Oval Definition:	oval:org.opensuse.security:def:60589
Revision Date: 2020-12-01 Version: 1 Title: Security update for cobbler (Important) Description: This update for cobbler fixes the following issues: Security issues fixed: * - Forbid exposure of private methods in the API (CVE-2018-10931, CVE-2018-1000225, bsc#1104287, bsc#1104189, bsc#1105442) - Check access token when calling 'modify_setting' API endpoint (bsc#1104190, bsc#1105440, CVE-2018-1000226) Other bugs fixed: - Do not try to hardlink to a symlink. The result will be a dangling symlink in the general case. (bsc#1097733) - fix kernel options when generating bootiso (bsc#1101670) Family: unix Class: patch Status: Reference(s): 1040621 1097733 1101670 1103040 1104189 1104190 1104287 1104457 1105435 1105440 1105442 1109663 1109847 1110723 1138459 1141853 1149332 1152856 1154212 1154980 1159478 1159479 1159482 1159486 1163985 1165784 1171878 1172085 1174157 1174628 1175259 1176013 1176496 1176764 1177914 CVE-2013-7490 CVE-2017-6891 CVE-2018-1000225 CVE-2018-1000226 CVE-2018-1000654 CVE-2018-1000802 CVE-2018-10931 CVE-2018-14647 CVE-2018-14680 CVE-2018-14681 CVE-2018-14682 CVE-2018-15378 CVE-2018-20852 CVE-2019-10160 CVE-2019-10160 CVE-2019-17639 CVE-2019-18277 CVE-2019-18388 CVE-2019-18389 CVE-2019-18390 CVE-2019-18391 CVE-2019-20919 CVE-2019-2894 CVE-2019-2933 CVE-2019-2945 CVE-2019-2949 CVE-2019-2958 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2987 CVE-2019-2988 CVE-2019-2989 CVE-2019-2992 CVE-2019-2999 CVE-2020-10029 CVE-2020-14344 CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-15999 CVE-2020-1720 SUSE-SU-2018:2561-1 SUSE-SU-2018:3436-1 SUSE-SU-2019:1379-1 SUSE-SU-2019:2091-1 SUSE-SU-2019:3084-1 SUSE-SU-2019:3288-1 SUSE-SU-2020:0016-1 SUSE-SU-2020:0715-1 SUSE-SU-2020:2196-1 SUSE-SU-2020:2998-1 SUSE-SU-2020:3024-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information rsyslog-8.33.1-lp150.2.3 is installed OR rsyslog-diag-tools-8.33.1-lp150.2.3 is installed OR rsyslog-doc-8.33.1-lp150.2.3 is installed OR rsyslog-module-dbi-8.33.1-lp150.2.3 is installed OR rsyslog-module-elasticsearch-8.33.1-lp150.2.3 is installed OR rsyslog-module-gcrypt-8.33.1-lp150.2.3 is installed OR rsyslog-module-gssapi-8.33.1-lp150.2.3 is installed OR rsyslog-module-gtls-8.33.1-lp150.2.3 is installed OR rsyslog-module-mmnormalize-8.33.1-lp150.2.3 is installed OR rsyslog-module-mysql-8.33.1-lp150.2.3 is installed OR rsyslog-module-omamqp1-8.33.1-lp150.2.3 is installed OR rsyslog-module-omhttpfs-8.33.1-lp150.2.3 is installed OR rsyslog-module-omtcl-8.33.1-lp150.2.3 is installed OR rsyslog-module-pgsql-8.33.1-lp150.2.3 is installed OR rsyslog-module-relp-8.33.1-lp150.2.3 is installed OR rsyslog-module-snmp-8.33.1-lp150.2.3 is installed OR rsyslog-module-udpspoof-8.33.1-lp150.2.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information GraphicsMagick-1.3.29-lp151.4.6 is installed OR GraphicsMagick-devel-1.3.29-lp151.4.6 is installed OR libGraphicsMagick++-Q16-12-1.3.29-lp151.4.6 is installed OR libGraphicsMagick++-devel-1.3.29-lp151.4.6 is installed OR libGraphicsMagick-Q16-3-1.3.29-lp151.4.6 is installed OR libGraphicsMagick3-config-1.3.29-lp151.4.6 is installed OR libGraphicsMagickWand-Q16-2-1.3.29-lp151.4.6 is installed OR perl-GraphicsMagick-1.3.29-lp151.4.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND clamav-0.100.2-33.18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libpython3_4m1_0-3.4.6-25.29 is installed OR python3-3.4.6-25.29 is installed OR python3-base-3.4.6-25.29 is installed OR python3-curses-3.4.6-25.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information java-1_7_0-openjdk-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-demo-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-devel-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-headless-1.7.0.241-43.30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ImageMagick-6.8.8.1-71.108 is installed OR ImageMagick-config-6-SUSE-6.8.8.1-71.108 is installed OR ImageMagick-config-6-upstream-6.8.8.1-71.108 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.108 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.108 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information bash-4.3-83.15 is installed OR bash-doc-4.3-83.15 is installed OR libreadline6-6.3-83.15 is installed OR libreadline6-32bit-6.3-83.15 is installed OR readline-doc-6.3-83.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND squid-3.5.21-26.32 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND cobbler-2.6.6-49.14 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-ipaddress-1.0.18-3.13 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND haproxy-1.6.11-11.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information libfreebl3-3.53.1-58.48 is installed OR libfreebl3-32bit-3.53.1-58.48 is installed OR libfreebl3-hmac-3.53.1-58.48 is installed OR libfreebl3-hmac-32bit-3.53.1-58.48 is installed OR libsoftokn3-3.53.1-58.48 is installed OR libsoftokn3-32bit-3.53.1-58.48 is installed OR libsoftokn3-hmac-3.53.1-58.48 is installed OR libsoftokn3-hmac-32bit-3.53.1-58.48 is installed OR mozilla-nspr-4.25-19.15 is installed OR mozilla-nspr-32bit-4.25-19.15 is installed OR mozilla-nspr-devel-4.25-19.15 is installed OR mozilla-nss-3.53.1-58.48 is installed OR mozilla-nss-32bit-3.53.1-58.48 is installed OR mozilla-nss-certs-3.53.1-58.48 is installed OR mozilla-nss-certs-32bit-3.53.1-58.48 is installed OR mozilla-nss-devel-3.53.1-58.48 is installed OR mozilla-nss-sysinit-3.53.1-58.48 is installed OR mozilla-nss-sysinit-32bit-3.53.1-58.48 is installed OR mozilla-nss-tools-3.53.1-58.48 is installed
BACK