Oval Definition:oval:org.opensuse.security:def:58680
Revision Date:2020-12-01Version:1
Title:Security update for bash (Moderate)
Description:



This update for bash fixes an issue that could lead to syntax errors when parsing scripts that use expr(1) inside loops.

Additionally, the popd build-in now ensures that the normalized stack offset is within bounds before trying to free that stack entry. This fixes a segmentation fault.
Family:unixClass:patch
Status:Reference(s):1009470
1010845
1035371
1037396
1041764
1073748
1087082
1087083
1088268
1090036
1090338
1096141
1096740
1097108
1099306
1100147
1102682
1103203
1106171
1106172
1106173
1106195
1106222
1107410
1107411
1107412
1107413
1107420
1107421
1107422
1107423
1107426
1107581
1108027
1109105
1109847
1110910
1111006
1111010
1111013
1114422
1122191
1131390
1144524
1149332
1151021
1165784
1166847
1171878
1172085
1176013
972331
CVE-2009-3939
CVE-2009-4026
CVE-2009-4027
CVE-2009-4131
CVE-2009-4138
CVE-2009-4536
CVE-2009-4538
CVE-2010-1146
CVE-2010-1436
CVE-2010-1641
CVE-2010-2066
CVE-2010-2942
CVE-2010-2954
CVE-2010-2955
CVE-2010-3081
CVE-2010-3296
CVE-2010-3297
CVE-2010-3298
CVE-2010-3301
CVE-2010-3310
CVE-2011-0712
CVE-2011-1020
CVE-2011-1577
CVE-2011-2203
CVE-2012-0056
CVE-2013-0160
CVE-2013-0231
CVE-2013-0913
CVE-2013-2850
CVE-2013-4312
CVE-2014-0038
CVE-2014-00691
CVE-2014-0196
CVE-2015-1350
CVE-2015-7833
CVE-2015-7884
CVE-2015-7885
CVE-2015-8709
CVE-2015-8812
CVE-2015-8964
CVE-2016-0617
CVE-2016-0723
CVE-2016-0728
CVE-2016-0758
CVE-2016-10200
CVE-2016-1237
CVE-2016-1583
CVE-2016-2117
CVE-2016-2143
CVE-2016-2184
CVE-2016-2185
CVE-2016-2186
CVE-2016-2188
CVE-2016-2383
CVE-2016-2384
CVE-2016-2847
CVE-2016-3134
CVE-2016-3135
CVE-2016-3136
CVE-2016-3137
CVE-2016-3138
CVE-2016-3140
CVE-2016-3156
CVE-2016-3672
CVE-2016-3689
CVE-2016-3713
CVE-2016-3951
CVE-2016-4470
CVE-2016-4482
CVE-2016-4486
CVE-2016-4557
CVE-2016-4558
CVE-2016-4569
CVE-2016-4578
CVE-2016-4794
CVE-2016-4805
CVE-2016-4951
CVE-2016-4997
CVE-2016-4998
CVE-2016-5195
CVE-2016-5244
CVE-2016-5412
CVE-2016-5696
CVE-2016-5759
CVE-2016-5828
CVE-2016-5829
CVE-2016-6197
CVE-2016-6480
CVE-2016-6828
CVE-2016-7039
CVE-2016-7042
CVE-2016-7097
CVE-2016-7117
CVE-2016-7425
CVE-2016-7913
CVE-2016-7917
CVE-2016-8632
CVE-2016-8636
CVE-2016-8645
CVE-2016-8655
CVE-2016-8658
CVE-2016-8666
CVE-2016-9083
CVE-2016-9084
CVE-2016-9191
CVE-2016-9401
CVE-2016-9445
CVE-2016-9446
CVE-2016-9555
CVE-2016-9576
CVE-2016-9793
CVE-2016-9794
CVE-2016-9806
CVE-2016-9809
CVE-2016-9812
CVE-2016-9813
CVE-2016-9919
CVE-2017-0861
CVE-2017-1000364
CVE-2017-1000365
CVE-2017-1000380
CVE-2017-18344
CVE-2017-2583
CVE-2017-2584
CVE-2017-2596
CVE-2017-2636
CVE-2017-2671
CVE-2017-5551
CVE-2017-5576
CVE-2017-5577
CVE-2017-5843
CVE-2017-5848
CVE-2017-5897
CVE-2017-5970
CVE-2017-5986
CVE-2017-6074
CVE-2017-6214
CVE-2017-6345
CVE-2017-6346
CVE-2017-6347
CVE-2017-6353
CVE-2017-7184
CVE-2017-7187
CVE-2017-7261
CVE-2017-7294
CVE-2017-7308
CVE-2017-7346
CVE-2017-7374
CVE-2017-7487
CVE-2017-7518
CVE-2017-7616
CVE-2017-7618
CVE-2017-8890
CVE-2017-9074
CVE-2017-9075
CVE-2017-9076
CVE-2017-9077
CVE-2017-9150
CVE-2017-9242
CVE-2017-9287
CVE-2018-1000199
CVE-2018-10839
CVE-2018-10853
CVE-2018-14647
CVE-2018-14734
CVE-2018-15746
CVE-2018-15908
CVE-2018-15909
CVE-2018-15910
CVE-2018-15911
CVE-2018-16509
CVE-2018-16510
CVE-2018-16511
CVE-2018-16513
CVE-2018-16539
CVE-2018-16540
CVE-2018-16541
CVE-2018-16542
CVE-2018-16543
CVE-2018-16585
CVE-2018-16802
CVE-2018-17183
CVE-2018-17958
CVE-2018-17962
CVE-2018-17963
CVE-2018-18849
CVE-2018-3639
CVE-2018-3640
CVE-2018-3646
CVE-2018-3665
CVE-2018-5390
CVE-2019-13456
CVE-2019-14835
CVE-2019-17185
CVE-2019-5010
CVE-2020-10029
SUSE-SU-2017:1317-1
SUSE-SU-2017:1567-1
SUSE-SU-2018:1242-1
SUSE-SU-2018:1935-2
SUSE-SU-2018:1940-1
SUSE-SU-2018:2975-1
SUSE-SU-2018:4237-1
SUSE-SU-2019:0482-1
SUSE-SU-2019:2601-1
SUSE-SU-2020:3024-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND autofs-5.1.3-lp150.5 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • bind-9.11.2-lp151.11.6 is installed
