OVAL Reference oval:org.opensuse.security:def:60665

Oval Definition:

oval:org.opensuse.security:def:60665

Revision Date:	2020-12-01	Version:	1
Title:	Security update for permissions (Moderate)
Description:	This update for permissions fixes the following issues: - CVE-2019-3688: Changed wrong ownership in /usr/sbin/pinger to root:squid which could have allowed a squid user to gain persistence by changing the binary (bsc#1093414). - CVE-2019-3690: Fixed a privilege escalation through untrusted symbolic links (bsc#1150734). - Fixed a regression which caused segmentation fault (bsc#1157198).
Family:	unix	Class:	patch
Status:		Reference(s):	1042812 1042826 1043289 1049072 1049825 1076366 1087081 1089343 1092100 1093414 1098998 1102340 1103097 1103119 1104365 1109893 1110542 1111319 1112911 1113296 1116995 1120629 1120630 1120631 1124211 1127155 1131823 1134226 1137977 1140039 1141493 1145521 1145559 1150733 1150734 1156146 1157198 1167068 1169659 1170170 1170313 1170423 1170558 1171363 1171477 1171930 1174543 1174628 1174955 1177155 682920 CVE-2017-11403 CVE-2017-12652 CVE-2017-9439 CVE-2017-9440 CVE-2017-9501 CVE-2018-1122 CVE-2018-1123 CVE-2018-1124 CVE-2018-1125 CVE-2018-1126 CVE-2018-12359 CVE-2018-12360 CVE-2018-12362 CVE-2018-12363 CVE-2018-12364 CVE-2018-12365 CVE-2018-12366 CVE-2018-12368 CVE-2018-14734 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2018-2579 CVE-2018-2588 CVE-2018-2599 CVE-2018-2602 CVE-2018-2603 CVE-2018-2618 CVE-2018-2629 CVE-2018-2633 CVE-2018-2634 CVE-2018-2637 CVE-2018-2641 CVE-2018-2663 CVE-2018-2677 CVE-2018-2678 CVE-2018-3620 CVE-2018-3646 CVE-2018-5156 CVE-2018-5188 CVE-2018-5390 CVE-2018-5391 CVE-2019-11500 CVE-2019-12519 CVE-2019-12520 CVE-2019-12521 CVE-2019-12524 CVE-2019-14818 CVE-2019-3688 CVE-2019-3689 CVE-2019-3690 CVE-2019-7317 CVE-2020-10722 CVE-2020-11945 CVE-2020-12059 CVE-2020-12108 CVE-2020-12137 CVE-2020-14344 CVE-2020-15708 CVE-2020-25637 SUSE-SU-2017:2199-1 SUSE-SU-2018:0661-1 SUSE-SU-2019:2265-1 SUSE-SU-2019:2454-1 SUSE-SU-2019:2781-1 SUSE-SU-2019:3060-2 SUSE-SU-2019:3180-1 SUSE-SU-2020:1227-1 SUSE-SU-2020:1301-1 SUSE-SU-2020:2117-1 SUSE-SU-2020:2194-1 SUSE-SU-2020:3095-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information libwireshark9-2.4.9-lp150.2.10 is installed OR libwiretap7-2.4.9-lp150.2.10 is installed OR libwscodecs1-2.4.9-lp150.2.10 is installed OR libwsutil8-2.4.9-lp150.2.10 is installed OR wireshark-2.4.9-lp150.2.10 is installed OR wireshark-devel-2.4.9-lp150.2.10 is installed OR wireshark-ui-qt-2.4.9-lp150.2.10 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information GraphicsMagick-1.3.29-lp151.4.6 is installed OR GraphicsMagick-devel-1.3.29-lp151.4.6 is installed OR libGraphicsMagick++-Q16-12-1.3.29-lp151.4.6 is installed OR libGraphicsMagick++-devel-1.3.29-lp151.4.6 is installed OR libGraphicsMagick-Q16-3-1.3.29-lp151.4.6 is installed OR libGraphicsMagick3-config-1.3.29-lp151.4.6 is installed OR libGraphicsMagickWand-Q16-2-1.3.29-lp151.4.6 is installed OR perl-GraphicsMagick-1.3.29-lp151.4.6 is installed
Definition Synopsis
openSUSE Leap 15.2 is installed AND Package Information chromedriver-84.0.4147.125-lp152.2.12 is installed OR chromium-84.0.4147.125-lp152.2.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information ImageMagick-6.8.8.1-71.5 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.5 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libsolv-0.6.36-2.27.19 is installed OR libsolv-tools-0.6.36-2.27.19 is installed OR libzypp-16.20.2-27.60 is installed OR perl-solv-0.6.36-2.27.19 is installed OR python-solv-0.6.36-2.27.19 is installed OR zypper-1.13.54-18.40 is installed OR zypper-log-1.13.54-18.40 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information ceph-12.2.12+git.1587570958.35d78d0243-2.45 is installed OR ceph-common-12.2.12+git.1587570958.35d78d0243-2.45 is installed OR libcephfs2-12.2.12+git.1587570958.35d78d0243-2.45 is installed OR librados2-12.2.12+git.1587570958.35d78d0243-2.45 is installed OR libradosstriper1-12.2.12+git.1587570958.35d78d0243-2.45 is installed OR librbd1-12.2.12+git.1587570958.35d78d0243-2.45 is installed OR librgw2-12.2.12+git.1587570958.35d78d0243-2.45 is installed OR python-cephfs-12.2.12+git.1587570958.35d78d0243-2.45 is installed OR python-rados-12.2.12+git.1587570958.35d78d0243-2.45 is installed OR python-rbd-12.2.12+git.1587570958.35d78d0243-2.45 is installed OR python-rgw-12.2.12+git.1587570958.35d78d0243-2.45 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information dovecot22-2.2.31-19.17 is installed OR dovecot22-backend-mysql-2.2.31-19.17 is installed OR dovecot22-backend-pgsql-2.2.31-19.17 is installed OR dovecot22-backend-sqlite-2.2.31-19.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND binutils-2.31-9.26 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND permissions-2015.09.28.1626-17.20 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND haproxy-1.6.11-11.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information nfs-client-1.3.0-34.22 is installed OR nfs-doc-1.3.0-34.22 is installed OR nfs-kernel-server-1.3.0-34.22 is installed OR nfs-utils-1.3.0-34.22 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.4-2.59 is installed OR libwebkit2gtk-4_0-37-2.28.4-2.59 is installed OR libwebkit2gtk3-lang-2.28.4-2.59 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.4-2.59 is installed OR typelib-1_0-WebKit2-4_0-2.28.4-2.59 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.28.4-2.59 is installed OR webkit2gtk-4_0-injected-bundles-2.28.4-2.59 is installed OR webkit2gtk3-2.28.4-2.59 is installed

BACK