OVAL Reference oval:org.opensuse.security:def:6206

Oval Definition:

oval:org.opensuse.security:def:6206

Revision Date:	2021-10-20	Version:	1
Title:	Security update for xstream (Important)
Description:	This update for xstream fixes the following issues: - Upgrade to 1.4.18 - CVE-2021-39139: Fixed an issue that allowed an attacker to execute arbitrary code execution by manipulating the processed input stream with type information. (bsc#1189798) - CVE-2021-39140: Fixed an issue that allowed an attacker to execute a DoS attack by manipulating the processed input stream. (bsc#1189798) - CVE-2021-39141: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39144: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39145: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39146: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39147: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39148: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39149: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39150: Fixed an issue that allowed an attacker to access protected resources hosted within the intranet or in the host itself. (bsc#1189798) - CVE-2021-39151: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39152: Fixed an issue that allowed an attacker to access protected resources hosted within the intranet or in the host itself. (bsc#1189798) - CVE-2021-39153: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39154: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798)
Family:	unix	Class:	patch
Status:		Reference(s):	1189798 CVE-2004-2771 CVE-2004-2779 CVE-2006-0855 CVE-2007-1669 CVE-2008-2109 CVE-2009-3736 CVE-2010-2074 CVE-2010-4000 CVE-2011-3200 CVE-2011-3635 CVE-2012-2451 CVE-2012-4929 CVE-2013-1992 CVE-2013-4758 CVE-2013-6370 CVE-2013-6371 CVE-2014-3158 CVE-2014-3566 CVE-2014-3634 CVE-2014-3683 CVE-2014-4975 CVE-2014-7844 CVE-2014-8080 CVE-2014-8090 CVE-2014-9622 CVE-2014-9939 CVE-2015-1855 CVE-2015-3310 CVE-2015-3900 CVE-2015-7551 CVE-2016-2339 CVE-2017-11550 CVE-2017-11551 CVE-2017-12448 CVE-2017-12450 CVE-2017-12452 CVE-2017-12453 CVE-2017-12454 CVE-2017-12456 CVE-2017-12799 CVE-2017-13757 CVE-2017-14128 CVE-2017-14129 CVE-2017-14130 CVE-2017-14333 CVE-2017-14529 CVE-2017-14729 CVE-2017-14745 CVE-2017-14974 CVE-2017-15938 CVE-2017-15939 CVE-2017-15996 CVE-2017-16826 CVE-2017-16827 CVE-2017-16828 CVE-2017-16829 CVE-2017-16830 CVE-2017-16831 CVE-2017-16832 CVE-2017-6507 CVE-2017-6965 CVE-2017-6966 CVE-2017-6969 CVE-2017-7209 CVE-2017-7210 CVE-2017-7223 CVE-2017-7224 CVE-2017-7225 CVE-2017-7226 CVE-2017-7299 CVE-2017-7300 CVE-2017-7301 CVE-2017-7302 CVE-2017-7303 CVE-2017-7304 CVE-2017-8288 CVE-2017-8392 CVE-2017-8393 CVE-2017-8394 CVE-2017-8396 CVE-2017-8421 CVE-2017-9746 CVE-2017-9747 CVE-2017-9748 CVE-2017-9750 CVE-2017-9755 CVE-2017-9756 CVE-2018-10372 CVE-2018-10373 CVE-2018-10534 CVE-2018-10535 CVE-2018-6323 CVE-2018-6543 CVE-2018-6759 CVE-2018-6872 CVE-2018-7208 CVE-2018-7568 CVE-2018-7569 CVE-2018-7570 CVE-2018-7642 CVE-2018-7643 CVE-2018-8945 CVE-2021-39139 CVE-2021-39140 CVE-2021-39141 CVE-2021-39144 CVE-2021-39145 CVE-2021-39146 CVE-2021-39147 CVE-2021-39148 CVE-2021-39149 CVE-2021-39150 CVE-2021-39151 CVE-2021-39152 CVE-2021-39153 CVE-2021-39154
Platform(s):	openSUSE 13.1 openSUSE 13.1 NonFree openSUSE 13.2 openSUSE 13.2 NonFree openSUSE Leap 42.1 SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Build System Kit 12 SP4 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for High Performance Computing 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP3 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4	Product(s):
