Oval Definition:oval:org.opensuse.security:def:57599
Revision Date:2020-12-01Version:1
Title:Security update for libgcrypt (Moderate)
Description:



This update fixes the following issues:

Use ciphertext blinding for Elgamal decryption [CVE-2014-3591]. See http://www.cs.tau.ac.il/~tromer/radioexp/ for details. (bsc#920057) * Fixed data-dependent timing variations in modular exponentiation [related to CVE-2015-0837, Last-Level Cache Side-Channel Attacks are Practical]
Family:unixClass:patch
Status:Reference(s):1000396
1001299
1005544
1010675
1013930
1014873
1017497
1046554
1046555
1053153
1069708
1084604
1084724
1086247
1095482
1099310
1099902
1100751
1101644
1101645
1101651
1101656
1102151
1112142
1112143
1112144
1112146
1112147
1112152
1112153
1113231
1116717
1117275
1119493
1123156
1138954
1144327
1144379
1150584
1152711
1153108
1153471
1155789
1155952
1156321
1156331
1157770
1157860
1161799
1173580
920057
CVE-2004-0801
CVE-2009-0793
CVE-2009-4029
CVE-2010-4267
CVE-2011-2697
CVE-2011-2722
CVE-2012-4453
CVE-2013-4276
CVE-2013-4325
CVE-2013-6402
CVE-2013-6427
CVE-2014-3591
CVE-2014-3618
CVE-2015-0837
CVE-2016-0634
CVE-2016-4658
CVE-2016-6252
CVE-2016-7543
CVE-2016-9318
CVE-2016-9597
CVE-2017-10661
CVE-2017-13672
CVE-2017-13673
CVE-2017-16939
CVE-2017-3142
CVE-2017-3143
CVE-2017-6967
CVE-2018-13785
CVE-2018-14432
CVE-2018-16435
CVE-2018-16872
CVE-2018-19364
CVE-2018-19489
CVE-2018-20856
CVE-2018-2938
CVE-2018-2940
CVE-2018-2952
CVE-2018-2973
CVE-2018-3136
CVE-2018-3139
CVE-2018-3149
CVE-2018-3169
CVE-2018-3180
CVE-2018-3214
CVE-2018-3639
CVE-2018-7858
CVE-2019-10220
CVE-2019-13272
CVE-2019-6778
CVE-2020-4044
CVE-2020-6796
CVE-2020-6797
CVE-2020-6798
CVE-2020-6799
CVE-2020-6800
SUSE-SU-2015:1626-1
SUSE-SU-2017:0380-1
SUSE-SU-2017:1736-1
SUSE-SU-2017:3337-1
SUSE-SU-2018:1398-1
SUSE-SU-2018:1997-1
SUSE-SU-2018:2576-1
SUSE-SU-2019:0049-1
SUSE-SU-2019:0489-1
SUSE-SU-2020:0384-1
SUSE-SU-2020:1943-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libevent-2_1-8-2.1.8-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • python-SQLAlchemy-1.2.14-lp151.2.3 is installed
  • OR python-SQLAlchemy-doc-1.2.14-lp151.2.3 is installed
  • OR python2-SQLAlchemy-1.2.14-lp151.2.3 is installed
  • OR python3-SQLAlchemy-1.2.14-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • libgcrypt-1.5.0-0.19 is installed
  • OR libgcrypt11-1.5.0-0.19 is installed
  • OR libgcrypt11-32bit-1.5.0-0.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_40-default-7-2 is installed
  • OR kgraft-patch-3_12_74-60_64_40-xen-7-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_15-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • automake-1.13.4-6 is installed
  • OR m4-1.4.16-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libvirt-2.0.0-27.45 is installed
  • OR libvirt-client-2.0.0-27.45 is installed
  • OR libvirt-daemon-2.0.0-27.45 is installed
  • OR libvirt-daemon-config-network-2.0.0-27.45 is installed
  • OR libvirt-daemon-config-nwfilter-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-interface-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-libxl-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-lxc-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-network-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-nodedev-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-nwfilter-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-qemu-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-secret-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-storage-2.0.0-27.45 is installed
  • OR libvirt-daemon-hooks-2.0.0-27.45 is installed
  • OR libvirt-daemon-lxc-2.0.0-27.45 is installed
  • OR libvirt-daemon-qemu-2.0.0-27.45 is installed
  • OR libvirt-daemon-xen-2.0.0-27.45 is installed
  • OR libvirt-doc-2.0.0-27.45 is installed
