Oval Definition:	oval:org.opensuse.security:def:60454
Revision Date: 2021-02-19 Version: 1 Title: Security update for krb5-appl (Important) Description: This update for krb5-appl fixes the following issues: - CVE-2019-25017: Check the filenames sent by the server match those requested by the client (bsc#1131109). - CVE-2019-25018: Disallow empty incoming filename or ones that refer to the current directory (bsc#1131109). Family: unix Class: patch Status: Reference(s): 1012382 1020645 1020989 1031492 1037930 1047487 1051510 1051791 1053043 1062056 1063638 1066223 1070872 1073990 1074293 1079036 1085539 1087092 1094244 1095735 1096480 1096728 1097104 1100132 1105348 1106110 1106913 1106929 1111331 1112178 1113399 1114542 1114638 1114648 1114893 1115034 1118338 1118506 1119086 1120902 1122822 1125580 1126356 1127445 1129278 1129326 1129770 1130130 1130343 1130344 1130345 1130346 1130347 1130356 1130425 1130567 1130737 1131107 1131109 1131233 1131237 1131239 1131241 1131245 1131416 1131427 1131587 1131659 1131857 1131900 1131934 1131935 1131980 1132227 1132534 1132589 1132618 1132619 1132634 1132635 1132636 1132637 1132638 1132727 1132828 1133308 1133584 1139073 1139083 1141035 1142772 1145604 1145692 1151021 1154043 1155988 1156402 1165439 1169659 1170313 1170423 1172798 1172846 1173972 1174753 1174817 1175168 994770 CVE-2011-0707 CVE-2013-6435 CVE-2014-4910 CVE-2014-8118 CVE-2015-1782 CVE-2016-0787 CVE-2017-12132 CVE-2017-18379 CVE-2017-5715 CVE-2017-8804 CVE-2018-1000001 CVE-2018-1000204 CVE-2018-10853 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-15594 CVE-2018-5814 CVE-2018-6485 CVE-2018-6551 CVE-2019-0196 CVE-2019-0197 CVE-2019-0211 CVE-2019-0217 CVE-2019-0220 CVE-2019-1010180 CVE-2019-11091 CVE-2019-11135 CVE-2019-11139 CVE-2019-12519 CVE-2019-12520 CVE-2019-12521 CVE-2019-12524 CVE-2019-12900 CVE-2019-14835 CVE-2019-2201 CVE-2019-25017 CVE-2019-25018 CVE-2019-3882 CVE-2019-9503 CVE-2020-11945 CVE-2020-13844 CVE-2020-1747 SUSE-SU-2018:0451-1 SUSE-SU-2018:1571-1 SUSE-SU-2019:0878-1 SUSE-SU-2019:1245-1 SUSE-SU-2019:2013-1 SUSE-SU-2019:2916-1 SUSE-SU-2020:1227-1 SUSE-SU-2020:1285-1 SUSE-SU-2020:3263-1 SUSE-SU-2021:0527-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information libzzip-0-13-0.13.69-lp150.7 is installed OR libzzip-0-13-32bit-0.13.69-lp150.7 is installed OR zziplib-0.13.69-lp150.7 is installed OR zziplib-devel-0.13.69-lp150.7 is installed OR zziplib-devel-32bit-0.13.69-lp150.7 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information chromedriver-75.0.3770.142-7 is installed OR chromium-75.0.3770.142-7 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information ruby2.5-rubygem-bundler-1.16.1-lp152.4.3 is installed OR ruby2.5-rubygem-bundler-doc-1.16.1-lp152.4.3 is installed OR rubygem-bundler-1.16.1-lp152.4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libssh2-1-1.4.3-19 is installed OR libssh2-1-32bit-1.4.3-19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND squid-3.5.21-26.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_178-94_91-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_25-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND yast2-smt-3.0.14-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND ctags-5.8-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information MozillaFirefox-78.2.0-112.19 is installed OR MozillaFirefox-devel-78.2.0-112.19 is installed OR MozillaFirefox-translations-common-78.2.0-112.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information apache2-2.4.23-29.63 is installed OR apache2-doc-2.4.23-29.63 is installed OR apache2-example-pages-2.4.23-29.63 is installed OR apache2-prefork-2.4.23-29.63 is installed OR apache2-utils-2.4.23-29.63 is installed OR apache2-worker-2.4.23-29.63 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND krb5-appl-clients-1.0.3-3.6.1 is installed OR krb5-appl-servers-1.0.3-3.6.1 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND krb5-appl-clients-1.0.3-3.6.1 is installed OR krb5-appl-servers-1.0.3-3.6.1 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information bzip2-1.0.6-30.8 is installed OR bzip2-doc-1.0.6-30.8 is installed OR libbz2-1-1.0.6-30.8 is installed OR libbz2-1-32bit-1.0.6-30.8 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information dovecot22-2.2.31-19.22 is installed OR dovecot22-backend-mysql-2.2.31-19.22 is installed OR dovecot22-backend-pgsql-2.2.31-19.22 is installed OR dovecot22-backend-sqlite-2.2.31-19.22 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND gdb-8.3.1-2.14 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND nodejs6-6.17.1-11.37 is installed
BACK