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 is installed AND kernel-zfcpdump-3.12.60-52.54 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND Package Information krb5-mini-1.12.1-22 is installed OR krb5-mini-devel-1.12.1-22 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND Package Information ghostscript-mini-9.15-17 is installed OR ghostscript-mini-devel-9.15-17 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND kernel-zfcpdump-4.4.92-6.18 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP4 is installed AND Package Information libudev-mini-devel-228-150.63 is installed OR libudev-mini1-228-150.63 is installed OR systemd-mini-228-150.63 is installed OR systemd-mini-devel-228-150.63 is installed OR udev-mini-228-150.63 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information Mesa-7.11.2-0.9.1 is installed OR Mesa-32bit-7.11.2-0.9.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information ImageMagick-6.4.3.6-7.30.1 is installed OR libMagick++1-6.4.3.6-7.30.1 is installed OR libMagickCore1-6.4.3.6-7.30.1 is installed OR libMagickCore1-32bit-6.4.3.6-7.30.1 is installed OR libMagickWand1-6.4.3.6-7.30.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information tigervnc-1.3.0-22 is installed OR xorg-x11-Xvnc-1.3.0-22 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND rsyslog-8.4.0-8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND xdg-utils-20140630-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information apparmor-docs-2.8.2-49 is installed OR apparmor-parser-2.8.2-49 is installed OR apparmor-profiles-2.8.2-49 is installed OR apparmor-utils-2.8.2-49 is installed OR libapparmor1-2.8.2-49 is installed OR libapparmor1-32bit-2.8.2-49 is installed OR pam_apparmor-2.8.2-49 is installed OR pam_apparmor-32bit-2.8.2-49 is installed OR perl-apparmor-2.8.2-49 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 is installed AND Package Information MozillaFirefox-45.8.0esr-102 is installed OR MozillaFirefox-translations-45.8.0esr-102 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information compat-openssl098-0.9.8j-94.1 is installed OR libopenssl0_9_8-0.9.8j-94.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP5 is installed AND fence-agents-4.4.0+git.1558595666.5f79f9e9-3.8 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information apache-commons-beanutils-1.9.2-3.3 is installed OR apache-commons-beanutils-javadoc-1.9.2-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_44-52_10-default-4-2 is installed OR kgraft-patch-3_12_44-52_10-xen-4-2 is installed OR kgraft-patch-SLE12_Update_6-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_82-6_3-default-1-2 is installed OR kgraft-patch-SLE12-SP3_Update_1-1-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND python-pycrypto-2.6.1-10.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND sles12sp1-docker-image-1.0.4-20160308170633 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 12 is installed AND Package Information libpmi0-17.02.9-6.10 is installed OR libslurm29-16.05.8.1-6 is installed OR libslurm31-17.02.9-6.10 is installed OR pdsh-2.33-7.5 is installed OR perl-slurm-17.02.9-6.10 is installed OR slurm-17.02.9-6.10 is installed OR slurm-auth-none-17.02.9-6.10 is installed OR slurm-devel-17.02.9-6.10 is installed OR slurm-doc-17.02.9-6.10 is installed OR slurm-lua-17.02.9-6.10 is installed OR slurm-munge-17.02.9-6.10 is installed OR slurm-pam_slurm-17.02.9-6.10 is installed OR slurm-plugins-17.02.9-6.10 is installed OR slurm-sched-wiki-17.02.9-6.10 is installed OR slurm-slurmdb-direct-17.02.9-6.10 is installed OR slurm-slurmdbd-17.02.9-6.10 is installed OR slurm-sql-17.02.9-6.10 is installed OR slurm-torque-17.02.9-6.10 is installed OR slurmlibs-16.05.8.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information cups154-1.5.4-2 is installed OR cups154-client-1.5.4-2 is installed OR cups154-filters-1.5.4-2 is installed OR cups154-libs-1.5.4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.43-52.6 is installed OR kernel-ec2-devel-3.12.43-52.6 is installed OR kernel-ec2-extra-3.12.43-52.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP1 is installed AND Package Information java-1_4_2-ibm-1.4.2_sr13.3-1.1.1 is installed OR java-1_4_2-ibm-jdbc-1.4.2_sr13.3-1.1.1 is installed OR java-1_4_2-ibm-plugin-1.4.2_sr13.3-1.1.