Oval Definition:	oval:org.opensuse.security:def:58929
Revision Date: 2021-03-31 Version: 1 Title: Security update for opensc (Moderate) Description: This update for opensc fixes the following issues: - CVE-2020-26571: gemsafe GPK smart card software driver stack-based buffer overflow (bsc#1177380) - CVE-2019-15946: out-of-bounds access of an ASN.1 Octet string in asn1_decode_entry (bsc#1149747) - CVE-2019-15945: out-of-bounds access of an ASN.1 Bitstring in decode_bit_string (bsc#1149746) - CVE-2019-19479: incorrect read operation during parsing of a SETCOS file attribute (bsc#1158256) - CVE-2020-26572: Prevent out of bounds write (bsc#1177378) - CVE-2020-26570: Fix buffer overflow in sc_oberthur_read_file (bsc#1177364) Family: unix Class: patch Status: Reference(s): 1015203 1017690 1022804 1034674 1034678 1067203 1069213 1072193 1077999 1078431 1084682 1087920 1087932 1090336 1090849 1094448 1095603 1096985 1097356 1097733 1097847 1101366 1101670 1102682 1104189 1104190 1104287 1105440 1105442 1115375 1119553 1119554 1119555 1119556 1119557 1119558 1141780 1141782 1141783 1141784 1141785 1141786 1141787 1141789 1149746 1149747 1151021 1153451 1153459 1158256 1158328 1172437 1174415 1175070 1175071 1175072 1177364 1177378 1177380 929629 960341 969783 983436 990636 CVE-2010-2252 CVE-2012-4929 CVE-2014-4877 CVE-2014-8128 CVE-2014-8146 CVE-2014-8147 CVE-2015-2059 CVE-2015-3223 CVE-2015-5330 CVE-2015-7554 CVE-2016-10095 CVE-2016-4971 CVE-2016-5318 CVE-2016-6293 CVE-2016-7098 CVE-2017-14952 CVE-2017-15422 CVE-2017-16232 CVE-2017-17484 CVE-2017-6508 CVE-2017-7867 CVE-2017-7868 CVE-2018-1000225 CVE-2018-1000226 CVE-2018-10931 CVE-2018-12099 CVE-2018-2562 CVE-2018-2612 CVE-2018-2622 CVE-2018-2640 CVE-2018-2665 CVE-2018-2668 CVE-2018-3817 CVE-2018-4437 CVE-2018-4438 CVE-2018-4441 CVE-2018-4442 CVE-2018-4443 CVE-2018-4464 CVE-2018-5390 CVE-2018-5848 CVE-2019-11745 CVE-2019-13722 CVE-2019-14835 CVE-2019-15945 CVE-2019-15946 CVE-2019-17005 CVE-2019-17008 CVE-2019-17009 CVE-2019-17010 CVE-2019-17011 CVE-2019-17012 CVE-2019-17041 CVE-2019-17042 CVE-2019-19479 CVE-2019-2745 CVE-2019-2762 CVE-2019-2766 CVE-2019-2769 CVE-2019-2786 CVE-2019-2816 CVE-2019-2842 CVE-2019-7317 CVE-2020-10757 CVE-2020-11985 CVE-2020-11993 CVE-2020-15900 CVE-2020-26570 CVE-2020-26571 CVE-2020-26572 CVE-2020-9490 SUSE-SU-2018:0073-1 SUSE-SU-2018:0697-1 SUSE-SU-2018:1401-1 SUSE-SU-2018:2317-1 SUSE-SU-2018:2561-1 SUSE-SU-2019:0146-1 SUSE-SU-2019:2036-1 SUSE-SU-2019:3347-1 SUSE-SU-2020:0512-1 SUSE-SU-2020:1764-1 SUSE-SU-2020:2097-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND logrotate-3.13.0-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libopenssl-1_1-devel-1.1.0i-lp151.8.6 is installed OR libopenssl-1_1-devel-32bit-1.1.0i-lp151.8.6 is installed OR libopenssl1_1-1.1.0i-lp151.8.6 is installed OR libopenssl1_1-32bit-1.1.0i-lp151.8.6 is installed OR libopenssl1_1-hmac-1.1.0i-lp151.8.6 is installed OR libopenssl1_1-hmac-32bit-1.1.0i-lp151.8.6 is installed OR openssl-1_1-1.1.0i-lp151.8.6 is installed OR openssl-1_1-doc-1.1.0i-lp151.8.