Oval Definition:	oval:org.opensuse.security:def:59149
Revision Date: 2020-12-01 Version: 1 Title: Security update for strongswan (Important) Description: This update for strongswan provides the following fixes: Security issues fixed: - CVE-2018-5388: Fixed a buffer underflow which may allow to a remote attacker with local user credentials to resource exhaustion and denial of service while reading from the socket (bsc#1094462). - CVE-2018-10811: Fixed a denial of service during the IKEv2 key derivation if the openssl plugin is used in FIPS mode and HMAC-MD5 is negotiated as PRF (bsc#1093536). - CVE-2018-16151,CVE-2018-16152: Fixed multiple flaws in the gmp plugin which might lead to authorization bypass (bsc#1107874). - CVE-2018-17540: Fixed an improper input validation in gmp plugin (bsc#1109845). Other issues addressed: - Fixed some client fails when the scep server URL is used with HTTPS protocol (bsc#1071853). - Reject Diffie-Hellman key exchanges using primes smaller than 1024 bit. - Handle unexpected informational message from SonicWall. (bsc#1009254) Family: unix Class: patch Status: Reference(s): 1009254 1037216 1071853 1075091 1075994 1087082 1087813 1091041 1093536 1094462 1099279 1101644 1101645 1101651 1101656 1104205 1107874 1109160 1109209 1109845 1110279 1112142 1112143 1112144 1112146 1112147 1112152 1112153 1116998 1118367 1118368 1118987 1120386 1122293 1122299 1131107 1132728 1132729 1132732 1133147 1134297 1135715 1136449 1137325 1146519 1146544 1146612 1148931 1149591 1152497 1153811 1154448 1154456 1154458 1154461 1154844 1155311 1155897 1155945 1156060 1156323 1156324 1156326 1156328 1156329 1157038 1157042 1157070 1157143 1157155 1157157 1157158 1157303 1157324 1157333 1157464 1157804 1157888 1157923 1158003 1158004 1158005 1158006 1158007 1158021 1158132 1158381 1158394 1158398 1158410 1158413 1158417 1158427 1158445 1158819 1158823 1158824 1158827 1158834 1158900 1158903 1158904 1159199 1159285 1159297 1159841 1159908 1159910 1159911 1159912 1160195 1160305 1160498 1161181 1161799 1162197 1162200 1162227 1162298 1162687 1162689 1162691 1162928 1162929 1162931 1163971 1164069 1164078 1164846 1165111 1165311 1165631 1165873 1165881 1165984 1165985 1167629 1168075 1168295 1168424 1168829 1168854 1170056 1170345 1170778 1171252 1171254 1171740 1173659 1173942 1174247 CVE-2009-1886 CVE-2009-1888 CVE-2009-2813 CVE-2009-2906 CVE-2009-2948 CVE-2010-0547 CVE-2010-0728 CVE-2010-0787 CVE-2010-0926 CVE-2010-1635 CVE-2010-1642 CVE-2010-2063 CVE-2010-3069 CVE-2011-0719 CVE-2011-2522 CVE-2011-2694 CVE-2012-0817 CVE-2012-0870 CVE-2012-1182 CVE-2012-2111 CVE-2012-6150 CVE-2013-0172 CVE-2013-0213 CVE-2013-0214 CVE-2013-0454 CVE-2013-1863 CVE-2013-4124 CVE-2013-4408 CVE-2013-4475 CVE-2013-4476 CVE-2013-4496 CVE-2013-6442 CVE-2014-0178 CVE-2014-0239 CVE-2014-0244 CVE-2014-3493 CVE-2014-3560 CVE-2014-8143 CVE-2015-0240 CVE-2015-3223 CVE-2015-5252 CVE-2015-5296 CVE-2015-5299 CVE-2015-5330 CVE-2015-5370 CVE-2015-7560 CVE-2015-8467 CVE-2015-8543 CVE-2016-0771 CVE-2016-2110 CVE-2016-2111 CVE-2016-2112 CVE-2016-2113 CVE-2016-2115 CVE-2016-2118 CVE-2016-2119 CVE-2016-2123 CVE-2016-2125 CVE-2016-2126 CVE-2017-18255 CVE-2017-2619 CVE-2017-7494 CVE-2018-10811 CVE-2018-11212 CVE-2018-11805 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-12207 CVE-2018-13785 CVE-2018-14526 CVE-2018-16151 CVE-2018-16152 CVE-2018-16435 CVE-2018-17540 CVE-2018-21008 CVE-2018-2938 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3214 CVE-2018-3639 CVE-2018-4191 CVE-2018-4197 CVE-2018-4207 CVE-2018-4208 CVE-2018-4209 CVE-2018-4210 CVE-2018-4212 CVE-2018-4213 CVE-2018-4261 CVE-2018-4262 CVE-2018-4263 CVE-2018-4264 CVE-2018-4265 CVE-2018-4266 CVE-2018-4267 CVE-2018-4270 CVE-2018-4272 