OVAL Reference oval:org.opensuse.security:def:59952

Oval Definition:

oval:org.opensuse.security:def:59952

Revision Date:	2020-12-01	Version:	1
Title:	Security update for curl (Important)
Description:	This update for curl fixes the following issues: Security issues fixed: - CVE-2019-3823: Fixed a heap out-of-bounds read in the code handling the end-of-response for SMTP (bsc#1123378). - CVE-2019-3822: Fixed a stack based buffer overflow in the function creating an outgoing NTLM type-3 message (bsc#1123377). - CVE-2018-16890: Fixed a heap buffer out-of-bounds read in the function handling incoming NTLM type-2 messages (bsc#1123371).
Family:	unix	Class:	patch
Status:		Reference(s):	1012382 1019695 1019699 1022604 1031717 1046610 1060799 1064206 1068032 1073059 1073069 1075428 1076033 1077560 1083574 1083745 1083836 1084223 1084310 1084328 1084353 1084452 1084610 1084699 1084829 1084889 1084898 1084914 1084918 1084967 1085042 1085058 1085224 1085383 1085402 1085404 1085487 1085507 1085511 1085679 1085981 1086015 1086162 1086194 1086357 1086499 1086518 1086607 1086690 1087088 1087211 1087231 1087260 1087274 1087659 1087845 1087906 1087999 1088050 1088087 1088241 1088267 1088313 1088324 1088600 1088684 1088871 1094150 1094154 1094161 1122012 1123371 1123377 1123378 1124729 1124734 1128378 1144903 1145559 1145604 1151021 1153108 1153158 1153161 1154862 1167068 1167231 1170558 1171363 1172402 1173576 1173613 1174633 1174635 1174638 1178512 682920 802154 936786 976955 CVE-2009-3894 CVE-2012-5112 CVE-2012-5133 CVE-2014-1344 CVE-2014-1384 CVE-2014-1385 CVE-2014-1386 CVE-2014-1387 CVE-2014-1388 CVE-2014-1389 CVE-2014-1390 CVE-2014-1748 CVE-2015-1071 CVE-2015-1076 CVE-2015-1081 CVE-2015-1083 CVE-2015-1120 CVE-2015-1122 CVE-2015-1127 CVE-2015-1153 CVE-2015-1155 CVE-2015-2330 CVE-2015-3239 CVE-2015-3658 CVE-2015-3659 CVE-2015-3727 CVE-2015-3731 CVE-2015-3741 CVE-2015-3743 CVE-2015-3745 CVE-2015-3747 CVE-2015-3748 CVE-2015-3749 CVE-2015-3752 CVE-2015-5788 CVE-2015-5794 CVE-2015-5801 CVE-2015-5809 CVE-2015-5822 CVE-2015-5928 CVE-2017-18257 CVE-2017-18269 CVE-2017-18379 CVE-2018-1091 CVE-2018-11236 CVE-2018-11237 CVE-2018-16890 CVE-2018-7740 CVE-2018-8043 CVE-2018-8822 CVE-2019-10220 CVE-2019-11500 CVE-2019-14835 CVE-2019-17133 CVE-2019-17498 CVE-2019-3822 CVE-2019-3823 CVE-2019-6974 CVE-2019-7221 CVE-2019-9213 CVE-2020-12108 CVE-2020-12137 CVE-2020-12402 CVE-2020-12405 CVE-2020-12406 CVE-2020-12410 CVE-2020-12415 CVE-2020-12416 CVE-2020-12417 CVE-2020-12418 CVE-2020-12419 CVE-2020-12420 CVE-2020-12421 CVE-2020-12422 CVE-2020-12423 CVE-2020-12424 CVE-2020-12425 CVE-2020-12426 CVE-2020-14345 CVE-2020-14346 CVE-2020-14347 CVE-2020-28196 SUSE-SU-2018:1048-1 SUSE-SU-2018:1562-1 SUSE-SU-2019:0284-1 SUSE-SU-2019:2454-1 SUSE-SU-2020:1563-1 SUSE-SU-2020:2331-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND libopus0-1.2.1-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND squid-4.8-lp151.2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information curl-7.37.0-37.34 is installed OR libcurl4-7.37.0-37.34 is installed OR libcurl4-32bit-7.37.0-37.34 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND dstat-0.7.