  • OR libvirt-lock-sanlock-2.0.0-27.45 is installed
  • OR libvirt-nss-2.0.0-27.45 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND shadow-4.2.1-27.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • cron-4.2-58 is installed
  • OR cronie-1.4.11-58 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • LibVNCServer-0.9.9-17.19 is installed
  • OR libvncclient0-0.9.9-17.19 is installed
  • OR libvncserver0-0.9.9-17.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • python-PyYAML-5.1.2-26.9 is installed
  • OR python-asn1crypto-0.24.0-2.5 is installed
  • OR python-packaging-17.1-2.5 is installed
  • OR python3-PyYAML-5.1.2-26.9 is installed
  • OR python3-asn1crypto-0.24.0-2.5 is installed
  • OR python3-packaging-17.1-2.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • bzip2-1.0.6-30.8 is installed
  • OR bzip2-doc-1.0.6-30.8 is installed
  • OR libbz2-1-1.0.6-30.8 is installed
  • OR libbz2-1-32bit-1.0.6-30.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • file-5.22-10.12 is installed
  • OR file-magic-5.22-10.12 is installed
  • OR libmagic1-5.22-10.12 is installed
  • OR libmagic1-32bit-5.22-10.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • jakarta-taglibs-standard-1.1.1-255 is installed
  • OR jakarta-taglibs-standard-javadoc-1.1.1-255 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • openstack-dashboard-10.0.6~dev4-4.15 is installed
  • OR openstack-heat-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-api-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-api-cfn-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-api-cloudwatch-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-doc-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-engine-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-plugin-heat_docker-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-test-7.0.7~dev10-5.12 is installed
  • OR openstack-horizon-plugin-designate-ui-3.0.2~dev1-3.6 is installed
  • OR openstack-keystone-10.0.3~dev9-7.12 is installed
  • OR openstack-keystone-doc-10.0.3~dev9-7.12 is installed
  • OR openstack-nova-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-api-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-cells-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-cert-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-compute-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-conductor-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-console-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-consoleauth-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-doc-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-novncproxy-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-placement-api-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-scheduler-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-serialproxy-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-vncproxy-14.0.11~dev13-4.25 is installed
  • OR python-heat-7.0.7~dev10-5.12 is installed
  • OR python-horizon-10.0.6~dev4-4.15 is installed
  • OR python-horizon-plugin-designate-ui-3.0.2~dev1-3.6 is installed
  • OR python-keystone-10.0.3~dev9-7.12 is installed
  • OR python-nova-14.0.11~dev13-4.25 is installed
  • OR python-os-vif-1.2.1-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libmariadb3-3.0.3-3.3 is installed
  • OR mariadb-10.2.15-4.3 is installed
  • OR mariadb-client-10.2.15-4.3 is installed
  • OR mariadb-connector-c-3.0.3-3.3 is installed
  • OR mariadb-errormessages-10.2.15-4.3 is installed
  • OR mariadb-galera-10.2.15-4.3 is installed
  • OR mariadb-tools-10.2.15-4.3 is installed
  • OR xtrabackup-2.4.10-4.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ruby2.1-rubygem-activejob-4_2-4.2.9-3.6 is installed
  • OR rubygem-activejob-4_2-4.2.9-3.6 is installed
    • BACK