OVAL Reference oval:org.opensuse.security:def:58901

Oval Definition:

oval:org.opensuse.security:def:58901

Revision Date:	2021-02-19	Version:	1
Title:	Security update for krb5-appl (Important)
Description:	This update for krb5-appl fixes the following issues: - CVE-2019-25017: Check the filenames sent by the server match those requested by the client (bsc#1131109). - CVE-2019-25018: Disallow empty incoming filename or ones that refer to the current directory (bsc#1131109).
Family:	unix	Class:	patch
Status:		Reference(s):	1013882 1068032 1077355 1097410 1101676 1101677 1101678 1103342 1104076 1106873 1111056 1112368 1112397 1112417 1112421 1112432 1116686 1118754 1119069 1119105 1131109 1132666 1133114 1133145 1133191 1136037 1136446 1136935 1137597 1144903 1153108 1153158 1153161 1160467 1160468 1168404 1168407 1169066 1172031 1172225 1172798 1172846 1173972 1174753 1174817 1175168 CVE-2012-2812 CVE-2012-2813 CVE-2012-2814 CVE-2012-2836 CVE-2012-2837 CVE-2012-2840 CVE-2012-2841 CVE-2014-8139 CVE-2014-8140 CVE-2014-8141 CVE-2014-9636 CVE-2015-0840 CVE-2015-1142857 CVE-2016-9843 CVE-2017-5715 CVE-2017-6318 CVE-2018-0495 CVE-2018-12384 CVE-2018-12404 CVE-2018-12405 CVE-2018-12472 CVE-2018-17466 CVE-2018-18492 CVE-2018-18493 CVE-2018-18494 CVE-2018-18498 CVE-2018-3058 CVE-2018-3063 CVE-2018-3064 CVE-2018-3066 CVE-2018-3143 CVE-2018-3156 CVE-2018-3174 CVE-2018-3251 CVE-2018-3282 CVE-2019-10220 CVE-2019-11365 CVE-2019-11366 CVE-2019-11477 CVE-2019-11478 CVE-2019-11487 CVE-2019-14896 CVE-2019-14897 CVE-2019-17133 CVE-2019-20807 CVE-2019-25017 CVE-2019-25018 CVE-2019-2529 CVE-2019-2537 CVE-2019-3846 CVE-2020-13844 CVE-2020-1927 CVE-2020-1934 CVE-2020-1938 SUSE-SU-2018:0008-1 SUSE-SU-2018:0674-1 SUSE-SU-2018:4236-1 SUSE-SU-2019:1091-1 SUSE-SU-2020:1272-1 SUSE-SU-2020:1550-1 SUSE-SU-2020:3263-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information libsystemd0-234-lp150.19 is installed OR libudev1-234-lp150.19 is installed OR libudev1-32bit-234-lp150.19 is installed OR systemd-234-lp150.19 is installed OR systemd-32bit-234-lp150.19 is installed OR systemd-bash-completion-234-lp150.19 is installed OR systemd-sysvinit-234-lp150.19 is installed OR udev-234-lp150.19 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libvlc5-3.0.9.2-lp151.6.6 is installed OR libvlccore9-3.0.9.2-lp151.6.6 is installed OR vlc-3.0.9.2-lp151.6.6 is installed OR vlc-codec-gstreamer-3.0.9.2-lp151.6.6 is installed OR vlc-devel-3.0.9.2-lp151.6.6 is installed OR vlc-jack-3.0.9.2-lp151.6.6 is installed OR vlc-lang-3.0.9.2-lp151.6.6 is installed OR vlc-noX-3.0.9.2-lp151.6.6 is installed OR vlc-opencv-3.0.9.2-lp151.6.6 is installed OR vlc-qt-3.0.9.2-lp151.6.6 is installed OR vlc-vdpau-3.0.9.2-lp151.6.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information kernel-firmware-20170530-21.16 is installed OR ucode-amd-20170530-21.16 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information gvim-7.4.326-17.6 is installed OR vim-7.4.326-17.6 is installed OR vim-data-7.4.326-17.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information res-signingkeys-3.0.38-52.26 is installed OR smt-3.0.38-52.26 is installed OR smt-support-3.0.38-52.