Oval Definition:	oval:org.opensuse.security:def:58084
Revision Date: 2021-02-19 Version: 1 Title: Security update for krb5-appl (Important) Description: This update for krb5-appl fixes the following issues: - CVE-2019-25017: Check the filenames sent by the server match those requested by the client (bsc#1131109). - CVE-2019-25018: Disallow empty incoming filename or ones that refer to the current directory (bsc#1131109). Family: unix Class: patch Status: Reference(s): 1009745 1010399 1010405 1010406 1010408 1010409 1010421 1010423 1010424 1010425 1010426 1025108 1027282 1031756 1033236 1038132 1038984 1040662 1041090 1042670 1043008 1043218 1045735 1047281 1047785 1048315 1049423 1052448 1052449 1052466 1073230 1073269 1073748 1074235 1076017 1077732 1078326 1078485 1081750 1083488 1084604 1084650 1085114 1085447 1086001 1086598 1092611 1104129 1113231 1116717 1117275 1119493 1120374 1121826 1123156 1126068 1126069 1131109 1132549 1132664 1133185 1137990 1138954 1139083 1144327 1144379 1149429 1149792 1150584 1152711 1153471 1153830 1154738 1155094 1155789 1155952 1157860 1159035 1162224 1162367 1162825 1163985 1165894 1170411 1171561 1172405 1173580 1174157 1174421 1176733 945401 959933 983922 CVE-2016-2830 CVE-2016-5289 CVE-2016-5292 CVE-2016-9063 CVE-2016-9067 CVE-2016-9068 CVE-2016-9069 CVE-2016-9071 CVE-2016-9073 CVE-2016-9075 CVE-2016-9076 CVE-2016-9077 CVE-2017-11423 CVE-2017-12374 CVE-2017-12375 CVE-2017-12376 CVE-2017-12377 CVE-2017-12378 CVE-2017-12379 CVE-2017-12380 CVE-2017-13166 CVE-2017-13672 CVE-2017-13673 CVE-2017-6418 CVE-2017-6419 CVE-2017-6420 CVE-2017-6967 CVE-2017-7435 CVE-2017-7436 CVE-2017-7789 CVE-2017-9269 CVE-2018-1000004 CVE-2018-1068 CVE-2018-16872 CVE-2018-19364 CVE-2018-19489 CVE-2018-3741 CVE-2018-5150 CVE-2018-5151 CVE-2018-5152 CVE-2018-5153 CVE-2018-5154 CVE-2018-5155 CVE-2018-5157 CVE-2018-5158 CVE-2018-5159 CVE-2018-5160 CVE-2018-5163 CVE-2018-5164 CVE-2018-5165 CVE-2018-5166 CVE-2018-5167 CVE-2018-5168 CVE-2018-5169 CVE-2018-5172 CVE-2018-5173 CVE-2018-5174 CVE-2018-5175 CVE-2018-5176 CVE-2018-5177 CVE-2018-5178 CVE-2018-5179 CVE-2018-5180 CVE-2018-5181 CVE-2018-5182 CVE-2018-5183 CVE-2018-5740 CVE-2018-5743 CVE-2018-5745 CVE-2018-7566 CVE-2018-7858 CVE-2019-11234 CVE-2019-11235 CVE-2019-11757 CVE-2019-11758 CVE-2019-11759 CVE-2019-11760 CVE-2019-11761 CVE-2019-11762 CVE-2019-11763 CVE-2019-11764 CVE-2019-12900 CVE-2019-15903 CVE-2019-18348 CVE-2019-25017 CVE-2019-25018 CVE-2019-6133 CVE-2019-6465 CVE-2019-6778 CVE-2019-9674 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-15705 CVE-2020-1720 CVE-2020-26117 CVE-2020-4044 CVE-2020-8022 CVE-2020-8492 SUSE-SU-2017:2040-1 SUSE-SU-2018:0255-1 SUSE-SU-2018:0993-1 SUSE-SU-2019:0489-1 SUSE-SU-2019:1039-1 SUSE-SU-2019:2013-1 SUSE-SU-2019:2035-1 SUSE-SU-2019:2182-1 SUSE-SU-2019:2872-1 SUSE-SU-2020:0586-1 SUSE-SU-2020:1524-1 SUSE-SU-2020:1791-1 SUSE-SU-2020:1943-1 SUSE-SU-2020:2308-1 SUSE-SU-2020:2861-1 SUSE-SU-2020:2898-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information liblightdm-gobject-1-0-1.24.1-lp150.1 is installed OR lightdm-1.24.1-lp150.1 is installed OR lightdm-lang-1.24.1-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information java-11-openjdk-11.0.5.0-lp151.3.9 is installed OR java-11-openjdk-accessibility-11.0.5.0-lp151.3.9 is installed OR java-11-openjdk-demo-11.0.5.0-lp151.3.9 is installed OR java-11-openjdk-devel-11.0.5.0-lp151.3.9 is installed OR java-11-openjdk-headless-11.0.5.0-lp151.3.9 is installed OR java-11-openjdk-javadoc-11.0.5.0-lp151.3.9 is installed OR java-11-openjdk-jmods-11.0.5.0-lp151.3.9 is installed OR java-11-openjdk-src-11.0.5.0-lp151.3.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information libpython2_7-1_0-2.7.17-28.42 is installed OR libpython2_7-1_0-32bit-2.7.17-28.42 is installed OR python-2.7.17-28.42 is installed OR python-32bit-2.7.17-28.42 is installed OR python-base-2.7.17-28.42 is installed OR python-base-32bit-2.7.17-28.42 is installed OR python-curses-2.7.17-28.42 is installed OR python-demo-2.7.17-28.42 is installed OR python-devel-2.7.17-28.42 is installed OR python-doc-2.7.17-28.42 is installed OR python-doc-pdf-2.7.17-28.42 is installed OR python-gdbm-2.7.17-28.42 is installed OR python-idle-2.7.17-28.42 is installed OR python-rpm-macros-20200207.5feb6c1-3.19 is installed OR python-tk-2.7.17-28.42 is installed OR python-xml-2.7.17-28.42 is installed OR shared-python-startup-0.1-1.