Oval Definition:
oval:org.opensuse.security:def:65766
Revision Date
:
2020-12-01
Version
:
1
Title
:
Security update for log4j (Important)
Description
:
This update for log4j fixes the following issues:
- CVE-2019-17571: Fixed a remote code execution by deserialization of untrusted data in SocketServer (bsc#1159646).
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1051510
1071995
1094555
1111666
1112374
1114279
1128432
1134730
1134738
1135153
1135296
1135642
1136156
1136157
1136271
1136333
1137103
1137194
1137366
1137884
1137985
1138263
1138336
1138374
1138375
1138589
1138681
1138719
1138732
1159646
CVE-2018-16871
CVE-2019-12614
CVE-2019-12817
CVE-2019-17571
SUSE-SU-2019:1744-1
SUSE-SU-2020:0053-1
Platform(s)
:
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
Product(s)
:
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
AND
Package Information
kernel-default-4.12.14-197.7 is installed
OR
kernel-default-livepatch-4.12.14-197.7 is installed
OR
kernel-default-livepatch-devel-4.12.14-197.7 is installed
OR
kernel-livepatch-4_12_14-197_7-default-1-3.3 is installed
OR
kernel-livepatch-SLE15-SP1_Update_2-1-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
AND
Package Information
log4j-1.2.17-5.3 is installed
OR
log4j-javadoc-1.2.17-5.3 is installed
OR
log4j-mini-1.2.17-5.3 is installed
BACK