Oval Definition:	oval:org.opensuse.security:def:59764
Revision Date: 2021-06-28 Version: 1 Title: Security update for libsolv (Important) Description: This update for libsolv fixes the following issues: Security issues fixed: - CVE-2019-20387: Fixed heap-buffer-overflow in repodata_schema2id (bsc#1161510) - CVE-2021-3200: testcase_read: error out if repos are added or the system is changed too late (bsc#1186229) Other issues fixed: - backport support for blacklisted packages to support ptf packages and retracted patches - fix ruleinfo of complex dependencies returning the wrong origin - fix SOLVER_FLAG_FOCUS_BEST updateing packages without reason - fix add_complex_recommends() selecting conflicted packages in rare cases - fix potential segfault in resolve_jobrules - fix solv_zchunk decoding error if large chunks are used Family: unix Class: patch Status: Reference(s): 1055857 1059893 1070046 1072947 1078662 1080740 1083507 1084300 1084521 1084524 1084532 1088681 1089039 1090518 1097356 1101246 1101470 1104789 1106197 1120943 1132728 1132729 1132732 1132734 1134718 1136446 1137597 1140747 1153108 1156321 1156331 1160770 1161510 1163985 1165643 1171475 1171847 1172105 1172116 1172121 1173027 1174628 1186229 997043 CVE-2016-6328 CVE-2016-7545 CVE-2017-1000159 CVE-2017-18207 CVE-2017-7544 CVE-2018-0737 CVE-2018-1000120 CVE-2018-1000121 CVE-2018-1000122 CVE-2018-20030 CVE-2018-20856 CVE-2018-2755 CVE-2018-2761 CVE-2018-2766 CVE-2018-2767 CVE-2018-2771 CVE-2018-2781 CVE-2018-2782 CVE-2018-2784 CVE-2018-2787 CVE-2018-2813 CVE-2018-2817 CVE-2018-2819 CVE-2018-5848 CVE-2018-7738 CVE-2019-10220 CVE-2019-10245 CVE-2019-11477 CVE-2019-11478 CVE-2019-13272 CVE-2019-20387 CVE-2019-2602 CVE-2019-2684 CVE-2019-2697 CVE-2019-2698 CVE-2019-3846 CVE-2019-9278 CVE-2020-0093 CVE-2020-12767 CVE-2020-13112 CVE-2020-13113 CVE-2020-13114 CVE-2020-14344 CVE-2020-1720 CVE-2020-8177 CVE-2020-9543 CVE-2021-3200 SUSE-SU-2018:0769-1 SUSE-SU-2018:0934-1 SUSE-SU-2018:0947-1 SUSE-SU-2018:3926-1 SUSE-SU-2020:0660-1 SUSE-SU-2020:1534-1 SUSE-SU-2020:2196-1 SUSE-SU-2021:2180-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-LTSS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information apache2-mod_php7-7.2.5-lp150.1 is installed OR php7-7.2.5-lp150.1 is installed OR php7-ctype-7.2.5-lp150.1 is installed OR php7-dom-7.2.5-lp150.1 is installed OR php7-iconv-7.2.5-lp150.1 is installed OR php7-json-7.2.5-lp150.1 is installed OR php7-mysql-7.2.5-lp150.1 is installed OR php7-pdo-7.2.5-lp150.1 is installed OR php7-pgsql-7.2.5-lp150.1 is installed OR php7-sqlite-7.2.5-lp150.1 is installed OR php7-tokenizer-7.2.5-lp150.1 is installed OR php7-xmlreader-7.2.5-lp150.1 is installed OR php7-xmlwriter-7.2.5-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information python-requests-2.20.1-lp151.2.3 is installed OR python-requests-test-2.20.1-lp151.2.3 is installed OR python2-requests-2.20.1-lp151.2.3 is installed OR python2-requests-test-2.20.1-lp151.2.3 is installed OR python3-requests-2.20.1-lp151.2.3 is installed OR python3-requests-test-2.20.1-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libmysqlclient18-10.0.35-29.20 is installed OR libmysqlclient18-32bit-10.0.35-29.20 is installed OR mariadb-10.0.35-29.20 is installed OR mariadb-client-10.0.35-29.20 is installed OR mariadb-errormessages-10.0.35-29.20 is installed OR mariadb-tools-10.0.35-29.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information policycoreutils-2.5-9 is installed OR policycoreutils-python-2.5-9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information cups-1.7.5-20.26 is installed OR cups-client-1.7.5-20.26 is installed OR cups-libs-1.7.5-20.26 is installed OR cups-libs-32bit-1.7.5-20.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information curl-7.37.0-37.47 is installed OR libcurl4-7.37.0-37.47 is installed OR libcurl4-32bit-7.37.0-37.47 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_162-94_72-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_22-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND ant-1.9.4-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information libsolv-devel-0.6.37-2.33.1 is installed OR libsolv-tools-0.6.37-2.33.1 is installed OR libzypp-16.21.4-2.51.1 is installed OR libzypp-devel-16.21.4-2.51.1 is installed OR perl-solv-0.6.37-2.33.1 is installed OR python-solv-0.6.37-2.33.1 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libexif-0.6.22-8.9 is installed OR libexif12-0.6.22-8.9 is installed OR libexif12-32bit-0.6.22-8.9 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information cobbler-2.6.6-49.26 is installed OR golang-github-prometheus-node_exporter-0.18.1-1.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libX11-1.6.2-12.12 is installed OR libX11-6-1.6.2-12.12 is installed OR libX11-6-32bit-1.6.2-12.12 is installed OR libX11-data-1.6.2-12.12 is installed OR libX11-xcb1-1.6.2-12.12 is installed OR libX11-xcb1-32bit-1.6.2-12.12 is installed
BACK