Oval Definition:	oval:org.opensuse.security:def:70649
Revision Date: 2020-12-01 Version: 1 Title: Security update for tigervnc (Critical) Description: This update for tigervnc fixes the following issues: - CVE-2020-26117: Server certificates were stored as certiticate authorities, allowing malicious owners of these certificates to impersonate any server after a client had added an exception (bsc#1176733) Family: unix Class: patch Status: Reference(s): 1173477 1173691 1173694 1173700 1173701 1173743 1173874 1173875 1173876 1173880 1176733 CVE-2017-18922 CVE-2018-21247 CVE-2019-20839 CVE-2019-20840 CVE-2020-14397 CVE-2020-14398 CVE-2020-14399 CVE-2020-14400 CVE-2020-14401 CVE-2020-14402 CVE-2020-26117 SUSE-SU-2020:1922-1 Platform(s): SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 Product(s): Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed AND Package Information LibVNCServer-0.9.10-4.22 is installed OR libvncserver0-0.9.10-4.22 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information tigervnc-1.9.0-19.9 is installed OR tigervnc-x11vnc-1.9.0-19.9 is installed OR xorg-x11-Xvnc-java-1.9.0-19.9 is installed
BACK