Oval Definition:oval:org.opensuse.security:def:65791
Revision Date:2020-12-01Version:1
Title:Security update for libsolv, libzypp, zypper (Moderate)
Description:

This update for libsolv, libzypp, zypper fixes the following issues:

Security issue fixed:

- CVE-2019-18900: Fixed assert cookie file that was world readable (bsc#1158763).

Bug fixes

- Fixed removing orphaned packages dropped by to-be-installed products (bsc#1155819). - Adds libzypp API to mark all obsolete kernels according to the existing purge-kernel script rules (bsc#1155198). - Do not enforce 'en' being in RequestedLocales If the user decides to have a system without explicit language support he may do so (bsc#1155678). - Load only target resolvables for zypper rm (bsc#1157377). - Fix broken search by filelist (bsc#1135114). - Replace python by a bash script in zypper-log (fixes#304, fixes#306, bsc#1156158). - Do not sort out requested locales which are not available (bsc#1155678). - Prevent listing duplicate matches in tables. XML result is provided within the new list-patches-byissue element (bsc#1154805). - XML add patch issue-date and issue-list (bsc#1154805). - Fix zypper lp --cve/bugzilla/issue options (bsc#1155298). - Always execute commit when adding/removing locales (fixes bsc#1155205). - Fix description of --table-style,-s in man page (bsc#1154804).
Family:unixClass:patch
Status:Reference(s):1046299
1046303
1046305
1050244
1050536
1050545
1051510
1055186
1061840
1064802
1065600
1066129
1073513
1082635
1083647
1086323
1087092
1089644
1090631
1093205
1096254
1097583
1097584
1097585
1097586
1097587
1097588
1098291
1101674
1109158
1111666
1112178
1113994
1114279
1117665
1119461
1119465
1123034
1123080
1133140
1134303
1135114
1135642
1135854
1135873
1135967
1137040
1137799
1137861
1138190
1139073
1140090
1140729
1140845
1140883
1141600
1142635
1142667
1143706
1144338
1144375
1144449
1144903
1145099
1146612
1148410
1149119
1149853
1150452
1150457
1150465
1150875
1151508
1151807
1152033
1152624
1152665
1152685
1152696
1152697
1152788
1152790
1152791
1153112
1153158
1153236
1153263
1153476
1153509
1153607
1153646
1153681
1153713
1153717
1153718
1153719
1153811
1153969
1154108
1154189
1154242
1154268
1154354
1154372
1154521
1154578
1154607
1154608
1154610
1154611
1154651
1154737
1154747
1154804
1154805
1154848
1154858
1154905
1154956
1155061
1155178
1155179
1155184
1155186
1155198
1155205
1155298
1155671
1155678
1155819
1156158
1157377
1158763
802154
814594
919448
987367
998153
CVE-2018-12207
CVE-2019-10220
CVE-2019-11135
CVE-2019-16232
CVE-2019-16233
CVE-2019-16234
CVE-2019-16995
CVE-2019-17056
CVE-2019-17133
CVE-2019-17666
CVE-2019-18900
SUSE-SU-2019:2947-1
SUSE-SU-2020:0087-1
Platform(s):SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.26 is installed
  • OR kernel-default-livepatch-4.12.14-197.26 is installed
  • OR kernel-default-livepatch-devel-4.12.14-197.26 is installed
  • OR kernel-livepatch-4_12_14-197_26-default-1-3.5 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_7-1-3.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • libsolv-0.7.10-3.22 is installed
  • OR python-solv-0.7.10-3.22 is installed
    • BACK