Oval Definition:oval:org.opensuse.security:def:59619
Revision Date:2020-12-01Version:1
Title:Security update for git (Moderate)
Description:

This update for git to 2.26.2 fixes the following issues:

Security issue fixed:

- CVE-2020-11008: Specially crafted URLs may have tricked the credentials helper to providing credential information that is not appropriate for the protocol in use and host being contacted (bsc#1169936).

Non-security issue fixed:

- Fixed git-daemon not starting after conversion from sysvinit to systemd service (bsc#1169605). - Enabled access for git-daemon in firewall configuration (bsc#1170302). - Fixed problems with recent switch to protocol v2, which caused fetches transferring unreasonable amount of data (bsc#1170741).
Family:unixClass:patch
Status:Reference(s):1005258
1012382
1013992
1013993
1021669
1027519
1031717
1034273
1046610
1057734
1067720
1070536
1075428
1076847
1077560
1080074
1082153
1082299
1083125
1083745
1083836
1084353
1084610
1084721
1084829
1085042
1085185
1085224
1085402
1085404
1086162
1086194
1087088
1087260
1087289
1087845
1088241
1088242
1088600
1088684
1089198
1089608
1089644
1089752
1090643
1093697
1094725
1095242
1095472
1096224
1097521
1097522
1097523
1102379
1102400
1102410
1106171
1106172
1106173
1106195
1107410
1107411
1107412
1107413
1107420
1107421
1107422
1107423
1107426
1107581
1108027
1109105
1127223
1127308
1128574
1149792
1150011
1154980
1159646
1159819
1163927
1168669
1168930
1169605
1169746
1169786
1169936
1170302
1170603
1170741
1170908
1170939
1171978
1173022
1175476
910683
914442
950110
950111
CVE-2009-5155
CVE-2011-2483
CVE-2013-1991
CVE-2013-2000
CVE-2014-9636
CVE-2014-9913
CVE-2015-7696
CVE-2015-7697
CVE-2016-1245
CVE-2016-9844
CVE-2017-18257
CVE-2017-5495
CVE-2018-1000035
CVE-2018-10087
CVE-2018-10124
CVE-2018-1087
CVE-2018-11806
CVE-2018-12891
CVE-2018-12892
CVE-2018-12893
CVE-2018-1336
CVE-2018-15908
CVE-2018-15909
CVE-2018-15910
CVE-2018-15911
CVE-2018-16509
CVE-2018-16510
CVE-2018-16511
CVE-2018-16513
CVE-2018-16539
CVE-2018-16540
CVE-2018-16541
CVE-2018-16542
CVE-2018-16543
CVE-2018-16585
CVE-2018-16802
CVE-2018-17183
CVE-2018-3665
CVE-2018-7740
CVE-2018-8014
CVE-2018-8034
CVE-2018-8037
CVE-2018-8043
CVE-2018-8781
CVE-2018-8822
CVE-2018-8897
CVE-2019-14559
CVE-2019-14562
CVE-2019-14822
CVE-2019-17006
CVE-2019-17571
CVE-2019-18277
CVE-2019-9169
CVE-2020-11008
CVE-2020-12268
CVE-2020-12399
CVE-2020-12402
CVE-2020-5260
SUSE-SU-2017:2294-1
SUSE-SU-2018:2699-1
SUSE-SU-2018:2975-1
SUSE-SU-2018:2978-1
SUSE-SU-2019:1958-2
SUSE-SU-2019:3288-1
SUSE-SU-2020:0054-1
SUSE-SU-2020:1295-1
SUSE-SU-2020:1839-1
SUSE-SU-2020:3126-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libwmf-0_2-7-0.2.8.4-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • neovim-0.3.7-lp151.2.7 is installed
  • OR neovim-lang-0.3.7-lp151.2.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • git-2.26.2-27.36 is installed
  • OR git-core-2.26.2-27.36 is installed
  • OR git-doc-2.26.2-27.36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • xen-4.7.6_02-43.36 is installed
  • OR xen-doc-html-4.7.6_02-43.36 is installed
  • OR xen-libs-4.7.6_02-43.36 is installed
  • OR xen-libs-32bit-4.7.6_02-43.36 is installed
  • OR xen-tools-4.7.6_02-43.36 is installed
  • OR xen-tools-domU-4.7.6_02-43.36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND libXxf86dga1-1.1.4-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • kernel-default-4.4.180-94.103 is installed
  • OR kernel-default-base-4.4.180-94.103 is installed
  • OR kernel-default-devel-4.4.180-94.103 is installed
  • OR kernel-devel-4.4.180-94.103 is installed
  • OR kernel-macros-4.4.180-94.103 is installed
  • OR kernel-source-4.4.180-94.103 is installed
  • OR kernel-syms-4.4.180-94.103 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • curl-7.37.0-37.43 is installed
  • OR libcurl4-7.37.0-37.43 is installed
  • OR libcurl4-32bit-7.37.0-37.43 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libopenssl-devel-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed
  • OR openssl-1.0.2j-60.55 is installed
  • OR openssl-doc-1.0.2j-60.55 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • gnutls-3.3.27-3.3 is installed
  • OR libgnutls-openssl27-3.3.27-3.3 is installed
  • OR libgnutls28-3.3.27-3.3 is installed
  • OR libgnutls28-32bit-3.3.27-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • expat-2.1.0-21.3 is installed
  • OR libexpat1-2.1.0-21.3 is installed
  • OR libexpat1-32bit-2.1.0-21.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND haproxy-1.6.11-11.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • glibc-2.22-62.22 is installed
  • OR glibc-32bit-2.22-62.22 is installed
  • OR glibc-devel-2.22-62.22 is installed
  • OR glibc-devel-32bit-2.22-62.22 is installed
  • OR glibc-html-2.22-62.22 is installed
  • OR glibc-i18ndata-2.22-62.22 is installed
  • OR glibc-info-2.22-62.22 is installed
  • OR glibc-locale-2.22-62.22 is installed
  • OR glibc-locale-32bit-2.22-62.22 is installed
  • OR glibc-profile-2.22-62.22 is installed
  • OR glibc-profile-32bit-2.22-62.22 is installed
  • OR nscd-2.22-62.22 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • xen-4.11.4_06-2.33 is installed
  • OR xen-doc-html-4.11.4_06-2.33 is installed
  • OR xen-libs-4.11.4_06-2.33 is installed
  • OR xen-libs-32bit-4.11.4_06-2.33 is installed
  • OR xen-tools-4.11.4_06-2.33 is installed
  • OR xen-tools-domU-4.11.4_06-2.33 is installed
    • BACK