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information NetworkManager-0.7.1_git20090811-3.20.5 is installed OR NetworkManager-glib-0.7.1_git20090811-3.20.5 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND gtk2-2.18.9-0.35.1 is installed OR gtk2-32bit-2.18.9-0.35.1 is installed OR gtk2-doc-2.18.9-0.35.1 is installed OR gtk2-lang-2.18.9-0.35.1 is installed OR gtk2-x86-2.18.9-0.35.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND gtk2-2.18.9-0.35.1 is installed OR gtk2-32bit-2.18.9-0.35.1 is installed OR gtk2-doc-2.18.9-0.35.1 is installed OR gtk2-lang-2.18.9-0.35.1 is installed OR gtk2-x86-2.18.9-0.35.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information libproxy0-0.3.1-2.6.1 is installed OR libproxy0-32bit-0.3.1-2.6.1 is installed OR libproxy0-config-gnome-0.3.1-2.6.3 is installed OR libproxy0-config-kde4-0.3.1-2.6.3 is installed OR libproxy0-networkmanager-0.3.1-2.6.3 is installed OR libproxy0-x86-0.3.1-2.6.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information PolicyKit-0.9-14.43.1 is installed OR PolicyKit-32bit-0.9-14.43.1 is installed OR PolicyKit-doc-0.9-14.43.1 is installed OR PolicyKit-x86-0.9-14.43.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11-SECURITY is installed AND Package Information libopenssl1-devel-1.0.1g-0.22.1 is installed OR libopenssl1_0_0-1.0.1g-0.22.1 is installed OR libopenssl1_0_0-32bit-1.0.1g-0.22.1 is installed OR libopenssl1_0_0-x86-1.0.1g-0.22.1 is installed OR openssl1-1.0.1g-0.22.1 is installed OR openssl1-doc-1.0.1g-0.22.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information apache-commons-daemon-1.0.15-4 is installed OR apache-commons-daemon-javadoc-1.0.15-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information dhcp-4.3.3-2 is installed OR dhcp-client-4.3.3-2 is installed OR dhcp-relay-4.3.3-2 is installed OR dhcp-server-4.3.3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND apache-commons-httpclient-3.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_perl-2.0.8-11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND pam_ssh-2.0-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND Package Information evince-3.20.2-6.27 is installed OR evince-browser-plugin-3.20.2-6.27 is installed OR evince-lang-3.20.2-6.27 is installed OR evince-plugin-djvudocument-3.20.2-6.27 is installed OR evince-plugin-dvidocument-3.20.2-6.27 is installed OR evince-plugin-pdfdocument-3.20.2-6.27 is installed OR evince-plugin-psdocument-3.20.2-6.27 is installed OR evince-plugin-tiffdocument-3.20.2-6.27 is installed OR evince-plugin-xpsdocument-3.20.2-6.27 is installed OR libevdocument3-4-3.20.2-6.27 is installed OR libevview3-3-3.20.2-6.27 is installed OR nautilus-evince-3.20.2-6.27 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND Package Information bzip2-1.0.6-30.5 is installed OR bzip2-doc-1.0.6-30.5 is installed OR libbz2-1-1.0.6-30.5 is installed OR libbz2-1-32bit-1.0.6-30.5 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND Package Information Mesa-devel-7.11.2-0.9.1 is installed OR Mesa-devel-32bit-7.11.2-0.9.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND a2ps-devel-4.13-1326.37.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information Xerces-c-2.8.0-29.17.1 is installed OR libXerces-c-devel-2.8.0-29.17.1 is installed OR libXerces-c28-2.8.0-29.17.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND augeas-devel-1.2.0-1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND alsa-devel-1.0.27.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND MozillaFirefox-devel-45.4.0esr-81 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND apache2-devel-2.4.23-28 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND Package Information DirectFB-devel-1.7.1-6 is installed OR lib++dfb-devel-1.7.1-6 is installed

BACK