OVAL Reference oval:org.opensuse.security:def:59653

Oval Definition:

oval:org.opensuse.security:def:59653

Revision Date:	2020-12-01	Version:	1
Title:	Security update for grub2 (Important)
Description:	This update for grub2 fixes the following issues: - Fix for CVE-2020-10713 (bsc#1168994) - Fix for CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311 (bsc#1173812) - Fix for CVE-2020-15706 (bsc#1174463) - Fix for CVE-2020-15707 (bsc#1174570) - Use overflow checking primitives where the arithmetic expression for buffer allocations may include unvalidated data - Use gcc-9 compiler for overflow check builtins - Backport gcc-9 build fixes - Fix packed-not-aligned error on GCC 8 (bsc#1084632) - Backport gcc-7 build fixes
Family:	unix	Class:	patch
Status:		Reference(s):	1004527 1005776 1005778 1005780 1005781 1012382 1012829 1015342 1015343 1019675 1019680 1019695 1019699 1020412 1020645 1020657 1020989 1021424 1022595 1022604 1022743 1022912 1022967 1024346 1024373 1024405 1025461 1030850 1031717 1031784 1032150 1034048 1034075 1035479 1036060 1036215 1036737 1037579 1037838 1037890 1038583 1040813 1042847 1043353 1043354 1043598 1043983 1044503 1046529 1047238 1047487 1047908 1047989 1048072 1048155 1048228 1048325 1048327 1048356 1048501 1048893 1048912 1048934 1049226 1049272 1049291 1049336 1049361 1049580 1050037 1050072 1050098 1050100 1050471 1050635 1050742 1051442 1051790 1051987 1052093 1052094 1052095 1052360 1052384 1052470 1052580 1052593 1052708 1052717 1052721 1052768 1052777 1052781 1052888 1053043 1053309 1053472 1053627 1053629 1053633 1053681 1053685 1053802 1053915 1053919 1054082 1054084 1054600 1054654 1055013 1055068 1055096 1055265 1055272 1055290 1055359 1055374 1055455 1055456 1055493 1055567 1055709 1055755 1055896 1055935 1055963 1056061 1056185 1056230 1056261 1056286 1056427 1056587 1056588 1056596 1056686 1056782 1056827 1056849 1056982 1057000 1057015 1057031 1057035 1057038 1057047 1057067 1057383 1057498 1057849 1058038 1058116 1058135 1058410 1058507 1058512 1058550 1058754 1058755 1058757 1059051 1059465 1059500 1059863 1060162 1060197 1060229 1060249 1060400 1060985 1061017 1061046 1061064 1061067 1061172 1061451 1061721 1061775 1061831 1061872 1062279 1062452 1062520 1062752 1062962 1063102 1063349 1063460 1063475 1063479 1063501 1063509 1063520 1063570 1063667 1063671 1063695 1064064 1064206 1064388 1064436 1069607 1069632 1072362 1072901 1073002 1074120 1074125 1074185 1074309 1074594 1075014 1075939 1076021 1076051 1078782 1081714 1082007 1082008 1082009 1082010 1082011 1082014 1082058 1082318 1084632 1087433 1087434 1087436 1087437 1087440 1087441 1088279 1088601 1090205 1097158 1097624 1098592 1102046 1102682 1103040 1104457 1105166 1107832 1110233 1110723 1112530 1112532 1128828 1129180 1130611 1130617 1130620 1130622 1130623 1130627 1131863 1134156 1140359 1142614 1146882 1146884 1152990 1152992 1152994 1152995 1154212 1158442 1168994 1171517 1172140 1172275 1172437 1173812 1174463 1174570 1175626 1175656 963575 964944 966170 966172 966186 966191 966316 966318 969476 969477 969756 971975 981309 CVE-2012-5112 CVE-2012-5133 CVE-2014-1344 CVE-2014-1384 CVE-2014-1385 CVE-2014-1386 CVE-2014-1387 CVE-2014-1388 CVE-2014-1389 CVE-2014-1390 