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information freeradius-server-3.0.15-2.14 is installed OR freeradius-server-doc-3.0.15-2.14 is installed OR freeradius-server-krb5-3.0.15-2.14 is installed OR freeradius-server-ldap-3.0.15-2.14 is installed OR freeradius-server-libs-3.0.15-2.14 is installed OR freeradius-server-mysql-3.0.15-2.14 is installed OR freeradius-server-perl-3.0.15-2.14 is installed OR freeradius-server-postgresql-3.0.15-2.14 is installed OR freeradius-server-python-3.0.15-2.14 is installed OR freeradius-server-sqlite-3.0.15-2.14 is installed OR freeradius-server-utils-3.0.15-2.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_162-94_69-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_21-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information tomcat-8.0.53-29.16 is installed OR tomcat-admin-webapps-8.0.53-29.16 is installed OR tomcat-docs-webapp-8.0.53-29.16 is installed OR tomcat-el-3_0-api-8.0.53-29.16 is installed OR tomcat-javadoc-8.0.53-29.16 is installed OR tomcat-jsp-2_3-api-8.0.53-29.16 is installed OR tomcat-lib-8.0.53-29.16 is installed OR tomcat-servlet-3_1-api-8.0.53-29.16 is installed OR tomcat-webapps-8.0.53-29.16 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND kdump-0.8.16-9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information kernel-default-4.12.14-95.57 is installed OR kernel-default-base-4.12.14-95.57 is installed OR kernel-default-devel-4.12.14-95.57 is installed OR kernel-devel-4.12.14-95.57 is installed OR kernel-macros-4.12.14-95.57 is installed OR kernel-source-4.12.14-95.57 is installed OR kernel-syms-4.12.14-95.57 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-68.9.0-109.123 is installed OR MozillaFirefox-translations-common-68.9.0-109.123 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND Package Information ardana-ansible-9.0+git.1560211997.7ac9792-3.3 is installed OR ardana-barbican-9.0+git.1559292830.208d258-3.3 is installed OR ardana-cassandra-9.0+git.1557220194.6a90deb-3.3 is installed OR ardana-ceilometer-9.0+git.1557219517.7b97993-3.3 is installed OR ardana-cinder-9.0+git.1559039284.6fc1d47-3.3 is installed OR ardana-cluster-9.0+git.1557219586.7c96a6d-3.3 is installed OR ardana-cobbler-9.0+git.1557219626.b190680-3.3 is installed OR ardana-db-9.0+git.1560868957.42bcb70-3.3 is installed OR ardana-designate-9.0+git.1558588538.9211022-3.3 is installed OR ardana-glance-9.0+git.1559033522.5e5be1c-3.3 is installed OR ardana-heat-9.0+git.1559036788.b727b53-3.3 is installed OR ardana-horizon-9.0+git.1557219807.6036a8e-3.3 is installed OR ardana-input-model-9.0+git.1557220534.883f8c9-3.3 is installed OR ardana-installer-ui-9.0+git.1559171053.476225c-3.3 is installed OR ardana-ironic-9.0+git.1560365077.17250c6-3.3 is installed OR ardana-keystone-9.0+git.1559292289.b5ed172-3.3 is installed OR ardana-logging-9.0+git.1557219914.6d7ebb5-3.3 is installed OR ardana-magnum-9.0+git.1557219960.226e32b-3.3 is installed OR ardana-manila-9.0+git.1556646861.58ce24f-3.3 is installed OR ardana-memcached-9.0+git.1557219995.cd49525-3.3 is installed OR ardana-monasca-9.0+git.1556731170.c8210e0-3.3 is installed OR ardana-monasca-transform-9.0+git.1557220073.7e88cfa-3.3 is installed OR ardana-mq-9.0+git.1560214193.fc0378b-3.3 is installed OR ardana-neutron-9.0+git.1560464557.d2f6200-3.3 is installed OR ardana-nova-9.0+git.1559869848.7a706df-3.3 is installed OR