Oval Definition:	oval:org.opensuse.security:def:60273
Revision Date: 2021-06-02 Version: 1 Title: Security update for squid (Important) Description: This update for squid fixes the following issues: - update to 4.15: - CVE-2021-28652: Broken cache manager URL parsing (bsc#1185918) - CVE-2021-28651: Memory leak in RFC 2169 response parsing (bsc#1185921) - CVE-2021-28662: Limit HeaderLookupTable_t::lookup() to BadHdr and specific IDs (bsc#1185919) - CVE-2021-31806: Handle more Range requests (bsc#1185916) - CVE-2020-25097: HTTP Request Smuggling vulnerability (bsc#1183436) - Handle more partial responses (bsc#1185923) - fix previous change to reinstante permissions macros, because the wrong path has been used (bsc#1171569). - use libexecdir instead of libdir to conform to recent changes in Factory (bsc#1171164). - Reinstate permissions macros for pinger binary, because the permissions package is also responsible for setting up the cap_net_raw capability, currently a fresh squid install doesn't get a capability bit at all (bsc#1171569). - Change pinger and basic_pam_auth helper to use standard permissions. pinger uses cap_net_raw=ep instead (bsc#1171569) Family: unix Class: patch Status: Reference(s): 1038425 1077445 1082063 1082210 1083417 1083420 1083422 1083424 1083426 1085295 1085297 1085583 1085584 1085585 1085589 1120629 1120630 1120631 1127155 1131823 1137977 1139083 1149792 1157763 1159819 1160467 1160468 1165439 1168669 1168930 1169605 1169746 1169786 1169936 1170302 1170741 1170908 1170939 1171164 1171569 1171978 1173022 1183436 1185916 1185918 1185919 1185921 1185923 985657 CVE-2011-3146 CVE-2012-1152 CVE-2012-4510 CVE-2013-1881 CVE-2013-1988 CVE-2013-6393 CVE-2014-2525 CVE-2014-9130 CVE-2016-1521 CVE-2016-1523 CVE-2016-1526 CVE-2016-1549 CVE-2016-2851 CVE-2016-3189 CVE-2017-18233 CVE-2017-18234 CVE-2017-18236 CVE-2017-18238 CVE-2017-5436 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2018-7170 CVE-2018-7182 CVE-2018-7183 CVE-2018-7184 CVE-2018-7185 CVE-2018-7728 CVE-2018-7730 CVE-2019-12900 CVE-2019-14896 CVE-2019-14897 CVE-2019-15961 CVE-2019-17006 CVE-2020-11008 CVE-2020-12399 CVE-2020-12402 CVE-2020-1747 CVE-2020-25097 CVE-2020-5260 CVE-2021-28651 CVE-2021-28652 CVE-2021-28662 CVE-2021-31806 SUSE-SU-2018:1765-1 SUSE-SU-2018:3389-1 SUSE-SU-2019:0128-1 SUSE-SU-2019:1955-1 SUSE-SU-2019:3177-1 SUSE-SU-2020:1285-1 SUSE-SU-2020:1295-1 SUSE-SU-2020:1839-1 SUSE-SU-2020:2660-1 SUSE-SU-2021:1838-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information SDL2-2.0.8-lp150.2.6 is installed OR libSDL2-2_0-0-2.0.8-lp150.2.6 is installed OR libSDL2-2_0-0-32bit-2.0.8-lp150.2.6 is installed OR libSDL2-devel-2.0.8-lp150.2.6 is installed OR libSDL2-devel-32bit-2.0.8-lp150.2.6 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information curl-7.60.0-lp151.5.6 is installed OR curl-mini-7.60.0-lp151.5.6 is installed OR libcurl-devel-7.60.0-lp151.5.6 is installed OR libcurl-devel-32bit-7.60.0-lp151.5.6 is installed OR libcurl-mini-devel-7.60.0-lp151.5.6 is installed OR libcurl4-7.60.0-lp151.5.6 is installed OR libcurl4-32bit-7.60.0-lp151.5.6 is installed OR libcurl4-mini-7.60.0-lp151.5.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cups-pk-helper-0.2.5-5 is installed OR cups-pk-helper-lang-0.2.5-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND clamav-0.100.3-33.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_100-default-3-2 is installed OR kgraft-patch-SLE12-SP3_Update_27-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_178-94_91-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_25-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libssh2-1-1.4.3-20.6 is installed OR libssh2-1-32bit-1.4.3-20.6 is installed OR libssh2_org-1.4.3-20.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND autofs-5.0.9-28.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information LibVNCServer-0.9.9-17.31 is installed OR libvncclient0-0.9.9-17.31 is installed OR libvncserver0-0.9.9-17.31 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND squid-4.15-4.18.1 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND squid-4.15-4.18.1 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information bzip2-1.0.6-30.5 is installed OR bzip2-doc-1.0.6-30.5 is installed OR libbz2-1-1.0.6-30.5 is installed OR libbz2-1-32bit-1.0.6-30.5 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information LibVNCServer-0.9.9-17.31 is installed OR libvncclient0-0.9.9-17.31 is installed OR libvncserver0-0.9.9-17.31 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libsolv-0.6.36-2.30 is installed OR libsolv-devel-0.6.36-2.30 is installed OR libsolv-tools-0.6.36-2.30 is installed OR perl-solv-0.6.36-2.30 is installed OR python-solv-0.6.36-2.30 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND shim-15+git47-25.11 is installed
BACK