Oval Definition:oval:org.opensuse.security:def:58396
Revision Date:2020-12-01Version:1
Title:Security update for permissions (Moderate)
Description:

This update for permissions fixes the following issues:

Security issues fixed:

- CVE-2020-8013: Fixed an issue where chkstat set unintended setuid/capabilities for mrsh and wodim (bsc#1163922).

Non-security issues fixed:

- Fixed a regression where chkstat broke when /proc was not available (bsc#1160764, bsc#1160594). - Fixed capability handling when doing multiple permission changes at once (bsc#1161779).
Family:unixClass:patch
Status:Reference(s):1006984
1006989
1013648
1024218
1024989
1037811
1041783
1042802
1042803
1043088
1044337
1045719
1045721
1058425
1082023
1083630
1097410
1097560
1097824
1099310
1103809
1103810
1104076
1104662
1106873
1110279
1112142
1112143
1112144
1112146
1112147
1112148
1112152
1112153
1116998
1119069
1119105
1120813
1123886
1127458
1151021
1158785
1158787
1158788
1158789
1158790
1158791
1158792
1158793
1158795
1160594
1160764
1161779
1163922
951166
977043
983582
984751
985177
985348
989523
991069
CVE-2016-0772
CVE-2016-1000110
CVE-2016-2183
CVE-2016-5547
CVE-2016-5548
CVE-2016-5549
CVE-2016-5552
CVE-2016-5636
CVE-2016-5699
CVE-2016-6252
CVE-2016-8740
CVE-2017-0663
CVE-2017-12627
CVE-2017-14482
CVE-2017-3231
CVE-2017-3241
CVE-2017-3252
CVE-2017-3253
CVE-2017-3259
CVE-2017-3261
CVE-2017-3272
CVE-2017-3289
CVE-2017-5969
CVE-2017-7511
CVE-2017-7515
CVE-2017-9406
CVE-2017-9408
CVE-2017-9775
CVE-2017-9776
CVE-2018-0495
CVE-2018-12384
CVE-2018-12404
CVE-2018-12405
CVE-2018-12470
CVE-2018-12471
CVE-2018-12472
CVE-2018-13785
CVE-2018-16435
CVE-2018-17466
CVE-2018-18492
CVE-2018-18493
CVE-2018-18494
CVE-2018-18498
CVE-2018-3136
CVE-2018-3139
CVE-2018-3149
CVE-2018-3169
CVE-2018-3180
CVE-2018-3183
CVE-2018-3214
CVE-2018-4191
CVE-2018-4197
CVE-2018-4207
CVE-2018-4208
CVE-2018-4209
CVE-2018-4210
CVE-2018-4212
CVE-2018-4213
CVE-2018-4261
CVE-2018-4262
CVE-2018-4263
CVE-2018-4264
CVE-2018-4265
CVE-2018-4266
CVE-2018-4267
CVE-2018-4270
CVE-2018-4272
CVE-2018-4273
CVE-2018-4278
CVE-2018-4284
CVE-2018-4299
CVE-2018-4306
CVE-2018-4309
CVE-2018-4312
CVE-2018-4314
CVE-2018-4315
CVE-2018-4316
CVE-2018-4317
CVE-2018-4318
CVE-2018-4319
CVE-2018-4323
CVE-2018-4328
CVE-2018-4345
CVE-2018-4358
CVE-2018-4359
CVE-2018-4361
CVE-2018-4372
CVE-2018-4373
CVE-2018-4375
CVE-2018-4376
CVE-2018-4378
CVE-2018-4382
CVE-2018-4386
CVE-2018-4392
CVE-2018-4416
CVE-2019-1348
CVE-2019-1349
CVE-2019-1350
CVE-2019-1351
CVE-2019-1352
CVE-2019-1353
CVE-2019-1354
CVE-2019-1387
CVE-2019-14835
CVE-2019-19604
CVE-2019-3840
CVE-2020-8013
SUSE-SU-2016:2859-1
SUSE-SU-2017:0203-1
SUSE-SU-2017:0460-1
SUSE-SU-2017:1670-1
SUSE-SU-2017:1999-1
SUSE-SU-2017:2529-1
SUSE-SU-2018:1997-2
SUSE-SU-2018:2898-1
SUSE-SU-2019:0553-1
SUSE-SU-2020:0545-1
SUSE-SU-2020:2225-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • PackageKit-1.1.10-lp150.2 is installed
  • OR PackageKit-backend-zypp-1.1.10-lp150.2 is installed
  • OR PackageKit-gstreamer-plugin-1.1.10-lp150.2 is installed