CVE-2014-1748 CVE-2015-1071 CVE-2015-1076 CVE-2015-1081 CVE-2015-1083 CVE-2015-1120 CVE-2015-1122 CVE-2015-1127 CVE-2015-1153 CVE-2015-1155 CVE-2015-2330 CVE-2015-3658 CVE-2015-3659 CVE-2015-3727 CVE-2015-3731 CVE-2015-3741 CVE-2015-3743 CVE-2015-3745 CVE-2015-3747 CVE-2015-3748 CVE-2015-3749 CVE-2015-3752 CVE-2015-5788 CVE-2015-5794 CVE-2015-5801 CVE-2015-5809 CVE-2015-5822 CVE-2015-5928 CVE-2015-9096 CVE-2016-2339 CVE-2016-7798 CVE-2017-0898 CVE-2017-0899 CVE-2017-0900 CVE-2017-0901 CVE-2017-0902 CVE-2017-0903 CVE-2017-1000252 CVE-2017-1000469 CVE-2017-10784 CVE-2017-10995 CVE-2017-11472 CVE-2017-11505 CVE-2017-11525 CVE-2017-11526 CVE-2017-11539 CVE-2017-11639 CVE-2017-11750 CVE-2017-12134 CVE-2017-12153 CVE-2017-12154 CVE-2017-12565 CVE-2017-12640 CVE-2017-12641 CVE-2017-12643 CVE-2017-12671 CVE-2017-12673 CVE-2017-12676 CVE-2017-12935 CVE-2017-13059 CVE-2017-13080 CVE-2017-13141 CVE-2017-13142 CVE-2017-13147 CVE-2017-14033 CVE-2017-14051 CVE-2017-14064 CVE-2017-14103 CVE-2017-14106 CVE-2017-14489 CVE-2017-14649 CVE-2017-15218 CVE-2017-15265 CVE-2017-15649 CVE-2017-17405 CVE-2017-17504 CVE-2017-17681 CVE-2017-17742 CVE-2017-17790 CVE-2017-17879 CVE-2017-17884 CVE-2017-17914 CVE-2017-18008 CVE-2017-18027 CVE-2017-18029 CVE-2017-18258 CVE-2017-9228 CVE-2017-9229 CVE-2017-9261 CVE-2017-9262 CVE-2018-0732 CVE-2018-1000073 CVE-2018-1000074 CVE-2018-1000075 CVE-2018-1000076 CVE-2018-1000077 CVE-2018-1000078 CVE-2018-1000079 CVE-2018-14404 CVE-2018-14567 CVE-2018-14633 CVE-2018-14680 CVE-2018-14681 CVE-2018-14682 CVE-2018-15378 CVE-2018-16395 CVE-2018-16396 CVE-2018-17182 CVE-2018-5246 CVE-2018-5390 CVE-2018-5685 CVE-2018-6914 CVE-2018-8777 CVE-2018-8778 CVE-2018-8779 CVE-2018-8780 CVE-2018-9251 CVE-2019-12973 CVE-2019-14811 CVE-2019-14812 CVE-2019-14813 CVE-2019-14817 CVE-2019-15666 CVE-2019-15845 CVE-2019-16201 CVE-2019-16254 CVE-2019-16255 CVE-2019-2933 CVE-2019-2945 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2989 CVE-2019-2992 CVE-2019-2999 CVE-2019-3835 CVE-2019-3839 CVE-2019-8320 CVE-2019-8321 CVE-2019-8322 CVE-2019-8323 CVE-2019-8324 CVE-2019-8325 CVE-2019-9893 CVE-2020-10663 CVE-2020-10713 CVE-2020-10757 CVE-2020-14308 CVE-2020-14309 CVE-2020-14310 CVE-2020-14311 CVE-2020-15706 CVE-2020-15707 SUSE-SU-2017:2847-1 SUSE-SU-2018:0349-1 SUSE-SU-2018:1736-1 SUSE-SU-2018:3081-1 SUSE-SU-2018:3436-1 SUSE-SU-2019:2478-1 SUSE-SU-2020:0051-1 SUSE-SU-2020:1570-1 SUSE-SU-2020:2076-1 SUSE-SU-2020:2628-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.1 NonFree SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information python3-3.6.5-lp150.1 is installed OR python3-curses-3.6.5-lp150.1 is installed OR python3-dbm-3.6.5-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information kconf_update5-5.32.0-7 is installed OR kconfig-5.32.0-7 is installed OR kconfig-devel-5.32.0-7 is installed OR kconfig-devel-32bit-5.55.0-lp151.2.5 is installed OR kconfig-devel-64bit-5.32.0-7 is installed OR kdelibs4-4.14.33-7 is installed OR kdelibs4-apidocs-4.14.33-7 is installed OR kdelibs4-branding-upstream-4.14.33-7 is installed OR kdelibs4-core-4.14.33-7 is installed OR kdelibs4-doc-4.14.33-7 is installed OR libKF5ConfigCore5-5.32.0-7 is installed OR libKF5ConfigCore5-32bit-5.55.0-lp151.2.5 