OVAL Reference oval:org.opensuse.security:def:57962

Oval Definition:

oval:org.opensuse.security:def:57962

Revision Date:	2021-01-26	Version:	1
Title:	Security update for sudo (Important)
Description:	This update for sudo fixes the following issues: - A Heap-based buffer overflow in sudo could be exploited to allow a user to gain root privileges [bsc#1181090,CVE-2021-3156] - It was possible for a user to test for the existence of a directory due to a Race Condition in `sudoedit` [bsc#1180684,CVE-2021-23239] - A Possible Symlink Attack vector existed in `sudoedit` if SELinux was running in permissive mode [bsc#1180685, CVE-2021-23240] - It was possible for a User to enable Debug Settings not Intended for them [bsc#1180687]
Family:	unix	Class:	patch
Status:		Reference(s):	1016168 1016169 1027519 1040311 1040312 1040313 1050577 1050578 1050579 1050581 1055960 1084850 1085276 1090023 1090024 1090025 1090026 1090027 1090028 1090029 1090030 1090032 1090033 1095735 1107832 1110233 1111331 1115034 1116380 1123371 1123377 1123378 1130680 1133037 1133818 1141619 1142772 1145692 1152856 1154212 1154328 1163102 1163103 1163104 1167068 1170558 1171363 1180684 1180685 1180687 1181090 682920 949942 CVE-2011-2895 CVE-2014-9749 CVE-2016-10002 CVE-2016-10003 CVE-2017-11624 CVE-2017-11625 CVE-2017-11626 CVE-2017-11627 CVE-2017-12595 CVE-2017-5715 CVE-2017-9208 CVE-2017-9209 CVE-2017-9210 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-14633 CVE-2018-16890 CVE-2018-16890 CVE-2018-17182 CVE-2018-20815 CVE-2018-2790 CVE-2018-2794 CVE-2018-2795 CVE-2018-2796 CVE-2018-2797 CVE-2018-2798 CVE-2018-2799 CVE-2018-2800 CVE-2018-2814 CVE-2018-2815 CVE-2018-7750 CVE-2018-7999 CVE-2019-1010006 CVE-2019-1010180 CVE-2019-11091 CVE-2019-11459 CVE-2019-15604 CVE-2019-15605 CVE-2019-15606 CVE-2019-2894 CVE-2019-2933 CVE-2019-2945 CVE-2019-2949 CVE-2019-2958 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2987 CVE-2019-2988 CVE-2019-2989 CVE-2019-2992 CVE-2019-2999 CVE-2019-3693 CVE-2019-3822 CVE-2019-3822 CVE-2019-3823 CVE-2019-3823 CVE-2020-12108 CVE-2020-12137 CVE-2021-23239 CVE-2021-23240 CVE-2021-3156 SUSE-SU-2017:0128-1 SUSE-SU-2018:0844-1 SUSE-SU-2018:0858-1 SUSE-SU-2018:1571-1 SUSE-SU-2018:1692-2 SUSE-SU-2018:3066-1 SUSE-SU-2019:0249-1 SUSE-SU-2019:1371-1 SUSE-SU-2019:2098-1 SUSE-SU-2019:2914-1 SUSE-SU-2019:3076-1 SUSE-SU-2019:3084-1 SUSE-SU-2020:0488-1 SUSE-SU-2020:1301-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information gdm-3.26.2.1-lp150.10 is installed OR gdm-lang-3.26.2.1-lp150.10 is installed OR gdmflexiserver-3.26.2.1-lp150.10 is installed OR libgdm1-3.26.2.1-lp150.10 is installed OR typelib-1_0-Gdm-1_0-3.26.2.1-lp150.10 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libmirage-3.2.2-lp151.3.3 is installed OR libmirage-3_2-3.2.2-lp151.3.3 is installed OR libmirage-data-3.2.2-lp151.3.3 is installed OR libmirage-devel-3.2.2-lp151.3.3 is installed OR libmirage-lang-3.2.2-lp151.3.3 is installed OR libmirage11-3.2.2-lp151.3.3 is installed OR typelib-1_0-libmirage-3_2-3.2.2-lp151.3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information evince-3.10.3-2.8 is installed OR evince-lang-3.10.3-2.8 is installed OR libevdocument3-4-3.10.3-2.8 is installed OR libevview3-3-3.10.3-2.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND xorg-x11-libs-7.6-45 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_7_0-openjdk-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_90-92_45-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_14-11-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_67-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_19-8-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND kbd-1.15.5-8.7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND clamav-0.100.3-33.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND sudo-1.8.20p2-3.20.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information MozillaFirefox-68.4.1-109.101 is installed OR MozillaFirefox-translations-common-68.4.1-109.101 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information openslp-2.0.0-18.17 is installed OR openslp-32bit-2.0.0-18.17 is installed OR openslp-server-2.0.0-18.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND libopus0-1.1-3 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information cups-filters-1.0.58-15.2 is installed OR cups-filters-cups-browsed-1.0.58-15.2 is installed OR cups-filters-foomatic-rip-1.0.58-15.2 is installed OR cups-filters-ghostscript-1.0.58-15.2 is installed OR libqpdf18-7.1.1-3.3 is installed OR qpdf-7.1.1-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information MozillaFirefox-68.2.0-109.95 is installed OR MozillaFirefox-translations-common-68.2.0-109.95 is installed

BACK