OVAL Reference oval:org.opensuse.security:def:60864

Oval Definition:

oval:org.opensuse.security:def:60864

Revision Date:	2020-12-01	Version:	1
Title:	Security update for ardana and crowbar (Important)
Description:	This update for ardana and crowbar fixes the following issues: - Restrict rootwrap directories for cinder (bsc#1132542) - Change Cinder default log level from DEBUG to INFO (SCRD-7132) - Remove configuration from migration (bsc#1126391) - Configurable innodb flush options (SCRD-7496) - Secure designate's rootwrap files (bsc#1132542) - specify rootwrap config file in designate sudoer (bsc#1132542) - Update Designate log threshold from DEBUG to INFO (SCRD-8459) - Change Glance default log level from DEBUG to INFO (SCRD-8592) - Change Heat default log level from DEBUG to INFO (SCRD-7132) - Fix Horizon missing create snapshot action for users (bsc#1130593) - Don't set external-name in ardana-ci models (SCRD-7471) - Fix fail-over/-back behavior of haproxy for galera (bsc#1122875) - Update swift endpoints from keystone-reconfigure.yml if needed (SCRD-8703) - Change Magnum default log level from DEFAULT to INFO (SCRD-7132) - Rip out vertica related code (SCRD-9031) - Tighten neutron sudoers to only execute rootwrap (bsc#1132542) - Change Neutron default log level from DEBUG to INFO (SCRD-7132) - SCRD-9031 Change permitted nova-rootwrap config file pattern (bsc#1132542) - specify rootwrap config file in nova sudoer (bsc#1132542) - Change Nova default log level from DEBUG to INFO (SCRD-7132) - Stop installing a sudoers root escalator (SCRD-9031) - Change Octavia default log level from DEBUG to INFO (SCRD-7132) - Increase number of connect retries (SCRD-7496) - UDEV rules for multi-port nics (SCRD-8329) - Ensure that the ceph group exists (SCRD-8347) - Disable test_create_health_monitor_with_scenarios tempest (SOC-9176) - Make --os-test-timeout configurable and increase default (SCRD-7496) - Disable TestVolumeBootPattern.test_volume_boot_pattern (SCRD-9015) - Increase and make timeout values configurable (SCRD-7496) - Configure heat boot config template path (SCRD-7496) - Fix typo on ceilometer filter (SCRD-7496) - barclamp: Fix setting MTU on networks using a bridge - Fix order of values in nodes piechart - Ignore CVE-2019-11068 during Travis (SOC-9262) - Fix cloud-mkcloud9-job-backup-restore (SCRD-7126) - Update suse-branding.patch with correct links for documentation (SCRD-8294) - pacemaker: add failure nodes to sync fail message (bsc#1083721) - update suse-branding.patch (SOC-9297) - pacemaker: wait more for founder if SBD is configured (SCRD-8462) - pacemaker: don't check cluster members on founder (SCRD-8462) - database: Make wsrep_provider_options configurable (fate#327745) - database: Raise and align promote/demote timeouts (bsc#1131791) - mysql: improve galera HA setup (bsc#1122875) - Update suse-branding.patch with correct links for documentation (SCRD-8294) - neutron: Fix the rest of the keystone related settings for LBaaS - neutron: properly define neutron lbaas region (bsc#1128753) - CLM - update MariaDB manually (bsc#1132852, SOC-9022) - update MariaDB manually (bsc#1132852, SOC-9022) - SOC8 alarm table restructure ((SCRD-7710, bsc#1124170) - Fix bsc#1118003 - add deprecation decision tree (shrub) (SCRD-8530) - add cert section (SCRD-5542) - grammar; make migration pairing more explicit (SCRD-7595) - Remove whitespace on top of login page (SCRD-7142) - Revert