OVAL Reference oval:org.opensuse.security:def:59423

Oval Definition:

oval:org.opensuse.security:def:59423

Revision Date:	2020-12-01	Version:	1
Title:	Security update for gnutls (Moderate)
Description:	This update for gnutls fixes the following issues: This update for gnutls fixes the following issues: Security issues fixed: * - Improved mitigations against Lucky 13 class of attacks - 'Just in Time' PRIME + PROBE cache-based side channel attack can lead to plaintext recovery (CVE-2018-10846, bsc#1105460) - HMAC-SHA-384 vulnerable to Lucky thirteen attack due to use of wrong constant (CVE-2018-10845, bsc#1105459) - HMAC-SHA-256 vulnerable to Lucky thirteen attack due to not enough dummy function calls (CVE-2018-10844, bsc#1105437) - The _asn1_check_identifier function in Libtasn1 caused a NULL pointer dereference and crash (CVE-2017-10790, bsc#1047002)
Family:	unix	Class:	patch
Status:		Reference(s):	1038444 1047002 1082318 1099658 1105437 1105459 1105460 1106284 1110785 1113769 1116574 1120489 1120843 1120885 1128828 1131543 1131565 1132374 1132472 1134537 1134596 1134848 1135281 1135603 1136424 1136446 1136586 1136935 1137586 1142614 1144504 1149458 1149496 1151839 1158328 1158763 1168874 1173455 1176410 1177143 979907 997857 CVE-2012-2738 CVE-2013-1984 CVE-2013-1995 CVE-2013-1998 CVE-2015-8871 CVE-2016-7163 CVE-2016-7945 CVE-2016-7946 CVE-2017-10790 CVE-2017-8872 CVE-2018-10844 CVE-2018-10845 CVE-2018-10846 CVE-2018-13785 CVE-2018-17972 CVE-2018-20217 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3214 CVE-2018-7191 CVE-2019-11190 CVE-2019-11477 CVE-2019-11478 CVE-2019-11479 CVE-2019-11745 CVE-2019-11815 CVE-2019-11833 CVE-2019-11884 CVE-2019-12382 CVE-2019-12625 CVE-2019-12900 CVE-2019-13722 CVE-2019-17005 CVE-2019-17008 CVE-2019-17009 CVE-2019-17010 CVE-2019-17011 CVE-2019-17012 CVE-2019-18900 CVE-2019-3846 CVE-2019-5482 CVE-2019-5489 CVE-2019-9893 CVE-2020-15049 CVE-2020-25219 CVE-2020-26154 CVE-2020-6821 CVE-2020-6822 CVE-2020-6825 CVE-2020-6827 CVE-2020-6828 SUSE-SU-2017:2141-1 SUSE-SU-2017:2144-1 SUSE-SU-2018:2825-2 SUSE-SU-2018:3933-1 SUSE-SU-2019:1534-1 SUSE-SU-2019:2339-2 SUSE-SU-2019:2941-1 SUSE-SU-2019:3066-1 SUSE-SU-2019:3347-1 SUSE-SU-2020:0079-2 SUSE-SU-2020:0978-1 SUSE-SU-2020:1946-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information gimp-2.8.22-lp150.3 is installed OR gimp-lang-2.8.22-lp150.3 is installed OR gimp-plugins-python-2.8.22-lp150.3 is installed OR libgimp-2_0-0-2.8.22-lp150.3 is installed OR libgimpui-2_0-0-2.8.22-lp150.3 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information chromedriver-76.0.3809.132-lp151.2.25 is installed OR chromium-76.0.3809.132-lp151.2.25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information gnutls-3.2.15-18.6 is installed OR libgnutls-openssl27-3.2.15-18.6 is installed OR libgnutls28-3.2.15-18.6 is installed OR libgnutls28-32bit-3.2.15-18.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information krb5-1.12.5-40.31 is installed OR krb5-32bit-1.12.5-40.31 is installed OR krb5-client-1.12.5-40.31 is installed OR krb5-doc-1.12.5-40.31 is installed OR krb5-plugin-kdb-ldap-1.12.5-40.31 is installed OR krb5-plugin-preauth-otp-1.12.5-40.31 is installed OR krb5-plugin-preauth-pkinit-1.12.5-40.31 is installed OR krb5-server-1.12.5-40.31 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libXi6-1.7.4-17 is installed OR libXi6-32bit-1.7.4-17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information bzip2-1.0.6-30.8 is installed OR bzip2-doc-1.0.6-30.8 is installed OR libbz2-1-1.0.6-30.8 is installed OR libbz2-1-32bit-1.0.6-30.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_156-94_64-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_20-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information glibc-2.22-62.22 is installed OR glibc-32bit-2.22-62.22 is installed OR glibc-devel-2.22-62.22 is installed OR glibc-devel-32bit-2.22-62.22 is installed OR glibc-html-2.22-62.22 is installed OR glibc-i18ndata-2.22-62.22 is installed OR glibc-info-2.22-62.22 is installed OR glibc-locale-2.22-62.22 is installed OR glibc-locale-32bit-2.22-62.22 is installed OR glibc-profile-2.22-62.22 is installed OR glibc-profile-32bit-2.22-62.22 is installed OR nscd-2.22-62.22 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information gvim-7.4.326-17.6 is installed OR vim-7.4.326-17.6 is installed OR vim-data-7.4.326-17.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information cyrus-sasl-2.1.26-8.7 is installed OR cyrus-sasl-32bit-2.1.26-8.7 is installed OR cyrus-sasl-crammd5-2.1.26-8.7 is installed OR cyrus-sasl-crammd5-32bit-2.1.26-8.7 is installed OR cyrus-sasl-digestmd5-2.1.26-8.7 is installed OR cyrus-sasl-gssapi-2.1.26-8.7 is installed OR cyrus-sasl-gssapi-32bit-2.1.26-8.7 is installed OR cyrus-sasl-otp-2.1.26-8.7 is installed OR cyrus-sasl-otp-32bit-2.1.26-8.7 is installed OR cyrus-sasl-plain-2.1.26-8.7 is installed OR cyrus-sasl-plain-32bit-2.1.26-8.7 is installed OR cyrus-sasl-saslauthd-2.1.26-8.7 is installed OR cyrus-sasl-sqlauxprop-2.1.26-8.7 is installed OR cyrus-sasl-sqlauxprop-32bit-2.1.26-8.7 is installed OR libsasl2-3-2.1.26-8.7 is installed OR libsasl2-3-32bit-2.1.26-8.7 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libseccomp-2.4.1-11.3 is installed OR libseccomp2-2.4.1-11.3 is installed OR libseccomp2-32bit-2.4.1-11.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND Package Information mariadb-10.2.32-3.28 is installed OR mariadb-galera-10.2.32-3.28 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND clamav-0.100.3-33.26 is installed

BACK