Oval Definition:oval:org.opensuse.security:def:59113
Revision Date:2020-12-01Version:1
Title:Security update for sudo (Important)
Description:

This update for sudo fixes the following issues:

- CVE-2019-14287: Fixed an issue where a user with sudo privileges that allowed them to run commands with an arbitrary uid, could run commands as root, despite being forbidden to do so in sudoers (bsc#1153674).
Family:unixClass:patch
Status:Reference(s):1091236
1108308
1109412
1109413
1109414
1110949
1111996
1112534
1112535
1113247
1113252
1113255
1116827
1118595
1118596
1118830
1118831
1120640
1121034
1121035
1121056
1125401
1128471
1128472
1128474
1128476
1128480
1128481
1128490
1128492
1128493
1128525
1133131
1133232
1141913
1142772
1153674
1154328
1160467
1160468
1171252
1171254
1173100
1173659
1173661
1173869
1173942
1173963
1174157
1174247
1174633
1174635
1174638
1176496
1176764
1178671
CVE-2011-1526
CVE-2011-4862
CVE-2013-7490
CVE-2018-1000876
CVE-2018-15518
CVE-2018-17358
CVE-2018-17359
CVE-2018-17360
CVE-2018-17456
CVE-2018-17985
CVE-2018-18309
CVE-2018-18483
CVE-2018-18484
CVE-2018-18605
CVE-2018-18606
CVE-2018-18607
CVE-2018-19873
CVE-2018-19931
CVE-2018-19932
CVE-2018-20623
CVE-2018-20651
CVE-2018-20671
CVE-2019-1010180
CVE-2019-14287
CVE-2019-14895
CVE-2019-14896
CVE-2019-14897
CVE-2019-14901
CVE-2019-16746
CVE-2019-19447
CVE-2019-20919
CVE-2019-3693
CVE-2019-3855
CVE-2019-3856
CVE-2019-3857
CVE-2019-3858
CVE-2019-3859
CVE-2019-3860
CVE-2019-3861
CVE-2019-3862
CVE-2019-3863
CVE-2019-8936
CVE-2019-9458
CVE-2020-11668
CVE-2020-12321
CVE-2020-12653
CVE-2020-12654
CVE-2020-14331
CVE-2020-14345
CVE-2020-14346
CVE-2020-14347
CVE-2020-14577
CVE-2020-14578
CVE-2020-14579
CVE-2020-14581
CVE-2020-14583
CVE-2020-14593
CVE-2020-14621
SUSE-SU-2018:3074-2
SUSE-SU-2018:4088-1
SUSE-SU-2019:0789-1
SUSE-SU-2019:2650-1
SUSE-SU-2019:2667-1
SUSE-SU-2019:3076-1
SUSE-SU-2020:2331-1
SUSE-SU-2020:2856-1
SUSE-SU-2020:2861-1
SUSE-SU-2020:3354-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • gegl-0_3-0.3.34-lp150.1 is installed
  • OR gegl-0_3-lang-0.3.34-lp150.1 is installed
  • OR libgegl-0_3-0-0.3.34-lp150.1 is installed
  • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND links-2.20.1-lp151.3.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libecpg6-10.5-1.3 is installed
  • OR libpq5-10.5-1.3 is installed
  • OR libpq5-32bit-10.5-1.3 is installed
  • OR postgresql-init-10-17.20 is installed
  • OR postgresql10-10.5-1.3 is installed
  • OR postgresql10-contrib-10.5-1.3 is installed
  • OR postgresql10-docs-10.5-1.3 is installed
  • OR postgresql10-libs-10.5-1.3 is installed
  • OR postgresql10-server-10.5-1.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • libQt5Concurrent5-5.6.1-17.6 is installed
  • OR libQt5Core5-5.6.1-17.6 is installed
  • OR libQt5DBus5-5.6.1-17.6 is installed
  • OR libQt5Gui5-5.6.1-17.6 is installed
  • OR libQt5Network5-5.6.1-17.6 is installed
  • OR libQt5OpenGL5-5.6.1-17.6 is installed
  • OR libQt5PrintSupport5-5.6.1-17.6 is installed
  • OR libQt5Sql5-5.6.1-17.6 is installed
  • OR libQt5Sql5-mysql-5.6.1-17.6 is installed
  • OR libQt5Sql5-postgresql-5.6.1-17.6 is installed
  • OR libQt5Sql5-sqlite-5.6.1-17.6 is installed
  • OR libQt5Sql5-unixODBC-5.6.1-17.6 is installed
  • OR libQt5Test5-5.6.1-17.6 is installed
  • OR libQt5Widgets5-5.6.1-17.6 is installed
  • OR libQt5Xml5-5.6.1-17.6 is installed
  • OR libqt5-qtbase-5.6.1-17.6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND sudo-1.8.10p3-10.23 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • krb5-appl-clients-1.0.3-1 is installed
  • OR krb5-appl-servers-1.0.3-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND gdb-8.3.1-2.14 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_162-94_72-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_22-6-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_156-94_61-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_19-7-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • cups-1.7.5-20.17 is installed
  • OR cups-client-1.7.5-20.17 is installed
  • OR cups-libs-1.7.5-20.17 is installed
  • OR cups-libs-32bit-1.7.5-20.17 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND ipsec-tools-0.8.0-19.3 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND git-2.12.3-27.17 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • apache2-2.4.23-29.54 is installed
  • OR apache2-doc-2.4.23-29.54 is installed
  • OR apache2-example-pages-2.4.23-29.54 is installed
  • OR apache2-prefork-2.4.23-29.54 is installed
  • OR apache2-utils-2.4.23-29.54 is installed
  • OR apache2-worker-2.4.23-29.54 is installed
  • BACK