alert and form colors to default SCRD-6919 - Change active sidebar section text white SCRD-6919 - Updated the openstack-monasca-agent-sudoers file (bsc#1132542) - Don't restart neutron-ovs-cleanup on RPM update (bsc#1132860) - Fix KeyError in OVS firewall (bsc#1131712, CVE-2019-10876) - update to 1.11.20 (bsc#124991, CVE-2019-6975): - Memory exhaustion in ``django.utils.numberformat.format()`` - Include ops-console logs if exist (bsc-1126912) - Add a sed pattern to censor passwords from servers.yml (bsc#1105559) - Show the status file of crowbar upgrade (if it exists)
Family:	unix	Class:	patch
Status:		Reference(s):	1040311 1040312 1040313 1050577 1050578 1050579 1050581 1054413 1055960 1070727 1073879 1083721 1089533 1105559 1106019 1109412 1109413 1109414 1111622 1111996 1112534 1112535 1113247 1113252 1113255 1116827 1118003 1118830 1118831 1119376 1120640 1120932 1121034 1121035 1121056 1122292 1122299 1122668 1122875 1124170 1126391 1128753 1129071 1130593 1131712 1131791 1132542 1132663 1132852 1132860 1132900 1133131 1133232 1139083 1141670 1141780 1141782 1141783 1141785 1141787 1141789 1141913 1142772 1145092 1145604 1147021 1151021 1160888 1163933 1167890 1168930 1175664 1175665 1175671 124991 761500 922448 929736 935252 945455 947357 961596 967128 985657 CVE-2015-2296 CVE-2015-9542 CVE-2016-3189 CVE-2017-11624 CVE-2017-11625 CVE-2017-11626 CVE-2017-11627 CVE-2017-12595 CVE-2017-17083 CVE-2017-17084 CVE-2017-17085 CVE-2017-18379 CVE-2017-9208 CVE-2017-9209 CVE-2017-9210 CVE-2018-1000876 CVE-2018-11212 CVE-2018-11212 CVE-2018-14574 CVE-2018-14618 CVE-2018-17358 CVE-2018-17359 CVE-2018-17360 CVE-2018-17985 CVE-2018-18074 CVE-2018-18309 CVE-2018-18483 CVE-2018-18484 CVE-2018-18605 CVE-2018-18606 CVE-2018-18607 CVE-2018-19931 CVE-2018-19932 CVE-2018-20060 CVE-2018-20623 CVE-2018-20651 CVE-2018-20671 CVE-2019-1010180 CVE-2019-10208 CVE-2019-10876 CVE-2019-11068 CVE-2019-11236 CVE-2019-11324 CVE-2019-11771 CVE-2019-11771 CVE-2019-11772 CVE-2019-11772 CVE-2019-11775 CVE-2019-11775 CVE-2019-12900 CVE-2019-14835 CVE-2019-14907 CVE-2019-2449 CVE-2019-2449 CVE-2019-2762 CVE-2019-2762 CVE-2019-2766 CVE-2019-2766 CVE-2019-2769 CVE-2019-2769 CVE-2019-2786 CVE-2019-2786 CVE-2019-2816 CVE-2019-2816 CVE-2019-3498 CVE-2019-4473 CVE-2019-4473 CVE-2019-6975 CVE-2019-7317 CVE-2019-7317 CVE-2019-9740 CVE-2020-15810 CVE-2020-15811 CVE-2020-24606 CVE-2020-5260 SUSE-SU-2017:3436-1 SUSE-SU-2018:3066-1 SUSE-SU-2019:1862-1 SUSE-SU-2019:2371-1 SUSE-SU-2019:2650-1 SUSE-SU-2020:0233-1 SUSE-SU-2020:0992-1 SUSE-SU-2020:1117-1 SUSE-SU-2020:1792-1 SUSE-SU-2020:2471-1
Platform(s):	openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libxslt-1.1.32-lp151.3.3 is installed OR libxslt-devel-1.1.32-lp151.3.3 is installed OR libxslt-devel-32bit-1.1.32-lp151.3.3 is installed OR libxslt-python-1.1.32-lp151.3.3 is installed OR libxslt-tools-1.1.32-lp151.3.3 is installed OR libxslt1-1.1.32-lp151.3.3 is installed OR libxslt1-32bit-1.1.32-lp151.3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libwireshark8-2.2.11-48.15 is installed OR libwiretap6-2.2.11-48.15 is installed OR libwscodecs1-2.2.11-48.15 is installed OR libwsutil7-2.2.11-48.15 is installed OR wireshark-2.2.11-48.15 is installed OR wireshark-gtk-2.2.11-48.