Oval Definition:oval:org.opensuse.security:def:58563
Revision Date:2020-12-01Version:1
Title:Security update for gnutls (Important)
Description:



This update for gnutls fixes the following security issues:

- GnuTLS could have crashed when processing maliciously crafted OpenPGP certificates (GNUTLS-SA-2017-2, bsc#1018832, CVE-2017-5335, CVE-2017-5337, CVE-2017-5336) - GnuTLS could have falsely accepted certificates when using OCSP (GNUTLS-SA-2016-3, bsc#999646, CVE-2016-7444) - GnuTLS could have suffered from 100% CPU load DoS attacks by using SSL alert packets during the handshake (bsc#1005879, CVE-2016-8610)
Family:unixClass:patch
Status:Reference(s):1005879
1018832
1024287
1024292
1024294
1027593
1035204
1060427
1063008
1068565
1070130
1072887
1072947
1073973
1076500
1078662
1079405
1080740
1082216
1082233
1082234
1084300
1088268
1090036
1092885
1096718
1097108
1099306
1109673
1155094
1159913
1162202
1162224
1162367
1162825
1165631
1165894
1173274
828003
967671
999646
CVE-2013-2131
CVE-2016-7444
CVE-2016-8610
CVE-2017-0861
CVE-2017-14746
CVE-2017-15275
CVE-2017-2581
CVE-2017-2586
CVE-2017-2587
CVE-2017-5335
CVE-2017-5336
CVE-2017-5337
CVE-2017-5436
CVE-2018-1000199
CVE-2018-10853
CVE-2018-12015
CVE-2018-17407
CVE-2018-3639
CVE-2018-3646
CVE-2018-5748
CVE-2018-6797
CVE-2018-6798
CVE-2018-6913
CVE-2018-7738
CVE-2019-18348
CVE-2019-18634
CVE-2019-5108
CVE-2019-9674
CVE-2020-14422
CVE-2020-1749
CVE-2020-8492
SUSE-SU-2017:0103-1
SUSE-SU-2017:0348-1
SUSE-SU-2017:1149-1
SUSE-SU-2017:1603-1
SUSE-SU-2017:3104-1
SUSE-SU-2018:0385-1
SUSE-SU-2018:1253-1
SUSE-SU-2018:1362-2
SUSE-SU-2019:0390-1
SUSE-SU-2020:2157-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • expat-2.2.5-lp150.1 is installed
  • OR libexpat1-2.2.5-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • apache2-mod_php7-7.2.5-lp151.6.6 is installed
  • OR php7-7.2.5-lp151.6.6 is installed
  • OR php7-bcmath-7.2.5-lp151.6.6 is installed
  • OR php7-bz2-7.2.5-lp151.6.6 is installed
  • OR php7-calendar-7.2.5-lp151.6.6 is installed
  • OR php7-ctype-7.2.5-lp151.6.6 is installed
  • OR php7-curl-7.2.5-lp151.6.6 is installed
  • OR php7-dba-7.2.5-lp151.6.6 is installed
  • OR php7-devel-7.2.5-lp151.6.6 is installed
  • OR php7-dom-7.2.5-lp151.6.6 is installed
  • OR php7-embed-7.2.5-lp151.6.6 is installed
  • OR php7-enchant-7.2.5-lp151.6.6 is installed
  • OR php7-exif-7.2.5-lp151.6.6 is installed
  • OR php7-fastcgi-7.2.5-lp151.6.6 is installed
  • OR php7-fileinfo-7.2.5-lp151.6.6 is installed
  • OR php7-firebird-7.2.5-lp151.6.6 is installed
  • OR php7-fpm-7.2.5-lp151.6.6 is installed
  • OR php7-ftp-7.2.5-lp151.6.6 is installed
  • OR php7-gd-7.2.5-lp151.6.6 is installed
  • OR php7-gettext-7.2.5-lp151.6.6 is installed
  • OR php7-gmp-7.2.5-lp151.6.6 is installed
  • OR php7-iconv-7.2.5-lp151.6.6 is installed
  • OR php7-intl-7.2.5-lp151.6.6 is installed
  • OR php7-json-7.2.5-lp151.6.6 is installed
  • OR php7-ldap-7.2.5-lp151.6.6 is installed
  • OR php7-mbstring-7.2.5-lp151.6.6 is installed
  • OR php7-mysql-7.2.5-lp151.6.6 is installed
  • OR php7-odbc-7.2.5-lp151.6.6 is installed
  • OR php7-opcache-7.2.5-lp151.6.6 is installed
  • OR php7-openssl-7.2.5-lp151.6.6 is installed
  • OR php7-pcntl-7.2.5-lp151.6.6 is installed
  • OR php7-pdo-7.2.5-lp151.6.6 is installed
  • OR php7-pear-7.2.5-lp151.6.6 is installed
  • OR php7-pear-Archive_Tar-7.2.5-lp151.6.6 is installed
  • OR php7-pgsql-7.2.5-lp151.6.6 is installed
  • OR php7-phar-7.2.5-lp151.6.6 is installed
  • OR php7-posix-7.2.5-lp151.6.6 is installed
  • OR php7-readline-7.2.5-lp151.6.6 is installed
  • OR php7-shmop-7.2.5-lp151.6.6 is installed
  • OR php7-snmp-7.2.5-lp151.6.6 is installed
  • OR php7-soap-7.2.5-lp151.6.6 is installed
  • OR php7-sockets-7.2.5-lp151.6.6 is installed
  • OR php7-sodium-7.2.5-lp151.6.6 is installed
  • OR php7-sqlite-7.2.5-lp151.6.6 is installed
  • OR php7-sysvmsg-7.2.5-lp151.6.6 is installed
  • OR php7-sysvsem-7.2.5-lp151.6.6 is installed
  • OR php7-sysvshm-7.2.5-lp151.6.6 is installed
  • OR php7-testresults-7.2.5-lp151.6.6 is installed
  • OR php7-tidy-7.2.5-lp151.6.6 is installed
  • OR php7-tokenizer-7.2.5-lp151.6.6 is installed
  • OR php7-wddx-7.2.5-lp151.6.6 is installed
  • OR php7-xmlreader-7.2.5-lp151.6.6 is installed
  • OR php7-xmlrpc-7.2.5-lp151.6.6 is installed
  • OR php7-xmlwriter-7.2.5-lp151.6.6 is installed
  • OR php7-xsl-7.2.5-lp151.6.6 is installed
  • OR php7-zip-7.2.5-lp151.6.6 is installed
  • OR php7-zlib-7.2.5-lp151.6.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • gnutls-3.2.15-16 is installed
  • OR libgnutls-openssl27-3.2.15-16 is installed
  • OR libgnutls28-3.2.15-16 is installed
  • OR libgnutls28-32bit-3.2.15-16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • qemu-2.6.2-41.40 is installed
  • OR qemu-block-curl-2.6.2-41.40 is installed
  • OR qemu-block-rbd-2.6.2-41.40 is installed
  • OR qemu-block-ssh-2.6.2-41.40 is installed
  • OR qemu-guest-agent-2.6.2-41.40 is installed
  • OR qemu-ipxe-1.0.0-41.40 is installed
  • OR qemu-kvm-2.6.2-41.40 is installed
  • OR qemu-lang-2.6.2-41.40 is installed
  • OR qemu-seabios-1.9.1-41.40 is installed
  • OR qemu-sgabios-8-41.40 is installed
