Oval Definition:oval:org.opensuse.security:def:58305
Revision Date:2020-12-01Version:1
Title:Security update for grub2 (Important)
Description:

This update for grub2 fixes the following issues:

- Fix for CVE-2020-10713 (bsc#1168994) - Fix for CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311 (bsc#1173812) - Fix for CVE-2020-15706 (bsc#1174463) - Fix for CVE-2020-15707 (bsc#1174570)

- Use overflow checking primitives where the arithmetic expression for buffer allocations may include unvalidated data - Use gcc-9 compiler for overflow check builtins - Backport gcc-9 build fixes - Fix packed-not-aligned error on GCC 8 (bsc#1084632) - Backport gcc-7 build fixes
Family:unixClass:patch
Status:Reference(s):1015187
1022263
1022264
1022265
1022283
1022284
1022553
1047236
1047240
1084632
1087066
1090023
1090024
1090025
1090026
1090027
1090028
1090029
1090030
1090032
1090033
1090036
1111331
1124729
1124734
1128378
1128829
1128963
1131595
1135273
1138034
1138459
1140738
1141329
1141332
1141853
1161799
1165631
1168630
1168994
1173659
1173812
1173942
1173991
1174247
1174284
1174463
1174570
1175686
CVE-2016-1000031
CVE-2016-10166
CVE-2016-10167
CVE-2016-10168
CVE-2016-6906
CVE-2016-6912
CVE-2016-9063
CVE-2016-9317
CVE-2016-9933
CVE-2017-9233
CVE-2018-1000199
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2018-20852
CVE-2018-2790
CVE-2018-2794
CVE-2018-2795
CVE-2018-2796
CVE-2018-2797
CVE-2018-2798
CVE-2018-2799
CVE-2018-2800
CVE-2018-2814
CVE-2018-2815
CVE-2019-10160
CVE-2019-10164
CVE-2019-11091
CVE-2019-12525
CVE-2019-12529
CVE-2019-13345
CVE-2019-16746
CVE-2019-3886
CVE-2019-6974
CVE-2019-7221
CVE-2019-9213
CVE-2020-10713
CVE-2020-11668
CVE-2020-14308
CVE-2020-14309
CVE-2020-14310
CVE-2020-14311
CVE-2020-14331
CVE-2020-15663
CVE-2020-15664
CVE-2020-15670
CVE-2020-15706
CVE-2020-15707
CVE-2020-1749
CVE-2020-6796
CVE-2020-6797
CVE-2020-6798
CVE-2020-6799
CVE-2020-6800
CVE-2020-6819
CVE-2020-6820
SUSE-SU-2016:3211-1
SUSE-SU-2017:0468-1
SUSE-SU-2017:2299-1
SUSE-SU-2018:1508-1
SUSE-SU-2019:0722-1
SUSE-SU-2019:1214-1
SUSE-SU-2019:1438-1
SUSE-SU-2020:0384-1
SUSE-SU-2020:0928-1
SUSE-SU-2020:2076-1
SUSE-SU-2020:2544-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • gnome-keyring-3.20.1-lp150.2 is installed
  • OR gnome-keyring-lang-3.20.1-lp150.2 is installed
  • OR gnome-keyring-pam-3.20.1-lp150.2 is installed
  • OR libgck-modules-gnome-keyring-3.20.1-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • fence-agents-4.4.0+git.1558595666.5f79f9e9-lp151.2.3 is installed
  • OR fence-agents-amt_ws-4.4.0+git.1558595666.5f79f9e9-lp151.2.3 is installed
  • OR fence-agents-devel-4.4.0+git.1558595666.5f79f9e9-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND gd-2.1.0-20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libvirt-2.0.0-27.54 is installed
  • OR libvirt-client-2.0.0-27.54 is installed
  • OR libvirt-daemon-2.0.0-27.54 is installed
  • OR libvirt-daemon-config-network-2.0.0-27.54 is installed
  • OR libvirt-daemon-config-nwfilter-2.0.0-27.54 is installed
  • OR libvirt-daemon-driver-interface-2.0.0-27.54 is installed
  • OR libvirt-daemon-driver-libxl-2.0.0-27.54 is installed
  • OR libvirt-daemon-driver-lxc-2.0.0-27.54 is installed
  • OR libvirt-daemon-driver-network-2.0.0-27.54 is installed
  • OR libvirt-daemon-driver-nodedev-2.0.0-27.54 is installed
  • OR libvirt-daemon-driver-nwfilter-2.0.0-27.54 is installed
  • OR libvirt-daemon-driver-qemu-2.0.0-27.54 is installed
  • OR libvirt-daemon-driver-secret-2.0.0-27.54 is installed
  • OR libvirt-daemon-driver-storage-2.0.0-27.54 is installed
  • OR libvirt-daemon-hooks-2.0.0-27.54 is installed
  • OR libvirt-daemon-lxc-2.0.0-27.54 is installed
  • OR libvirt-daemon-qemu-2.0.0-27.54 is installed
  • OR libvirt-daemon-xen-2.0.0-27.54 is installed
