OVAL Reference oval:org.opensuse.security:def:60318

Oval Definition:

oval:org.opensuse.security:def:60318

Revision Date:	2021-08-02	Version:	1
Title:	Security update for lasso (Important)
Description:	This update for lasso fixes the following issues: - CVE-2021-28091: Fixed XML signature wrapping vulnerability when parsing SAML responses. (bsc#1186768)
Family:	unix	Class:	patch
Status:		Reference(s):	1053043 1065729 1066223 1068664 1094555 1098998 1108382 1109105 1109137 1111188 1111479 1111480 1112229 1117022 1117274 1117313 1117327 1117331 1119086 1120902 1121263 1125580 1126961 1127155 1129770 1131335 1131336 1131645 1132390 1133140 1133190 1133191 1133738 1134395 1135642 1136598 1136889 1136922 1136935 1137004 1137194 1137739 1137749 1137752 1137915 1138291 1138293 1138374 1138681 1139751 1140575 1140577 1146351 1149652 1152457 1154862 1159208 1159623 1162002 1164910 1165631 1170011 1170618 1171078 1171189 1171191 1171220 1171732 1171988 1172453 1172458 1172775 1172999 1173027 1173274 1173280 1173658 1173659 1173942 1174115 1174120 1174247 1174316 1174462 1174543 1176579 1186768 CVE-2009-1720 CVE-2009-1721 CVE-2010-1205 CVE-2011-2199 CVE-2011-2501 CVE-2011-2690 CVE-2011-2691 CVE-2011-2692 CVE-2011-3328 CVE-2012-0876 CVE-2013-2064 CVE-2013-6954 CVE-2014-0333 CVE-2014-9495 CVE-2015-0973 CVE-2015-2059 CVE-2015-8126 CVE-2015-8948 CVE-2016-0718 CVE-2016-10087 CVE-2016-4472 CVE-2016-6261 CVE-2016-6262 CVE-2016-6263 CVE-2016-9063 CVE-2016-9811 CVE-2017-1000158 CVE-2017-5837 CVE-2017-5839 CVE-2017-5842 CVE-2017-5844 CVE-2017-9233 CVE-2018-12359 CVE-2018-12360 CVE-2018-12362 CVE-2018-12363 CVE-2018-12364 CVE-2018-12365 CVE-2018-12366 CVE-2018-12368 CVE-2018-17183 CVE-2018-17961 CVE-2018-18073 CVE-2018-18284 CVE-2018-19409 CVE-2018-19475 CVE-2018-19476 CVE-2018-19477 CVE-2018-20836 CVE-2018-5156 CVE-2018-5188 CVE-2019-10126 CVE-2019-10638 CVE-2019-10639 CVE-2019-11487 CVE-2019-11599 CVE-2019-12380 CVE-2019-12456 CVE-2019-12614 CVE-2019-12818 CVE-2019-12819 CVE-2019-16746 CVE-2019-17498 CVE-2019-20810 CVE-2019-20812 CVE-2020-0305 CVE-2020-10135 CVE-2020-10711 CVE-2020-10732 CVE-2020-10751 CVE-2020-10773 CVE-2020-11668 CVE-2020-12771 CVE-2020-13974 CVE-2020-14331 CVE-2020-14416 CVE-2020-14422 CVE-2020-1472 CVE-2020-1749 CVE-2020-8177 CVE-2021-28091 SUSE-SU-2018:2322-1 SUSE-SU-2018:4090-1 SUSE-SU-2019:1852-1 SUSE-SU-2019:2936-1 SUSE-SU-2020:0497-1 SUSE-SU-2020:1732-1 SUSE-SU-2020:2152-1 SUSE-SU-2020:2157-1 SUSE-SU-2020:2721-1 SUSE-SU-2021:2589-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information glibc-2.26-lp150.11.20 is installed OR glibc-32bit-2.26-lp150.11.20 is installed OR glibc-devel-2.26-lp150.11.20 is installed OR glibc-devel-32bit-2.26-lp150.11.20 is installed OR glibc-devel-static-2.26-lp150.11.20 is installed OR glibc-devel-static-32bit-2.26-lp150.11.20 is installed OR glibc-extra-2.26-lp150.11.20 is installed OR glibc-html-2.26-lp150.11.20 is installed OR glibc-i18ndata-2.26-lp150.11.20 is installed OR glibc-info-2.26-lp150.11.20 is installed OR glibc-locale-2.26-lp150.11.20 is installed OR glibc-locale-base-2.26-lp150.11.20 is installed OR glibc-locale-base-32bit-2.26-lp150.11.20 is installed OR glibc-profile-2.26-lp150.11.20 is installed OR glibc-profile-32bit-2.26-lp150.11.20 is installed OR glibc-testsuite-src-2.26-lp150.11.20 is installed OR glibc-utils-2.26-lp150.11.20 