ardana-octavia-9.0+git.1560519270.e0a2620-3.3 is installed OR ardana-opsconsole-9.0+git.1553642196.ba23382-3.3 is installed OR ardana-opsconsole-ui-9.0+git.1555530925.206f1a8-4.3 is installed OR ardana-osconfig-9.0+git.1560269313.7ddaff2-3.3 is installed OR ardana-service-9.0+git.1560974342.47a5b12-3.3 is installed OR ardana-service-ansible-9.0+git.1557220501.ebd3011-3.3 is installed OR ardana-ses-9.0+git.1554740095.48252d3-3.3 is installed OR ardana-spark-9.0+git.1557220247.e78d1c3-3.3 is installed OR ardana-swift-9.0+git.1559038506.cc119d9-3.3 is installed OR ardana-tempest-9.0+git.1560949748.f0bd816-3.3 is installed OR ardana-tls-9.0+git.1557220381.5641a2e-3.3 is installed OR caasp-openstack-heat-templates-1.0+git.1560518045.ad7dc6d-3.3 is installed OR documentation-suse-openstack-cloud-deployment-9.20190621-3.3 is installed OR documentation-suse-openstack-cloud-operations-9.20190621-3.3 is installed OR documentation-suse-openstack-cloud-security-9.20190621-3.3 is installed OR documentation-suse-openstack-cloud-supplement-9.20190621-3.3 is installed OR galera-python-clustercheck-0.0+git.1562242499.36b8b64-6.3 is installed OR grafana-5.3.3-3.3 is installed OR grafana-monasca-ui-drilldown-1.14.1~dev7-3.3 is installed OR openstack-ceilometer-11.0.2~dev13-3.3 is installed OR openstack-ceilometer-agent-central-11.0.2~dev13-3.3 is installed OR openstack-ceilometer-agent-compute-11.0.2~dev13-3.3 is installed OR openstack-ceilometer-agent-ipmi-11.0.2~dev13-3.3 is installed OR openstack-ceilometer-agent-notification-11.0.2~dev13-3.3 is installed OR openstack-ceilometer-polling-11.0.2~dev13-3.3 is installed OR openstack-cinder-13.0.6~dev12-3.3 is installed OR openstack-cinder-api-13.0.6~dev12-3.3 is installed OR openstack-cinder-backup-13.0.6~dev12-3.3 is installed OR openstack-cinder-scheduler-13.0.6~dev12-3.3 is installed OR openstack-cinder-volume-13.0.6~dev12-3.3 is installed OR openstack-dashboard-14.0.4~dev4-3.3 is installed OR openstack-designate-7.0.1~dev20-3.3 is installed OR openstack-designate-agent-7.0.1~dev20-3.3 is installed OR openstack-designate-api-7.0.1~dev20-3.3 is installed OR openstack-designate-central-7.0.1~dev20-3.3 is installed OR openstack-designate-producer-7.0.1~dev20-3.3 is installed OR openstack-designate-sink-7.0.1~dev20-3.3 is installed OR openstack-designate-worker-7.0.1~dev20-3.3 is installed OR openstack-heat-11.0.3~dev5-3.3 is installed OR openstack-heat-api-11.0.3~dev5-3.3 is installed OR openstack-heat-api-cfn-11.0.3~dev5-3.3 is installed OR openstack-heat-engine-11.0.3~dev5-3.3 is installed OR openstack-heat-plugin-heat_docker-11.0.3~dev5-3.3 is installed OR openstack-horizon-plugin-designate-ui-7.0.1~dev7-3.3 is installed OR openstack-horizon-plugin-heat-ui-1.4.1~dev4-4.3 is installed OR openstack-horizon-plugin-magnum-ui-5.0.2~dev9-3.3 is installed OR openstack-horizon-plugin-monasca-ui-1.14.1~dev7-3.3 is installed OR openstack-ironic-11.1.4~dev2-3.3 is installed OR openstack-ironic-api-11.1.4~dev2-3.3 is installed OR openstack-ironic-conductor-11.1.4~dev2-3.3 is installed OR openstack-ironic-python-agent-3.3.2~dev13-3.3 is installed OR openstack-keystone-14.1.1~dev7-3.3 is installed OR openstack-magnum-7.1.1~dev24-3.3 is installed OR openstack-magnum-api-7.1.1~dev24-3.3 is installed OR