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information MozillaFirefox-60.4.0esr-109.55 is installed OR MozillaFirefox-devel-60.4.0esr-109.55 is installed OR MozillaFirefox-translations-common-60.4.0esr-109.55 is installed OR libfreebl3-3.40.1-58.18 is installed OR libfreebl3-32bit-3.40.1-58.18 is installed OR libsoftokn3-3.40.1-58.18 is installed OR libsoftokn3-32bit-3.40.1-58.18 is installed OR mozilla-nspr-4.20-19.6 is installed OR mozilla-nspr-32bit-4.20-19.6 is installed OR mozilla-nss-3.40.1-58.18 is installed OR mozilla-nss-32bit-3.40.1-58.18 is installed OR mozilla-nss-certs-3.40.1-58.18 is installed OR mozilla-nss-certs-32bit-3.40.1-58.18 is installed OR mozilla-nss-sysinit-3.40.1-58.18 is installed OR mozilla-nss-sysinit-32bit-3.40.1-58.18 is installed OR mozilla-nss-tools-3.40.1-58.18 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND kernel-default-4.4.180-94.100 is installed OR kernel-default-base-4.4.180-94.100 is installed OR kernel-default-devel-4.4.180-94.100 is installed OR kernel-default-man-4.4.180-94.100 is installed OR kernel-devel-4.4.180-94.100 is installed OR kernel-macros-4.4.180-94.100 is installed OR kernel-source-4.4.180-94.100 is installed OR kernel-syms-4.4.180-94.100 is installed OR kgraft-patch-4_4_180-94_100-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_27-1-4.3 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND kernel-default-4.4.180-94.100 is installed OR kernel-default-base-4.4.180-94.100 is installed OR kernel-default-devel-4.4.180-94.100 is installed OR kernel-default-man-4.4.180-94.100 is installed OR kernel-devel-4.4.180-94.100 is installed OR kernel-macros-4.4.180-94.100 is installed OR kernel-source-4.4.180-94.100 is installed OR kernel-syms-4.4.180-94.100 is installed OR kgraft-patch-4_4_180-94_100-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_27-1-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libexif12-0.6.21-6 is installed OR libexif12-32bit-0.6.21-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND mailman-2.1.17-3.20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information dovecot22-2.2.31-19.17 is installed OR dovecot22-backend-mysql-2.2.31-19.17 is installed OR dovecot22-backend-pgsql-2.2.31-19.17 is installed OR dovecot22-backend-sqlite-2.2.31-19.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_100-default-2-2 is installed OR kgraft-patch-SLE12-SP3_Update_27-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information krb5-appl-clients-1.0.3-3.6.1 is installed OR krb5-appl-servers-1.0.3-3.6.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information coreutils-8.25-13.7 is installed OR coreutils-lang-8.25-13.7 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information tomcat-8.0.53-29.32 is installed OR tomcat-admin-webapps-8.0.53-29.32 is installed OR tomcat-docs-webapp-8.0.53-29.32 is installed OR tomcat-el-3_0-api-8.0.53-29.32 is installed OR tomcat-javadoc-8.0.53-29.32 is installed OR tomcat-jsp-2_3-api-8.0.53-29.32 is installed OR tomcat-lib-8.0.53-29.32 is installed OR tomcat-servlet-3_1-api-8.0.53-29.32 is installed OR tomcat-webapps-8.0.53-29.32 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.17.0-11.27 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information openstack-manila-7.3.1~dev15-4.18 is installed OR openstack-manila-api-7.3.1~dev15-4.18 is installed OR openstack-manila-data-7.3.1~dev15-4.18 is installed OR openstack-manila-scheduler-7.3.1~dev15-4.18 is installed OR openstack-manila-share-7.3.1~dev15-4.18 is installed OR python-manila-7.3.1~dev15-4.18 is installed

BACK