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND binutils-2.32-9.33 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_162-94_72-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_22-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information curl-7.37.0-37.26 is installed OR libcurl4-7.37.0-37.26 is installed OR libcurl4-32bit-7.37.0-37.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information bash-4.3-83.15 is installed OR bash-doc-4.3-83.15 is installed OR libreadline6-6.3-83.15 is installed OR libreadline6-32bit-6.3-83.15 is installed OR readline-doc-6.3-83.15 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND Package Information libpython3_4m1_0-3.4.10-25.52 is installed OR python3-3.4.10-25.52 is installed OR python3-base-3.4.10-25.52 is installed OR python3-curses-3.4.10-25.52 is installed OR python3-devel-3.4.10-25.52 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information crowbar-core-5.0+git.1558533551.8d8ed2058-3.23 is installed OR crowbar-core-branding-SOC-5.0-10.6 is installed OR crowbar-core-branding-upstream-5.0+git.1558533551.8d8ed2058-3.23 is installed OR crowbar-ha-5.0+git.1559282566.6b06ca3-3.17 is installed OR crowbar-openstack-5.0+git.1559335140.62bb4c014-4.25 is installed OR documentation-suse-openstack-cloud-deployment-8.20190521-1.17 is installed OR documentation-suse-openstack-cloud-supplement-8.20190521-1.17 is installed OR documentation-suse-openstack-cloud-upstream-admin-8.20190521-1.17 is installed OR documentation-suse-openstack-cloud-upstream-user-8.20190521-1.17 is installed OR openstack-aodh-5.1.1~dev7-3.11 is installed OR openstack-aodh-api-5.1.1~dev7-3.11 is installed OR openstack-aodh-doc-5.1.1~dev7-3.11 is installed OR openstack-aodh-evaluator-5.1.1~dev7-3.11 is installed OR openstack-aodh-expirer-5.1.1~dev7-3.11 is installed OR openstack-aodh-listener-5.1.1~dev7-3.11 is installed OR openstack-aodh-notifier-5.1.1~dev7-3.11 is installed OR openstack-barbican-5.0.2~dev3-3.14 is installed OR openstack-barbican-api-5.0.2~dev3-3.14 is installed OR openstack-barbican-doc-5.0.2~dev3-3.14 is installed OR openstack-barbican-keystone-listener-5.0.2~dev3-3.14 is installed OR openstack-barbican-retry-5.0.2~dev3-3.14 is installed OR openstack-barbican-worker-5.0.2~dev3-3.14 is installed OR openstack-ceilometer-9.0.8~dev7-3.12 is installed OR openstack-ceilometer-agent-central-9.0.8~dev7-3.12 is installed OR openstack-ceilometer-agent-compute-9.0.8~dev7-3.12 is installed OR openstack-ceilometer-agent-ipmi-9.0.8~dev7-3.12 is installed OR openstack-ceilometer-agent-notification-9.0.8~dev7-3.12 is installed OR openstack-ceilometer-api-9.0.8~dev7-3.12 is installed OR openstack-ceilometer-collector-9.0.8~dev7-3.12 is installed OR openstack-ceilometer-doc-9.0.8~dev7-3.12 is installed OR openstack-ceilometer-polling-9.0.8~dev7-3.12 is installed OR openstack-cinder-11.2.3~dev5-3.15 is installed OR openstack-cinder-api-11.2.3~dev5-3.15 is installed OR openstack-cinder-backup-11.2.3~dev5-3.15 is installed OR openstack-cinder-doc-11.2.3~dev5-3.15 is installed OR openstack-cinder-scheduler-11.2.3~dev5-3.15 is installed OR openstack-cinder-volume-11.2.3~dev5-3.15 is installed OR openstack-dashboard-12.0.4~dev6-3.20 is installed OR openstack-dashboard-theme-SUSE-2017.2+git.1554906711.9dbe79b-7.11 is installed OR openstack-designate-5.0.3~dev7-3.11 is installed OR openstack-designate-agent-5.0.3~dev7-3.11 is installed OR openstack-designate-api-5.0.3~dev7-3.11 is installed OR openstack-designate-central-5.0.3~dev7-3.11 is installed OR openstack-designate-doc-5.0.3~dev7-3.11 is installed OR