is installed OR libKF5ConfigCore5-64bit-5.32.0-7 is installed OR libKF5ConfigCore5-lang-5.32.0-7 is installed OR libKF5ConfigGui5-5.32.0-7 is installed OR libKF5ConfigGui5-32bit-5.55.0-lp151.2.5 is installed OR libKF5ConfigGui5-64bit-5.32.0-7 is installed OR libkde4-4.14.33-7 is installed OR libkde4-32bit-4.14.38-lp151.9.5 is installed OR libkde4-64bit-4.14.33-7 is installed OR libkde4-devel-4.14.33-7 is installed OR libkdecore4-4.14.33-7 is installed OR libkdecore4-32bit-4.14.38-lp151.9.5 is installed OR libkdecore4-64bit-4.14.33-7 is installed OR libkdecore4-devel-4.14.33-7 is installed OR libksuseinstall-devel-4.14.33-7 is installed OR libksuseinstall1-4.14.33-7 is installed OR libksuseinstall1-32bit-4.14.38-lp151.9.5 is installed OR libksuseinstall1-64bit-4.14.33-7 is installed
Definition Synopsis
openSUSE Leap 15.1 NonFree is installed AND opera-67.0.3575.97-lp151.2.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information grub2-2.02~beta2-115.49 is installed OR grub2-i386-pc-2.02~beta2-115.49 is installed OR grub2-snapper-plugin-2.02~beta2-115.49 is installed OR grub2-systemd-sleep-plugin-2.02~beta2-115.49 is installed OR grub2-x86_64-efi-2.02~beta2-115.49 is installed OR grub2-x86_64-xen-2.02~beta2-115.49 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libopenssl-devel-1.0.2j-60.30 is installed OR libopenssl1_0_0-1.0.2j-60.30 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.30 is installed OR openssl-1.0.2j-60.30 is installed OR openssl-doc-1.0.2j-60.30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libjavascriptcoregtk-3_0-0-2.4.11-23 is installed OR libwebkitgtk-3_0-0-2.4.11-23 is installed OR libwebkitgtk3-lang-2.4.11-23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information postgresql96-9.6.15-3.29 is installed OR postgresql96-contrib-9.6.15-3.29 is installed OR postgresql96-docs-9.6.15-3.29 is installed OR postgresql96-libs-9.6.15-3.29 is installed OR postgresql96-plperl-9.6.15-3.29 is installed OR postgresql96-plpython-9.6.15-3.29 is installed OR postgresql96-pltcl-9.6.15-3.29 is installed OR postgresql96-server-9.6.15-3.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information postgresql96-9.6.15-3.29 is installed OR postgresql96-contrib-9.6.15-3.29 is installed OR postgresql96-docs-9.6.15-3.29 is installed OR postgresql96-libs-9.6.15-3.29 is installed OR postgresql96-plperl-9.6.15-3.29 is installed OR postgresql96-plpython-9.6.15-3.29 is installed OR postgresql96-pltcl-9.6.15-3.29 is installed OR postgresql96-server-9.6.15-3.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information MozillaFirefox-68.2.0-109.95 is installed OR MozillaFirefox-translations-common-68.2.0-109.95 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libgcrypt-1.6.1-16.62 is installed OR libgcrypt20-1.6.1-16.62 is installed OR libgcrypt20-32bit-1.6.1-16.62 is installed OR libgcrypt20-hmac-1.6.1-16.62 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.62 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND chrony-2.3-3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND cobbler-2.6.6-49.9 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ghostscript-9.27-23.28 is installed OR ghostscript-x11-9.27-23.28 is installed

BACK