Oval Definition:	oval:org.opensuse.security:def:676
Revision Date: 2022-08-04 Version: 1 Title: Security update for go1.17 (Important) Description: This update for go1.17 fixes the following issues: Update to go version 1.17.13 (bsc#1190649): - CVE-2022-32189: encoding/gob, math/big: decoding big.Float and big.Rat can panic (bsc#1202035). - CVE-2022-30635: encoding/gob: stack exhaustion in Decoder.Decode (bsc#1201444). - CVE-2022-30631: compress/gzip: stack exhaustion in Reader.Read (bsc#1201437). - CVE-2022-1962: go/parser: stack exhaustion in all Parse* functions (bsc#1201448). - CVE-2022-28131: encoding/xml: stack exhaustion in Decoder.Skip (bsc#1201443). - CVE-2022-1705: net/http: improper sanitization of Transfer-Encoding header (bsc#1201434) - CVE-2022-30630: io/fs: stack exhaustion in Glob (bsc#1201447). - CVE-2022-32148: net/http/httputil: NewSingleHostReverseProxy - omit X-Forwarded-For not working (bsc#1201436) - CVE-2022-30632: path/filepath: stack exhaustion in Glob (bsc#1201445). - CVE-2022-30633: encoding/xml: stack exhaustion in Unmarshal (bsc#1201440). Family: unix Class: patch Status: Reference(s): 1190649 1201434 1201436 1201437 1201440 1201443 1201444 1201445 1201447 1201448 1202035 CVE-2013-7322 CVE-2013-7447 CVE-2017-10683 CVE-2017-10683 CVE-2017-11126 CVE-2017-11126 CVE-2022-1705 CVE-2022-1962 CVE-2022-28131 CVE-2022-30630 CVE-2022-30631 CVE-2022-30632 CVE-2022-30633 CVE-2022-30635 CVE-2022-32148 CVE-2022-32189 SUSE-SU-2022:2671-1 Platform(s): openSUSE 13.2 openSUSE Leap 15.4 SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise Desktop 15 SP3 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Containers 15 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Storage 7 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP3 SUSE Manager Proxy 4.1 SUSE Manager Server 4.1 Product(s): Definition Synopsis openSUSE Leap 15.4 is installed AND Package Information go1.17-1.17.13-150000.1.42.1 is installed OR go1.17-doc-1.17.13-150000.1.42.1 is installed OR go1.17-race-1.17.13-150000.1.42.1 is installed Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information openstack-neutron-2014.2.2.dev26-3 is installed OR openstack-neutron-dhcp-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-ha-tool-2014.2.2.dev26-3 is installed OR openstack-neutron-l3-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-lbaas-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-linuxbridge-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-metadata-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-metering-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-openvswitch-agent-2014.2.2.dev26-3 is installed OR openstack-neutron-vpn-agent-2014.2.2.dev26-3 is installed OR python-neutron-2014.2.2.dev26-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information cpio-2.11-26 is installed OR cpio-lang-2.11-26 is installed OR tar-1.27.1-2 is installed OR tar-lang-1.27.1-2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libpango-1_0-0-1.40.1-9 is installed OR libpango-1_0-0-32bit-1.40.1-9 is installed OR typelib-1_0-Pango-1_0-1.40.1-9 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information gtk2-devel-2.24.32+67-2.28 is installed OR gtk2-lang-2.24.32+67-2.28 is installed OR gtk2-tools-2.24.32+67-2.28 is installed OR libgtk-2_0-0-2.24.32+67-2.28 is installed OR typelib-1_0-Gtk-2_0-2.24.32+67-2.28 is installed Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Linux Enterprise Workstation Extension 15 SP3 is installed AND Package Information libpskc-devel-2.6.2-1.15 is installed OR libpskc0-2.6.2-1.15 is installed Definition Synopsis SUSE Linux Enterprise High Availability 15 is installed AND Package Information drbd-9.0.13+git.b83ade31-3.2 is installed OR drbd-kmp-default-9.0.13+git.b83ade31_k4.12.14_23-3.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information libsqlite3-0-3.28.0-3.6 is installed OR libsqlite3-0-32bit-3.28.0-3.6 is installed OR sqlite3-3.28.0-3.6 is installed OR sqlite3-devel-3.28.0-3.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information gtk2-devel-2.24.32+67-2 is installed OR gtk2-lang-2.24.32+67-2 is installed OR gtk2-tools-2.24.32+67-2 is installed OR libgtk-2_0-0-2.24.32+67-2 is installed OR typelib-1_0-Gtk-2_0-2.24.32+67-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 15 is installed AND helm-mirror-0.2.1-1.7 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information libmpg123-0-1.25.10-1 is installed OR libout123-0-1.25.10-1 is installed OR mpg123-1.25.10-1 is installed OR mpg123-devel-1.25.10-1 is installed OR mpg123-pulse-1.25.10-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 is installed AND Package Information ImageMagick-7.0.7.34-3.34 is installed OR perl-PerlMagick-7.0.7.34-3.34 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information libopenssl-1_0_0-devel-1.0.2n-3.3 is installed OR libopenssl1_0_0-1.0.2n-3.3 is installed OR openssl-1_0_0-1.0.2n-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-25.3 is installed OR kernel-default-livepatch-4.12.14-25.3 is installed OR kernel-livepatch-4_12_14-25_3-default-1-1.3 is installed OR kernel-livepatch-SLE15_Update_1-1-1.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information openslp-2.0.0-6.3 is installed OR openslp-server-2.0.0-6.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs8-8.11.3-3.5 is installed OR nodejs8-devel-8.11.3-3.5 is installed OR nodejs8-docs-8.11.3-3.5 is installed OR npm8-8.11.3-3.5 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-52.9.1-3.7 is installed OR MozillaThunderbird-devel-52.9.1-3.7 is installed OR MozillaThunderbird-translations-common-52.9.1-3.7 is installed OR MozillaThunderbird-translations-other-52.9.1-3.7 is installed
BACK