OVAL Reference oval:org.opensuse.security:def:63674

Oval Definition:

oval:org.opensuse.security:def:63674

Revision Date:	2020-12-01	Version:	1
Title:	Security update for freeradius-server (Important)
Description:	This update for freeradius-server fixes the following issues: Security issues fixed: - CVE-2019-11235: Fixed an authentication bypass related to the EAP-PWD Commit frame and insufficent validation of elliptic curve points (bsc#1132549). - CVE-2019-11234: Fixed an authentication bypass caused by reflecting privous values back to the server (bsc#1132664).
Family:	unix	Class:	patch
Status:		Reference(s):	1010399 1010405 1010406 1010408 1010409 1010421 1010423 1010424 1010425 1010426 1025108 1043008 1047281 1051510 1058115 1065729 1071995 1074235 1082555 1089895 1092611 1111666 1114279 1120374 1132549 1132664 1133021 1134689 1136183 1137990 1140738 1141329 1141332 1144333 1149429 1151794 1152489 1154738 1154824 1156669 1157169 1158265 1160388 1160520 1160522 1160523 1160524 1160525 1160526 1160527 1160947 1165183 1165741 1166969 1167574 1167851 1168503 1168669 1168670 1169020 1169381 1169514 1169525 1170056 1170125 1170145 1170345 1170457 1170522 1170592 1170618 1170620 1170770 1170778 1170791 1170901 1171078 1171098 1171118 1171189 1171191 1171195 1171202 1171205 1171217 1171218 1171219 1171220 1171293 1171417 1171527 1171599 1171600 1171601 1171602 1171604 1171605 1171606 1171607 1171608 1171609 1171610 1171611 1171612 1171613 1171614 1171615 1171616 1171617 1171618 1171619 1171620 1171621 1171622 1171623 1171624 1171625 1171626 1171679 1171691 1171694 1171695 1171736 1171761 1171948 1171949 1171951 1171952 1171982 1171983 1172096 1172097 1172098 1172099 1172101 1172102 1172103 1172104 1172127 1172130 1172185 1172188 1172199 1172221 1172253 1172317 1172342 1172343 1172344 1172366 1172391 1172397 1172453 1172745 1173032 1173477 1173691 1173694 1173700 1173701 1173743 1173874 1173875 1173876 1173880 1174421 959933 983922 CVE-2016-2830 CVE-2016-5289 CVE-2016-5292 CVE-2016-9063 CVE-2016-9067 CVE-2016-9068 CVE-2016-9069 CVE-2016-9071 CVE-2016-9073 CVE-2016-9075 CVE-2016-9076 CVE-2016-9077 CVE-2017-18922 CVE-2017-7789 CVE-2018-1000199 CVE-2018-21247 CVE-2018-5150 CVE-2018-5151 CVE-2018-5152 CVE-2018-5153 CVE-2018-5154 CVE-2018-5155 CVE-2018-5157 CVE-2018-5158 CVE-2018-5159 CVE-2018-5160 CVE-2018-5163 CVE-2018-5164 CVE-2018-5165 CVE-2018-5166 CVE-2018-5167 CVE-2018-5168 CVE-2018-5169 CVE-2018-5172 CVE-2018-5173 CVE-2018-5174 CVE-2018-5175 CVE-2018-5176 CVE-2018-5177 CVE-2018-5178 CVE-2018-5179 CVE-2018-5180 CVE-2018-5181 CVE-2018-5182 CVE-2018-5183 CVE-2019-10130 CVE-2019-11234 CVE-2019-11235 CVE-2019-11757 CVE-2019-11758 CVE-2019-11759 CVE-2019-11760 CVE-2019-11761 CVE-2019-11762 CVE-2019-11763 CVE-2019-11764 CVE-2019-12525 CVE-2019-12529 CVE-2019-13345 CVE-2019-15903 CVE-2019-19462 CVE-2019-20806 CVE-2019-20812 CVE-2019-20839 CVE-2019-20840 CVE-2019-2737 CVE-2019-2739 CVE-2019-2740 CVE-2019-2758 CVE-2019-2805 CVE-2019-2938 CVE-2019-2974 CVE-2019-9455 CVE-2020-0543 