CVE-2018-4273 CVE-2018-4278 CVE-2018-4284 CVE-2018-4299 CVE-2018-4306 CVE-2018-4309 CVE-2018-4312 CVE-2018-4314 CVE-2018-4315 CVE-2018-4316 CVE-2018-4317 CVE-2018-4318 CVE-2018-4319 CVE-2018-4323 CVE-2018-4328 CVE-2018-4345 CVE-2018-4358 CVE-2018-4359 CVE-2018-4361 CVE-2018-4372 CVE-2018-4373 CVE-2018-4375 CVE-2018-4376 CVE-2018-4378 CVE-2018-4382 CVE-2018-4386 CVE-2018-4392 CVE-2018-4416 CVE-2018-5388 CVE-2018-5741 CVE-2019-11091 CVE-2019-11135 CVE-2019-12523 CVE-2019-12526 CVE-2019-12528 CVE-2019-14615 CVE-2019-14895 CVE-2019-14896 CVE-2019-14897 CVE-2019-14901 CVE-2019-15213 CVE-2019-16746 CVE-2019-17015 CVE-2019-17016 CVE-2019-17017 CVE-2019-17021 CVE-2019-17022 CVE-2019-17024 CVE-2019-17026 CVE-2019-18420 CVE-2019-18421 CVE-2019-18424 CVE-2019-18425 CVE-2019-18660 CVE-2019-18675 CVE-2019-18676 CVE-2019-18677 CVE-2019-18678 CVE-2019-18679 CVE-2019-18683 CVE-2019-19052 CVE-2019-19062 CVE-2019-19066 CVE-2019-19073 CVE-2019-19074 CVE-2019-19319 CVE-2019-19332 CVE-2019-19447 CVE-2019-19523 CVE-2019-19524 CVE-2019-19525 CVE-2019-19527 CVE-2019-19530 CVE-2019-19531 CVE-2019-19532 CVE-2019-19533 CVE-2019-19534 CVE-2019-19535 CVE-2019-19536 CVE-2019-19537 CVE-2019-19577 CVE-2019-19578 CVE-2019-19579 CVE-2019-19580 CVE-2019-19581 CVE-2019-19583 CVE-2019-19767 CVE-2019-19768 CVE-2019-19965 CVE-2019-19966 CVE-2019-20054 CVE-2019-20096 CVE-2019-2422 CVE-2019-2426 CVE-2019-2602 CVE-2019-2684 CVE-2019-2698 CVE-2019-3701 CVE-2019-5108 CVE-2019-8595 CVE-2019-8607 CVE-2019-8615 CVE-2019-8644 CVE-2019-8649 CVE-2019-8658 CVE-2019-8666 CVE-2019-8669 CVE-2019-8671 CVE-2019-8672 CVE-2019-8673 CVE-2019-8676 CVE-2019-8677 CVE-2019-8678 CVE-2019-8679 CVE-2019-8680 CVE-2019-8681 CVE-2019-8683 CVE-2019-8684 CVE-2019-8686 CVE-2019-8687 CVE-2019-8688 CVE-2019-8689 CVE-2019-8690 CVE-2019-9455 CVE-2019-9458 CVE-2020-10690 CVE-2020-10720 CVE-2020-10942 CVE-2020-11494 CVE-2020-11608 CVE-2020-11609 CVE-2020-11668 CVE-2020-12653 CVE-2020-12654 CVE-2020-14331 CVE-2020-1749 CVE-2020-1930 CVE-2020-1931 CVE-2020-2732 CVE-2020-6796 CVE-2020-6797 CVE-2020-6798 CVE-2020-6799 CVE-2020-6800 CVE-2020-7211 CVE-2020-8449 CVE-2020-8450 CVE-2020-8517 CVE-2020-8616 CVE-2020-8617 CVE-2020-8647 CVE-2020-8648 CVE-2020-8649 CVE-2020-8992 CVE-2020-9383 SUSE-SU-2019:0049-1 SUSE-SU-2019:0059-1 SUSE-SU-2019:1088-1 SUSE-SU-2019:2345-2 SUSE-SU-2019:3266-1 SUSE-SU-2020:0068-1 SUSE-SU-2020:0384-1 SUSE-SU-2020:0661-1 SUSE-SU-2020:0810-1 SUSE-SU-2020:1486-1 SUSE-SU-2020:1914-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information kdenetwork4-filesharing-17.12.3-lp150.1 is installed OR kdenetwork4-filesharing-lang-17.12.3-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information dhcp-4.3.5-lp151.6.3 is installed OR dhcp-client-4.3.5-lp151.6.3 is installed OR dhcp-devel-4.3.5-lp151.6.3 is installed OR dhcp-doc-4.3.5-lp151.6.3 is installed OR dhcp-relay-4.3.5-lp151.6.3 is installed OR dhcp-server-4.3.5-lp151.6.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND wpa_supplicant-2.6-15.10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_7_0-openjdk-1.7.0.221-43.22 is installed OR java-1_7_0-openjdk-demo-1.7.0.221-43.22 is installed OR java-1_7_0-openjdk-devel-1.7.0.221-43.22 is installed OR java-1_7_0-openjdk-headless-1.7.0.221-43.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information strongswan-5.1.3-26.13 is installed OR strongswan-doc-5.1.3-26.13 is installed OR strongswan-hmac-5.1.3-26.13 is installed OR strongswan-ipsec-5.1.3-26.13 is installed OR strongswan-libs0-5.1.3-26.