Oval Definition:oval:org.opensuse.security:def:58425
Revision Date:2020-12-01Version:1
Title:Security update for sudo (Moderate)
Description:



This update for sudo fixes the following issues:

- fix two security vulnerabilities that allowed users to bypass sudo's NOEXEC functionality: * noexec bypass via system() and popen() [CVE-2016-7032, bsc#1007766] * noexec bypass via wordexp() [CVE-2016-7076, bsc#1007501]
Family:unixClass:patch
Status:Reference(s):1007501
1007766
1012651
1014298
1014300
1016340
1023616
1027024
1027025
1027026
1027565
1028372
1029907
1029908
1029909
1030296
1030297
1030298
1030573
1030584
1030585
1030588
1030589
1031590
1031593
1031595
1031638
1031644
1031656
1037052
1037057
1037061
1037066
1037273
1043055
1043176
1043808
1044891
1044897
1044901
1044909
1044925
1044927
1046636
1047674
1048289
1048544
1048576
1048902
1049381
1049877
1054724
1056334
1057378
1057585
1057966
1059369
1062069
1062942
1063122
1065643
1065689
1065693
1068640
1068643
1068887
1068888
1068950
1069176
1069202
1074741
1077745
1079103
1079741
1080556
1081527
1083424
1083528
1083532
1085784
1086608
1086784
1086786
1086788
1090997
1091015
1091365
1091368
1096745
1098531
1111853
1112758
1121571
1121816
1121818
1121821
1124729
1124734
1128378
1131886
1146358
1146359
1168422
1170643
1172205
1173378
1173380
1175534
1176343
1176344
1176345
1176346
1176347
1176348
1176349
1176350
997358
CVE-2014-9939
CVE-2016-10013
CVE-2016-10024
CVE-2016-10025
CVE-2016-7032
CVE-2016-7076
CVE-2016-9932
CVE-2017-10664
CVE-2017-10806
CVE-2017-10911
CVE-2017-11334
CVE-2017-11434
CVE-2017-12809
CVE-2017-13672
CVE-2017-14167
CVE-2017-15038
CVE-2017-15268
CVE-2017-15289
CVE-2017-15938
CVE-2017-15939
CVE-2017-15996
CVE-2017-16826
CVE-2017-16827
CVE-2017-16828
CVE-2017-16829
CVE-2017-16830
CVE-2017-16831
CVE-2017-16832
CVE-2017-2636
CVE-2017-2862
CVE-2017-2870
CVE-2017-6312
CVE-2017-6313
CVE-2017-6314
CVE-2017-6965
CVE-2017-6966
CVE-2017-6969
CVE-2017-7184
CVE-2017-7209
CVE-2017-7210
CVE-2017-7223
CVE-2017-7224
CVE-2017-7225
CVE-2017-7226
CVE-2017-7299
CVE-2017-7300
CVE-2017-7301
CVE-2017-7302
CVE-2017-7303
CVE-2017-7304
CVE-2017-8392
CVE-2017-8393
CVE-2017-8394
CVE-2017-8396
CVE-2017-8421
CVE-2017-9524
CVE-2017-9746
CVE-2017-9747
CVE-2017-9748
CVE-2017-9750
CVE-2017-9755
CVE-2017-9756
CVE-2017-9788
CVE-2018-10372
CVE-2018-10373
CVE-2018-10534
CVE-2018-10535
CVE-2018-12020
CVE-2018-12327
CVE-2018-16839
CVE-2018-20685
CVE-2018-6323
CVE-2018-6543
CVE-2018-6759
CVE-2018-6872
CVE-2018-7170
CVE-2018-7208
CVE-2018-7568
CVE-2018-7569
CVE-2018-7570
CVE-2018-7642
CVE-2018-7643
CVE-2018-8945
CVE-2019-6109
CVE-2019-6110
CVE-2019-6111
CVE-2019-6974
CVE-2019-7221
CVE-2019-8675
CVE-2019-8696
CVE-2019-9213
CVE-2020-0543
CVE-2020-14364
CVE-2020-15565
CVE-2020-15567
CVE-2020-25595
CVE-2020-25596
CVE-2020-25597
CVE-2020-25599
CVE-2020-25600
CVE-2020-25601
CVE-2020-25603
CVE-2020-25604
CVE-2020-3898
CVE-2020-3899
SUSE-SU-2016:2893-1
SUSE-SU-2016:3208-1
SUSE-SU-2017:0864-1
SUSE-SU-2017:1961-1
SUSE-SU-2017:2381-1
SUSE-SU-2017:2936-1
SUSE-SU-2018:1698-1
SUSE-SU-2018:3207-2
SUSE-SU-2018:3342-1
SUSE-SU-2019:3057-1
SUSE-SU-2020:1211-1