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libzypp-16.15.2-27.21 is installed OR zypper-1.13.30-18.13 is installed OR zypper-log-1.13.30-18.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information bzip2-1.0.6-30.8 is installed OR bzip2-doc-1.0.6-30.8 is installed OR libbz2-1-1.0.6-30.8 is installed OR libbz2-1-32bit-1.0.6-30.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libopenssl-devel-1.0.2j-60.52 is installed OR libopenssl1_0_0-1.0.2j-60.52 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.52 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.52 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.52 is installed OR openssl-1.0.2j-60.52 is installed OR openssl-doc-1.0.2j-60.52 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_35-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_12-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information xen-4.9.4_08-3.66 is installed OR xen-doc-html-4.9.4_08-3.66 is installed OR xen-libs-4.9.4_08-3.66 is installed OR xen-libs-32bit-4.9.4_08-3.66 is installed OR xen-tools-4.9.4_08-3.66 is installed OR xen-tools-domU-4.9.4_08-3.66 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information krb5-appl-clients-1.0.3-3.6.1 is installed OR krb5-appl-servers-1.0.3-3.6.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libexif-0.6.21-8.6 is installed OR libexif12-0.6.21-8.6 is installed OR libexif12-32bit-0.6.21-8.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information gstreamer-plugins-base-1.8.3-13.3 is installed OR gstreamer-plugins-base-lang-1.8.3-13.3 is installed OR libgstallocators-1_0-0-1.8.3-13.3 is installed OR libgstapp-1_0-0-1.8.3-13.3 is installed OR libgstapp-1_0-0-32bit-1.8.3-13.3 is installed OR libgstaudio-1_0-0-1.8.3-13.3 is installed OR libgstaudio-1_0-0-32bit-1.8.3-13.3 is installed OR libgstfft-1_0-0-1.8.3-13.3 is installed OR libgstpbutils-1_0-0-1.8.3-13.3 is installed OR libgstpbutils-1_0-0-32bit-1.8.3-13.3 is installed OR libgstriff-1_0-0-1.8.3-13.3 is installed OR libgstrtp-1_0-0-1.8.3-13.3 is installed OR libgstrtsp-1_0-0-1.8.3-13.3 is installed OR libgstsdp-1_0-0-1.8.3-13.3 is installed OR libgsttag-1_0-0-1.8.3-13.3 is installed OR libgsttag-1_0-0-32bit-1.8.3-13.3 is installed OR libgstvideo-1_0-0-1.8.3-13.3 is installed OR libgstvideo-1_0-0-32bit-1.8.3-13.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND rsync-3.1.0-13.13 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information freeradius-server-3.0.3-17.12 is installed OR freeradius-server-doc-3.0.3-17.12 is installed OR freeradius-server-krb5-3.0.3-17.12 is installed OR freeradius-server-ldap-3.0.3-17.12 is installed OR freeradius-server-libs-3.0.3-17.12 is installed OR freeradius-server-mysql-3.0.3-17.12 is installed OR freeradius-server-perl-3.0.3-17.12 is installed OR freeradius-server-postgresql-3.0.3-17.12 is installed OR freeradius-server-python-3.0.3-17.12 is installed OR freeradius-server-sqlite-3.0.3-17.12 is installed OR freeradius-server-utils-3.0.3-17.12 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information bzip2-1.0.6-30.5 is installed OR bzip2-doc-1.0.6-30.5 is installed OR libbz2-1-1.0.6-30.5 is installed OR libbz2-1-32bit-1.0.6-30.5 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information glib2-2.48.2-12.15 is installed OR glib2-lang-2.48.2-12.15 is installed OR glib2-tools-2.48.2-12.15 is installed OR libgio-2_0-0-2.48.2-12.15 is installed OR libgio-2_0-0-32bit-2.48.2-12.15 is installed OR libglib-2_0-0-2.48.2-12.15 is installed OR libglib-2_0-0-32bit-2.48.2-12.15 is installed OR libgmodule-2_0-0-2.48.2-12.15 is installed OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed OR libgobject-2_0-0-2.48.2-12.15 is installed OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed OR libgthread-2_0-0-2.48.2-12.15 is installed OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed
BACK