CVE-2020-10690 CVE-2020-10711 CVE-2020-10720 CVE-2020-10732 CVE-2020-10751 CVE-2020-10757 CVE-2020-11722 CVE-2020-12114 CVE-2020-12402 CVE-2020-12464 CVE-2020-12652 CVE-2020-12653 CVE-2020-12654 CVE-2020-12655 CVE-2020-12656 CVE-2020-12657 CVE-2020-12768 CVE-2020-12769 CVE-2020-13143 CVE-2020-14397 CVE-2020-14398 CVE-2020-14399 CVE-2020-14400 CVE-2020-14401 CVE-2020-14402 CVE-2020-14403 CVE-2020-14404 CVE-2020-15705 CVE-2020-6609 CVE-2020-6610 CVE-2020-6611 CVE-2020-6612 CVE-2020-6613 CVE-2020-6614 CVE-2020-6615 openSUSE-SU-2019:1491-1 openSUSE-SU-2020:0096-1 openSUSE-SU-2020:0549-1 openSUSE-SU-2020:0955-1 openSUSE-SU-2020:1280-1 SUSE-SU-2019:1181-1 SUSE-SU-2019:1511-1 SUSE-SU-2019:2089-1 SUSE-SU-2019:2872-1 SUSE-SU-2019:3369-1 SUSE-SU-2020:1605-1
Platform(s):	openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS	Product(s):
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information GraphicsMagick-1.3.29-lp151.4.3 is installed OR GraphicsMagick-devel-1.3.29-lp151.4.3 is installed OR libGraphicsMagick++-Q16-12-1.3.29-lp151.4.3 is installed OR libGraphicsMagick++-devel-1.3.29-lp151.4.3 is installed OR libGraphicsMagick-Q16-3-1.3.29-lp151.4.3 is installed OR libGraphicsMagick3-config-1.3.29-lp151.4.3 is installed OR libGraphicsMagickWand-Q16-2-1.3.29-lp151.4.3 is installed OR perl-GraphicsMagick-1.3.29-lp151.4.3 is installed
Definition Synopsis
openSUSE Leap 15.2 is installed AND Package Information libfreebl3-3.53.1-lp152.2.4 is installed OR libfreebl3-32bit-3.53.1-lp152.2.4 is installed OR libfreebl3-hmac-3.53.1-lp152.2.4 is installed OR libfreebl3-hmac-32bit-3.53.1-lp152.2.4 is installed OR libsoftokn3-3.53.1-lp152.2.4 is installed OR libsoftokn3-32bit-3.53.1-lp152.2.4 is installed OR libsoftokn3-hmac-3.53.1-lp152.2.4 is installed OR libsoftokn3-hmac-32bit-3.53.1-lp152.2.4 is installed OR mozilla-nss-3.53.1-lp152.2.4 is installed OR mozilla-nss-32bit-3.53.1-lp152.2.4 is installed OR mozilla-nss-certs-3.53.1-lp152.2.4 is installed OR mozilla-nss-certs-32bit-3.53.1-lp152.2.4 is installed OR mozilla-nss-devel-3.53.1-lp152.2.4 is installed OR mozilla-nss-sysinit-3.53.1-lp152.2.4 is installed OR mozilla-nss-sysinit-32bit-3.53.1-lp152.2.4 is installed OR mozilla-nss-tools-3.53.1-lp152.2.4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information freeradius-server-3.0.15-2.11 is installed OR freeradius-server-doc-3.0.15-2.11 is installed OR freeradius-server-krb5-3.0.15-2.11 is installed OR freeradius-server-ldap-3.0.15-2.11 is installed OR freeradius-server-libs-3.0.15-2.11 is installed OR freeradius-server-mysql-3.0.15-2.11 is installed OR freeradius-server-perl-3.0.15-2.11 is installed OR freeradius-server-postgresql-3.0.15-2.11 is installed OR freeradius-server-python-3.0.15-2.11 is installed OR freeradius-server-sqlite-3.0.15-2.11 is installed OR freeradius-server-utils-3.0.15-2.11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information LibVNCServer-0.9.9-17.31 is installed OR libvncclient0-0.9.9-17.31 is installed OR libvncserver0-0.9.9-17.31 is installed

BACK