  • OR libvirt-doc-2.0.0-27.54 is installed
  • OR libvirt-lock-sanlock-2.0.0-27.54 is installed
  • OR libvirt-nss-2.0.0-27.54 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_73-default-2-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_21-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • bind-9.9.9P1-62 is installed
  • OR bind-chrootenv-9.9.9P1-62 is installed
  • OR bind-doc-9.9.9P1-62 is installed
  • OR bind-libs-9.9.9P1-62 is installed
  • OR bind-libs-32bit-9.9.9P1-62 is installed
  • OR bind-utils-9.9.9P1-62 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libexif-0.6.22-8.9 is installed
  • OR libexif12-0.6.22-8.9 is installed
  • OR libexif12-32bit-0.6.22-8.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • curl-7.37.0-37.43 is installed
  • OR libcurl4-7.37.0-37.43 is installed
  • OR libcurl4-32bit-7.37.0-37.43 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libpython2_7-1_0-2.7.13-28.31 is installed
  • OR libpython2_7-1_0-32bit-2.7.13-28.31 is installed
  • OR python-2.7.13-28.31 is installed
  • OR python-32bit-2.7.13-28.31 is installed
  • OR python-base-2.7.13-28.31 is installed
  • OR python-base-32bit-2.7.13-28.31 is installed
  • OR python-curses-2.7.13-28.31 is installed
  • OR python-demo-2.7.13-28.31 is installed
  • OR python-devel-2.7.13-28.31 is installed
  • OR python-doc-2.7.13-28.31 is installed
  • OR python-doc-pdf-2.7.13-28.31 is installed
  • OR python-gdbm-2.7.13-28.31 is installed
  • OR python-idle-2.7.13-28.31 is installed
  • OR python-tk-2.7.13-28.31 is installed
  • OR python-xml-2.7.13-28.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libblkid1-2.29.2-3.12 is installed
  • OR libblkid1-32bit-2.29.2-3.12 is installed
  • OR libfdisk1-2.29.2-3.12 is installed
  • OR libmount1-2.29.2-3.12 is installed
  • OR libmount1-32bit-2.29.2-3.12 is installed
  • OR libsmartcols1-2.29.2-3.12 is installed
  • OR libuuid1-2.29.2-3.12 is installed
  • OR libuuid1-32bit-2.29.2-3.12 is installed
  • OR python-libmount-2.29.2-3.12 is installed
  • OR util-linux-2.29.2-3.12 is installed
  • OR util-linux-lang-2.29.2-3.12 is installed
  • OR util-linux-systemd-2.29.2-3.12 is installed
  • OR uuidd-2.29.2-3.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libldap-2_4-2-2.4.41-18.40 is installed
  • OR libldap-2_4-2-32bit-2.4.41-18.40 is installed
  • OR openldap2-2.4.41-18.40 is installed
  • OR openldap2-back-meta-2.4.41-18.40 is installed
  • OR openldap2-client-2.4.41-18.40 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • grub2-2.02~beta2-115.49 is installed
  • OR grub2-i386-pc-2.02~beta2-115.49 is installed
  • OR grub2-s390x-emu-2.02~beta2-115.49 is installed
  • OR grub2-snapper-plugin-2.02~beta2-115.49 is installed
  • OR grub2-systemd-sleep-plugin-2.02~beta2-115.49 is installed
  • OR grub2-x86_64-efi-2.02~beta2-115.49 is installed
  • OR grub2-x86_64-xen-2.02~beta2-115.49 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • ceph-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR ceph-common-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR libcephfs2-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR librados2-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR libradosstriper1-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR librbd1-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR librgw2-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-cephfs-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-rados-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-rbd-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-rgw-12.2.12+git.1587570958.35d78d0243-2.45 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libssh2-1-1.4.3-20.9 is installed
  • OR libssh2-1-32bit-1.4.3-20.9 is installed
  • OR libssh2_org-1.4.3-20.9 is installed
    • BACK