SUSE-SU-2020:2822-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • cyrus-sasl-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-32bit-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-crammd5-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-crammd5-32bit-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-digestmd5-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-digestmd5-32bit-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-gssapi-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-gssapi-32bit-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-plain-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-plain-32bit-2.1.26-lp150.3 is installed
  • OR libsasl2-3-2.1.26-lp150.3 is installed
  • OR libsasl2-3-32bit-2.1.26-lp150.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libvlc5-3.0.7.1-lp151.6.3 is installed
  • OR libvlccore9-3.0.7.1-lp151.6.3 is installed
  • OR vlc-3.0.7.1-lp151.6.3 is installed
  • OR vlc-codec-gstreamer-3.0.7.1-lp151.6.3 is installed
  • OR vlc-devel-3.0.7.1-lp151.6.3 is installed
  • OR vlc-jack-3.0.7.1-lp151.6.3 is installed
  • OR vlc-lang-3.0.7.1-lp151.6.3 is installed
  • OR vlc-noX-3.0.7.1-lp151.6.3 is installed
  • OR vlc-qt-3.0.7.1-lp151.6.3 is installed
  • OR vlc-vdpau-3.0.7.1-lp151.6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND sudo-1.8.10p3-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND binutils-2.31-9.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • openssh-7.2p2-74.35 is installed
  • OR openssh-askpass-gnome-7.2p2-74.35 is installed
  • OR openssh-fips-7.2p2-74.35 is installed
  • OR openssh-helpers-7.2p2-74.35 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • gpg2-2.0.24-9.3 is installed
  • OR gpg2-lang-2.0.24-9.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • apache-commons-daemon-1.0.15-6 is installed
  • OR apache-commons-daemon-javadoc-1.0.15-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libpython2_7-1_0-2.7.13-28.31 is installed
  • OR libpython2_7-1_0-32bit-2.7.13-28.31 is installed
  • OR python-2.7.13-28.31 is installed
  • OR python-32bit-2.7.13-28.31 is installed
  • OR python-base-2.7.13-28.31 is installed
  • OR python-base-32bit-2.7.13-28.31 is installed
  • OR python-curses-2.7.13-28.31 is installed
  • OR python-demo-2.7.13-28.31 is installed
  • OR python-devel-2.7.13-28.31 is installed
  • OR python-doc-2.7.13-28.31 is installed
  • OR python-doc-pdf-2.7.13-28.31 is installed
  • OR python-gdbm-2.7.13-28.31 is installed
  • OR python-idle-2.7.13-28.31 is installed
  • OR python-tk-2.7.13-28.31 is installed
  • OR python-xml-2.7.13-28.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libgcrypt-1.6.1-16.68 is installed
  • OR libgcrypt20-1.6.1-16.68 is installed
  • OR libgcrypt20-32bit-1.6.1-16.68 is installed
  • OR libgcrypt20-hmac-1.6.1-16.68 is installed
  • OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_178-94_91-default-9-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_25-9-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND axis-1.4-290.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • automake-1.13.4-6 is installed
  • OR m4-1.4.16-15 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • openstack-aodh-5.1.1~dev5-3.5 is installed
  • OR openstack-aodh-api-5.1.1~dev5-3.5 is installed
  • OR openstack-aodh-doc-5.1.1~dev5-3.5 is installed
  • OR openstack-aodh-evaluator-5.1.1~dev5-3.5 is installed
  • OR openstack-aodh-expirer-5.1.1~dev5-3.5 is installed
