OVAL Reference oval:org.opensuse.security:def:58242

Oval Definition:

oval:org.opensuse.security:def:58242

Revision Date:	2020-12-01	Version:	1
Title:	Security update for sssd (Moderate)
Description:	This update for sssd provides the following fixes: This security issue was fixed: - CVE-2018-10852: Set stricter permissions on /var/lib/sss/pipes/sudo to prevent the disclosure of sudo rules for arbitrary users (bsc#1098377) These non-security issues were fixed: - Fix a segmentation fault in sss_cache command. (bsc#1072728) - Fix a failure in autofs initialisation sequence upon system boot. (bsc#1010700) - Fix race condition on boot between SSSD and autofs. (bsc#1010700) - Fix a bug where file descriptors were not closed (bsc#1080156) - Fix an issue where sssd logs were not rotated properly (bsc#1080156) - Remove whitespaces from netgroup entries (bsc#1087320) - Remove misleading log messages (bsc#1101877) - exit() the forked process if exec()-ing a child process fails (bsc#1110299) - Do not schedule the machine renewal task if adcli is not executable (bsc#1110299)
Family:	unix	Class:	patch
Status:		Reference(s):	1010700 1012102 1012103 1012104 1013653 1013655 1013663 1020940 1035686 1043983 1048072 1055265 1056286 1056782 1058754 1058755 1058757 1061041 1062452 1069607 1069632 1072728 1073002 1078782 1078808 1079869 1080042 1080156 1082007 1082008 1082009 1082010 1082011 1082014 1082041 1082058 1083625 1087320 1087433 1087434 1087436 1087437 1087440 1087441 1087481 1097356 1098377 1101877 1106119 1106171 1106172 1106173 1106195 1107410 1107411 1107412 1107413 1107420 1107421 1107422 1107423 1107426 1107581 1108027 1109105 1110299 1112530 1112532 1114459 1117080 1126463 1130611 1130617 1130620 1130622 1130623 1130627 1131060 1144903 1152990 1152992 1152994 1152995 1153108 1153158 1153161 1154434 1162610 1163019 1164140 1168140 1168142 1169392 1169659 1170313 1170423 1171517 1171823 1172275 1172450 1173413 1173416 1173418 1173991 1174284 1174543 1174583 1175484 1175686 905870 905871 905872 922220 922221 922222 922223 927637 965582 CVE-2014-8767 CVE-2014-8768 CVE-2014-8769 CVE-2015-0261 CVE-2015-2153 CVE-2015-2154 CVE-2015-2155 CVE-2015-3138 CVE-2015-9096 CVE-2016-0775 CVE-2016-2339 CVE-2016-7798 CVE-2016-7922 CVE-2016-7923 CVE-2016-7924 CVE-2016-7925 CVE-2016-7926 CVE-2016-7927 CVE-2016-7928 CVE-2016-7929 CVE-2016-7930 CVE-2016-7931 CVE-2016-7932 CVE-2016-7933 CVE-2016-7934 CVE-2016-7935 CVE-2016-7936 CVE-2016-7937 CVE-2016-7938 CVE-2016-7939 CVE-2016-7940 CVE-2016-7973 CVE-2016-7974 CVE-2016-7975 CVE-2016-7983 CVE-2016-7984 CVE-2016-7985 CVE-2016-7986 CVE-2016-7992 CVE-2016-7993 CVE-2016-8574 CVE-2016-8575 CVE-2016-9634 CVE-2016-9635 CVE-2016-9636 CVE-2016-9807 CVE-2016-9808 CVE-2016-9810 CVE-2017-0898 CVE-2017-0899 CVE-2017-0900 CVE-2017-0901 CVE-2017-0902 CVE-2017-0903 CVE-2017-10784 CVE-2017-14033 CVE-2017-14064 CVE-2017-14867 CVE-2017-17405 CVE-2017-17742 CVE-2017-17790 CVE-2017-5202 CVE-2017-5203 CVE-2017-5204 CVE-2017-5205 CVE-2017-5341 CVE-2017-5342 CVE-2017-5482 CVE-2017-5483 CVE-2017-5484 CVE-2017-5485 CVE-2017-5486 CVE-2017-5715 CVE-2017-9228 CVE-2017-9229 CVE-2018-1000073 CVE-2018-1000074 CVE-2018-1000075 CVE-2018-1000076 CVE-2018-1000077 CVE-2018-1000078 CVE-2018-1000079 CVE-2018-1064 CVE-2018-10852 CVE-2018-15908 CVE-2018-15909 CVE-2018-15910 CVE-2018-15911 CVE-2018-16395 CVE-2018-16396 CVE-2018-16509 CVE-2018-16510 CVE-2018-16511 CVE-2018-16513 CVE-2018-16539 CVE-2018-16540 CVE-2018-16541 CVE-2018-16542 CVE-2018-16543 CVE-2018-16585 CVE-2018-16802 CVE-2018-17183 CVE-2018-17954 