Oval Definition:oval:org.opensuse.security:def:66017
Revision Date:2020-12-01Version:1
Title:Security update for cloud-init (Moderate)
Description:

This update for cloud-init to version 19.2 fixes the following issues:

Security issue fixed:

- CVE-2019-0816: Fixed the unnecessary extra ssh keys that were added to authorized_keys (bsc#1129124).

Non-security issues fixed:

- Short circuit the conditional for identifying the sysconfig renderer (bsc#1154092, bsc#1142988). - If /etc/resolv.conf is a symlink, break it. This will avoid netconfig from clobbering the changes cloud-init applied (bsc#1151488).
Family:unixClass:patch
Status:Reference(s):1099358
1115015
1115022
1115025
1129124
1136440
1142988
1144363
1145579
1145580
1145582
1151488
1154092
CVE-2018-16843
CVE-2018-16844
CVE-2018-16845
CVE-2019-0816
CVE-2019-9511
CVE-2019-9513
CVE-2019-9516
SUSE-SU-2019:2309-1
SUSE-SU-2019:3096-1
Platform(s):SUSE Linux Enterprise Module for Public Cloud 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed
  • AND Package Information
  • cloud-init-19.2-8.11 is installed
  • OR cloud-init-config-suse-19.2-8.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • nginx-1.14.2-6.3 is installed
  • OR nginx-source-1.14.2-6.3 is installed
    • BACK