Oval Definition:oval:org.opensuse.security:def:58371
Revision Date:2020-12-01Version:1
Title:Security update for libzypp, zypper (Moderate)
Description:

This update for libzypp, zypper fixes the following issues:

libzypp fixes the following security issue:

- CVE-2019-18900: Fixed assert cookie file that was world readable (bsc#1158763).

zypper was updated to fix the following issues:

- Fixed an issue, where zypper crashed when the system language is set to Spanish and the user tried to patch their system with 'zypper patch --category security' (bsc#1178038) - Fixed a typo in man page (bsc#1169947)

Family:unixClass:patch
Status:Reference(s):1002982
1010399
1010405
1010406
1010408
1010409
1010421
1010423
1010424
1010425
1010426
1025108
1027519
1033054
1033914
1033915
1036943
1036944
1036945
1036946
1038856
1040662
1043008
1045490
1047281
1051643
1051644
1055047
1061075
1063123
1068187
1068191
1074235
1076957
1092611
1103098
1120374
1123886
1135902
1137990
1140402
1143794
1149429
1153108
1154738
1156275
1156321
1156331
1157770
1158763
1159913
1160594
1160764
1161779
1163922
1165631
1167373
1169947
1173304
1178038
959933
983922
CVE-2012-6706
CVE-2016-10708
CVE-2016-2830
CVE-2016-5289
CVE-2016-5292
CVE-2016-7969
CVE-2016-7970
CVE-2016-7971
CVE-2016-7972
CVE-2016-9063
CVE-2016-9067
CVE-2016-9068
CVE-2016-9069
CVE-2016-9071
CVE-2016-9073
CVE-2016-9075
CVE-2016-9076
CVE-2016-9077
CVE-2017-1000100
CVE-2017-1000101
CVE-2017-15289
CVE-2017-15597
CVE-2017-7585
CVE-2017-7741
CVE-2017-7742
CVE-2017-7789
CVE-2017-8361
CVE-2017-8362
CVE-2017-8363
CVE-2017-8365
CVE-2018-20856
CVE-2018-5150
CVE-2018-5151
CVE-2018-5152
CVE-2018-5153
CVE-2018-5154
CVE-2018-5155
CVE-2018-5157
CVE-2018-5158
CVE-2018-5159
CVE-2018-5160
CVE-2018-5163
CVE-2018-5164
CVE-2018-5165
CVE-2018-5166
CVE-2018-5167
CVE-2018-5168
CVE-2018-5169
CVE-2018-5172
CVE-2018-5173
CVE-2018-5174
CVE-2018-5175
CVE-2018-5176
CVE-2018-5177
CVE-2018-5178
CVE-2018-5179
CVE-2018-5180
CVE-2018-5181
CVE-2018-5182
CVE-2018-5183
CVE-2018-5391
CVE-2019-10220
CVE-2019-11757
CVE-2019-11758
CVE-2019-11759
CVE-2019-11760
CVE-2019-11761
CVE-2019-11762
CVE-2019-11763
CVE-2019-11764
CVE-2019-12155
CVE-2019-13164
CVE-2019-13272
CVE-2019-14378
CVE-2019-14869
CVE-2019-15903
CVE-2019-18860
CVE-2019-18900
CVE-2019-5108
CVE-2020-14059
CVE-2020-1749
CVE-2020-8013
SUSE-SU-2016:3107-1
SUSE-SU-2017:1367-1
SUSE-SU-2017:1716-1
SUSE-SU-2017:2174-1
SUSE-SU-2017:3178-1
SUSE-SU-2018:2530-1
SUSE-SU-2019:2157-1
SUSE-SU-2019:2983-1
SUSE-SU-2020:0545-1
SUSE-SU-2020:1803-1
SUSE-SU-2020:3367-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libXv1-1.0.11-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • ImageMagick-7.0.7.34-lp151.7.3 is installed
  • OR ImageMagick-config-7-SUSE-7.0.7.34-lp151.7.3 is installed
  • OR ImageMagick-config-7-upstream-7.0.7.34-lp151.7.3 is installed
  • OR ImageMagick-devel-7.0.7.34-lp151.7.3 is installed
  • OR ImageMagick-devel-32bit-7.0.7.34-lp151.7.3 is installed
  • OR ImageMagick-doc-7.0.7.34-lp151.7.3 is installed
  • OR ImageMagick-extra-7.0.7.34-lp151.7.3 is installed
  • OR libMagick++-7_Q16HDRI4-7.0.7.34-lp151.7.3 is installed
  • OR libMagick++-7_Q16HDRI4-32bit-7.0.7.34-lp151.7.3 is installed
  • OR libMagick++-devel-7.0.7.34-lp151.7.3 is installed
  • OR libMagick++-devel-32bit-7.0.7.34-lp151.7.3 is installed
  • OR libMagickCore-7_Q16HDRI6-7.0.7.34-lp151.7.3 is installed
  • OR libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-lp151.7.3 is installed
  • OR libMagickWand-7_Q16HDRI6-7.0.7.34-lp151.7.3 is installed
  • OR libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-lp151.7.3 is installed
  • OR perl-PerlMagick-7.0.7.34-lp151.7.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libass-0.10.2-3 is installed
  • OR libass5-0.10.2-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • ghostscript-9.27-23.31 is installed
  • OR ghostscript-x11-9.27-23.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_114-92_64-default-9-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_18-9-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • openssh-7.2p2-74.25 is installed
  • OR openssh-askpass-gnome-7.2p2-74.25 is installed
  • OR openssh-fips-7.2p2-74.25 is installed
  • OR openssh-helpers-7.2p2-74.25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND apache2-mod_perl-2.0.8-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libexif-0.6.21-8.6 is installed
  • OR libexif12-0.6.21-8.6 is installed
  • OR libexif12-32bit-0.6.21-8.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • ceph-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR ceph-common-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR libcephfs2-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR librados2-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR libradosstriper1-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR librbd1-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR librgw2-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-cephfs-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-rados-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-rbd-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-rgw-12.2.12+git.1587570958.35d78d0243-2.45 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • curl-7.37.0-37.43 is installed
  • OR libcurl4-7.37.0-37.43 is installed
  • OR libcurl4-32bit-7.37.0-37.43 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • gnome-shell-search-provider-nautilus-3.20.3-23.6 is installed
  • OR libnautilus-extension1-3.20.3-23.6 is installed
  • OR nautilus-3.20.3-23.6 is installed
  • OR nautilus-lang-3.20.3-23.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libupsclient1-2.7.1-1 is installed
  • OR nut-2.7.1-1 is installed
  • OR nut-drivers-net-2.7.1-1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • libzypp-16.21.2-27.70 is installed
  • OR libzypp-devel-16.21.2-27.70 is installed
  • OR zypper-1.13.57-18.46 is installed
  • OR zypper-log-1.13.57-18.46 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • bzip2-1.0.6-30.5 is installed
  • OR bzip2-doc-1.0.6-30.5 is installed
  • OR libbz2-1-1.0.6-30.5 is installed
  • OR libbz2-1-32bit-1.0.6-30.5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ruby2.1-rubygem-sprockets-2_12-2.12.5-1.4 is installed
  • OR rubygem-sprockets-2_12-2.12.5-1.4 is installed
    • BACK