Oval Definition:	oval:org.opensuse.security:def:59113
Revision Date: 2020-12-01 Version: 1 Title: Security update for sudo (Important) Description: This update for sudo fixes the following issues: - CVE-2019-14287: Fixed an issue where a user with sudo privileges that allowed them to run commands with an arbitrary uid, could run commands as root, despite being forbidden to do so in sudoers (bsc#1153674). Family: unix Class: patch Status: Reference(s): 1091236 1108308 1109412 1109413 1109414 1110949 1111996 1112534 1112535 1113247 1113252 1113255 1116827 1118595 1118596 1118830 1118831 1120640 1121034 1121035 1121056 1125401 1128471 1128472 1128474 1128476 1128480 1128481 1128490 1128492 1128493 1128525 1133131 1133232 1141913 1142772 1153674 1154328 1160467 1160468 1171252 1171254 1173100 1173659 1173661 1173869 1173942 1173963 1174157 1174247 1174633 1174635 1174638 1176496 1176764 1178671 CVE-2011-1526 CVE-2011-4862 CVE-2013-7490 CVE-2018-1000876 CVE-2018-15518 CVE-2018-17358 CVE-2018-17359 CVE-2018-17360 CVE-2018-17456 CVE-2018-17985 CVE-2018-18309 CVE-2018-18483 CVE-2018-18484 CVE-2018-18605 CVE-2018-18606 CVE-2018-18607 CVE-2018-19873 CVE-2018-19931 CVE-2018-19932 CVE-2018-20623 CVE-2018-20651 CVE-2018-20671 CVE-2019-1010180 CVE-2019-14287 CVE-2019-14895 CVE-2019-14896 CVE-2019-14897 CVE-2019-14901 CVE-2019-16746 CVE-2019-19447 CVE-2019-20919 CVE-2019-3693 CVE-2019-3855 CVE-2019-3856 CVE-2019-3857 CVE-2019-3858 CVE-2019-3859 CVE-2019-3860 CVE-2019-3861 CVE-2019-3862 CVE-2019-3863 CVE-2019-8936 CVE-2019-9458 CVE-2020-11668 CVE-2020-12321 CVE-2020-12653 CVE-2020-12654 CVE-2020-14331 CVE-2020-14345 CVE-2020-14346 CVE-2020-14347 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 SUSE-SU-2018:3074-2 SUSE-SU-2018:4088-1 SUSE-SU-2019:0789-1 SUSE-SU-2019:2650-1 SUSE-SU-2019:2667-1 SUSE-SU-2019:3076-1 SUSE-SU-2020:2331-1 SUSE-SU-2020:2856-1 SUSE-SU-2020:2861-1 SUSE-SU-2020:3354-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information gegl-0_3-0.3.34-lp150.1 is installed OR gegl-0_3-lang-0.3.34-lp150.1 is installed OR libgegl-0_3-0-0.3.34-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND links-2.20.1-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libecpg6-10.5-1.3 is installed OR libpq5-10.5-1.3 is installed OR libpq5-32bit-10.5-1.3 is installed OR postgresql-init-10-17.20 is installed OR postgresql10-10.5-1.3 is installed OR postgresql10-contrib-10.5-1.3 is installed OR postgresql10-docs-10.5-1.3 is installed OR postgresql10-libs-10.5-1.3 is installed OR postgresql10-server-10.5-1.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libQt5Concurrent5-5.6.1-17.6 is installed OR libQt5Core5-5.6.1-17.6 is installed OR libQt5DBus5-5.6.1-17.6 is installed OR libQt5Gui5-5.6.1-17.6 is installed OR libQt5Network5-5.6.1-17.6 is installed OR libQt5OpenGL5-5.6.1-17.6 is installed OR libQt5PrintSupport5-5.6.1-17.6 is installed OR libQt5Sql5-5.6.1-17.6 is installed OR libQt5Sql5-mysql-5.6.1-17.6 is installed OR libQt5Sql5-postgresql-5.6.1-17.6 is installed OR libQt5Sql5-sqlite-5.6.1-17.6 is installed OR libQt5Sql5-unixODBC-5.6.1-17.6 is installed OR libQt5Test5-5.6.1-17.6 is installed OR libQt5Widgets5-5.6.1-17.6 is installed OR libQt5Xml5-5.6.1-17.6 is installed OR libqt5-qtbase-5.6.1-17.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND sudo-1.8.10p3-10.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information krb5-appl-clients-1.0.3-1 is installed OR krb5-appl-servers-1.0.3-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND gdb-8.3.1-2.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_162-94_72-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_22-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_156-94_61-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_19-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information cups-1.7.5-20.17 is installed OR cups-client-1.7.5-20.17 is installed OR cups-libs-1.7.5-20.17 is installed OR cups-libs-32bit-1.7.5-20.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND ipsec-tools-0.8.0-19.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND git-2.12.3-27.17 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information apache2-2.4.23-29.54 is installed OR apache2-doc-2.4.23-29.54 is installed OR apache2-example-pages-2.4.23-29.54 is installed OR apache2-prefork-2.4.23-29.54 is installed OR apache2-utils-2.4.23-29.54 is installed OR apache2-worker-2.4.23-29.54 is installed
BACK