Oval Definition:	oval:org.opensuse.security:def:63931
Revision Date: 2020-12-01 Version: 1 Title: Security update for mailman (Important) Description: This update for mailman fixes the following issues: Security issue fixed: - CVE-2020-12108: Fixed a content injection bug (bsc#1171363). - CVE-2020-12137: Fixed a XSS vulnerability caused by MIME type confusion (bsc#1170558). Non-security issue fixed: - Fixed rights and ownership on /var/lib/mailman/archives (bsc#1167068). - Don't default to invalid hosts for DEFAULT_EMAIL_HOST (bsc#682920). Family: unix Class: patch Status: Reference(s): 1033084 1033085 1033086 1033087 1033088 1033089 1033090 1106390 1107066 1107067 1111973 1112723 1112726 1115718 1115719 1120629 1120630 1120631 1123685 1125007 1127155 1131823 1137977 1146286 1148844 1153072 1158095 1159856 1159858 1159860 1160249 1160250 1160251 1160937 1163927 1163959 1163969 1165680 1167068 1169952 1170558 1171040 1171148 1171149 1171247 1171363 1173376 1173377 1173378 1173380 1173792 1175135 682920 CVE-2017-7607 CVE-2017-7608 CVE-2017-7609 CVE-2017-7610 CVE-2017-7611 CVE-2017-7612 CVE-2017-7613 CVE-2018-16062 CVE-2018-16402 CVE-2018-16403 CVE-2018-18310 CVE-2018-18520 CVE-2018-18521 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2019-10740 CVE-2019-14553 CVE-2019-14559 CVE-2019-14563 CVE-2019-14575 CVE-2019-14889 CVE-2019-15691 CVE-2019-15692 CVE-2019-15693 CVE-2019-15694 CVE-2019-15695 CVE-2019-15784 CVE-2019-7150 CVE-2019-7665 CVE-2020-12108 CVE-2020-12137 CVE-2020-12625 CVE-2020-12640 CVE-2020-12641 CVE-2020-15562 CVE-2020-15563 CVE-2020-15565 CVE-2020-15566 CVE-2020-15567 CVE-2020-16145 CVE-2020-6464 CVE-2020-6831 openSUSE-SU-2019:1590-1 openSUSE-SU-2019:2083-1 openSUSE-SU-2019:2689-1 openSUSE-SU-2020:0620-1 openSUSE-SU-2020:1516-1 SUSE-SU-2020:0699-1 SUSE-SU-2020:1301-1 SUSE-SU-2020:1749-1 SUSE-SU-2020:1891-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information elfutils-0.168-lp151.4.3 is installed OR elfutils-lang-0.168-lp151.4.3 is installed OR libasm-devel-0.168-lp151.4.3 is installed OR libasm1-0.168-lp151.4.3 is installed OR libasm1-32bit-0.168-lp151.4.3 is installed OR libdw-devel-0.168-lp151.4.3 is installed OR libdw1-0.168-lp151.4.3 is installed OR libdw1-32bit-0.168-lp151.4.3 is installed OR libebl-devel-0.168-lp151.4.3 is installed OR libebl-plugins-0.168-lp151.4.3 is installed OR libebl-plugins-32bit-0.168-lp151.4.3 is installed OR libelf-devel-0.168-lp151.4.3 is installed OR libelf-devel-32bit-0.168-lp151.4.3 is installed OR libelf1-0.168-lp151.4.3 is installed OR libelf1-32bit-0.168-lp151.4.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND roundcubemail-1.3.15-lp152.4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND mailman-2.1.17-3.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information libsolv-0.6.36-2.30 is installed OR libsolv-devel-0.6.36-2.30 is installed OR libsolv-tools-0.6.36-2.30 is installed OR perl-solv-0.6.36-2.30 is installed OR python-solv-0.6.36-2.30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information xen-4.11.4_04-2.30 is installed OR xen-doc-html-4.11.4_04-2.30 is installed OR xen-libs-4.11.4_04-2.30 is installed OR xen-libs-32bit-4.11.4_04-2.30 is installed OR xen-tools-4.11.4_04-2.30 is installed OR xen-tools-domU-4.11.4_04-2.30 is installed
BACK