp151.7.9 is installed
  • OR ImageMagick-config-7-upstream-7.0.7.34-lp151.7.9 is installed
  • OR ImageMagick-devel-7.0.7.34-lp151.7.9 is installed
  • OR ImageMagick-devel-32bit-7.0.7.34-lp151.7.9 is installed
  • OR ImageMagick-doc-7.0.7.34-lp151.7.9 is installed
  • OR ImageMagick-extra-7.0.7.34-lp151.7.9 is installed
  • OR libMagick++-7_Q16HDRI4-7.0.7.34-lp151.7.9 is installed
  • OR libMagick++-7_Q16HDRI4-32bit-7.0.7.34-lp151.7.9 is installed
  • OR libMagick++-devel-7.0.7.34-lp151.7.9 is installed
  • OR libMagick++-devel-32bit-7.0.7.34-lp151.7.9 is installed
  • OR libMagickCore-7_Q16HDRI6-7.0.7.34-lp151.7.9 is installed
  • OR libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-lp151.7.9 is installed
  • OR libMagickWand-7_Q16HDRI6-7.0.7.34-lp151.7.9 is installed
  • OR libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-lp151.7.9 is installed
  • OR perl-PerlMagick-7.0.7.34-lp151.7.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND icedtea-web-1.5.3-0.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kernel-default-3.12.74-60.64.66 is installed
  • OR kernel-default-base-3.12.74-60.64.66 is installed
  • OR kernel-default-devel-3.12.74-60.64.66 is installed
  • OR kernel-default-man-3.12.74-60.64.66 is installed
  • OR kernel-devel-3.12.74-60.64.66 is installed
  • OR kernel-macros-3.12.74-60.64.66 is installed
  • OR kernel-source-3.12.74-60.64.66 is installed
  • OR kernel-syms-3.12.74-60.64.66 is installed
  • OR kernel-xen-3.12.74-60.64.66 is installed
  • OR kernel-xen-base-3.12.74-60.64.66 is installed
  • OR kernel-xen-devel-3.12.74-60.64.66 is installed
  • OR kgraft-patch-3_12_74-60_64_66-default-1-2 is installed
  • OR kgraft-patch-3_12_74-60_64_66-xen-1-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_23-1-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libmysqlclient18-10.0.35-29.20 is installed
  • OR libmysqlclient18-32bit-10.0.35-29.20 is installed
  • OR mariadb-10.0.35-29.20 is installed
  • OR mariadb-client-10.0.35-29.20 is installed
  • OR mariadb-errormessages-10.0.35-29.20 is installed
  • OR mariadb-tools-10.0.35-29.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • libvirt-2.0.0-27.42 is installed
  • OR libvirt-client-2.0.0-27.42 is installed
  • OR libvirt-daemon-2.0.0-27.42 is installed
  • OR libvirt-daemon-config-network-2.0.0-27.42 is installed
  • OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-network-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed
  • OR libvirt-daemon-hooks-2.0.0-27.42 is installed
  • OR libvirt-daemon-lxc-2.0.0-27.42 is installed
  • OR libvirt-daemon-qemu-2.0.0-27.42 is installed
  • OR libvirt-daemon-xen-2.0.0-27.42 is installed
  • OR libvirt-doc-2.0.0-27.42 is installed
  • OR libvirt-lock-sanlock-2.0.0-27.42 is installed
  • OR libvirt-nss-2.0.0-27.42 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • MozillaFirefox-52.8.1esr-109.34 is installed
  • OR MozillaFirefox-devel-52.8.1esr-109.34 is installed
  • OR MozillaFirefox-translations-52.8.1esr-109.34 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • avahi-0.6.32-30 is installed
  • OR avahi-lang-0.6.32-30 is installed
  • OR avahi-utils-0.6.32-30 is installed
  • OR libavahi-client3-0.6.32-30 is installed
  • OR libavahi-client3-32bit-0.6.32-30 is installed
  • OR libavahi-common3-0.6.32-30 is installed
  • OR libavahi-common3-32bit-0.6.32-30 is installed
  • OR libavahi-core7-0.6.32-30 is installed
  • OR libdns_sd-0.6.32-30 is installed
  • OR libdns_sd-32bit-0.6.32-30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND clamav-0.100.3-33.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libsystemd0-228-150.82 is installed
  • OR libsystemd0-32bit-228-150.82 is installed
  • OR libudev-devel-228-150.82 is installed
  • OR libudev1-228-150.82 is installed
  • OR libudev1-32bit-228-150.82 is installed
  • OR systemd-228-150.82 is installed
  • OR systemd-32bit-228-150.82 is installed
  • OR systemd-bash-completion-228-150.82 is installed
  • OR systemd-sysvinit-228-150.82 is installed
  • OR udev-228-150.82 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_140-94_42-default-10-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_15-10-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.40-38.34 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.40-38.34 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.40-38.34 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.40-38.34 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • gstreamer-plugins-bad-1.8.3-17 is installed
  • OR gstreamer-plugins-bad-lang-1.8.3-17 is installed
  • OR libgstadaptivedemux-1_0-0-1.8.3-17 is installed
  • OR libgstbadaudio-1_0-0-1.8.3-17 is installed
  • OR libgstbadbase-1_0-0-1.8.3-17 is installed
  • OR libgstbadvideo-1_0-0-1.8.3-17 is installed
  • OR libgstbasecamerabinsrc-1_0-0-1.8.3-17 is installed
  • OR libgstcodecparsers-1_0-0-1.8.3-17 is installed
  • OR libgstgl-1_0-0-1.8.3-17 is installed
  • OR libgstmpegts-1_0-0-1.8.3-17 is installed
  • OR libgstphotography-1_0-0-1.8.3-17 is installed
  • OR libgsturidownloader-1_0-0-1.8.3-17 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND nodejs6-6.14.3-11.15 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • LibVNCServer-0.9.9-17.19 is installed
  • OR libvncclient0-0.9.9-17.19 is installed
  • OR libvncserver0-0.9.9-17.19 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed
    • BACK