Oval Definition:	oval:org.opensuse.security:def:58650
Revision Date: 2020-12-01 Version: 1 Title: Security update for dracut (Moderate) Description: This update for dracut fixes the following issues: Security issues fixed: - CVE-2016-8637: When the early microcode loading was enabled during initrd creation, the initrd would be read-only available for all users, allowing local users to retrieve secrets stored in the initial ramdisk. (bsc#1008340) Non security issues fixed: - Remove zlib module as requirement. (bsc#1020063) - Unlimit TaskMax for xfs_repair in emergency shell. (bsc#1019938) - Resolve symbolic links for -i and -k parameters. (bsc#902375) - Enhance purge-kernels script to handle kgraft patches. (bsc#1017141) - Allow booting from degraded MD arrays with systemd. (bsc#1017695) - Allow booting on s390x with fips=1 on the kernel command line. (bnc#1021687) - Start multipath services before local-fs-pre.target. (bsc#1005410, bsc#1006118, bsc#1007925) - Fix /sbin/installkernel to handle kernel packages built with 'make bin-rpmpkg'. (bsc#1008648) Family: unix Class: patch Status: Reference(s): 1005410 1006118 1007925 1007959 1007962 1008340 1008648 1008842 1010032 1011913 1012382 1012910 1013994 1014136 1015609 1017141 1017461 1017641 1017695 1018263 1018419 1019163 1019614 1019618 1019938 1020048 1020063 1021687 1021762 1022340 1022785 1023866 1024015 1025683 1026024 1026405 1026462 1026505 1026509 1026692 1026722 1027054 1027066 1027153 1027179 1027189 1027190 1027195 1027273 1027616 1028017 1028027 1028041 1028158 1028217 1028325 1028415 1028819 1028895 1029220 1029514 1029634 1029986 1030118 1030213 1031003 1031052 1031200 1031206 1031208 1031440 1031481 1031579 1031660 1031662 1031717 1031831 1032006 1032673 1032681 1055478 1056427 1068032 1070737 1073230 1075087 1076017 1076957 1080157 1083125 1083488 1083630 1085114 1085447 1087082 1090338 1090368 1090646 1090869 1090953 1091041 1092289 1093215 1094019 1096740 1101820 1103098 1111657 1112039 1115375 1126140 1126141 1126192 1126195 1126196 1126198 1126201 1127400 1138748 1141780 1141782 1141783 1141784 1141785 1141786 1141787 1141789 1143797 1146874 1149792 1149813 1159819 1168669 1169746 1170908 1171978 1173022 897662 902375 951844 968697 969755 970083 977572 977860 978056 980892 981634 981848 982783 987899 988281 991173 998106 CVE-2010-4000 CVE-2011-1831 CVE-2011-1832 CVE-2011-1833 CVE-2011-1834 CVE-2011-1835 CVE-2011-1836 CVE-2011-1837 CVE-2014-7300 CVE-2014-9687 CVE-2016-10200 CVE-2016-10708 CVE-2016-1572 CVE-2016-2117 CVE-2016-8637 CVE-2016-9191 CVE-2017-12627 CVE-2017-13166 CVE-2017-2596 CVE-2017-2671 CVE-2017-6074 CVE-2017-6214 CVE-2017-6345 CVE-2017-6346 CVE-2017-6347 CVE-2017-6353 CVE-2017-7187 CVE-2017-7261 CVE-2017-7294 CVE-2017-7308 CVE-2017-7374 CVE-2018-1000004 CVE-2018-1068 CVE-2018-1087 CVE-2018-10903 CVE-2018-18386 CVE-2018-3639 CVE-2018-3665 CVE-2018-5391 CVE-2018-7566 CVE-2018-8781 CVE-2018-8897 CVE-2019-12068 CVE-2019-14378 CVE-2019-15890 CVE-2019-17006 CVE-2019-17340 CVE-2019-17341 CVE-2019-17342 CVE-2019-17343 CVE-2019-17344 CVE-2019-17346 CVE-2019-17347 CVE-2019-17348 CVE-2019-2745 CVE-2019-2762 CVE-2019-2766 CVE-2019-2769 CVE-2019-2786 CVE-2019-2816 CVE-2019-2842 CVE-2019-7317 CVE-2020-12399 CVE-2020-12402 SUSE-SU-2017:0951-1 SUSE-SU-2017:1183-1 SUSE-SU-2018:0993-1 SUSE-SU-2018:1511-1 SUSE-SU-2018:1947-1 SUSE-SU-2018:2530-1 SUSE-SU-2018:3787-1 SUSE-SU-2019:2036-1 SUSE-SU-2019:2783-1 SUSE-SU-2020:0792-1 SUSE-SU-2020:2225-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND libapr-util1-1.6.1-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information python-Werkzeug-0.14.1-lp151.2.3 is installed OR python-Werkzeug-doc-0.14.1-lp151.2.3 is installed OR python2-Werkzeug-0.14.1-lp151.2.3 is installed OR python3-Werkzeug-0.14.1-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information dracut-044-108 is installed OR dracut-fips-044-108 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information xen-4.7.6_06-43.54 is installed OR xen-doc-html-4.7.6_06-43.54 is installed OR xen-libs-4.7.6_06-43.54 is installed OR xen-libs-32bit-4.7.6_06-43.54 is installed OR xen-tools-4.7.6_06-43.54 is installed OR xen-tools-domU-4.7.6_06-43.54 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kernel-default-4.4.121-92.80 is installed OR kernel-default-base-4.4.121-92.80 is installed OR kernel-default-devel-4.4.121-92.80 is installed OR kernel-devel-4.4.121-92.80 is installed OR kernel-macros-4.4.121-92.80 is installed OR kernel-source-4.4.121-92.80 is installed OR kernel-syms-4.4.121-92.80 is installed OR kgraft-patch-4_4_121-92_80-default-1-3.5 is installed OR kgraft-patch-SLE12-SP2_Update_22-1-3.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_67-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_19-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information ecryptfs-utils-103-7 is installed OR ecryptfs-utils-32bit-103-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND squid-3.5.21-26.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libpython2_7-1_0-2.7.13-28.31 is installed OR libpython2_7-1_0-32bit-2.7.13-28.31 is installed OR python-2.7.13-28.31 is installed OR python-32bit-2.7.13-28.31 is installed OR python-base-2.7.13-28.31 is installed OR python-base-32bit-2.7.13-28.31 is installed OR python-curses-2.7.13-28.31 is installed OR python-demo-2.7.13-28.31 is installed OR python-devel-2.7.13-28.31 is installed OR python-doc-2.7.13-28.31 is installed OR python-doc-pdf-2.7.13-28.31 is installed OR python-gdbm-2.7.13-28.31 is installed OR python-idle-2.7.13-28.31 is installed OR python-tk-2.7.13-28.31 is installed OR python-xml-2.7.13-28.31 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information tomcat-8.0.53-29.13 is installed OR tomcat-admin-webapps-8.0.53-29.13 is installed OR tomcat-docs-webapp-8.0.53-29.13 is installed OR tomcat-el-3_0-api-8.0.53-29.13 is installed OR tomcat-javadoc-8.0.53-29.13 is installed OR tomcat-jsp-2_3-api-8.0.53-29.13 is installed OR tomcat-lib-8.0.53-29.13 is installed OR tomcat-servlet-3_1-api-8.0.53-29.13 is installed OR tomcat-webapps-8.0.53-29.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND libspice-server1-0.12.8-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND mailman-2.1.17-3.23 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND slf4j-1.7.12-3.3 is installed
BACK