Oval Definition:oval:org.opensuse.security:def:59831
Revision Date:2021-12-02Version:1
Title:Security update for openssh (Important)
Description:

This update for openssh fixes the following issues:

- CVE-2021-41617: Fixed privilege escalation when AuthorizedKeysCommand/AuthorizedPrincipalsCommand are configured (bsc#1190975).
Family:unixClass:patch
Status:Reference(s):1027519
1034674
1034678
1037216
1067203
1072193
1074562
1075091
1075994
1077999
1087082
1087813
1087932
1090296
1090822
1090823
1091041
1092631
1099279
1102682
1103098
1104199
1104202
1111331
1120386
1122292
1122299
1131107
1133147
1133191
1136449
1137325
1141780
1141782
1141783
1141785
1141787
1141789
1146519
1146544
1146612
1147021
1149591
1150003
1150250
1153811
1154844
1155311
1155897
1156060
1156275
1157038
1157042
1157070
1157143
1157155
1157157
1157158
1157303
1157324
1157333
1157464
1157804
1157923
1158021
1158132
1158381
1158394
1158398
1158410
1158413
1158417
1158427
1158445
1158819
1158823
1158824
1158827
1158834
1158900
1158903
1158904
1159199
1159285
1159297
1159841
1159908
1159910
1159911
1159912
1160195
1162227
1162298
1162928
1162929
1162931
1163971
1164069
1164078
1164846
1165111
1165311
1165643
1165873
1165881
1165984
1165985
1167629
1168075
1168295
1168424
1168829
1168854
1170056
1170345
1170778
1176409
1176412
1177914
1190975
929629
990636
CVE-2009-1892
CVE-2010-2156
CVE-2010-3611
CVE-2010-3616
CVE-2011-0413
CVE-2011-0997
CVE-2011-2748
CVE-2011-2749
CVE-2011-3177
CVE-2011-4539
CVE-2011-4868
CVE-2012-3570
CVE-2012-3571
CVE-2012-3954
CVE-2012-3955
CVE-2013-2266
CVE-2014-8146
CVE-2014-8147
CVE-2015-8605
CVE-2016-6293
CVE-2017-14952
CVE-2017-15422
CVE-2017-17484
CVE-2017-18255
CVE-2017-7867
CVE-2017-7868
CVE-2018-10915
CVE-2018-10925
CVE-2018-10981
CVE-2018-10982
CVE-2018-11212
CVE-2018-12126
CVE-2018-12126
CVE-2018-12127
CVE-2018-12127
CVE-2018-12130
CVE-2018-12130
CVE-2018-21008
CVE-2018-3639
CVE-2018-5390
CVE-2018-5391
CVE-2019-11091
CVE-2019-11091
CVE-2019-11487
CVE-2019-11771
CVE-2019-11772
CVE-2019-11775
CVE-2019-14615
CVE-2019-14869
CVE-2019-14895
CVE-2019-14896
CVE-2019-14897
CVE-2019-14901
CVE-2019-15213
CVE-2019-1547
CVE-2019-1563
CVE-2019-18660
CVE-2019-18675
CVE-2019-18683
CVE-2019-19052
CVE-2019-19062
CVE-2019-19066
CVE-2019-19073
CVE-2019-19074
CVE-2019-19319
CVE-2019-19332
CVE-2019-19447
CVE-2019-19523
CVE-2019-19524
CVE-2019-19525
CVE-2019-19527
CVE-2019-19530
CVE-2019-19531
CVE-2019-19532
CVE-2019-19533
CVE-2019-19534
CVE-2019-19535
CVE-2019-19536
CVE-2019-19537
CVE-2019-19767
CVE-2019-19768
CVE-2019-19965
CVE-2019-19966
CVE-2019-20054
CVE-2019-20096
CVE-2019-2449
CVE-2019-2762
CVE-2019-2766
CVE-2019-2769
CVE-2019-2786
CVE-2019-2816
CVE-2019-3701
CVE-2019-4473
CVE-2019-5108
CVE-2019-7317
CVE-2019-9455
CVE-2019-9458
CVE-2020-10690
CVE-2020-10720
CVE-2020-10942
CVE-2020-11494
CVE-2020-11608
CVE-2020-11609
CVE-2020-14392
CVE-2020-14393
CVE-2020-15999
CVE-2020-2732
CVE-2020-8647
CVE-2020-8648
CVE-2020-8649
CVE-2020-8992
CVE-2020-9383
CVE-2020-9543
CVE-2021-41617
SUSE-SU-2018:1456-1
SUSE-SU-2018:3377-1
SUSE-SU-2019:1235-1
SUSE-SU-2019:1243-1
SUSE-SU-2019:2413-1
SUSE-SU-2020:0660-1
SUSE-SU-2020:2661-1