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libdcerpc-binding0-4.6.5+git.27.6afd48b1083-2 is installed OR libdcerpc-binding0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libdcerpc0-4.6.5+git.27.6afd48b1083-2 is installed OR libdcerpc0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libndr-krb5pac0-4.6.5+git.27.6afd48b1083-2 is installed OR libndr-krb5pac0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libndr-nbt0-4.6.5+git.27.6afd48b1083-2 is installed OR libndr-nbt0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libndr-standard0-4.6.5+git.27.6afd48b1083-2 is installed OR libndr-standard0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libndr0-4.6.5+git.27.6afd48b1083-2 is installed OR libndr0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libnetapi0-4.6.5+git.27.6afd48b1083-2 is installed OR libnetapi0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libsamba-credentials0-4.6.5+git.27.6afd48b1083-2 is installed OR libsamba-credentials0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libsamba-errors0-4.6.5+git.27.6afd48b1083-2 is installed OR libsamba-errors0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libsamba-hostconfig0-4.6.5+git.27.6afd48b1083-2 is installed OR libsamba-hostconfig0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libsamba-passdb0-4.6.5+git.27.6afd48b1083-2 is installed OR libsamba-passdb0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libsamba-util0-4.6.5+git.27.6afd48b1083-2 is installed OR libsamba-util0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libsamdb0-4.6.5+git.27.6afd48b1083-2 is installed OR libsamdb0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libsmbclient0-4.6.5+git.27.6afd48b1083-2 is installed OR libsmbclient0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libsmbconf0-4.6.5+git.27.6afd48b1083-2 is installed OR libsmbconf0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libsmbldap0-4.6.5+git.27.6afd48b1083-2 is installed OR libsmbldap0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libtevent-util0-4.6.5+git.27.6afd48b1083-2 is installed OR libtevent-util0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libwbclient0-4.6.5+git.27.6afd48b1083-2 is installed OR libwbclient0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR samba-4.6.5+git.27.6afd48b1083-2 is installed OR samba-client-4.6.5+git.27.6afd48b1083-2 is installed OR samba-client-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR samba-doc-4.6.5+git.27.6afd48b1083-2 is installed OR samba-libs-4.6.5+git.27.6afd48b1083-2 is installed OR samba-libs-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR samba-winbind-4.6.5+git.27.6afd48b1083-2 is installed OR samba-winbind-32bit-4.6.5+git.27.6afd48b1083-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information MozillaFirefox-68.1.0-109.89 is installed OR MozillaFirefox-branding-SLE-68-32.8 is installed OR MozillaFirefox-translations-common-68.1.0-109.89 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_140-94_42-default-10-2 is installed OR kgraft-patch-SLE12-SP3_Update_15-10-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information xen-4.9.3_03-3.47 is installed OR xen-doc-html-4.9.3_03-3.47 is installed OR xen-libs-4.9.3_03-3.47 is installed OR xen-libs-32bit-4.9.3_03-3.47 is installed OR xen-tools-4.9.3_03-3.47 is installed OR xen-tools-domU-4.9.3_03-3.47 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information bash-4.3-83.15 is installed OR bash-doc-4.3-83.15 is installed OR libreadline6-6.3-83.15 is installed OR libreadline6-32bit-6.3-83.15 is installed OR readline-doc-6.3-83.15 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed OR libwebkit2gtk3-lang-2.24.4-2.47 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed OR webkit2gtk3-2.24.4-2.47 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-SQLAlchemy-1.2.10-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.14.3-11.15 is installed
BACK