Oval Definition:oval:org.opensuse.security:def:58480
Revision Date:2020-12-01Version:1
Title:Security update for bind (Important)
Description:

This update for bind fixes the following issues:

- An attacker with the ability to send and receive messages to an authoritative DNS server was able to circumvent TSIG authentication of AXFR requests. A server that relied solely on TSIG keys for protection could be manipulated into (1) providing an AXFR of a zone to an unauthorized recipient and (2) accepting bogus Notify packets. [bsc#1046554, CVE-2017-3142]

- An attacker who with the ability to send and receive messages to an authoritative DNS server and who had knowledge of a valid TSIG key name for the zone and service being targeted was able to manipulate BIND into accepting an unauthorized dynamic update. [bsc#1046555, CVE-2017-3143]
Family:unixClass:patch
Status:Reference(s):1000195
1002496
1005028
1010700
1012143
1012651
1013669
1014298
1014300
1015169
1016340
1017189
1022871
1023004
1024834
1027593
1031056
1036785
1040662
1046554
1046555
1048783
1049423
1049505
1051017
1052151
1052448
1052449
1052466
1053600
1060427
1063008
1065641
1072728
1077732
1079798
1079799
1079800
1079801
1080156
1087320
1098377
1101877
1110299
1122293
1122299
1132728
1132729
1132732
1134297
1138459
1141853
1144524
1154824
1159913
1160467
1160468
1164871
1165631
1166847
1171098
1171195
1171202
1171218
1171219
1171689
1171698
1172221
1172317
991464
CVE-2016-6489
CVE-2016-9811
CVE-2016-9921
CVE-2016-9922
CVE-2017-11423
CVE-2017-12374
CVE-2017-12375
CVE-2017-12376
CVE-2017-12377
CVE-2017-12378
CVE-2017-12379
CVE-2017-12380
CVE-2017-14746
CVE-2017-15275
CVE-2017-16227
CVE-2017-2615
CVE-2017-2620
CVE-2017-3142
CVE-2017-3143
CVE-2017-6418
CVE-2017-6419
CVE-2017-6420
CVE-2018-10852
CVE-2018-11212
CVE-2018-20852
CVE-2018-5378
CVE-2018-5379
CVE-2018-5380
CVE-2018-5381
CVE-2019-10160
CVE-2019-13456
CVE-2019-14896
CVE-2019-14897
CVE-2019-17185
CVE-2019-2422
CVE-2019-2426
CVE-2019-2602
CVE-2019-2684
CVE-2019-2698
CVE-2019-5108
CVE-2020-0543
CVE-2020-10757
CVE-2020-12114
CVE-2020-12652
CVE-2020-12653
CVE-2020-12654
CVE-2020-12656
CVE-2020-1749
SUSE-SU-2017:0242-1
SUSE-SU-2017:0571-1
SUSE-SU-2017:1481-1
SUSE-SU-2017:1736-1
SUSE-SU-2017:2697-1
SUSE-SU-2017:3104-1
SUSE-SU-2018:0255-1
SUSE-SU-2018:0456-1
SUSE-SU-2019:0081-1
SUSE-SU-2019:1392-1
SUSE-SU-2020:2391-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • kcoreaddons-5.45.0-lp150.1 is installed
  • OR kcoreaddons-lang-5.45.0-lp150.1 is installed
  • OR libKF5CoreAddons5-5.45.0-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • gnome-shell-3.26.2+20180130.0d9c74212-lp151.7.3 is installed
  • OR gnome-shell-browser-plugin-3.26.2+20180130.0d9c74212-lp151.7.3 is installed
  • OR gnome-shell-calendar-3.26.2+20180130.0d9c74212-lp151.7.3 is installed
  • OR gnome-shell-devel-3.26.2+20180130.0d9c74212-lp151.7.3 is installed
  • OR gnome-shell-lang-3.26.2+20180130.0d9c74212-lp151.7.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • bind-9.9.9P1-62 is installed
  • OR bind-chrootenv-9.9.9P1-62 is installed
  • OR bind-doc-9.9.9P1-62 is installed
  • OR bind-libs-9.9.9P1-62 is installed
  • OR bind-libs-32bit-9.9.9P1-62 is installed
  • OR bind-utils-9.9.9P1-62 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.221-43.22 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.221-43.22 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.221-43.22 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.221-43.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • libpython2_7-1_0-2.7.13-28.31 is installed
  • OR libpython2_7-1_0-32bit-2.7.13-28.31 is installed
  • OR python-2.7.13-28.31 is installed
  • OR python-32bit-2.7.13-28.31 is installed
  • OR python-base-2.7.13-28.31 is installed
