Oval Definition:
oval:org.opensuse.security:def:70333
Revision Date
:
2021-12-17
Version
:
1
Title
:
Security update for log4j (Important)
Description
:
This update for log4j fixes the following issue:
- CVE-2021-4104: Disable the JMSAppender class from log4j to protect against the log4jshell vulnerability. [bsc#1193662]
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1092115
1175596
1177472
1178428
1193662
CVE-2018-9154
CVE-2020-14765
CVE-2020-14776
CVE-2020-14789
CVE-2020-14812
CVE-2020-15180
CVE-2021-4104
SUSE-SU-2020:1420-2
SUSE-SU-2020:3500-1
SUSE-SU-2021:4111-1
Platform(s)
:
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15
Product(s)
:
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
AND
Package Information
jasper-2.0.14-3.11 is installed
OR
libjasper4-2.0.14-3.11 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed
AND
Package Information
log4j-1.2.17-5.6.1 is installed
OR
log4j-manual-1.2.17-5.6.1 is installed
BACK