Oval Definition:oval:org.opensuse.security:def:780
Revision Date:2022-09-26Version:1
Title:Security update for snakeyaml (Important)
Description:

This update for snakeyaml fixes the following issues:

- CVE-2022-38750: Fixed uncaught exception in org.yaml.snakeyaml.constructor.BaseConstructor.constructObject (bsc#1203158). - CVE-2022-38749: Fixed StackOverflowError for many open unmatched brackets (bsc#1203149). - CVE-2022-38752: Fixed uncaught exception in java.base/java.util.ArrayList.hashCode (bsc#1203154). - CVE-2022-38751: Fixed unrestricted data matched with Regular Expressions (bsc#1203153). - CVE-2022-25857: Fixed denial of service vulnerability due missing to nested depth limitation for collections (bsc#1202932).
Family:unixClass:patch
Status:Reference(s):1040364
1127650
1135481
1152489
1160010
1168202
1171420
1174969
1175052
1175543
1177399
1180100
1180141
1180347
1181006
1181148
1181972
1184180
1185902
1186264
1186731
1187211
1187455
1187468
1187483
1187619
1187959
1188067
1188172
1188231
1188270
1188412
1188418
1188616
1188700
1188780
1188781
1188782
1188783
1188784
1188786
1188787
1188788
1188790
1188878
1188885
1188924
1188982
1188983
1188985
1189021
1189057
1189077
1189153
1189197
1189209
1189210
1189212
1189213
1189214
1189215
1189216
1189217
1189218
1189219
1189220
1189221
1189222
1189225
1189229
1189233
1189262
1189291
1189292
1189296
1189298
1189301
1189305
1189323
1189384
1189385
1189392
1189393
1189399
1189400
1189427
1189503
1189504
1189505
1189506
1189507
1189562
1189563
1189564
1189565
1189566
1189567
1189568
1189569
1189573
1189574
1189575
1189576
1189577
1189579
1189581
1189582
1189583
1189585
1189586
1189587
1189706
1189760
1189762
1189832
1189841
1189870
1189872
1189883
1190022
1190025
1190115
1190117
1190412
1190413
1190428
1202932
1203149
1203153
1203154
1203158
CVE-2017-13738
CVE-2017-13738
CVE-2017-13739
CVE-2017-13739
CVE-2017-13740
CVE-2017-13740
CVE-2017-13741
CVE-2017-13741
CVE-2017-13742
CVE-2017-13742
CVE-2017-13743
CVE-2017-13743
CVE-2017-13744
CVE-2017-13744
CVE-2018-1122
CVE-2018-1123
CVE-2018-1124
CVE-2018-1125
CVE-2018-1126
CVE-2018-11410
CVE-2018-11410
CVE-2018-11440
CVE-2018-11440
CVE-2018-11577
CVE-2018-11577
CVE-2018-11683
CVE-2018-11683
CVE-2018-11684
CVE-2018-11684
CVE-2018-11685
CVE-2018-11685
CVE-2018-12085
CVE-2018-12085
CVE-2018-17294
CVE-2018-17294
CVE-2020-12770
CVE-2020-13936
CVE-2021-34556
CVE-2021-35477
CVE-2021-3640
CVE-2021-3653
CVE-2021-3656
CVE-2021-3679
CVE-2021-3732
CVE-2021-3739
CVE-2021-3743
CVE-2021-3753
CVE-2021-3759
CVE-2021-38160
CVE-2021-38166
CVE-2021-38198
CVE-2021-38204
CVE-2021-38205
CVE-2021-38206
CVE-2021-38207
CVE-2021-38209
CVE-2022-25857
CVE-2022-38749
CVE-2022-38750
CVE-2022-38751
CVE-2022-38752
SUSE-SU-2021:3205-1
SUSE-SU-2022:3397-1
Platform(s):openSUSE 13.2
openSUSE Leap 15.4
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise High Availability 15
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Module for additional PackageHub packages 15
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP3
SUSE Linux Enterprise Module for Desktop Applications 15
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for Development Tools 15
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Real Time Extension 12 SP1
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for Rasperry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Storage 7
SUSE Linux Enterprise Storage 7.1
SUSE Linux Enterprise Workstation Extension 15
SUSE Manager Proxy 4.1
SUSE Manager Proxy 4.2
SUSE Manager Retail Branch Server 4.2
SUSE Manager Server 4.1
SUSE Manager Server 4.2
SUSE Package Hub for SUSE Linux Enterprise 12
Product(s):
Definition Synopsis