is installed OR glibc-utils-32bit-2.26-lp150.11.20 is installed OR glibc-utils-src-2.26-lp150.11.20 is installed OR nscd-2.26-lp150.11.20 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information evolution-3.26.6-lp151.4.3 is installed OR evolution-devel-3.26.6-lp151.4.3 is installed OR evolution-lang-3.26.6-lp151.4.3 is installed OR evolution-plugin-bogofilter-3.26.6-lp151.4.3 is installed OR evolution-plugin-pst-import-3.26.6-lp151.4.3 is installed OR evolution-plugin-spamassassin-3.26.6-lp151.4.3 is installed OR glade-catalog-evolution-3.26.6-lp151.4.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND kernel-default-4.4.180-94.100 is installed OR kernel-default-base-4.4.180-94.100 is installed OR kernel-default-devel-4.4.180-94.100 is installed OR kernel-default-man-4.4.180-94.100 is installed OR kernel-devel-4.4.180-94.100 is installed OR kernel-macros-4.4.180-94.100 is installed OR kernel-source-4.4.180-94.100 is installed OR kernel-syms-4.4.180-94.100 is installed OR kgraft-patch-4_4_180-94_100-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_27-1-4.3 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND kernel-default-4.4.180-94.100 is installed OR kernel-default-base-4.4.180-94.100 is installed OR kernel-default-devel-4.4.180-94.100 is installed OR kernel-default-man-4.4.180-94.100 is installed OR kernel-devel-4.4.180-94.100 is installed OR kernel-macros-4.4.180-94.100 is installed OR kernel-source-4.4.180-94.100 is installed OR kernel-syms-4.4.180-94.100 is installed OR kgraft-patch-4_4_180-94_100-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_27-1-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information gstreamer-plugins-base-1.8.3-12 is installed OR gstreamer-plugins-base-lang-1.8.3-12 is installed OR libgstallocators-1_0-0-1.8.3-12 is installed OR libgstapp-1_0-0-1.8.3-12 is installed OR libgstapp-1_0-0-32bit-1.8.3-12 is installed OR libgstaudio-1_0-0-1.8.3-12 is installed OR libgstaudio-1_0-0-32bit-1.8.3-12 is installed OR libgstfft-1_0-0-1.8.3-12 is installed OR libgstpbutils-1_0-0-1.8.3-12 is installed OR libgstpbutils-1_0-0-32bit-1.8.3-12 is installed OR libgstriff-1_0-0-1.8.3-12 is installed OR libgstrtp-1_0-0-1.8.3-12 is installed OR libgstrtsp-1_0-0-1.8.3-12 is installed OR libgstsdp-1_0-0-1.8.3-12 is installed OR libgsttag-1_0-0-1.8.3-12 is installed OR libgsttag-1_0-0-32bit-1.8.3-12 is installed OR libgstvideo-1_0-0-1.8.3-12 is installed OR libgstvideo-1_0-0-32bit-1.8.3-12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information curl-7.37.0-37.47 is installed OR libcurl4-7.37.0-37.47 is installed OR libcurl4-32bit-7.37.0-37.47 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND mailman-2.1.17-3.20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_127-default-2-2 is installed OR kgraft-patch-SLE12-SP3_Update_34-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND libcares2-1.9.1-9.4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information expat-2.1.0-21.3 is installed OR libexpat1-2.1.0-21.3 is installed OR libexpat1-32bit-2.1.0-21.