  • OR PackageKit-gtk3-module-1.1.10-lp150.2 is installed
  • OR PackageKit-lang-1.1.10-lp150.2 is installed
  • OR libpackagekit-glib2-18-1.1.10-lp150.2 is installed
  • OR typelib-1_0-PackageKitGlib-1_0-1.1.10-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • neovim-0.3.7-lp151.2.7 is installed
  • OR neovim-lang-0.3.7-lp151.2.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libxml2-2.9.4-42 is installed
  • OR libxml2-2-2.9.4-42 is installed
  • OR libxml2-2-32bit-2.9.4-42 is installed
  • OR libxml2-doc-2.9.4-42 is installed
  • OR libxml2-tools-2.9.4-42 is installed
  • OR python-libxml2-2.9.4-42 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND shadow-4.2.1-27.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-60.4.0esr-109.55 is installed
  • OR MozillaFirefox-devel-60.4.0esr-109.55 is installed
  • OR MozillaFirefox-translations-common-60.4.0esr-109.55 is installed
  • OR libfreebl3-3.40.1-58.18 is installed
  • OR libfreebl3-32bit-3.40.1-58.18 is installed
  • OR libsoftokn3-3.40.1-58.18 is installed
  • OR libsoftokn3-32bit-3.40.1-58.18 is installed
  • OR mozilla-nspr-4.20-19.6 is installed
  • OR mozilla-nspr-32bit-4.20-19.6 is installed
  • OR mozilla-nss-3.40.1-58.18 is installed
  • OR mozilla-nss-32bit-3.40.1-58.18 is installed
  • OR mozilla-nss-certs-3.40.1-58.18 is installed
  • OR mozilla-nss-certs-32bit-3.40.1-58.18 is installed
  • OR mozilla-nss-sysinit-3.40.1-58.18 is installed
  • OR mozilla-nss-sysinit-32bit-3.40.1-58.18 is installed
  • OR mozilla-nss-tools-3.40.1-58.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • res-signingkeys-3.0.37-52.23 is installed
  • OR smt-3.0.37-52.23 is installed
  • OR smt-support-3.0.37-52.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • cups-filters-1.0.58-17 is installed
  • OR cups-filters-cups-browsed-1.0.58-17 is installed
  • OR cups-filters-foomatic-rip-1.0.58-17 is installed
  • OR cups-filters-ghostscript-1.0.58-17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • MozillaFirefox-68.7.0-109.116 is installed
  • OR MozillaFirefox-translations-common-68.7.0-109.116 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-68.9.0-109.123 is installed
  • OR MozillaFirefox-translations-common-68.9.0-109.123 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND sudo-1.8.20p2-3.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • curl-7.37.0-37.26 is installed
  • OR libcurl4-7.37.0-37.26 is installed
  • OR libcurl4-32bit-7.37.0-37.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND mailx-12.5-28 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND permissions-2015.09.28.1626-17.27 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • mariadb-10.2.22-4.11 is installed
  • OR mariadb-client-10.2.22-4.11 is installed
  • OR mariadb-errormessages-10.2.22-4.11 is installed
  • OR mariadb-galera-10.2.22-4.11 is installed
  • OR mariadb-tools-10.2.22-4.11 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND ansible-2.4.6.0-3.3 is installed
    • BACK