openstack-magnum-conductor-7.1.1~dev24-3.3 is installed OR openstack-manila-7.3.1~dev2-4.3 is installed OR openstack-manila-api-7.3.1~dev2-4.3 is installed OR openstack-manila-data-7.3.1~dev2-4.3 is installed OR openstack-manila-scheduler-7.3.1~dev2-4.3 is installed OR openstack-manila-share-7.3.1~dev2-4.3 is installed OR openstack-monasca-agent-2.8.1~dev10-3.3 is installed OR openstack-monasca-notification-1.14.1~dev8-6.3 is installed OR openstack-neutron-13.0.4~dev89-3.3 is installed OR openstack-neutron-dhcp-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-fwaas-13.0.2~dev14-3.3 is installed OR openstack-neutron-gbp-5.0.1~dev443-3.3 is installed OR openstack-neutron-ha-tool-13.0.4~dev89-3.3 is installed OR openstack-neutron-l3-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-lbaas-13.0.1~dev12-3.3 is installed OR openstack-neutron-lbaas-agent-13.0.1~dev12-3.3 is installed OR openstack-neutron-linuxbridge-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-macvtap-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-metadata-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-metering-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-openvswitch-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-server-13.0.4~dev89-3.3 is installed OR openstack-neutron-vpnaas-13.0.2~dev4-3.3 is installed OR openstack-neutron-vyatta-agent-13.0.2~dev4-3.3 is installed OR openstack-nova-18.2.2~dev9-3.3 is installed OR openstack-nova-api-18.2.2~dev9-3.3 is installed OR openstack-nova-cells-18.2.2~dev9-3.3 is installed OR openstack-nova-compute-18.2.2~dev9-3.3 is installed OR openstack-nova-conductor-18.2.2~dev9-3.3 is installed OR openstack-nova-console-18.2.2~dev9-3.3 is installed OR openstack-nova-novncproxy-18.2.2~dev9-3.3 is installed OR openstack-nova-placement-api-18.2.2~dev9-3.3 is installed OR openstack-nova-scheduler-18.2.2~dev9-3.3 is installed OR openstack-nova-serialproxy-18.2.2~dev9-3.3 is installed OR openstack-nova-vncproxy-18.2.2~dev9-3.3 is installed OR openstack-octavia-3.1.2~dev2-3.3 is installed OR openstack-octavia-amphora-agent-3.1.2~dev2-3.3 is installed OR openstack-octavia-api-3.1.2~dev2-3.3 is installed OR openstack-octavia-health-manager-3.1.2~dev2-3.3 is installed OR openstack-octavia-housekeeping-3.1.2~dev2-3.3 is installed OR openstack-octavia-worker-3.1.2~dev2-3.3 is installed OR python-ardana-configurationprocessor-9.0+git.1558039547.f0d0ddf-3.4 is installed OR python-barbican-tempest-plugin-0.1.0-4.3 is installed OR python-ceilometer-11.0.2~dev13-3.3 is installed OR python-cinder-13.0.6~dev12-3.3 is installed OR python-cinderclient-4.0.2-3.3 is installed OR python-cinderclient-doc-4.0.2-3.3 is installed OR python-cinderlm-0.0.2+git.1541454501.6148725-3.3 is installed OR python-designate-7.0.1~dev20-3.3 is installed OR python-heat-11.0.3~dev5-3.3 is installed OR python-horizon-14.0.4~dev4-3.3 is installed OR python-horizon-plugin-designate-ui-7.0.1~dev7-3.3 is installed OR python-horizon-plugin-heat-ui-1.4.1~dev4-4.3 is installed OR python-horizon-plugin-magnum-ui-5.0.2~dev9-3.3 is installed OR python-horizon-plugin-monasca-ui-1.14.1~dev7-3.3 is installed OR python-ironic-11.1.4~dev2-3.3 is installed OR python-ironicclient-2.5.2-4.3 is installed OR python-ironicclient-doc-2.5.2-4.3 is installed