CVE-2018-18623 CVE-2018-18624 CVE-2018-18625 CVE-2018-5848 CVE-2018-6764 CVE-2018-6914 CVE-2018-8777 CVE-2018-8778 CVE-2018-8779 CVE-2018-8780 CVE-2019-10220 CVE-2019-12519 CVE-2019-12520 CVE-2019-12521 CVE-2019-12524 CVE-2019-15043 CVE-2019-15845 CVE-2019-16201 CVE-2019-16254 CVE-2019-16255 CVE-2019-17133 CVE-2019-3880 CVE-2019-8320 CVE-2019-8321 CVE-2019-8322 CVE-2019-8323 CVE-2019-8324 CVE-2019-8325 CVE-2020-10177 CVE-2020-10378 CVE-2020-10663 CVE-2020-10744 CVE-2020-10994 CVE-2020-11110 CVE-2020-11739 CVE-2020-11740 CVE-2020-11741 CVE-2020-11742 CVE-2020-11945 CVE-2020-12052 CVE-2020-13379 CVE-2020-15663 CVE-2020-15664 CVE-2020-15670 CVE-2020-1733 CVE-2020-17376 CVE-2020-8597 CVE-2020-8608 SUSE-SU-2016:3303-1 SUSE-SU-2017:1110-1 SUSE-SU-2017:2747-1 SUSE-SU-2018:0861-1 SUSE-SU-2018:2975-2 SUSE-SU-2019:0081-1 SUSE-SU-2020:0490-1 SUSE-SU-2020:1227-1 SUSE-SU-2020:1570-1 SUSE-SU-2020:2234-1 SUSE-SU-2020:2544-1 SUSE-SU-2020:2911-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.1 NonFree SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-LTSS SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information xscreensaver-5.37-lp150.3 is installed OR xscreensaver-data-5.37-lp150.3 is installed OR xscreensaver-lang-5.37-lp150.3 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information kernel-debug-4.12.14-lp151.28.10 is installed OR kernel-debug-base-4.12.14-lp151.28.10 is installed OR kernel-debug-devel-4.12.14-lp151.28.10 is installed OR kernel-default-4.12.14-lp151.28.10 is installed OR kernel-default-base-4.12.14-lp151.28.10 is installed OR kernel-default-devel-4.12.14-lp151.28.10 is installed OR kernel-devel-4.12.14-lp151.28.10 is installed OR kernel-docs-4.12.14-lp151.28.10 is installed OR kernel-docs-html-4.12.14-lp151.28.10 is installed OR kernel-kvmsmall-4.12.14-lp151.28.10 is installed OR kernel-kvmsmall-base-4.12.14-lp151.28.10 is installed OR kernel-kvmsmall-devel-4.12.14-lp151.28.10 is installed OR kernel-macros-4.12.14-lp151.28.10 is installed OR kernel-obs-build-4.12.14-lp151.28.10 is installed OR kernel-obs-qa-4.12.14-lp151.28.10 is installed OR kernel-source-4.12.14-lp151.28.10 is installed OR kernel-source-vanilla-4.12.14-lp151.28.10 is installed OR kernel-syms-4.12.14-lp151.28.10 is installed OR kernel-vanilla-4.12.14-lp151.28.10 is installed OR kernel-vanilla-base-4.12.14-lp151.28.10 is installed OR kernel-vanilla-devel-4.12.14-lp151.28.10 is installed
Definition Synopsis
openSUSE Leap 15.1 NonFree is installed AND opera-68.0.3618.63-lp151.2.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information gstreamer-plugins-good-1.8.3-9 is installed OR gstreamer-plugins-good-lang-1.8.3-9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information ghostscript-9.25-23.13 is installed OR ghostscript-x11-9.25-23.13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_114-92_64-default-10-2 is installed OR kgraft-patch-SLE12-SP2_Update_18-10-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_120-default-3-2 is installed OR kgraft-patch-SLE12-SP2_Update_32-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libXtst6-1.2.2-7 is installed OR libXtst6-32bit-1.2.2-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libvirt-3.3.0-5.40 is installed OR libvirt-admin-3.3.0-5.40 is installed OR libvirt-client-3.3.0-5.40 is installed OR libvirt-daemon-3.3.0-5.40 is installed OR libvirt-daemon-config-network-3.3.0-5.40 is installed OR libvirt-daemon-config-nwfilter-3.3.0-5.40 is installed OR libvirt-daemon-driver-interface-3.3.0-5.40 is installed OR