openstack-designate-producer-5.0.3~dev7-3.11 is installed OR openstack-designate-sink-5.0.3~dev7-3.11 is installed OR openstack-designate-worker-5.0.3~dev7-3.11 is installed OR openstack-heat-9.0.8~dev3-3.18 is installed OR openstack-heat-api-9.0.8~dev3-3.18 is installed OR openstack-heat-api-cfn-9.0.8~dev3-3.18 is installed OR openstack-heat-api-cloudwatch-9.0.8~dev3-3.18 is installed OR openstack-heat-doc-9.0.8~dev3-3.18 is installed OR openstack-heat-engine-9.0.8~dev3-3.18 is installed OR openstack-heat-gbp-7.0.1~dev1-3.3 is installed OR openstack-heat-plugin-heat_docker-9.0.8~dev3-3.18 is installed OR openstack-heat-test-9.0.8~dev3-3.18 is installed OR openstack-horizon-plugin-trove-ui-9.0.1~dev10-3.9 is installed OR openstack-ironic-9.1.8~dev5-3.18 is installed OR openstack-ironic-api-9.1.8~dev5-3.18 is installed OR openstack-ironic-conductor-9.1.8~dev5-3.18 is installed OR openstack-ironic-doc-9.1.8~dev5-3.18 is installed OR openstack-keystone-12.0.4~dev2-5.19 is installed OR openstack-keystone-doc-12.0.4~dev2-5.19 is installed OR openstack-monasca-agent-2.2.5~dev2-3.9 is installed OR openstack-monasca-api-2.2.1~dev26-3.12 is installed OR openstack-monasca-log-api-2.3.1~dev12-3.6 is installed OR openstack-neutron-11.0.9~dev28-3.18 is installed OR openstack-neutron-dhcp-agent-11.0.9~dev28-3.18 is installed OR openstack-neutron-doc-11.0.9~dev28-3.18 is installed OR openstack-neutron-fwaas-11.0.3~dev1-3.14 is installed OR openstack-neutron-fwaas-doc-11.0.3~dev1-3.14 is installed OR openstack-neutron-gbp-7.3.1~dev28-3.3 is installed OR openstack-neutron-ha-tool-11.0.9~dev28-3.18 is installed OR openstack-neutron-l3-agent-11.0.9~dev28-3.18 is installed OR openstack-neutron-lbaas-11.0.4~dev6-3.9 is installed OR openstack-neutron-lbaas-agent-11.0.4~dev6-3.9 is installed OR openstack-neutron-lbaas-doc-11.0.4~dev6-3.9 is installed OR openstack-neutron-linuxbridge-agent-11.0.9~dev28-3.18 is installed OR openstack-neutron-macvtap-agent-11.0.9~dev28-3.18 is installed OR openstack-neutron-metadata-agent-11.0.9~dev28-3.18 is installed OR openstack-neutron-metering-agent-11.0.9~dev28-3.18 is installed OR openstack-neutron-openvswitch-agent-11.0.9~dev28-3.18 is installed OR openstack-neutron-server-11.0.9~dev28-3.18 is installed OR openstack-neutron-vpn-agent-11.0.1~dev5-3.12 is installed OR openstack-neutron-vpnaas-11.0.1~dev5-3.12 is installed OR openstack-neutron-vpnaas-doc-11.0.1~dev5-3.12 is installed OR openstack-neutron-vyatta-agent-11.0.1~dev5-3.12 is installed OR openstack-nova-16.1.9~dev3-3.23 is installed OR openstack-nova-api-16.1.9~dev3-3.23 is installed OR openstack-nova-cells-16.1.9~dev3-3.23 is installed OR openstack-nova-compute-16.1.9~dev3-3.23 is installed OR openstack-nova-conductor-16.1.9~dev3-3.23 is installed OR openstack-nova-console-16.1.9~dev3-3.23 is installed OR openstack-nova-consoleauth-16.1.9~dev3-3.23 is installed OR openstack-nova-doc-16.1.9~dev3-3.23 is installed OR openstack-nova-novncproxy-16.1.9~dev3-3.23 is installed OR openstack-nova-placement-api-16.1.9~dev3-3.23 is installed OR openstack-nova-scheduler-16.1.9~dev3-3.23 is installed OR openstack-nova-serialproxy-16.1.9~dev3-3.23 is installed OR openstack-nova-vncproxy-16.1.9~dev3-3.23 is installed OR openstack-trove-8.0.1~dev13-3.9 is installed OR openstack-trove-api-8.0.1~dev13-3.9 is installed OR openstack-trove-conductor-8.0.1~dev13-3.9 is installed OR openstack-trove-doc-8.0.1~dev13-3.9 is