  • OR openstack-aodh-listener-5.1.1~dev5-3.5 is installed
  • OR openstack-aodh-notifier-5.1.1~dev5-3.5 is installed
  • OR openstack-barbican-5.0.1~dev11-3.8 is installed
  • OR openstack-barbican-api-5.0.1~dev11-3.8 is installed
  • OR openstack-barbican-doc-5.0.1~dev11-3.8 is installed
  • OR openstack-barbican-keystone-listener-5.0.1~dev11-3.8 is installed
  • OR openstack-barbican-retry-5.0.1~dev11-3.8 is installed
  • OR openstack-barbican-worker-5.0.1~dev11-3.8 is installed
  • OR openstack-cinder-11.1.2~dev14-3.6 is installed
  • OR openstack-cinder-api-11.1.2~dev14-3.6 is installed
  • OR openstack-cinder-backup-11.1.2~dev14-3.6 is installed
  • OR openstack-cinder-doc-11.1.2~dev14-3.6 is installed
  • OR openstack-cinder-scheduler-11.1.2~dev14-3.6 is installed
  • OR openstack-cinder-volume-11.1.2~dev14-3.6 is installed
  • OR openstack-dashboard-12.0.4~dev1-3.8 is installed
  • OR openstack-designate-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-agent-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-api-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-central-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-doc-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-producer-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-sink-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-worker-5.0.2~dev5-3.5 is installed
  • OR openstack-glance-15.0.2~dev4-3.3 is installed
  • OR openstack-glance-api-15.0.2~dev4-3.3 is installed
  • OR openstack-glance-doc-15.0.2~dev4-3.3 is installed
  • OR openstack-glance-registry-15.0.2~dev4-3.3 is installed
  • OR openstack-heat-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-api-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-api-cfn-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-api-cloudwatch-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-doc-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-engine-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-plugin-heat_docker-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-templates-0.0.0+git.1525957319.6b5a7cd-3.3 is installed
  • OR openstack-heat-test-9.0.5~dev11-3.6 is installed
  • OR openstack-horizon-plugin-designate-ui-5.0.2~dev5-3.3 is installed
  • OR openstack-horizon-plugin-freezer-ui-5.0.1~dev6-3.3 is installed
  • OR openstack-horizon-plugin-gbp-ui-5.0.1~dev21-4.3 is installed
  • OR openstack-horizon-plugin-manila-ui-2.10.3~dev4-4.5 is installed
  • OR openstack-horizon-plugin-neutron-lbaas-ui-3.0.3~dev2-3.5 is installed
  • OR openstack-horizon-plugin-trove-ui-9.0.1~dev7-3.3 is installed
  • OR openstack-ironic-9.1.5~dev7-3.6 is installed
  • OR openstack-ironic-api-9.1.5~dev7-3.6 is installed
  • OR openstack-ironic-conductor-9.1.5~dev7-3.6 is installed
  • OR openstack-ironic-doc-9.1.5~dev7-3.6 is installed
  • OR openstack-keystone-12.0.1~dev19-5.8 is installed
  • OR openstack-keystone-doc-12.0.1~dev19-5.8 is installed
  • OR openstack-manila-5.0.2~dev55-3.6 is installed
  • OR openstack-manila-api-5.0.2~dev55-3.6 is installed
  • OR openstack-manila-data-5.0.2~dev55-3.6 is installed
  • OR openstack-manila-doc-5.0.2~dev55-3.6 is installed
  • OR openstack-manila-scheduler-5.0.2~dev55-3.6 is installed
  • OR openstack-manila-share-5.0.2~dev55-3.6 is installed