libvirt-daemon-driver-libxl-3.3.0-5.40 is installed OR libvirt-daemon-driver-lxc-3.3.0-5.40 is installed OR libvirt-daemon-driver-network-3.3.0-5.40 is installed OR libvirt-daemon-driver-nodedev-3.3.0-5.40 is installed OR libvirt-daemon-driver-nwfilter-3.3.0-5.40 is installed OR libvirt-daemon-driver-qemu-3.3.0-5.40 is installed OR libvirt-daemon-driver-secret-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-core-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-disk-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-iscsi-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-logical-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-mpath-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-rbd-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-scsi-3.3.0-5.40 is installed OR libvirt-daemon-hooks-3.3.0-5.40 is installed OR libvirt-daemon-lxc-3.3.0-5.40 is installed OR libvirt-daemon-qemu-3.3.0-5.40 is installed OR libvirt-daemon-xen-3.3.0-5.40 is installed OR libvirt-doc-3.3.0-5.40 is installed OR libvirt-libs-3.3.0-5.40 is installed OR libvirt-lock-sanlock-3.3.0-5.40 is installed OR libvirt-nss-3.3.0-5.40 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information python-PyYAML-5.1.2-26.12 is installed OR python3-PyYAML-5.1.2-26.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND gdb-8.3.1-2.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information adcli-0.8.2-1.3 is installed OR libipa_hbac0-1.13.4-34.31 is installed OR libsss_idmap0-1.13.4-34.31 is installed OR libsss_nss_idmap0-1.13.4-34.31 is installed OR libsss_sudo-1.13.4-34.31 is installed OR python-sssd-config-1.13.4-34.31 is installed OR sssd-1.13.4-34.31 is installed OR sssd-32bit-1.13.4-34.31 is installed OR sssd-ad-1.13.4-34.31 is installed OR sssd-ipa-1.13.4-34.31 is installed OR sssd-krb5-1.13.4-34.31 is installed OR sssd-krb5-common-1.13.4-34.31 is installed OR sssd-ldap-1.13.4-34.31 is installed OR sssd-proxy-1.13.4-34.31 is installed OR sssd-tools-1.13.4-34.31 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libXRes1-1.0.7-3 is installed OR libXRes1-32bit-1.0.7-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information MozillaFirefox-78.0.1-112.3 is installed OR MozillaFirefox-branding-SLE-78-35.3 is installed OR MozillaFirefox-devel-78.0.1-112.3 is installed OR MozillaFirefox-translations-common-78.0.1-112.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information libipa_hbac0-1.13.4-34.23 is installed OR libsss_idmap0-1.13.4-34.23 is installed OR libsss_sudo-1.13.4-34.23 is installed OR python-sssd-config-1.13.4-34.23 is installed OR sssd-1.13.4-34.23 is installed OR sssd-32bit-1.13.4-34.23 is installed OR sssd-ad-1.13.4-34.23 is installed OR sssd-ipa-1.13.4-34.23 is installed OR sssd-krb5-1.13.4-34.23 is installed OR sssd-krb5-common-1.13.4-34.23 is installed OR sssd-ldap-1.13.4-34.23 is installed OR sssd-proxy-1.13.4-34.23 is installed OR sssd-tools-1.13.4-34.23 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information postgresql96-9.6.15-3.29 is installed OR postgresql96-contrib-9.6.15-3.29 is installed OR postgresql96-docs-9.6.15-3.29 is installed OR postgresql96-libs-9.6.15-3.29 is installed OR postgresql96-plperl-9.6.15-3.29 is installed OR postgresql96-plpython-9.6.15-3.29 is installed OR postgresql96-pltcl-9.6.15-3.29 is installed OR postgresql96-server-9.6.15-3.29 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed OR libwebkit2gtk3-lang-2.24.4-2.47 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed OR webkit2gtk3-2.24.4-2.47 is installed

BACK