Oval Definition:oval:org.opensuse.security:def:69080
Revision Date:2021-09-29Version:1
Title:Security update for rabbitmq-server (Moderate)
Description:

This update for rabbitmq-server fixes the following issues:

- CVE-2021-32718: Fixed improper neutralization of script-related HTML tags in a web page (basic XSS) in management UI (bsc#1187818). - CVE-2021-32719: Fixed improper neutralization of script-related HTML tags in a web page (basic XSS) in federation management plugin (bsc#1187819). - CVE-2021-22116: Fixed improper input validation may lead to DoS (bsc#1186203).

- Use /run instead of /var/run in tmpfiles.d configuration (bsc#1185075).
Family:unixClass:patch
Status:Reference(s):1125401
1169740
1171355
1172651
1173334
1178666
1178667
1178668
1185075
1186203
1187818
1187819
992038
CVE-2018-8956
CVE-2020-11868
CVE-2020-13817
CVE-2020-15025
CVE-2020-25694
CVE-2020-25695
CVE-2020-25696
CVE-2021-22116
CVE-2021-32718
CVE-2021-32719
SUSE-SU-2020:1823-1
SUSE-SU-2021:3254-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Legacy Software 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed
  • AND ntp-4.2.8p15-4.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • libecpg6-32bit-12.5-3.15 is installed
  • OR libpq5-32bit-12.5-3.15 is installed
  • OR postgresql12-12.5-3.15 is installed
  • OR postgresql12-test-12.5-3.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND Package Information
  • erlang-rabbitmq-client-3.8.3-3.3.4 is installed
  • OR rabbitmq-server-3.8.3-3.3.4 is installed
  • OR rabbitmq-server-plugins-3.8.3-3.3.4 is installed
    • BACK