Oval Definition:oval:org.opensuse.security:def:59423
Revision Date:2020-12-01Version:1
Title:Security update for gnutls (Moderate)
Description:

This update for gnutls fixes the following issues:

This update for gnutls fixes the following issues:

Security issues fixed:

* - Improved mitigations against Lucky 13 class of attacks - 'Just in Time' PRIME + PROBE cache-based side channel attack can lead to plaintext recovery (CVE-2018-10846, bsc#1105460) - HMAC-SHA-384 vulnerable to Lucky thirteen attack due to use of wrong constant (CVE-2018-10845, bsc#1105459) - HMAC-SHA-256 vulnerable to Lucky thirteen attack due to not enough dummy function calls (CVE-2018-10844, bsc#1105437) - The _asn1_check_identifier function in Libtasn1 caused a NULL pointer dereference and crash (CVE-2017-10790, bsc#1047002)
Family:unixClass:patch
Status:Reference(s):1038444
1047002
1082318
1099658
1105437
1105459
1105460
1106284
1110785
1113769
1116574
1120489
1120843
1120885
1128828
1131543
1131565
1132374
1132472
1134537
1134596
1134848
1135281
1135603
1136424
1136446
1136586
1136935
1137586
1142614
1144504
1149458
1149496
1151839
1158328
1158763
1168874
1173455
1176410
1177143
979907
997857
CVE-2012-2738
CVE-2013-1984
CVE-2013-1995
CVE-2013-1998
CVE-2015-8871
CVE-2016-7163
CVE-2016-7945
CVE-2016-7946
CVE-2017-10790
CVE-2017-8872
CVE-2018-10844
CVE-2018-10845
CVE-2018-10846
CVE-2018-13785
CVE-2018-17972
CVE-2018-20217
CVE-2018-3136
CVE-2018-3139
CVE-2018-3149
CVE-2018-3169
CVE-2018-3180
CVE-2018-3214
CVE-2018-7191
CVE-2019-11190
CVE-2019-11477
CVE-2019-11478
CVE-2019-11479
CVE-2019-11745
CVE-2019-11815
CVE-2019-11833
CVE-2019-11884
CVE-2019-12382
CVE-2019-12625
CVE-2019-12900
CVE-2019-13722
CVE-2019-17005
CVE-2019-17008
CVE-2019-17009
CVE-2019-17010
CVE-2019-17011
CVE-2019-17012
CVE-2019-18900
CVE-2019-3846
CVE-2019-5482
CVE-2019-5489
CVE-2019-9893
CVE-2020-15049
CVE-2020-25219
CVE-2020-26154
CVE-2020-6821
CVE-2020-6822
CVE-2020-6825
CVE-2020-6827
CVE-2020-6828
SUSE-SU-2017:2141-1
SUSE-SU-2017:2144-1
SUSE-SU-2018:2825-2
SUSE-SU-2018:3933-1
SUSE-SU-2019:1534-1
SUSE-SU-2019:2339-2
SUSE-SU-2019:2941-1
SUSE-SU-2019:3066-1
SUSE-SU-2019:3347-1
SUSE-SU-2020:0079-2
SUSE-SU-2020:0978-1
SUSE-SU-2020:1946-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • gimp-2.8.22-lp150.3 is installed
  • OR gimp-lang-2.8.22-lp150.3 is installed
  • OR gimp-plugins-python-2.8.22-lp150.3 is installed
  • OR libgimp-2_0-0-2.8.22-lp150.3 is installed
  • OR libgimpui-2_0-0-2.8.22-lp150.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • chromedriver-76.0.3809.132-lp151.2.25 is installed
  • OR chromium-76.0.3809.132-lp151.2.25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • gnutls-3.2.15-18.6 is installed
  • OR libgnutls-openssl27-3.2.15-18.6 is installed
  • OR libgnutls28-3.2.15-18.6 is installed
  • OR libgnutls28-32bit-3.2.15-18.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • krb5-1.12.5-40.31 is installed
  • OR krb5-32bit-1.12.5-40.31 is installed
  • OR krb5-client-1.12.5-40.31 is installed
  • OR krb5-doc-1.12.5-40.31 is installed
  • OR krb5-plugin-kdb-ldap-1.12.5-40.31 is installed
  • OR krb5-plugin-preauth-otp-1.12.5-40.31 is installed
  • OR krb5-plugin-preauth-pkinit-1.12.5-40.31 is installed
  • OR krb5-server-1.12.5-40.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libXi6-1.7.4-17 is installed
  • OR libXi6-32bit-1.7.4-17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • bzip2-1.0.6-30.8 is installed
  • OR bzip2-doc-1.0.6-30.8 is installed
  • OR libbz2-1-1.0.6-30.8 is installed
  • OR libbz2-1-32bit-1.0.6-30.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_156-94_64-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_20-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • glibc-2.22-62.22 is installed
  • OR glibc-32bit-2.22-62.22 is installed
  • OR glibc-devel-2.22-62.22 is installed
  • OR glibc-devel-32bit-2.22-62.22 is installed
  • OR glibc-html-2.22-62.22 is installed
  • OR glibc-i18ndata-2.22-62.22 is installed
  • OR glibc-info-2.22-62.22 is installed
  • OR glibc-locale-2.22-62.22 is installed
  • OR glibc-locale-32bit-2.22-62.22 is installed
  • OR glibc-profile-2.22-62.22 is installed
  • OR glibc-profile-32bit-2.22-62.22 is installed
  • OR nscd-2.22-62.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • python-cryptography-1.3.1-7.13 is installed
  • OR python-pyOpenSSL-16.0.0-4.11 is installed
  • OR python-setuptools-18.0.1-4.8 is installed
  • OR python3-cryptography-1.3.1-7.13 is installed
  • OR python3-pyOpenSSL-16.0.0-4.11 is installed
  • OR python3-setuptools-18.0.1-4.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • cyrus-sasl-2.1.26-8.7 is installed
  • OR cyrus-sasl-32bit-2.1.26-8.7 is installed
  • OR cyrus-sasl-crammd5-2.1.26-8.7 is installed
  • OR cyrus-sasl-crammd5-32bit-2.1.26-8.7 is installed
  • OR cyrus-sasl-digestmd5-2.1.26-8.7 is installed
  • OR cyrus-sasl-gssapi-2.1.26-8.7 is installed
  • OR cyrus-sasl-gssapi-32bit-2.1.26-8.7 is installed
  • OR cyrus-sasl-otp-2.1.26-8.7 is installed
  • OR cyrus-sasl-otp-32bit-2.1.26-8.7 is installed
  • OR cyrus-sasl-plain-2.1.26-8.7 is installed
  • OR cyrus-sasl-plain-32bit-2.1.26-8.7 is installed
  • OR cyrus-sasl-saslauthd-2.1.26-8.7 is installed
  • OR cyrus-sasl-sqlauxprop-2.1.26-8.7 is installed
  • OR cyrus-sasl-sqlauxprop-32bit-2.1.26-8.7 is installed
  • OR libsasl2-3-2.1.26-8.7 is installed
  • OR libsasl2-3-32bit-2.1.26-8.7 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libseccomp-2.4.1-11.3 is installed
  • OR libseccomp2-2.4.1-11.3 is installed
  • OR libseccomp2-32bit-2.4.1-11.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND Package Information
  • mariadb-10.2.32-3.28 is installed
  • OR mariadb-galera-10.2.32-3.28 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND clamav-0.100.3-33.26 is installed
    • BACK