Oval Definition:	oval:org.opensuse.security:def:58433
Revision Date: 2020-12-01 Version: 1 Title: Security update for util-linux (Moderate) Description: This update for util-linux fixes the following issues: - Consider redundant slashes when comparing paths (bsc#982331, util-linux-libmount-ignore-redundant-slashes.patch, affects backport of util-linux-libmount-cifs-is_mounted.patch). - Use upstream compatibility patches for --show-pt-geometry with obsolescence and deprecation warning (bsc#990531) - Replace cifs mount detection patch with upstream one that covers all cases (bsc#987176). - Reuse existing loop device to prevent possible data corruption when multiple -o loop are used to mount a single file (bsc#947494) - Safe loop re-use in libmount, mount and losetup (bsc#947494) - UPSTREAM DIVERGENCE!!! losetup -L continues to use SLE12 SP1 and SP2 specific meaning --logical-blocksize instead of upstream --nooverlap (bsc#966891). - Make release-dependent conflict with old sysvinit-tools SLE specific, as it is required only for SLE 11 upgrade, and breaks openSUSE staging builds (bsc#994399). - Extended partition loop in MBR partition table leads to DoS (bsc#988361, CVE-2016-5011) Family: unix Class: patch Status: Reference(s): 1009085 1011348 1014136 1014437 1014441 1014442 1015348 1020108 1022062 1022555 1026236 1027519 1028235 1028744 1029128 1029827 1030144 1030442 1039513 1044016 1049483 1050947 1096449 1102682 1109961 1112852 1125401 1128525 1136085 1153108 1156321 1156331 1159723 1159729 1164825 1170603 1170643 1171928 1173902 1173994 947494 963448 966891 982331 987176 988274 988361 990531 994399 CVE-2016-2037 CVE-2016-2123 CVE-2016-2125 CVE-2016-2126 CVE-2016-5011 CVE-2017-11671 CVE-2017-6505 CVE-2017-7228 CVE-2017-7533 CVE-2018-11763 CVE-2018-12389 CVE-2018-12390 CVE-2018-12392 CVE-2018-12393 CVE-2018-12395 CVE-2018-12396 CVE-2018-12397 CVE-2018-20856 CVE-2018-5390 CVE-2018-6126 CVE-2019-0221 CVE-2019-10220 CVE-2019-12418 CVE-2019-13272 CVE-2019-17563 CVE-2019-17569 CVE-2019-8936 CVE-2020-12268 CVE-2020-14318 CVE-2020-14323 CVE-2020-3899 CVE-2020-9484 SUSE-SU-2016:2954-1 SUSE-SU-2016:3271-1 SUSE-SU-2017:0366-1 SUSE-SU-2017:0983-1 SUSE-SU-2017:2041-1 SUSE-SU-2017:2526-1 SUSE-SU-2018:1783-1 SUSE-SU-2018:3582-1 SUSE-SU-2018:3749-1 SUSE-SU-2019:3260-1 SUSE-SU-2020:1498-1 SUSE-SU-2020:3083-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND enscript-1.6.6-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND dosbox-0.74.3-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libblkid1-2.28-42 is installed OR libblkid1-32bit-2.28-42 is installed OR libfdisk1-2.28-42 is installed OR libmount1-2.28-42 is installed OR libmount1-32bit-2.28-42 is installed OR libsmartcols1-2.28-42 is installed OR libuuid1-2.28-42 is installed OR libuuid1-32bit-2.28-42 is installed OR python-libmount-2.28-42 is installed OR util-linux-2.28-42 is installed OR util-linux-lang-2.28-42 is installed OR util-linux-systemd-2.28-42 is installed OR uuidd-2.28-42 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information MozillaFirefox-60.3.0-109.50 is installed OR MozillaFirefox-devel-60.3.0-109.50 is installed OR MozillaFirefox-translations-common-60.3.0-109.50 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_109-default-2-2 is installed OR kgraft-patch-SLE12-SP2_Update_29-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information MozillaFirefox-52.8.1esr-109.34 is installed OR MozillaFirefox-devel-52.8.1esr-109.34 is installed OR MozillaFirefox-translations-52.8.1esr-109.34 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed OR webkit2gtk3-2.24.4-2.47 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_103-default-2-2 is installed OR kgraft-patch-SLE12-SP3_Update_28-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information curl-7.37.0-37.43 is installed OR libcurl4-7.37.0-37.43 is installed OR libcurl4-32bit-7.37.0-37.43 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ntp-4.2.8p12-64.8 is installed OR ntp-doc-4.2.8p12-64.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information bzip2-1.0.6-29 is installed OR bzip2-doc-1.0.6-29 is installed OR libbz2-1-1.0.6-29 is installed OR libbz2-1-32bit-1.0.6-29 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-60.7.2-109.80 is installed OR MozillaFirefox-translations-common-60.7.2-109.80 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND slf4j-1.7.12-3.3 is installed
BACK