OR python-keystone-14.1.1~dev7-3.3 is installed OR python-magnum-7.1.1~dev24-3.3 is installed OR python-manila-7.3.1~dev2-4.3 is installed OR python-manila-tempest-plugin-0.1.0-3.3 is installed OR python-manilaclient-1.24.2-3.3 is installed OR python-manilaclient-doc-1.24.2-3.3 is installed OR python-monasca-agent-2.8.1~dev10-3.3 is installed OR python-monasca-notification-1.14.1~dev8-6.3 is installed OR python-neutron-13.0.4~dev89-3.3 is installed OR python-neutron-fwaas-13.0.2~dev14-3.3 is installed OR python-neutron-gbp-5.0.1~dev443-3.3 is installed OR python-neutron-lbaas-13.0.1~dev12-3.3 is installed OR python-neutron-vpnaas-13.0.2~dev4-3.3 is installed OR python-nova-18.2.2~dev9-3.3 is installed OR python-octavia-3.1.2~dev2-3.3 is installed OR python-openstack_auth-14.0.4~dev4-3.3 is installed OR python-os-brick-2.5.7-3.3 is installed OR python-os-brick-common-2.5.7-3.3 is installed OR python-oslo.db-4.40.2-3.3 is installed OR python-proliantutils-2.8.4-1 is installed OR supportutils-plugin-suse-openstack-cloud-9.0.1562324636.e7046a3-1 is installed OR venv-openstack-barbican-7.0.1~dev18-3.2 is installed OR venv-openstack-barbican-x86_64-7.0.1~dev18-3.2 is installed OR venv-openstack-cinder-13.0.6~dev12-3.2 is installed OR venv-openstack-cinder-x86_64-13.0.6~dev12-3.2 is installed OR venv-openstack-designate-7.0.1~dev20-3.3 is installed OR venv-openstack-designate-x86_64-7.0.1~dev20-3.3 is installed OR venv-openstack-glance-17.0.1~dev16-3.3 is installed OR venv-openstack-glance-x86_64-17.0.1~dev16-3.3 is installed OR venv-openstack-heat-11.0.3~dev5-3.3 is installed OR venv-openstack-heat-x86_64-11.0.3~dev5-3.3 is installed OR venv-openstack-horizon-14.0.4~dev4-4.3 is installed OR venv-openstack-horizon-x86_64-14.0.4~dev4-4.3 is installed OR venv-openstack-ironic-11.1.4~dev2-4.3 is installed OR venv-openstack-ironic-x86_64-11.1.4~dev2-4.3 is installed OR venv-openstack-keystone-14.1.1~dev7-3.3 is installed OR venv-openstack-keystone-x86_64-14.1.1~dev7-3.3 is installed OR venv-openstack-magnum-7.1.1~dev24-4.3 is installed OR venv-openstack-magnum-x86_64-7.1.1~dev24-4.3 is installed OR venv-openstack-manila-7.3.1~dev2-3.3 is installed OR venv-openstack-manila-x86_64-7.3.1~dev2-3.3 is installed OR venv-openstack-monasca-2.7.1~dev10-3.3 is installed OR venv-openstack-monasca-ceilometer-1.8.2~dev3-3.3 is installed OR venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.3 is installed OR venv-openstack-monasca-x86_64-2.7.1~dev10-3.3 is installed OR venv-openstack-neutron-13.0.4~dev89-6.3 is installed OR venv-openstack-neutron-x86_64-13.0.4~dev89-6.3 is installed OR venv-openstack-nova-18.2.2~dev9-3.3 is installed OR venv-openstack-nova-x86_64-18.2.2~dev9-3.3 is installed OR venv-openstack-octavia-3.1.2~dev2-4.3 is installed OR venv-openstack-octavia-x86_64-3.1.2~dev2-4.3 is installed OR venv-openstack-sahara-9.0.2~dev9-3.3 is installed OR venv-openstack-sahara-x86_64-9.0.2~dev9-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information dovecot22-2.2.31-19.17 is installed OR dovecot22-backend-mysql-2.2.31-19.17 is installed OR dovecot22-backend-pgsql-2.2.31-19.17 is installed OR dovecot22-backend-sqlite-2.2.31-19.17 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND python-SQLAlchemy-1.2.10-3.3 is installed

BACK