  • OR openstack-neutron-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-dhcp-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-doc-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-fwaas-11.0.2~dev7-3.5 is installed
  • OR openstack-neutron-fwaas-doc-11.0.2~dev7-3.5 is installed
  • OR openstack-neutron-ha-tool-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-l3-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-lbaas-11.0.4~dev4-3.3 is installed
  • OR openstack-neutron-lbaas-agent-11.0.4~dev4-3.3 is installed
  • OR openstack-neutron-lbaas-doc-11.0.4~dev4-3.3 is installed
  • OR openstack-neutron-linuxbridge-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-macvtap-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-metadata-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-metering-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-openvswitch-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-server-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-vpn-agent-11.0.1~dev1-3.3 is installed
  • OR openstack-neutron-vpnaas-11.0.1~dev1-3.3 is installed
  • OR openstack-neutron-vpnaas-doc-11.0.1~dev1-3.3 is installed
  • OR openstack-neutron-vyatta-agent-11.0.1~dev1-3.3 is installed
  • OR openstack-neutron-zvm-agent-8.0.1~dev12-4.3 is installed
  • OR openstack-nova-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-api-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-cells-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-compute-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-conductor-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-console-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-consoleauth-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-doc-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-novncproxy-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-placement-api-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-scheduler-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-serialproxy-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-virt-zvm-8.0.1~dev56-3.3 is installed
  • OR openstack-nova-vncproxy-16.1.5~dev49-3.8 is installed
  • OR openstack-octavia-1.0.3~dev21-4.6 is installed
  • OR openstack-octavia-amphora-agent-1.0.3~dev21-4.6 is installed
  • OR openstack-octavia-api-1.0.3~dev21-4.6 is installed
  • OR openstack-octavia-health-manager-1.0.3~dev21-4.6 is installed
  • OR openstack-octavia-housekeeping-1.0.3~dev21-4.6 is installed
  • OR openstack-octavia-worker-1.0.3~dev21-4.6 is installed
  • OR openstack-trove-8.0.1~dev11-3.3 is installed
  • OR openstack-trove-api-8.0.1~dev11-3.3 is installed
  • OR openstack-trove-conductor-8.0.1~dev11-3.3 is installed
  • OR openstack-trove-doc-8.0.1~dev11-3.3 is installed
  • OR openstack-trove-guestagent-8.0.1~dev11-3.3 is installed
  • OR openstack-trove-taskmanager-8.0.1~dev11-3.3 is installed
  • OR python-aodh-5.1.1~dev5-3.5 is installed
  • OR python-barbican-5.0.1~dev11-3.8 is installed
  • OR python-barbicanclient-4.5.2-4.3 is installed
  • OR python-barbicanclient-doc-4.5.2-4.3 is installed
  • OR python-cinder-11.1.2~dev14-3.6 is installed
  • OR python-designate-5.0.2~dev5-3.5 is installed
  • OR python-glance-15.0.2~dev4-3.3 is installed
  • OR python-heat-9.0.5~dev11-3.6 is installed
