OVAL Reference oval:org.opensuse.security:def:58706

Oval Definition:

oval:org.opensuse.security:def:58706

Revision Date:	2020-12-01	Version:	1
Title:	Security update for jakarta-taglibs-standard (Important)
Description:	This update for jakarta-taglibs-standard fixes the following issues: - CVE-2015-0254: Apache Standard Taglibs allowed remote attackers to execute arbitrary code or conduct external XML entity (XXE) attacks via a crafted XSLT extension in a (1) x:parse or (2) x:transform JSTL XML tag. (bsc#920813)
Family:	unix	Class:	patch
Status:		Reference(s):	1012382 1024908 1034113 1043353 1043354 1043485 1047908 1050037 1050072 1050098 1050100 1050635 1051442 1052470 1052708 1052717 1052721 1052768 1052777 1052781 1054600 1055068 1055374 1055455 1055456 1057000 1057460 1060162 1062752 1068032 1072362 1072901 1073311 1074120 1074125 1074185 1074309 1075939 1076021 1076051 1076390 1080157 1080533 1081741 1082632 1082810 1085018 1087231 1087659 1087906 1090036 1090638 1093158 1094268 1096723 1096748 1100152 1102682 1103186 1103411 1105323 1106191 1106913 1109772 1111331 1112178 1113399 1116841 1118338 1119019 1122822 1124832 1125580 1129279 1131416 1131427 1131587 1132673 1132828 1133188 1140868 1156402 1159646 1168422 1177914 920813 929900 955131 966304 CVE-2013-1990 CVE-2013-1999 CVE-2014-0011 CVE-2014-0139 CVE-2014-8240 CVE-2015-0254 CVE-2015-0255 CVE-2016-7953 CVE-2016-8636 CVE-2017-10995 CVE-2017-11505 CVE-2017-11525 CVE-2017-11526 CVE-2017-11539 CVE-2017-11639 CVE-2017-11750 CVE-2017-12565 CVE-2017-12640 CVE-2017-12641 CVE-2017-12643 CVE-2017-12671 CVE-2017-12673 CVE-2017-12676 CVE-2017-12935 CVE-2017-13059 CVE-2017-13141 CVE-2017-13142 CVE-2017-13147 CVE-2017-14103 CVE-2017-14649 CVE-2017-15218 CVE-2017-17504 CVE-2017-17681 CVE-2017-17741 CVE-2017-17833 CVE-2017-17879 CVE-2017-17884 CVE-2017-17914 CVE-2017-18008 CVE-2017-18027 CVE-2017-18029 CVE-2017-18174 CVE-2017-9261 CVE-2017-9262 CVE-2018-1000026 CVE-2018-1000199 CVE-2018-1050 CVE-2018-10858 CVE-2018-10902 CVE-2018-1091 CVE-2018-10938 CVE-2018-1120 CVE-2018-1128 CVE-2018-1129 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-19407 CVE-2018-2579 CVE-2018-2582 CVE-2018-2588 CVE-2018-2599 CVE-2018-2602 CVE-2018-2603 CVE-2018-2618 CVE-2018-2633 CVE-2018-2634 CVE-2018-2637 CVE-2018-2641 CVE-2018-2657 CVE-2018-2663 CVE-2018-2677 CVE-2018-2678 CVE-2018-5246 CVE-2018-5390 CVE-2018-5685 CVE-2019-11091 CVE-2019-11486 CVE-2019-11709 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11719 CVE-2019-11729 CVE-2019-11730 CVE-2019-17571 CVE-2019-2201 CVE-2019-3882 CVE-2019-8564 CVE-2019-9503 CVE-2019-9811 CVE-2020-15999 CVE-2020-3898 SUSE-SU-2017:1568-1 SUSE-SU-2018:0349-1 SUSE-SU-2018:0694-1 SUSE-SU-2018:1550-1 SUSE-SU-2018:2339-1 SUSE-SU-2018:2991-2 SUSE-SU-2019:1287-1 SUSE-SU-2019:2972-1 SUSE-SU-2020:0054-1 SUSE-SU-2020:1045-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information elfutils-0.168-lp150.2 is installed OR elfutils-lang-0.168-lp150.2 is installed OR libasm1-0.168-lp150.2 is installed OR libdw1-0.168-lp150.2 is installed OR libdw1-32bit-0.168-lp150.2 is installed OR libebl-plugins-0.168-lp150.2 is installed OR libebl-plugins-32bit-0.168-lp150.2 is installed OR libelf1-0.168-lp150.2 is installed OR libelf1-32bit-0.168-lp150.2 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information chromedriver-78.0.3904.70-lp151.2.39 is installed OR chromium-78.0.3904.70-lp151.2.39 is installed OR libre2-0-20190901-lp151.10.3 is installed OR libre2-0-32bit-20190901-lp151.10.3 is installed OR re2-20190901-lp151.10.3 is installed OR re2-devel-20190901-lp151.10.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information jakarta-taglibs-standard-1.1.1-255 is installed OR jakarta-taglibs-standard-javadoc-1.1.1-255 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information openslp-2.0.0-18.17 is installed OR openslp-32bit-2.0.0-18.17 is installed OR openslp-server-2.0.0-18.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information MozillaFirefox-60.8.0-109.83 is installed OR MozillaFirefox-devel-60.8.0-109.83 is installed OR MozillaFirefox-translations-common-60.8.0-109.83 is installed OR libfreebl3-3.44.1-58.28 is installed OR libfreebl3-32bit-3.44.1-58.28 is installed OR libfreebl3-hmac-3.44.1-58.28 is installed OR libfreebl3-hmac-32bit-3.44.1-58.28 is installed OR libsoftokn3-3.44.1-58.28 is installed OR libsoftokn3-32bit-3.44.1-58.28 is installed OR libsoftokn3-hmac-3.44.1-58.28 is installed OR libsoftokn3-hmac-32bit-3.44.1-58.28 is installed OR mozilla-nss-3.44.1-58.28 is installed OR mozilla-nss-32bit-3.44.1-58.28 is installed OR mozilla-nss-certs-3.44.1-58.28 is installed OR mozilla-nss-certs-32bit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-32bit-3.44.1-58.28 is installed OR mozilla-nss-tools-3.44.1-58.28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information libdcerpc-atsvc0-4.2.4-28.29 is installed OR samba-4.2.4-28.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND lftp-4.7.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND ucode-intel-20190618-13.47 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information java-1_7_0-openjdk-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-demo-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-devel-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-headless-1.7.0.241-43.30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libXvnc1-1.6.0-18.28 is installed OR tigervnc-1.6.0-18.28 is installed OR xorg-x11-Xvnc-1.6.0-18.28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information curl-7.37.0-37.31 is installed OR libcurl4-7.37.0-37.31 is installed OR libcurl4-32bit-7.37.0-37.31 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information pam_ssh-2.0-1 is installed OR pam_ssh-32bit-2.0-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information ghostscript-9.27-23.31 is installed OR ghostscript-x11-9.27-23.31 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND ansible-2.4.6.0-3.3 is installed

BACK