Oval Definition:	oval:org.opensuse.security:def:58393
Revision Date: 2020-12-01 Version: 1 Title: Security update for rsyslog (Moderate) Description: This update for rsyslog fixes the following issues: Security issues fixed: - CVE-2019-17041: Fixed a heap overflow in the parser for AIX log messages (bsc#1153451). - CVE-2019-17042: Fixed a heap overflow in the parser for Cisco log messages (bsc#1153459). Non-security issues fixed: - Handle multiline messages correctly when using the imfile module. (bsc#1015203) - Fix a race condition in the shutdown sequence in wtp that was causing rsyslog not to shutdown properly. (bsc#1022804) - Fixed a rsyslogd SIGABORT crash if a path does not exists (bsc#1087920). - Fixed an issue where configuration templates where not consistently flushed (bsc#1084682). Family: unix Class: patch Status: Reference(s): 1005084 1005090 1005242 1006591 1006593 1006597 1006598 1006599 1006836 1006839 1007009 1013095 1015203 1020102 1022804 1022805 1027519 1034005 1034402 1042298 1042299 1042300 1042301 1042302 1042303 1042304 1042305 1042306 1042307 1042308 1042309 1055695 1056278 1056280 1056281 1056282 1084604 1084682 1087920 1096723 1097158 1097356 1097624 1098592 1101644 1101645 1101651 1101656 1102682 1105323 1106191 1112142 1112143 1112144 1112146 1112147 1112152 1112153 1113231 1116717 1117275 1119493 1123156 1124937 1151021 1153108 1153451 1153459 1156321 1156331 1157770 1173274 392410 941919 942553 961886 963983 968373 CVE-2008-3522 CVE-2014-8158 CVE-2015-5203 CVE-2015-5221 CVE-2016-1577 CVE-2016-1867 CVE-2016-2089 CVE-2016-2116 CVE-2016-2399 CVE-2016-8690 CVE-2016-8691 CVE-2016-8692 CVE-2016-8693 CVE-2016-8880 CVE-2016-8881 CVE-2016-8882 CVE-2016-8883 CVE-2016-8884 CVE-2016-8885 CVE-2016-8886 CVE-2016-8887 CVE-2017-0381 CVE-2017-13672 CVE-2017-13673 CVE-2017-14316 CVE-2017-14317 CVE-2017-14318 CVE-2017-14319 CVE-2017-9343 CVE-2017-9344 CVE-2017-9345 CVE-2017-9346 CVE-2017-9347 CVE-2017-9348 CVE-2017-9349 CVE-2017-9350 CVE-2017-9351 CVE-2017-9352 CVE-2017-9353 CVE-2017-9354 CVE-2018-0732 CVE-2018-1000026 CVE-2018-10902 CVE-2018-10938 CVE-2018-13785 CVE-2018-16435 CVE-2018-16872 CVE-2018-19364 CVE-2018-19489 CVE-2018-20856 CVE-2018-2938 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3214 CVE-2018-3639 CVE-2018-5390 CVE-2018-5848 CVE-2018-7858 CVE-2019-10220 CVE-2019-13272 CVE-2019-14835 CVE-2019-17041 CVE-2019-17042 CVE-2019-6212 CVE-2019-6215 CVE-2019-6216 CVE-2019-6217 CVE-2019-6226 CVE-2019-6227 CVE-2019-6229 CVE-2019-6233 CVE-2019-6234 CVE-2019-6778 CVE-2020-14422 SUSE-SU-2016:2775-1 SUSE-SU-2017:0436-1 SUSE-SU-2017:1577-1 SUSE-SU-2017:1663-1 SUSE-SU-2017:1986-1 SUSE-SU-2017:2519-1 SUSE-SU-2018:1887-2 SUSE-SU-2019:0489-1 SUSE-SU-2020:0512-1 SUSE-SU-2020:2157-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information MozillaThunderbird-52.7-lp150.2 is installed OR MozillaThunderbird-translations-common-52.7-lp150.2 is installed OR MozillaThunderbird-translations-other-52.7-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information python-requests-2.20.1-lp151.2.3 is installed OR python-requests-test-2.20.1-lp151.2.3 is installed OR python2-requests-2.20.1-lp151.2.3 is installed OR python2-requests-test-2.20.1-lp151.2.3 is installed OR python3-requests-2.20.1-lp151.2.3 is installed OR python3-requests-test-2.20.1-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libwireshark8-2.2.7-47 is installed OR libwiretap6-2.2.7-47 is installed OR libwscodecs1-2.2.7-47 is installed OR libwsutil7-2.2.7-47 is installed OR wireshark-2.2.7-47 is installed OR wireshark-gtk-2.2.7-47 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libopenssl-devel-1.0.2j-60.30 is installed OR libopenssl1_0_0-1.0.2j-60.30 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.30 is installed OR openssl-1.0.2j-60.30 is installed OR openssl-doc-1.0.2j-60.30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_114-92_67-default-10-2 is installed OR kgraft-patch-SLE12-SP2_Update_19-10-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_67-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_19-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libfreebl3-3.47.1-58.34 is installed OR libfreebl3-32bit-3.47.1-58.34 is installed OR libfreebl3-hmac-3.47.1-58.34 is installed OR libfreebl3-hmac-32bit-3.47.1-58.34 is installed OR libsoftokn3-3.47.1-58.34 is installed OR libsoftokn3-32bit-3.47.1-58.34 is installed OR libsoftokn3-hmac-3.47.1-58.34 is installed OR libsoftokn3-hmac-32bit-3.47.1-58.34 is installed OR mozilla-nspr-4.23-19.12 is installed OR mozilla-nspr-32bit-4.23-19.12 is installed OR mozilla-nss-3.47.1-58.34 is installed OR mozilla-nss-32bit-3.47.1-58.34 is installed OR mozilla-nss-certs-3.47.1-58.34 is installed OR mozilla-nss-certs-32bit-3.47.1-58.34 is installed OR mozilla-nss-sysinit-3.47.1-58.34 is installed OR mozilla-nss-sysinit-32bit-3.47.1-58.34 is installed OR mozilla-nss-tools-3.47.1-58.34 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libexif-0.6.22-8.9 is installed OR libexif12-0.6.22-8.9 is installed OR libexif12-32bit-0.6.22-8.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_178-94_91-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_25-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.30-38.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND logrotate-3.11.0-2.11 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information rsyslog-8.4.0-18.13 is installed OR rsyslog-diag-tools-8.4.0-18.13 is installed OR rsyslog-doc-8.4.0-18.13 is installed OR rsyslog-module-gssapi-8.4.0-18.13 is installed OR rsyslog-module-gtls-8.4.0-18.13 is installed OR rsyslog-module-mysql-8.4.0-18.13 is installed OR rsyslog-module-pgsql-8.4.0-18.13 is installed OR rsyslog-module-relp-8.4.0-18.13 is installed OR rsyslog-module-snmp-8.4.0-18.13 is installed OR rsyslog-module-udpspoof-8.4.0-18.13 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information ardana-monasca-8.0+git.1535031421.9262a47-3.12 is installed OR ardana-spark-8.0+git.1534267176.a5f3a22-3.6 is installed OR kafka-0.10.2.2-5.6 is installed OR openstack-monasca-api-2.2.1~dev24-3.6 is installed OR python-monasca-api-2.2.1~dev24-3.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND python-cryptography-2.0.3-3.3 is installed
BACK