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND mailman-2.1.17-3.23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.3-2.56 is installed OR libwebkit2gtk-4_0-37-2.28.3-2.56 is installed OR libwebkit2gtk3-lang-2.28.3-2.56 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.3-2.56 is installed OR typelib-1_0-WebKit2-4_0-2.28.3-2.56 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.28.3-2.56 is installed OR webkit2gtk-4_0-injected-bundles-2.28.3-2.56 is installed OR webkit2gtk3-2.28.3-2.56 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND liblasso3-2.6.1-8.7.2 is installed OR python3-lasso-2.6.1-8.7.2 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND liblasso3-2.6.1-8.7.2 is installed OR python3-lasso-2.6.1-8.7.2 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libssh2-1-1.4.3-20.14 is installed OR libssh2-1-32bit-1.4.3-20.14 is installed OR libssh2_org-1.4.3-20.14 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libpython3_4m1_0-3.4.10-25.39 is installed OR python3-3.4.10-25.39 is installed OR python3-base-3.4.10-25.39 is installed OR python3-curses-3.4.10-25.39 is installed OR python3-devel-3.4.10-25.39 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information crowbar-core-6.0+git.1587558898.313bb9fd3-3.22 is installed OR crowbar-core-branding-upstream-6.0+git.1587558898.313bb9fd3-3.22 is installed OR crowbar-ha-6.0+git.1586256059.e6f67e1-3.16 is installed OR crowbar-openstack-6.0+git.1587753188.da39e44a7-3.22 is installed OR memcached-1.5.17-3.3 is installed OR openstack-ceilometer-11.1.1~dev5-3.13 is installed OR openstack-ceilometer-agent-central-11.1.1~dev5-3.13 is installed OR openstack-ceilometer-agent-compute-11.1.1~dev5-3.13 is installed OR openstack-ceilometer-agent-ipmi-11.1.1~dev5-3.13 is installed OR openstack-ceilometer-agent-notification-11.1.1~dev5-3.13 is installed OR openstack-ceilometer-polling-11.1.1~dev5-3.13 is installed OR openstack-cinder-13.0.10~dev9-3.19 is installed OR openstack-cinder-api-13.0.10~dev9-3.19 is installed OR openstack-cinder-backup-13.0.10~dev9-3.19 is installed OR openstack-cinder-scheduler-13.0.10~dev9-3.19 is installed OR openstack-cinder-volume-13.0.10~dev9-3.19 is installed OR openstack-designate-7.0.1~dev25-3.16 is installed OR openstack-designate-agent-7.0.1~dev25-3.16 is installed OR openstack-designate-api-7.0.1~dev25-3.16 is installed OR openstack-designate-central-7.0.1~dev25-3.16 is installed OR openstack-designate-producer-7.0.1~dev25-3.16 is installed OR openstack-designate-sink-7.0.1~dev25-3.16 is installed OR openstack-designate-worker-7.0.1~dev25-3.16 is installed OR openstack-heat-11.0.3~dev35-3.16 is installed OR openstack-heat-api-11.0.3~dev35-3.16 is installed OR openstack-heat-api-cfn-11.0.3~dev35-3.16 is installed OR openstack-heat-engine-11.0.3~dev35-3.16 is installed OR openstack-heat-plugin-heat_docker-11.0.3~dev35-3.16 is installed OR openstack-ironic-11.1.5~dev3-3.16 is installed OR openstack-ironic-api-11.1.5~dev3-3.16 is installed OR openstack-ironic-conductor-11.1.5~dev3-3.16 is installed OR openstack-ironic-image-9.0.0-3.6 is installed OR openstack-ironic-image-x86_64-9.0.0-3.6 is installed OR openstack-manila-7.4.2~dev4-4.21 is installed OR openstack-manila-api-7.4.2~dev4-4.21 is installed OR openstack-manila-data-7.4.2~dev4-4.21 is installed OR openstack-manila-scheduler-7.4.2~dev4-4.21 is installed OR openstack-manila-share-7.4.2~dev4-4.21 is installed OR openstack-neutron-13.0.8~dev28-3.22 is installed OR openstack-neutron-dhcp-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-ha-tool-13.0.8~dev28-3.22 is installed OR