OVAL Reference oval:org.opensuse.security:def:58785

Oval Definition:

oval:org.opensuse.security:def:58785

Revision Date:	2021-01-26	Version:	1
Title:	Security update for sudo (Important)
Description:	This update for sudo fixes the following issues: - A Heap-based buffer overflow in sudo could be exploited to allow a user to gain root privileges [bsc#1181090,CVE-2021-3156] - It was possible for a user to test for the existence of a directory due to a Race Condition in `sudoedit` [bsc#1180684,CVE-2021-23239] - A Possible Symlink Attack vector existed in `sudoedit` if SELinux was running in permissive mode [bsc#1180685, CVE-2021-23240] - It was possible for a User to enable Debug Settings not Intended for them [bsc#1180687]
Family:	unix	Class:	patch
Status:		Reference(s):	1012260 1021577 1026191 1041469 1041894 1049703 1061204 1064786 1065464 1066489 1068032 1073210 1078436 1083424 1091551 1092697 1094767 1096515 1097108 1097356 1098531 1099306 1102682 1103203 1105323 1106191 1107343 1108771 1108986 1109363 1109465 1110506 1110507 1111853 1123371 1123377 1123378 1123823 1123828 1123832 1130103 1133528 1139959 1140122 1170771 1172205 1173378 1173380 1175534 1176343 1176344 1176345 1176346 1176347 1176348 1176349 1176350 1180684 1180685 1180687 1181090 703591 839074 857131 893359 CVE-2012-0037 CVE-2014-3566 CVE-2014-4975 CVE-2014-5044 CVE-2014-8080 CVE-2014-8090 CVE-2015-1855 CVE-2015-3900 CVE-2015-5276 CVE-2015-7551 CVE-2016-2339 CVE-2016-6354 CVE-2017-16541 CVE-2017-2581 CVE-2017-2586 CVE-2017-2587 CVE-2017-5715 CVE-2017-5753 CVE-2018-10853 CVE-2018-10902 CVE-2018-10938 CVE-2018-12327 CVE-2018-12376 CVE-2018-12377 CVE-2018-12378 CVE-2018-12379 CVE-2018-12381 CVE-2018-12383 CVE-2018-12385 CVE-2018-12386 CVE-2018-12387 CVE-2018-16890 CVE-2018-20748 CVE-2018-20749 CVE-2018-20750 CVE-2018-3646 CVE-2018-5390 CVE-2018-5848 CVE-2018-7170 CVE-2019-13012 CVE-2019-3822 CVE-2019-3823 CVE-2019-3859 CVE-2020-0543 CVE-2020-12243 CVE-2020-14364 CVE-2020-15565 CVE-2020-15567 CVE-2020-25595 CVE-2020-25596 CVE-2020-25597 CVE-2020-25599 CVE-2020-25600 CVE-2020-25601 CVE-2020-25603 CVE-2020-25604 CVE-2021-23239 CVE-2021-23240 CVE-2021-3156 SUSE-SU-2018:0069-1 SUSE-SU-2018:3591-1 SUSE-SU-2018:4127-1 SUSE-SU-2019:0249-1 SUSE-SU-2019:1060-1 SUSE-SU-2019:1830-1 SUSE-SU-2020:1193-1 SUSE-SU-2020:2822-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND libXfont2-2-2.0.3-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND php7-imagick-3.4.4-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information kernel-default-4.4.103-92.59 is installed OR kernel-default-base-4.4.103-92.59 is installed OR kernel-default-devel-4.4.103-92.59 is installed OR kernel-default-man-4.4.103-92.59 is installed OR kernel-devel-4.4.103-92.59 is installed OR kernel-macros-4.4.103-92.59 is installed OR kernel-source-4.4.103-92.59 is installed OR kernel-syms-4.4.103-92.59 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information glib2-2.48.2-12.15 is installed OR glib2-lang-2.48.2-12.15 is installed OR glib2-tools-2.48.2-12.15 is installed OR libgio-2_0-0-2.48.2-12.15 is installed OR libgio-2_0-0-32bit-2.48.2-12.15 is installed OR libglib-2_0-0-2.48.2-12.15 is installed OR libglib-2_0-0-32bit-2.48.2-12.15 is installed OR libgmodule-2_0-0-2.48.2-12.15 is installed OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed OR libgobject-2_0-0-2.48.2-12.15 is installed OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed OR libgthread-2_0-0-2.48.2-12.15 is installed OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information ntp-4.2.8p12-64.8 is installed OR ntp-doc-4.2.8p12-64.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_80-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_22-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cpp48-4.8.5-30 is installed OR gcc48-4.8.5-30 is installed OR gcc48-32bit-4.8.5-30 is installed OR gcc48-c++-4.8.5-30 is installed OR gcc48-info-4.8.5-30 is installed OR gcc48-locale-4.8.5-30 is installed OR libasan0-4.8.5-30 is installed OR libasan0-32bit-4.8.5-30 is installed OR libstdc++48-devel-4.8.5-30 is installed OR libstdc++48-devel-32bit-4.8.5-30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libXvnc1-1.6.0-18.28 is installed OR tigervnc-1.6.0-18.28 is installed OR xorg-x11-Xvnc-1.6.0-18.28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND ucode-intel-20190618-13.47 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND sudo-1.8.20p2-3.20.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information glib2-2.48.2-12.15 is installed OR glib2-lang-2.48.2-12.15 is installed OR glib2-tools-2.48.2-12.15 is installed OR libgio-2_0-0-2.48.2-12.15 is installed OR libgio-2_0-0-32bit-2.48.2-12.15 is installed OR libglib-2_0-0-2.48.2-12.15 is installed OR libglib-2_0-0-32bit-2.48.2-12.15 is installed OR libgmodule-2_0-0-2.48.2-12.15 is installed OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed OR libgobject-2_0-0-2.48.2-12.15 is installed OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed OR libgthread-2_0-0-2.48.2-12.15 is installed OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-loofah-2.0.2-3.5 is installed OR rubygem-loofah-2.0.2-3.5 is installed

BACK