  • OR python-base-32bit-2.7.13-28.31 is installed
  • OR python-curses-2.7.13-28.31 is installed
  • OR python-demo-2.7.13-28.31 is installed
  • OR python-devel-2.7.13-28.31 is installed
  • OR python-doc-2.7.13-28.31 is installed
  • OR python-doc-pdf-2.7.13-28.31 is installed
  • OR python-gdbm-2.7.13-28.31 is installed
  • OR python-idle-2.7.13-28.31 is installed
  • OR python-tk-2.7.13-28.31 is installed
  • OR python-xml-2.7.13-28.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • libipa_hbac0-1.13.4-34.23 is installed
  • OR libsss_idmap0-1.13.4-34.23 is installed
  • OR libsss_sudo-1.13.4-34.23 is installed
  • OR python-sssd-config-1.13.4-34.23 is installed
  • OR sssd-1.13.4-34.23 is installed
  • OR sssd-32bit-1.13.4-34.23 is installed
  • OR sssd-ad-1.13.4-34.23 is installed
  • OR sssd-ipa-1.13.4-34.23 is installed
  • OR sssd-krb5-1.13.4-34.23 is installed
  • OR sssd-krb5-common-1.13.4-34.23 is installed
  • OR sssd-ldap-1.13.4-34.23 is installed
  • OR sssd-proxy-1.13.4-34.23 is installed
  • OR sssd-tools-1.13.4-34.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • freeradius-server-3.0.14-1 is installed
  • OR freeradius-server-doc-3.0.14-1 is installed
  • OR freeradius-server-krb5-3.0.14-1 is installed
  • OR freeradius-server-ldap-3.0.14-1 is installed
  • OR freeradius-server-libs-3.0.14-1 is installed
  • OR freeradius-server-mysql-3.0.14-1 is installed
  • OR freeradius-server-perl-3.0.14-1 is installed
  • OR freeradius-server-postgresql-3.0.14-1 is installed
  • OR freeradius-server-python-3.0.14-1 is installed
  • OR freeradius-server-sqlite-3.0.14-1 is installed
  • OR freeradius-server-utils-3.0.14-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • postgresql96-9.6.15-3.29 is installed
  • OR postgresql96-contrib-9.6.15-3.29 is installed
  • OR postgresql96-docs-9.6.15-3.29 is installed
  • OR postgresql96-libs-9.6.15-3.29 is installed
  • OR postgresql96-plperl-9.6.15-3.29 is installed
  • OR postgresql96-plpython-9.6.15-3.29 is installed
  • OR postgresql96-pltcl-9.6.15-3.29 is installed
  • OR postgresql96-server-9.6.15-3.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • pam_radius-1.3.16-239.4 is installed
  • OR pam_radius-32bit-1.3.16-239.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • ghostscript-9.27-23.31 is installed
  • OR ghostscript-x11-9.27-23.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libtiff5-4.0.9-44.30 is installed
  • OR libtiff5-32bit-4.0.9-44.30 is installed
  • OR tiff-4.0.9-44.30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • gdm-3.10.0.1-54.6 is installed
  • OR gdm-lang-3.10.0.1-54.6 is installed
  • OR gdmflexiserver-3.10.0.1-54.6 is installed
  • OR libgdm1-3.10.0.1-54.6 is installed
  • OR typelib-1_0-Gdm-1_0-3.10.0.1-54.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • glib2-2.48.2-12.15 is installed
  • OR glib2-lang-2.48.2-12.15 is installed
  • OR glib2-tools-2.48.2-12.15 is installed
  • OR libgio-2_0-0-2.48.2-12.15 is installed
  • OR libgio-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libglib-2_0-0-2.48.2-12.15 is installed
  • OR libglib-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgmodule-2_0-0-2.48.2-12.15 is installed
  • OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgobject-2_0-0-2.48.2-12.15 is installed
  • OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgthread-2_0-0-2.48.2-12.15 is installed
  • OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libsolv-0.6.36-2.27.19 is installed
  • OR libsolv-tools-0.6.36-2.27.19 is installed
  • OR libzypp-16.20.2-27.60 is installed
  • OR perl-solv-0.6.36-2.27.19 is installed
  • OR python-solv-0.6.36-2.27.19 is installed
  • OR zypper-1.13.54-18.40 is installed
  • OR zypper-log-1.13.54-18.40 is installed
    • BACK