Oval Definition:	oval:org.opensuse.security:def:59239
Revision Date: 2020-12-01 Version: 1 Title: Security update for perl (Important) Description: This update for perl fixes the following issues: - CVE-2020-10543: Fixed a heap buffer overflow in regular expression compiler which could have allowed overwriting of allocated memory with attacker's data (bsc#1171863). - CVE-2020-10878: Fixed multiple integer overflows which could have allowed the insertion of instructions into the compiled form of Perl regular expression (bsc#1171864). - CVE-2020-12723: Fixed an attacker's corruption of the intermediate language state of a compiled regular expression (bsc#1171866). - Fixed utf8 handling in perldoc by useing 'term' instead of 'man' (bsc#1170601). - Some packages make assumptions about the date and time they are built. This update will solve the issues caused by calling the perl function timelocal expressing the year with two digit only instead of four digits. (bsc#1102840) (bsc#1160039) Family: unix Class: patch Status: Reference(s): 1034674 1034678 1067203 1068032 1072193 1077999 1084878 1087932 1092497 1102840 1106913 1117665 1135966 1135967 1137865 1138461 1139073 1139550 1140671 1141035 1141054 1144338 1144903 1145477 1146285 1146361 1146378 1146391 1146413 1146425 1146512 1146514 1146516 1146519 1146584 1147122 1148394 1148938 1149376 1149522 1149527 1149555 1149612 1149849 1150025 1150112 1150223 1150452 1150457 1150465 1150466 1151347 1151350 1152685 1152782 1152788 1153108 1153158 1153161 1153165 1154217 1154372 1155671 1155898 1155988 1156187 1160039 1160467 1160468 1166751 1167373 1167890 1168930 1170601 1171863 1171864 1171866 1172205 1173304 1173378 1173380 1173902 1173994 1174157 1175259 1175534 1176343 1176344 1176345 1176346 1176347 1176348 1176349 1176350 929629 990636 CVE-2011-1831 CVE-2011-1832 CVE-2011-1833 CVE-2011-1834 CVE-2011-1835 CVE-2011-1836 CVE-2011-1837 CVE-2014-8146 CVE-2014-8147 CVE-2014-9687 CVE-2015-5191 CVE-2016-10906 CVE-2016-1572 CVE-2016-6293 CVE-2017-14952 CVE-2017-15422 CVE-2017-17484 CVE-2017-18509 CVE-2017-18595 CVE-2017-7867 CVE-2017-7868 CVE-2018-12207 CVE-2018-20976 CVE-2019-0154 CVE-2019-0155 CVE-2019-10220 CVE-2019-11135 CVE-2019-11135 CVE-2019-11139 CVE-2019-12855 CVE-2019-13272 CVE-2019-14814 CVE-2019-14815 CVE-2019-14816 CVE-2019-14821 CVE-2019-14835 CVE-2019-14853 CVE-2019-14859 CVE-2019-14896 CVE-2019-14897 CVE-2019-15098 CVE-2019-15211 CVE-2019-15212 CVE-2019-15214 CVE-2019-15215 CVE-2019-15216 CVE-2019-15217 CVE-2019-15218 CVE-2019-15219 CVE-2019-15220 CVE-2019-15221 CVE-2019-15290 CVE-2019-15291 CVE-2019-15505 CVE-2019-15666 CVE-2019-15807 CVE-2019-15902 CVE-2019-15924 CVE-2019-15926 CVE-2019-15927 CVE-2019-16231 CVE-2019-16232 CVE-2019-16233 CVE-2019-16234 CVE-2019-16413 CVE-2019-16995 CVE-2019-17055 CVE-2019-17056 CVE-2019-17133 CVE-2019-17639 CVE-2019-17666 CVE-2019-18680 CVE-2019-18805 CVE-2019-18860 CVE-2019-9456 CVE-2019-9506 CVE-2020-0543 CVE-2020-0556 CVE-2020-10543 CVE-2020-10878 CVE-2020-12723 CVE-2020-14059 CVE-2020-14318 CVE-2020-14323 CVE-2020-14364 CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-15565 CVE-2020-15567 CVE-2020-25595 CVE-2020-25596 CVE-2020-25597 CVE-2020-25599 CVE-2020-25600 CVE-2020-25601 CVE-2020-25603 CVE-2020-25604 CVE-2020-5260 SUSE-SU-2018:1401-2 SUSE-SU-2019:2453-1 SUSE-SU-2019:2984-1 SUSE-SU-2019:2988-1 SUSE-SU-2019:3024-1 SUSE-SU-2020:0992-1 SUSE-SU-2020:1662-1 SUSE-SU-2020:1803-1 SUSE-SU-2020:2461-1 SUSE-SU-2020:3083-1 SUSE-SU-2020:3516-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND libminiupnpc16-2.0.20171102-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND php7-imagick-3.4.4-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information icu-52.1-8.7 is installed OR libicu-doc-52.1-8.7 is installed OR libicu52_1-52.1-8.7 is installed OR libicu52_1-32bit-52.1-8.7 is installed OR libicu52_1-data-52.1-8.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_117-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_31-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information perl-5.18.2-12.23 is installed OR perl-32bit-5.18.2-12.23 is installed OR perl-base-5.18.2-12.23 is installed OR perl-doc-5.18.2-12.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information ecryptfs-utils-103-7 is installed OR ecryptfs-utils-32bit-103-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND binutils-2.32-9.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libgcrypt-1.6.1-16.68 is installed OR libgcrypt20-1.6.1-16.68 is installed OR libgcrypt20-32bit-1.6.1-16.68 is installed OR libgcrypt20-hmac-1.6.1-16.68 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND kdump-0.8.16-9 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND squid-3.5.21-26.26 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information openstack-manila-7.3.1~dev15-4.18 is installed OR openstack-manila-api-7.3.1~dev15-4.18 is installed OR openstack-manila-data-7.3.1~dev15-4.18 is installed OR openstack-manila-scheduler-7.3.1~dev15-4.18 is installed OR openstack-manila-share-7.3.1~dev15-4.18 is installed OR python-manila-7.3.1~dev15-4.18 is installed OR venv-openstack-manila-7.3.1~dev15-3.17 is installed OR venv-openstack-manila-x86_64-7.3.1~dev15-3.17 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND python-Twisted-15.2.1-9.8 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND python-urllib3-1.23-3.6 is installed
BACK