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libmysqlclient18-10.0.34-29.16 is installed OR libmysqlclient18-32bit-10.0.34-29.16 is installed OR mariadb-10.0.34-29.16 is installed OR mariadb-client-10.0.34-29.16 is installed OR mariadb-errormessages-10.0.34-29.16 is installed OR mariadb-tools-10.0.34-29.16 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information ghostscript-9.52-23.39 is installed OR ghostscript-x11-9.52-23.39 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_103-92_56-default-12-2 is installed OR kgraft-patch-SLE12-SP2_Update_17-12-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information icu-52.1-8.7 is installed OR libicu-doc-52.1-8.7 is installed OR libicu52_1-52.1-8.7 is installed OR libicu52_1-32bit-52.1-8.7 is installed OR libicu52_1-data-52.1-8.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libldb1-1.1.29-1 is installed OR libldb1-32bit-1.1.29-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information MozillaFirefox-60.9.0-109.86 is installed OR MozillaFirefox-translations-common-60.9.0-109.86 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_103-default-3-2 is installed OR kgraft-patch-SLE12-SP3_Update_28-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libvirt-3.3.0-5.40 is installed OR libvirt-admin-3.3.0-5.40 is installed OR libvirt-client-3.3.0-5.40 is installed OR libvirt-daemon-3.3.0-5.40 is installed OR libvirt-daemon-config-network-3.3.0-5.40 is installed OR libvirt-daemon-config-nwfilter-3.3.0-5.40 is installed OR libvirt-daemon-driver-interface-3.3.0-5.40 is installed OR libvirt-daemon-driver-libxl-3.3.0-5.40 is installed OR libvirt-daemon-driver-lxc-3.3.0-5.40 is installed OR libvirt-daemon-driver-network-3.3.0-5.40 is installed OR libvirt-daemon-driver-nodedev-3.3.0-5.40 is installed OR libvirt-daemon-driver-nwfilter-3.3.0-5.40 is installed OR libvirt-daemon-driver-qemu-3.3.0-5.40 is installed OR libvirt-daemon-driver-secret-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-core-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-disk-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-iscsi-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-logical-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-mpath-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-rbd-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-scsi-3.3.0-5.40 is installed OR libvirt-daemon-hooks-3.3.0-5.40 is installed OR libvirt-daemon-lxc-3.3.0-5.40 is installed OR libvirt-daemon-qemu-3.3.0-5.40 is installed OR libvirt-daemon-xen-3.3.0-5.40 is installed OR libvirt-doc-3.3.0-5.40 is installed OR libvirt-libs-3.3.0-5.40 is installed OR libvirt-lock-sanlock-3.3.0-5.40 is installed OR libvirt-nss-3.3.0-5.40 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND opensc-0.13.0-3.11.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information evince-3.20.2-6.22 is installed OR evince-browser-plugin-3.20.2-6.22 is installed OR evince-lang-3.20.2-6.22 is installed OR evince-plugin-djvudocument-3.20.2-6.22 is installed OR evince-plugin-dvidocument-3.20.2-6.22 is installed OR evince-plugin-pdfdocument-3.20.2-6.22 is installed OR evince-plugin-psdocument-3.20.2-6.22 is installed OR evince-plugin-tiffdocument-3.20.2-6.22 is installed OR evince-plugin-xpsdocument-3.20.2-6.22 is installed OR libevdocument3-4-3.20.2-6.22 is installed OR libevview3-3-3.20.2-6.22 is installed OR nautilus-evince-3.20.2-6.22 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information grafana-4.5.1-4.3 is installed OR kafka-0.9.0.1-5.3 is installed OR logstash-2.4.1-5.4 is installed OR openstack-monasca-installer-20180622_15.06-3.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libpcap-1.8.1-10.3 is installed OR libpcap1-1.8.1-10.3 is installed OR tcpdump-4.9.2-14.14 is installed
BACK