  • OR python-horizon-12.0.4~dev1-3.8 is installed
  • OR python-horizon-plugin-designate-ui-5.0.2~dev5-3.3 is installed
  • OR python-horizon-plugin-freezer-ui-5.0.1~dev6-3.3 is installed
  • OR python-horizon-plugin-gbp-ui-5.0.1~dev21-4.3 is installed
  • OR python-horizon-plugin-manila-ui-2.10.3~dev4-4.5 is installed
  • OR python-horizon-plugin-neutron-lbaas-ui-3.0.3~dev2-3.5 is installed
  • OR python-horizon-plugin-trove-ui-9.0.1~dev7-3.3 is installed
  • OR python-ironic-9.1.5~dev7-3.6 is installed
  • OR python-keystone-12.0.1~dev19-5.8 is installed
  • OR python-keystone-json-assignment-0.0.2-3.3 is installed
  • OR python-manila-5.0.2~dev55-3.6 is installed
  • OR python-manilaclient-1.17.3-3.3 is installed
  • OR python-manilaclient-doc-1.17.3-3.3 is installed
  • OR python-neutron-11.0.6~dev63-3.6 is installed
  • OR python-neutron-fwaas-11.0.2~dev7-3.5 is installed
  • OR python-neutron-lbaas-11.0.4~dev4-3.3 is installed
  • OR python-neutron-vpnaas-11.0.1~dev1-3.3 is installed
  • OR python-nova-16.1.5~dev49-3.8 is installed
  • OR python-octavia-1.0.3~dev21-4.6 is installed
  • OR python-trove-8.0.1~dev11-3.3 is installed
  • OR python-vmware-nsx-11.0.3~dev16-3.3 is installed
  • OR python-vmware-nsxlib-11.0.4~dev7-3.3 is installed
  • OR venv-openstack-aodh-5.0.1-12.4 is installed
  • OR venv-openstack-aodh-x86_64-5.0.1-12.4 is installed
  • OR venv-openstack-barbican-5.0.1-12.5 is installed
  • OR venv-openstack-barbican-x86_64-5.0.1-12.5 is installed
  • OR venv-openstack-cinder-11.0.2-14.5 is installed
  • OR venv-openstack-cinder-x86_64-11.0.2-14.5 is installed
  • OR venv-openstack-designate-5.0.1-12.3 is installed
  • OR venv-openstack-designate-x86_64-5.0.1-12.3 is installed
  • OR venv-openstack-glance-15.0.1-12.3 is installed
  • OR venv-openstack-glance-x86_64-15.0.1-12.3 is installed
  • OR venv-openstack-heat-9.0.1-12.5 is installed
  • OR venv-openstack-heat-x86_64-9.0.1-12.5 is installed
  • OR venv-openstack-horizon-11.0.2-14.6 is installed
  • OR venv-openstack-horizon-x86_64-11.0.2-14.6 is installed
  • OR venv-openstack-ironic-9.1.3-12.5 is installed
  • OR venv-openstack-ironic-x86_64-9.1.3-12.5 is installed
  • OR venv-openstack-keystone-12.0.1-11.5 is installed
  • OR venv-openstack-keystone-x86_64-12.0.1-11.5 is installed
  • OR venv-openstack-magnum-5.0.2-11.4 is installed
  • OR venv-openstack-magnum-x86_64-5.0.2-11.4 is installed
  • OR venv-openstack-manila-5.0.2-12.5 is installed
  • OR venv-openstack-manila-x86_64-5.0.2-12.5 is installed
  • OR venv-openstack-neutron-11.0.2-13.8 is installed
  • OR venv-openstack-neutron-x86_64-11.0.2-13.8 is installed
  • OR venv-openstack-nova-16.0.3-11.6 is installed
  • OR venv-openstack-nova-x86_64-16.0.3-11.6 is installed
  • OR venv-openstack-octavia-1.0.2-12.5 is installed
  • OR venv-openstack-octavia-x86_64-1.0.2-12.5 is installed
  • OR venv-openstack-sahara-7.0.1-11.4 is installed
  • OR venv-openstack-sahara-x86_64-7.0.1-11.4 is installed
  • OR venv-openstack-trove-8.0.0.0-11.4 is installed
  • OR venv-openstack-trove-x86_64-8.0.0.0-11.4 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libpython3_4m1_0-3.4.6-25.29 is installed
  • OR python3-3.4.6-25.29 is installed
  • OR python3-base-3.4.6-25.29 is installed
  • OR python3-curses-3.4.6-25.29 is installed
    • BACK