  • OR bind-chrootenv-9.11.2-lp151.11.6 is installed
  • OR bind-devel-9.11.2-lp151.11.6 is installed
  • OR bind-devel-32bit-9.11.2-lp151.11.6 is installed
  • OR bind-doc-9.11.2-lp151.11.6 is installed
  • OR bind-lwresd-9.11.2-lp151.11.6 is installed
  • OR bind-utils-9.11.2-lp151.11.6 is installed
  • OR libbind9-160-9.11.2-lp151.11.6 is installed
  • OR libbind9-160-32bit-9.11.2-lp151.11.6 is installed
  • OR libdns169-9.11.2-lp151.11.6 is installed
  • OR libdns169-32bit-9.11.2-lp151.11.6 is installed
  • OR libirs-devel-9.11.2-lp151.11.6 is installed
  • OR libirs160-9.11.2-lp151.11.6 is installed
  • OR libirs160-32bit-9.11.2-lp151.11.6 is installed
  • OR libisc166-9.11.2-lp151.11.6 is installed
  • OR libisc166-32bit-9.11.2-lp151.11.6 is installed
  • OR libisccc160-9.11.2-lp151.11.6 is installed
  • OR libisccc160-32bit-9.11.2-lp151.11.6 is installed
  • OR libisccfg160-9.11.2-lp151.11.6 is installed
  • OR libisccfg160-32bit-9.11.2-lp151.11.6 is installed
  • OR liblwres160-9.11.2-lp151.11.6 is installed
  • OR liblwres160-32bit-9.11.2-lp151.11.6 is installed
  • OR python3-bind-9.11.2-lp151.11.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • bash-4.3-82 is installed
  • OR bash-doc-4.3-82 is installed
  • OR libreadline6-6.3-82 is installed
  • OR libreadline6-32bit-6.3-82 is installed
  • OR readline-doc-6.3-82 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND ucode-intel-20180703-13.25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_85-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_23-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_103-92_53-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_16-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • gstreamer-plugins-bad-1.8.3-17 is installed
  • OR gstreamer-plugins-bad-lang-1.8.3-17 is installed
  • OR libgstadaptivedemux-1_0-0-1.8.3-17 is installed
  • OR libgstbadaudio-1_0-0-1.8.3-17 is installed
  • OR libgstbadbase-1_0-0-1.8.3-17 is installed
  • OR libgstbadvideo-1_0-0-1.8.3-17 is installed
  • OR libgstbasecamerabinsrc-1_0-0-1.8.3-17 is installed
  • OR libgstcodecparsers-1_0-0-1.8.3-17 is installed
  • OR libgstgl-1_0-0-1.8.3-17 is installed
  • OR libgstmpegts-1_0-0-1.8.3-17 is installed
  • OR libgstphotography-1_0-0-1.8.3-17 is installed
  • OR libgsturidownloader-1_0-0-1.8.3-17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libjpeg-turbo-1.5.3-31.19 is installed
  • OR libjpeg62-62.2.0-31.19 is installed
  • OR libjpeg62-32bit-62.2.0-31.19 is installed
  • OR libjpeg62-turbo-1.5.3-31.19 is installed
  • OR libjpeg8-8.1.2-31.19 is installed
  • OR libjpeg8-32bit-8.1.2-31.19 is installed
  • OR libturbojpeg0-8.1.2-31.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libpcap-1.8.1-10.3 is installed
  • OR libpcap1-1.8.1-10.3 is installed
  • OR tcpdump-4.9.2-14.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND ucode-intel-20191112a-13.56 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND axis-1.4-290.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND libyaml-0-2-0.1.6-7 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed
  • OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed
  • OR libwebkit2gtk3-lang-2.24.4-2.47 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed
  • OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed
  • OR webkit2gtk3-2.24.4-2.47 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • evince-3.20.2-6.27 is installed
  • OR evince-browser-plugin-3.20.2-6.27 is installed
  • OR evince-lang-3.20.2-6.27 is installed
  • OR evince-plugin-djvudocument-3.20.2-6.27 is installed
  • OR evince-plugin-dvidocument-3.20.2-6.27 is installed
  • OR evince-plugin-pdfdocument-3.20.2-6.27 is installed
  • OR evince-plugin-psdocument-3.20.2-6.27 is installed
  • OR evince-plugin-tiffdocument-3.20.2-6.27 is installed
  • OR evince-plugin-xpsdocument-3.20.2-6.27 is installed
  • OR libevdocument3-4-3.20.2-6.27 is installed
  • OR libevview3-3-3.20.2-6.27 is installed
  • OR nautilus-evince-3.20.2-6.27 is installed
    • BACK