Oval Definition:oval:org.opensuse.security:def:60692
Revision Date:2020-12-01Version:1
Title:Security update for git (Moderate)
Description:

This update for git to 2.26.2 fixes the following issues:

Security issue fixed:

- CVE-2020-11008: Specially crafted URLs may have tricked the credentials helper to providing credential information that is not appropriate for the protocol in use and host being contacted (bsc#1169936).

Non-security issue fixed:

- Fixed git-daemon not starting after conversion from sysvinit to systemd service (bsc#1169605). - Enabled access for git-daemon in firewall configuration (bsc#1170302). - Fixed problems with recent switch to protocol v2, which caused fetches transferring unreasonable amount of data (bsc#1170741).
Family:unixClass:patch
Status:Reference(s):1013992
1013993
1017690
1033109
1033111
1033112
1033113
1033118
1033120
1033126
1033127
1033128
1033129
1033131
1038438
1042804
1042805
1069213
1080074
1085967
1089039
1100973
1101246
1101295
1101470
1102840
1104448
1104789
1106197
1113969
1120943
1144903
1149792
1153108
1153158
1153161
1155787
1160039
1160770
1167373
1167976
1168930
1169511
1169605
1169786
1169936
1170302
1170601
1170741
1170939
1171863
1171864
1171866
1173304
1173986
1174420
1176409
1176412
1176756
910683
914442
950110
950111
960341
969783
983436
997043
CVE-2014-8128
CVE-2014-9636
CVE-2014-9913
CVE-2015-7554
CVE-2015-7696
CVE-2015-7697
CVE-2016-10095
CVE-2016-10371
CVE-2016-5318
CVE-2016-9844
CVE-2017-16232
CVE-2017-2518
CVE-2017-7592
CVE-2017-7593
CVE-2017-7594
CVE-2017-7595
CVE-2017-7596
CVE-2017-7597
CVE-2017-7598
CVE-2017-7599
CVE-2017-7600
CVE-2017-7601
CVE-2017-7602
CVE-2017-9403
CVE-2017-9404
CVE-2018-0737
CVE-2018-1000035
CVE-2018-10873
CVE-2018-10893
CVE-2018-16468
CVE-2018-20030
CVE-2018-8007
CVE-2018-8048
CVE-2019-10220
CVE-2019-17133
CVE-2019-18860
CVE-2019-9278
CVE-2020-10543
CVE-2020-10878
CVE-2020-11008
CVE-2020-12723
CVE-2020-14059
CVE-2020-14392
CVE-2020-14393
CVE-2020-15673
CVE-2020-15676
CVE-2020-15677
CVE-2020-15678
CVE-2020-2756
CVE-2020-2757
CVE-2020-2773
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2830
CVE-2020-5260
SUSE-SU-2017:2569-1
SUSE-SU-2018:0073-1
SUSE-SU-2018:2765-1
SUSE-SU-2019:0394-1
SUSE-SU-2019:3050-1
SUSE-SU-2020:0457-1
SUSE-SU-2020:1295-1
SUSE-SU-2020:1662-1
SUSE-SU-2020:1803-1
SUSE-SU-2020:2661-1
SUSE-SU-2020:2759-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
openSUSE Leap 15.1 NonFree
openSUSE Leap 15.2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • bitcoin-0.16.3-7.3 is installed
  • OR bitcoin-qt5-0.16.3-lp150.2.3 is installed
  • OR bitcoin-test-0.16.3-lp150.2.3 is installed
  • OR bitcoin-utils-0.16.3-lp150.2.3 is installed
  • OR bitcoind-0.16.3-lp150.2.3 is installed
  • OR libbitcoinconsensus-devel-0.16.3-lp150.2.3 is installed
  • OR libbitcoinconsensus0-0.16.3-lp150.2.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • znc-1.7.4-lp151.2.3 is installed
  • OR znc-devel-1.7.4-lp151.2.3 is installed
  • OR znc-lang-1.7.4-lp151.2.3 is installed
  • OR znc-perl-1.7.4-lp151.2.3 is installed
  • OR znc-python3-1.7.4-lp151.2.3 is installed
  • OR znc-tcl-1.7.4-lp151.2.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 NonFree is installed
  • AND opera-63.0.3368.66-lp151.2.6 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • graphviz-2.40.1-lp152.7.2 is installed
  • OR graphviz-addons-2.40.1-lp152.7.3 is installed
  • OR graphviz-devel-2.40.1-lp152.7.2 is installed
  • OR graphviz-doc-2.40.1-lp152.7.3 is installed
  • OR graphviz-gd-2.40.1-lp152.7.3 is installed
  • OR graphviz-gnome-2.40.1-lp152.7.3 is installed
  • OR graphviz-guile-2.40.1-lp152.7.3 is installed
  • OR graphviz-gvedit-2.40.1-lp152.7.3 is installed
  • OR graphviz-java-2.40.1-lp152.7.3 is installed
  • OR graphviz-lua-2.40.1-lp152.7.3 is installed
  • OR graphviz-perl-2.40.1-lp152.7.3 is installed
  • OR graphviz-php-2.40.1-lp152.7.3 is installed
  • OR graphviz-plugins-core-2.40.1-lp152.7.2 is installed
  • OR graphviz-python-2.40.1-lp152.7.3 is installed
  • OR graphviz-ruby-2.40.1-lp152.7.3 is installed
  • OR graphviz-smyrna-2.40.1-lp152.7.3 is installed
  • OR graphviz-tcl-2.40.1-lp152.7.3 is installed
  • OR libgraphviz6-2.40.1-lp152.7.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libtiff5-4.0.8-44.3 is installed
  • OR libtiff5-32bit-4.0.8-44.3 is installed
  • OR tiff-4.0.8-44.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libsqlite3-0-3.8.10.2-9.15 is installed
  • OR libsqlite3-0-32bit-3.8.10.2-9.15 is installed
  • OR sqlite3-3.8.10.2-9.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.261-43.38 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.261-43.38 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.261-43.38 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.261-43.38 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_97-default-5-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_26-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libspice-client-glib-2_0-8-0.33-3.6 is installed
  • OR libspice-client-glib-helper-0.33-3.6 is installed
  • OR libspice-client-gtk-3_0-5-0.33-3.6 is installed
  • OR libspice-controller0-0.33-3.6 is installed
  • OR spice-gtk-0.33-3.6 is installed
  • OR typelib-1_0-SpiceClientGlib-2_0-0.33-3.6 is installed
  • OR typelib-1_0-SpiceClientGtk-3_0-0.33-3.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • alsa-1.0.27.2-15 is installed
  • OR alsa-docs-1.0.27.2-15 is installed
  • OR libasound2-1.0.27.2-15 is installed
  • OR libasound2-32bit-1.0.27.2-15 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • git-2.26.2-27.36 is installed
  • OR git-core-2.26.2-27.36 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND Package Information
  • dovecot22-2.2.31-19.22 is installed
  • OR dovecot22-backend-mysql-2.2.31-19.22 is installed
  • OR dovecot22-backend-pgsql-2.2.31-19.22 is installed
  • OR dovecot22-backend-sqlite-2.2.31-19.22 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND couchdb-1.7.2-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Django1-1.11.23-3.9 is installed
    • BACK