  • OR qemu-tools-2.6.2-41.40 is installed
  • OR qemu-vgabios-1.9.1-41.40 is installed
  • OR qemu-x86-2.6.2-41.40 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • perl-5.18.2-12.14 is installed
  • OR perl-32bit-5.18.2-12.14 is installed
  • OR perl-base-5.18.2-12.14 is installed
  • OR perl-doc-5.18.2-12.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_80-default-4-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_22-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • alsa-1.0.27.2-15 is installed
  • OR alsa-docs-1.0.27.2-15 is installed
  • OR libasound2-1.0.27.2-15 is installed
  • OR libasound2-32bit-1.0.27.2-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND squid-3.5.21-26.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.28.4-2.59 is installed
  • OR libwebkit2gtk-4_0-37-2.28.4-2.59 is installed
  • OR libwebkit2gtk3-lang-2.28.4-2.59 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.28.4-2.59 is installed
  • OR typelib-1_0-WebKit2-4_0-2.28.4-2.59 is installed
  • OR typelib-1_0-WebKit2WebExtension-4_0-2.28.4-2.59 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.28.4-2.59 is installed
  • OR webkit2gtk3-2.28.4-2.59 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • MozillaFirefox-60.9.0-109.86 is installed
  • OR MozillaFirefox-translations-common-60.9.0-109.86 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libxml2-2.9.4-46.15 is installed
  • OR libxml2-2-2.9.4-46.15 is installed
  • OR libxml2-2-32bit-2.9.4-46.15 is installed
  • OR libxml2-doc-2.9.4-46.15 is installed
  • OR libxml2-tools-2.9.4-46.15 is installed
  • OR python-libxml2-2.9.4-46.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libdcerpc-binding0-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libdcerpc-binding0-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libdcerpc0-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libdcerpc0-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libndr-krb5pac0-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libndr-krb5pac0-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libndr-nbt0-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libndr-nbt0-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libndr-standard0-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libndr-standard0-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libndr0-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libndr0-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libnetapi0-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libnetapi0-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libsamba-credentials0-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libsamba-credentials0-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libsamba-errors0-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libsamba-errors0-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libsamba-hostconfig0-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libsamba-hostconfig0-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libsamba-passdb0-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libsamba-passdb0-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libsamba-util0-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libsamba-util0-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libsamdb0-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libsamdb0-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libsmbclient0-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libsmbclient0-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libsmbconf0-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libsmbconf0-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libsmbldap0-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libsmbldap0-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libtevent-util0-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libtevent-util0-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libwbclient0-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR libwbclient0-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR samba-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR samba-client-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR samba-client-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR samba-doc-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR samba-libs-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR samba-libs-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR samba-winbind-4.6.16+git.124.aee309c5c18-3.32 is installed
  • OR samba-winbind-32bit-4.6.16+git.124.aee309c5c18-3.32 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libldap-2_4-2-2.4.41-18.68 is installed
  • OR libldap-2_4-2-32bit-2.4.41-18.68 is installed
  • OR openldap2-2.4.41-18.68 is installed
  • OR openldap2-back-meta-2.4.41-18.68 is installed
  • OR openldap2-client-2.4.41-18.68 is installed
  • OR openldap2-doc-2.4.41-18.68 is installed
  • OR openldap2-ppolicy-check-password-1.2-18.68 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND ucode-intel-20200602-13.68 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-urllib3-1.23-3.6 is installed
    • BACK