Oval Definition:	oval:org.opensuse.security:def:61030
Revision Date: 2020-12-01 Version: 1 Title: Security update for shim (Moderate) Description: This update for shim fixes the following issues: - Update to the unified shim binary from SUSE Linux Enterprise 15-SP1 (bsc#1168994) This update addresses the 'BootHole' security issue (master CVE CVE-2020-10713), by disallowing binaries signed by the previous SUSE UEFI signing key from booting. This update should only be installed after updates of grub2, the Linux kernel and (if used) Xen from July / August 2020 are applied. Additional fixes: + shim-install: install MokManager to \EFI\boot to process the pending MOK request (bsc#1175626, bsc#1175656) Family: unix Class: patch Status: Reference(s): 1027519 1055047 1056996 1061075 1063123 1068187 1068191 1077291 1086825 1092098 1098998 1139083 1149792 1154824 1156353 1159856 1159858 1159860 1160250 1160251 1160467 1160468 1160937 1168874 1168930 1168994 1169605 1169786 1169936 1170302 1170603 1170741 1170939 1172466 1175626 1175656 1177943 985657 CVE-2016-3189 CVE-2017-14107 CVE-2017-15289 CVE-2017-15597 CVE-2018-1000301 CVE-2018-12359 CVE-2018-12360 CVE-2018-12362 CVE-2018-12363 CVE-2018-12364 CVE-2018-12365 CVE-2018-12366 CVE-2018-12368 CVE-2018-5089 CVE-2018-5091 CVE-2018-5095 CVE-2018-5096 CVE-2018-5097 CVE-2018-5098 CVE-2018-5099 CVE-2018-5102 CVE-2018-5103 CVE-2018-5104 CVE-2018-5117 CVE-2018-5156 CVE-2018-5188 CVE-2019-12900 CVE-2019-14896 CVE-2019-14897 CVE-2019-15691 CVE-2019-15692 CVE-2019-15693 CVE-2019-15694 CVE-2019-15695 CVE-2020-0543 CVE-2020-0548 CVE-2020-0549 CVE-2020-10713 CVE-2020-10713 CVE-2020-11008 CVE-2020-12268 CVE-2020-14779 CVE-2020-14781 CVE-2020-14782 CVE-2020-14792 CVE-2020-14796 CVE-2020-14797 CVE-2020-14798 CVE-2020-14803 CVE-2020-5260 CVE-2020-6821 CVE-2020-6821 CVE-2020-6822 CVE-2020-6822 CVE-2020-6825 CVE-2020-6825 CVE-2020-6827 CVE-2020-6827 CVE-2020-6828 CVE-2020-6828 SUSE-SU-2017:2546-1 SUSE-SU-2017:3115-1 SUSE-SU-2018:0374-1 SUSE-SU-2018:1327-1 SUSE-SU-2018:2322-1 SUSE-SU-2020:0978-1 SUSE-SU-2020:1295-1 SUSE-SU-2020:2627-1 SUSE-SU-2020:3310-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information gnome-shell-3.26.2+20180130.0d9c74212-lp151.7.3 is installed OR gnome-shell-browser-plugin-3.26.2+20180130.0d9c74212-lp151.7.3 is installed OR gnome-shell-calendar-3.26.2+20180130.0d9c74212-lp151.7.3 is installed OR gnome-shell-devel-3.26.2+20180130.0d9c74212-lp151.7.3 is installed OR gnome-shell-lang-3.26.2+20180130.0d9c74212-lp151.7.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND dracut-saltboot-0.1.1590413773.a959db7-lp152.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libzip-0.11.1-13.3 is installed OR libzip2-0.11.1-13.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information git-2.26.2-27.36 is installed OR git-core-2.26.2-27.36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND shim-15+git47-25.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information bzip2-1.0.6-30.5 is installed OR bzip2-doc-1.0.6-30.5 is installed OR libbz2-1-1.0.6-30.5 is installed OR libbz2-1-32bit-1.0.6-30.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND autofs-5.0.9-28.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information ghostscript-9.52-23.39 is installed OR ghostscript-x11-9.52-23.39 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information grub2-2.02-12.39 is installed OR grub2-arm64-efi-2.02-12.39 is installed OR grub2-i386-pc-2.02-12.39 is installed OR grub2-powerpc-ieee1275-2.02-12.39 is installed OR grub2-s390x-emu-2.02-12.39 is installed OR grub2-snapper-plugin-2.02-12.39 is installed OR grub2-systemd-sleep-plugin-2.02-12.39 is installed OR grub2-x86_64-efi-2.02-12.39 is installed OR grub2-x86_64-xen-2.02-12.39 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.3-2.56 is installed OR libwebkit2gtk-4_0-37-2.28.3-2.56 is installed OR libwebkit2gtk3-lang-2.28.3-2.56 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.3-2.56 is installed OR typelib-1_0-WebKit2-4_0-2.28.3-2.56 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.28.3-2.56 is installed OR webkit2gtk-4_0-injected-bundles-2.28.3-2.56 is installed OR webkit2gtk3-2.28.3-2.56 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND shim-15+git47-25.11 is installed
BACK