Oval Definition:	oval:org.opensuse.security:def:60727
Revision Date: 2020-12-01 Version: 1 Title: Security update for bind (Important) Description: This update for bind fixes the following issues: - Amended documentation referring to rule types 'krb5-subdomain' and 'ms-subdomain'. This incorrect documentation could mislead operators into believing that policies they had configured were more restrictive than they actually were. [CVE-2018-5741] - Further limit the number of queries that can be triggered from a request. Root and TLD servers are no longer exempt from max-recursion-queries. Fetches for missing name server address records are limited to 4 for any domain. [CVE-2020-8616] - Replaying a TSIG BADTIME response as a request could trigger an assertion failure. [CVE-2020-8617] [bsc#1109160, bsc#1171740, CVE-2018-5741, bind-CVE-2018-5741.patch, CVE-2020-8616, bind-CVE-2020-8616.patch, CVE-2020-8617, bind-CVE-2020-8617.patch] - Don't rely on /etc/insserv.conf anymore for proper dependencies against nss-lookup.target in named.service and lwresd.service (bsc#1118367 bsc#1118368) - Using a drop-in file Family: unix Class: patch Status: Reference(s): 1058565 1058622 1058624 1060427 1063008 1065066 1083232 1084632 1090336 1090849 1094448 1095603 1096985 1097847 1101366 1103658 1109160 1109961 1111498 1111586 1114674 1117025 1117382 1118367 1118368 1120658 1122000 1122344 1123333 1123892 1125352 1137832 1154824 1156353 1168994 1171740 1172031 1172225 1172466 1173580 1173812 1174463 1174570 1175664 1175665 1175671 1178666 1178667 1178668 CVE-2017-12150 CVE-2017-12151 CVE-2017-12163 CVE-2017-14746 CVE-2017-15275 CVE-2018-1000041 CVE-2018-11763 CVE-2018-12099 CVE-2018-17095 CVE-2018-18311 CVE-2018-3817 CVE-2018-5741 CVE-2018-8032 CVE-2019-12749 CVE-2019-20807 CVE-2019-6454 CVE-2020-0543 CVE-2020-0548 CVE-2020-0549 CVE-2020-10713 CVE-2020-14308 CVE-2020-14309 CVE-2020-14310 CVE-2020-14311 CVE-2020-15706 CVE-2020-15707 CVE-2020-15810 CVE-2020-15811 CVE-2020-24606 CVE-2020-25694 CVE-2020-25695 CVE-2020-25696 CVE-2020-4044 CVE-2020-8616 CVE-2020-8617 SUSE-SU-2017:3155-1 SUSE-SU-2018:1288-1 SUSE-SU-2018:2317-1 SUSE-SU-2019:0428-1 SUSE-SU-2019:2264-1 SUSE-SU-2019:2820-2 SUSE-SU-2020:1550-1 SUSE-SU-2020:1595-1 SUSE-SU-2020:1914-1 SUSE-SU-2020:2079-1 SUSE-SU-2020:2471-1 SUSE-SU-2020:3464-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND haproxy-1.8.14~git0.52e4d43b-lp150.2.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-accessibility-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-javadoc-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-src-1.8.0.222-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libdcerpc-binding0-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libdcerpc-binding0-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libdcerpc0-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libdcerpc0-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libndr-krb5pac0-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libndr-krb5pac0-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libndr-nbt0-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libndr-nbt0-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libndr-standard0-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libndr-standard0-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libndr0-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libndr0-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libnetapi0-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libnetapi0-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libsamba-credentials0-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libsamba-credentials0-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libsamba-errors0-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libsamba-errors0-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libsamba-hostconfig0-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libsamba-hostconfig0-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libsamba-passdb0-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libsamba-passdb0-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libsamba-util0-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libsamba-util0-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libsamdb0-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libsamdb0-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libsmbclient0-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libsmbclient0-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libsmbconf0-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libsmbconf0-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libsmbldap0-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libsmbldap0-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libtevent-util0-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libtevent-util0-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libwbclient0-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR libwbclient0-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR samba-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR samba-client-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR samba-client-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR samba-doc-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR samba-libs-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR samba-libs-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR samba-winbind-4.6.9+git.59.c2cff9cea4c-3.17 is installed OR samba-winbind-32bit-4.6.9+git.59.c2cff9cea4c-3.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information gvim-7.4.326-17.6 is installed OR vim-7.4.326-17.6 is installed OR vim-data-7.4.326-17.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND xrdp-0.9.0~git.1456906198.f422461-21.27 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information grub2-2.02-4.53 is installed OR grub2-arm64-efi-2.02-4.53 is installed OR grub2-i386-pc-2.02-4.53 is installed OR grub2-powerpc-ieee1275-2.02-4.53 is installed OR grub2-s390x-emu-2.02-4.53 is installed OR grub2-snapper-plugin-2.02-4.53 is installed OR grub2-systemd-sleep-plugin-2.02-4.53 is installed OR grub2-x86_64-efi-2.02-4.53 is installed OR grub2-x86_64-xen-2.02-4.53 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND axis-1.4-290.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND ctags-5.8-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information xorg-x11-server-1.19.6-4.11 is installed OR xorg-x11-server-extra-1.19.6-4.11 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information bind-9.9.9P1-63.17 is installed OR bind-chrootenv-9.9.9P1-63.17 is installed OR bind-doc-9.9.9P1-63.17 is installed OR bind-libs-9.9.9P1-63.17 is installed OR bind-libs-32bit-9.9.9P1-63.17 is installed OR bind-utils-9.9.9P1-63.17 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information grafana-4.5.1-4.3 is installed OR kafka-0.9.0.1-5.3 is installed OR logstash-2.4.1-5.4 is installed OR openstack-monasca-installer-20180622_15.06-3.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND python-Django1-1.11.23-3.9 is installed
BACK