  • openSUSE Leap 15.4 is installed
  • AND Package Information
  • snakeyaml-1.31-150200.3.8.1 is installed
  • OR snakeyaml-javadoc-1.31-150200.3.8.1 is installed
    • Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND haproxy-1.5.4-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • bash-4.2-75 is installed
  • OR bash-doc-4.2-75 is installed
  • OR bash-lang-4.2-75 is installed
  • OR libreadline6-6.2-75 is installed
  • OR libreadline6-32bit-6.2-75 is installed
  • OR readline-doc-6.2-75 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND tcpdump-4.5.1-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • libprocps7-3.3.15-7.10.2 is installed
  • OR procps-3.3.15-7.10.2 is installed
  • OR procps-devel-3.3.15-7.10.2 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP3 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Server 4.2 is installed
  • AND Package Information
  • kernel-64kb-5.3.18-59.24.1 is installed
  • OR kernel-64kb-devel-5.3.18-59.24.1 is installed
  • OR kernel-default-5.3.18-59.24.1 is installed
  • OR kernel-default-base-5.3.18-59.24.1.18.12.1 is installed
  • OR kernel-default-devel-5.3.18-59.24.1 is installed
  • OR kernel-devel-5.3.18-59.24.1 is installed
  • OR kernel-macros-5.3.18-59.24.1 is installed
  • OR kernel-preempt-5.3.18-59.24.1 is installed
  • OR kernel-zfcpdump-5.3.18-59.24.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 is installed
  • AND Package Information
  • drbd-9.0.13+git.b83ade31-3.2 is installed
  • OR drbd-kmp-default-9.0.13+git.b83ade31_k4.12.14_23-3.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed
  • AND Package Information
  • glib2-2.54.3-4.7 is installed
  • OR glib2-devel-32bit-2.54.3-4.7 is installed
  • OR glib2-tools-32bit-2.54.3-4.7 is installed
  • OR libgthread-2_0-0-32bit-2.54.3-4.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • libprocps7-3.3.15-7.10 is installed
  • OR procps-3.3.15-7.10 is installed
  • OR procps-devel-3.3.15-7.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND Package Information
  • cups-2.2.7-3.3 is installed
  • OR libcups2-32bit-2.2.7-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • liblouis-data-3.3.0-4.5 is installed
  • OR liblouis-devel-3.3.0-4.5 is installed
  • OR liblouis14-3.3.0-4.5 is installed
  • OR python3-louis-3.3.0-4.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 is installed
  • AND Package Information
  • git-2.16.4-3.3 is installed
  • OR git-arch-2.16.4-3.3 is installed
  • OR git-cvs-2.16.4-3.3 is installed
  • OR git-daemon-2.16.4-3.3 is installed
  • OR git-doc-2.16.4-3.3 is installed
  • OR git-email-2.16.4-3.3 is installed
  • OR git-gui-2.16.4-3.3 is installed
  • OR git-svn-2.16.4-3.3 is installed
  • OR git-web-2.16.4-3.3 is installed
  • OR gitk-2.16.4-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 is installed
  • AND Package Information
  • libopenssl-1_0_0-devel-1.0.2n-3.3 is installed
  • OR libopenssl1_0_0-1.0.2n-3.3 is installed
  • OR openssl-1_0_0-1.0.2n-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-25_3-default-2-2 is installed
  • OR kernel-livepatch-SLE15_Update_1-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • bluez-5.48-5.8 is installed
  • OR bluez-auto-enable-devices-5.48-5.8 is installed
  • OR bluez-test-5.48-5.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • openslp-2.0.0-6.3 is installed
  • OR openslp-server-2.0.0-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.6 is installed
  • OR kernel-default-extra-4.12.14-25.6 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 is installed
  • AND Package Information
  • irssi-0.8.20-9 is installed
  • OR irssi-devel-0.8.20-9 is installed
    • BACK