openstack-neutron-l3-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-linuxbridge-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-macvtap-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-metadata-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-metering-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-openvswitch-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-server-13.0.8~dev28-3.22 is installed OR openstack-nova-18.3.1~dev17-3.22 is installed OR openstack-nova-api-18.3.1~dev17-3.22 is installed OR openstack-nova-cells-18.3.1~dev17-3.22 is installed OR openstack-nova-compute-18.3.1~dev17-3.22 is installed OR openstack-nova-conductor-18.3.1~dev17-3.22 is installed OR openstack-nova-console-18.3.1~dev17-3.22 is installed OR openstack-nova-novncproxy-18.3.1~dev17-3.22 is installed OR openstack-nova-placement-api-18.3.1~dev17-3.22 is installed OR openstack-nova-scheduler-18.3.1~dev17-3.22 is installed OR openstack-nova-serialproxy-18.3.1~dev17-3.22 is installed OR openstack-nova-vncproxy-18.3.1~dev17-3.22 is installed OR openstack-octavia-3.2.3~dev2-3.22 is installed OR openstack-octavia-amphora-agent-3.2.3~dev2-3.22 is installed OR openstack-octavia-amphora-image-0.1.3-7.9 is installed OR openstack-octavia-amphora-image-x86_64-0.1.3-7.9 is installed OR openstack-octavia-api-3.2.3~dev2-3.22 is installed OR openstack-octavia-health-manager-3.2.3~dev2-3.22 is installed OR openstack-octavia-housekeeping-3.2.3~dev2-3.22 is installed OR openstack-octavia-worker-3.2.3~dev2-3.22 is installed OR python-ceilometer-11.1.1~dev5-3.13 is installed OR python-cinder-13.0.10~dev9-3.19 is installed OR python-cinderclient-4.0.3-3.6 is installed OR python-cinderclient-doc-4.0.3-3.6 is installed OR python-designate-7.0.1~dev25-3.16 is installed OR python-glanceclient-2.13.2-3.3 is installed OR python-glanceclient-doc-2.13.2-3.3 is installed OR python-heat-11.0.3~dev35-3.16 is installed OR python-ironic-11.1.5~dev3-3.16 is installed OR python-ironic-lib-2.14.3-3.6 is installed OR python-ironicclient-2.5.4-4.10 is installed OR python-ironicclient-doc-2.5.4-4.10 is installed OR python-keystonemiddleware-5.2.2-17 is installed OR python-manila-7.4.2~dev4-4.21 is installed OR python-manila-tempest-plugin-0.1.0-3.6 is installed OR python-neutron-13.0.8~dev28-3.22 is installed OR python-nova-18.3.1~dev17-3.22 is installed OR python-novaclient-11.0.1-3.3 is installed OR python-novaclient-doc-11.0.1-3.3 is installed OR python-octavia-3.2.3~dev2-3.22 is installed OR python-octaviaclient-1.6.2-3.6 is installed OR python-openstackclient-3.16.3-11 is installed OR python-os-brick-2.5.10-3.9 is installed OR python-os-brick-common-2.5.10-3.9 is installed OR python-oslo.config-6.4.2-3.3 is installed OR python-oslo.config-doc-6.4.2-3.3 is installed OR python-oslo.rootwrap-5.14.2-3.3 is installed OR python-oslo.utils-3.36.5-3.3 is installed OR python-swiftclient-3.6.1-3.3 is installed OR python-swiftclient-doc-3.6.1-3.3 is installed OR python-watcherclient-2.1.1-3.3 is installed OR release-notes-suse-openstack-cloud-9.20200319-3.18 is installed OR ruby2.1-rubygem-crowbar-client-3.9.2-3.6 is installed OR ruby2.1-rubygem-puma-2.16.0-4.6 is installed OR rubygem-crowbar-client-3.9.2-3.6 is installed OR rubygem-puma-2.16.0-4.6 is installed OR zookeeper-3.4.13-3.3 is installed OR zookeeper-server-3.4.13-3.3 is installed

BACK