installed OR openstack-trove-guestagent-8.0.1~dev13-3.9 is installed OR openstack-trove-taskmanager-8.0.1~dev13-3.9 is installed OR python-Django-1.11.20-3.7 is installed OR python-aodh-5.1.1~dev7-3.11 is installed OR python-barbican-5.0.2~dev3-3.14 is installed OR python-ceilometer-9.0.8~dev7-3.12 is installed OR python-cinder-11.2.3~dev5-3.15 is installed OR python-cliff-2.8.3-3.6 is installed OR python-designate-5.0.3~dev7-3.11 is installed OR python-freezerclient-1.5.1-3.3 is installed OR python-freezerclient-doc-1.5.1-3.3 is installed OR python-heat-9.0.8~dev3-3.18 is installed OR python-heat-gbp-7.0.1~dev1-3.3 is installed OR python-horizon-12.0.4~dev6-3.20 is installed OR python-horizon-plugin-trove-ui-9.0.1~dev10-3.9 is installed OR python-ironic-9.1.8~dev5-3.18 is installed OR python-ironicclient-1.17.2-3.3 is installed OR python-ironicclient-doc-1.17.2-3.3 is installed OR python-keystone-12.0.4~dev2-5.19 is installed OR python-magnumclient-2.7.1-3.3 is installed OR python-magnumclient-doc-2.7.1-3.3 is installed OR python-manilaclient-1.17.4-3.6 is installed OR python-manilaclient-doc-1.17.4-3.6 is installed OR python-monasca-agent-2.2.5~dev2-3.9 is installed OR python-monasca-api-2.2.1~dev26-3.12 is installed OR python-monasca-log-api-2.3.1~dev12-3.6 is installed OR python-muranoclient-0.14.1-3.3 is installed OR python-muranoclient-doc-0.14.1-3.3 is installed OR python-neutron-11.0.9~dev28-3.18 is installed OR python-neutron-fwaas-11.0.3~dev1-3.14 is installed OR python-neutron-gbp-7.3.1~dev28-3.3 is installed OR python-neutron-lbaas-11.0.4~dev6-3.9 is installed OR python-neutron-vpnaas-11.0.1~dev5-3.12 is installed OR python-nova-16.1.9~dev3-3.23 is installed OR python-novaclient-9.1.3-3.6 is installed OR python-novaclient-doc-9.1.3-3.6 is installed OR python-openstackclient-3.12.2-3.3 is installed OR python-os-brick-1.15.9-3.6 is installed OR python-os-client-config-1.28.1-3.3 is installed OR python-os-vif-1.7.2-3.3 is installed OR python-os-win-2.2.1-3.3 is installed OR python-oslo.cache-1.25.2-3.3 is installed OR python-oslo.concurrency-3.21.2-3.3 is installed OR python-oslo.config-4.11.2-3.3 is installed OR python-oslo.config-doc-4.11.2-3.3 is installed OR python-oslo.i18n-3.17.2-3.3 is installed OR python-oslo.log-3.30.3-3.3 is installed OR python-oslo.messaging-5.30.8-3.8 is installed OR python-oslo.middleware-3.30.2-3.3 is installed OR python-oslo.policy-1.25.4-3.6 is installed OR python-oslo.privsep-1.22.2-3.3 is installed OR python-oslo.reports-1.22.2-3.3 is installed OR python-oslo.utils-3.28.4-3.6 is installed OR python-oslo.versionedobjects-1.26.3-3.6 is installed OR python-oslo.vmware-2.23.2-3.3 is installed OR python-oslotest-2.17.2-3.3 is installed OR python-python-subunit-1.2.0-4.3 is installed OR python-saharaclient-1.3.1-3.3 is installed OR python-saharaclient-doc-1.3.1-3.3 is installed OR python-swiftclient-3.4.1-3.3 is installed OR python-swiftclient-doc-3.4.1-3.3 is installed OR python-trove-8.0.1~dev13-3.9 is installed OR python-zaqarclient-1.7.1-3.3 is installed OR supportutils-plugin-suse-openstack-cloud-8.0.1551262227.7a7deb6-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information xen-4.11.4_04-2.30 is installed OR xen-doc-html-4.11.4_04-2.30 is installed OR xen-libs-4.11.4_04-2.30 is installed OR xen-libs-32bit-4.11.4_04-2.30 is installed OR xen-tools-4.11.4_04-2.30 is installed OR xen-tools-domU-4.11.4_04-2.30 is installed

BACK