SUSE-SU-2021:3875-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-LTSS
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • gtk-vnc-lang-0.7.2-lp150.1 is installed
  • OR libgtk-vnc-2_0-0-0.7.2-lp150.1 is installed
  • OR libgvnc-1_0-0-0.7.2-lp150.1 is installed
  • OR typelib-1_0-GVnc-1_0-0.7.2-lp150.1 is installed
  • OR typelib-1_0-GtkVnc-2_0-0.7.2-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libecpg6-10.9-lp151.2.3 is installed
  • OR libecpg6-32bit-10.9-lp151.2.3 is installed
  • OR libpq5-10.9-lp151.2.3 is installed
  • OR libpq5-32bit-10.9-lp151.2.3 is installed
  • OR postgresql10-10.9-lp151.2.3 is installed
  • OR postgresql10-contrib-10.9-lp151.2.3 is installed
  • OR postgresql10-devel-10.9-lp151.2.3 is installed
  • OR postgresql10-docs-10.9-lp151.2.3 is installed
  • OR postgresql10-plperl-10.9-lp151.2.3 is installed
  • OR postgresql10-plpython-10.9-lp151.2.3 is installed
  • OR postgresql10-pltcl-10.9-lp151.2.3 is installed
  • OR postgresql10-server-10.9-lp151.2.3 is installed
  • OR postgresql10-test-10.9-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_85-default-5-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_23-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • dhcp-4.3.3-9 is installed
  • OR dhcp-client-4.3.3-9 is installed
  • OR dhcp-relay-4.3.3-9 is installed
  • OR dhcp-server-4.3.3-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • grub2-2.02-4.53 is installed
  • OR grub2-i386-pc-2.02-4.53 is installed
  • OR grub2-snapper-plugin-2.02-4.53 is installed
  • OR grub2-systemd-sleep-plugin-2.02-4.53 is installed
  • OR grub2-x86_64-efi-2.02-4.53 is installed
  • OR grub2-x86_64-xen-2.02-4.53 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • bzip2-1.0.6-30.8 is installed
  • OR bzip2-doc-1.0.6-30.8 is installed
  • OR libbz2-1-1.0.6-30.8 is installed
  • OR libbz2-1-32bit-1.0.6-30.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • tomcat-8.0.53-29.27 is installed
  • OR tomcat-admin-webapps-8.0.53-29.27 is installed
  • OR tomcat-docs-webapp-8.0.53-29.27 is installed
  • OR tomcat-el-3_0-api-8.0.53-29.27 is installed
  • OR tomcat-javadoc-8.0.53-29.27 is installed
  • OR tomcat-jsp-2_3-api-8.0.53-29.27 is installed
  • OR tomcat-lib-8.0.53-29.27 is installed
  • OR tomcat-servlet-3_1-api-8.0.53-29.27 is installed
  • OR tomcat-webapps-8.0.53-29.27 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libykcs11-1-1.5.0-3 is installed
  • OR libykpiv1-1.5.0-3 is installed
  • OR yubico-piv-tool-1.5.0-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-LTSS is installed
  • AND Package Information
  • openssh-7.2p2-78.13.1 is installed
  • OR openssh-askpass-gnome-7.2p2-78.13.1 is installed
  • OR openssh-fips-7.2p2-78.13.1 is installed
  • OR openssh-helpers-7.2p2-78.13.1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND perl-DBI-1.628-5.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libopenssl-devel-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed
  • OR openssl-1.0.2j-60.55 is installed
  • OR openssl-doc-1.0.2j-60.55 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Twisted-15.2.1-9.5 is installed
    • BACK