Oval Definition:	oval:org.opensuse.security:def:894
Revision Date: 2022-01-25 Version: 1 Title: Security update for unbound (Important) Description: This update for unbound fixes the following issues: - CVE-2019-25031: Fixed configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack (bsc#1185382). - CVE-2019-25032: Fixed integer overflow in the regional allocator via regional_alloc (bsc#1185383). - CVE-2019-25033: Fixed integer overflow in the regional allocator via the ALIGN_UP macro (bsc#1185384). - CVE-2019-25034: Fixed integer overflow in sldns_str2wire_dname_buf_origin, leading to an out-of-bounds write (bsc#1185385). - CVE-2019-25035: Fixed out-of-bounds write in sldns_bget_token_par (bsc#1185386). - CVE-2019-25036: Fixed assertion failure and denial of service in synth_cname (bsc#1185387). - CVE-2019-25037: Fixed assertion failure and denial of service in dname_pkt_copy via an invalid packet (bsc#1185388). - CVE-2019-25038: Fixed integer overflow in a size calculation in dnscrypt/dnscrypt.c (bsc#1185389). - CVE-2019-25039: Fixed integer overflow in a size calculation in respip/respip.c (bsc#1185390). - CVE-2019-25040: Fixed infinite loop via a compressed name in dname_pkt_copy (bsc#1185391). - CVE-2019-25041: Fixed assertion failure via a compressed name in dname_pkt_copy (bsc#1185392). - CVE-2019-25042: Fixed out-of-bounds write via a compressed name in rdata_copy (bsc#1185393). - CVE-2020-28935: Fixed symbolic link traversal when writing PID file (bsc#1179191). Family: unix Class: patch Status: Reference(s): 1076963 1112009 1112033 1179191 1185382 1185383 1185384 1185385 1185386 1185387 1185388 1185389 1185390 1185391 1185392 1185393 CVE-2014-9221 CVE-2015-3991 CVE-2015-4171 CVE-2015-8023 CVE-2017-1000251 CVE-2017-1000251 CVE-2017-1000252 CVE-2017-1000252 CVE-2017-1000255 CVE-2017-1000255 CVE-2017-1000410 CVE-2017-1000410 CVE-2017-11185 CVE-2017-11473 CVE-2017-11473 CVE-2017-11600 CVE-2017-11600 CVE-2017-12153 CVE-2017-12153 CVE-2017-12154 CVE-2017-12154 CVE-2017-12190 CVE-2017-12190 CVE-2017-12193 CVE-2017-12193 CVE-2017-13080 CVE-2017-13080 CVE-2017-13166 CVE-2017-13166 CVE-2017-14051 CVE-2017-14051 CVE-2017-14489 CVE-2017-14489 CVE-2017-15115 CVE-2017-15115 CVE-2017-15127 CVE-2017-15127 CVE-2017-15128 CVE-2017-15128 CVE-2017-15129 CVE-2017-15129 CVE-2017-15265 CVE-2017-15265 CVE-2017-15537 CVE-2017-15537 CVE-2017-15649 CVE-2017-15649 CVE-2017-15951 CVE-2017-15951 CVE-2017-16525 CVE-2017-16525 CVE-2017-16527 CVE-2017-16527 CVE-2017-16528 CVE-2017-16528 CVE-2017-16529 CVE-2017-16529 CVE-2017-16531 CVE-2017-16531 CVE-2017-16533 CVE-2017-16533 CVE-2017-16534 CVE-2017-16534 CVE-2017-16535 CVE-2017-16535 CVE-2017-16536 CVE-2017-16536 CVE-2017-16537 CVE-2017-16537 CVE-2017-16538 CVE-2017-16538 CVE-2017-16644 CVE-2017-16644 CVE-2017-16645 CVE-2017-16645 CVE-2017-16646 CVE-2017-16646 CVE-2017-16647 CVE-2017-16647 CVE-2017-16649 CVE-2017-16649 CVE-2017-16650 CVE-2017-16650 CVE-2017-16911 CVE-2017-16911 CVE-2017-16912 CVE-2017-16912 CVE-2017-16913 CVE-2017-16913 CVE-2017-16914 CVE-2017-16914 CVE-2017-16939 CVE-2017-16939 CVE-2017-16994 CVE-2017-16994 CVE-2017-16995 CVE-2017-16995 CVE-2017-16996 CVE-2017-16996 CVE-2017-17052 CVE-2017-17052 CVE-2017-17448 CVE-2017-17448 CVE-2017-17449 CVE-2017-17449 CVE-2017-17450 CVE-2017-17450 CVE-2017-17558 CVE-2017-17558 CVE-2017-17712 CVE-2017-17712 CVE-2017-17741 CVE-2017-17741 CVE-2017-17805 CVE-2017-17805 CVE-2017-17806 CVE-2017-17806 CVE-2017-17852 CVE-2017-17852 CVE-2017-17853 CVE-2017-17853 CVE-2017-17854 CVE-2017-17854 CVE-2017-17855 CVE-2017-17855 CVE-2017-17856 CVE-2017-17856 CVE-2017-17857 CVE-2017-17857 CVE-2017-17862 CVE-2017-17862 CVE-2017-17864 CVE-2017-17864 CVE-2017-17975 CVE-2017-17975 CVE-2017-18075 CVE-2017-18075 CVE-2017-18202 CVE-2017-18202 CVE-2017-18203 CVE-2017-18203 CVE-2017-18204 CVE-2017-18204 CVE-2017-18208 CVE-2017-18208 CVE-2017-18224 CVE-2017-18224 CVE-2017-18344 CVE-2017-18344 CVE-2017-5715 CVE-2017-5715 CVE-2017-5753 CVE-2017-5753 CVE-2017-5754 CVE-2017-5754 CVE-2017-7541 CVE-2017-7541 CVE-2017-7542 CVE-2017-7542 CVE-2017-8824 CVE-2017-8824 CVE-2017-8831 CVE-2017-8831 CVE-2017-9022 CVE-2017-9023 CVE-2018-1000004 CVE-2018-1000004 CVE-2018-1000028 CVE-2018-1000028 CVE-2018-1000200 CVE-2018-1000200 CVE-2018-1000204 CVE-2018-1000204 CVE-2018-10087 CVE-2018-10087 CVE-2018-10124 CVE-2018-10124 CVE-2018-10323 CVE-2018-10323 CVE-2018-1065 CVE-2018-1065 CVE-2018-1068 CVE-2018-1068 CVE-2018-10811 CVE-2018-10853 CVE-2018-10853 CVE-2018-10902 CVE-2018-10902 CVE-2018-1091 CVE-2018-1091 CVE-2018-10938 CVE-2018-10938 CVE-2018-1094 CVE-2018-1094 CVE-2018-10940 CVE-2018-10940 CVE-2018-1108 CVE-2018-1108 CVE-2018-1118 CVE-2018-1118 CVE-2018-1120 CVE-2018-1120 CVE-2018-1128 CVE-2018-1128 CVE-2018-1129 CVE-2018-1129 CVE-2018-1130 CVE-2018-1130 CVE-2018-12126 CVE-2018-12126 CVE-2018-12127 CVE-2018-12127 CVE-2018-12130 CVE-2018-12130 CVE-2018-12232 CVE-2018-12232 CVE-2018-12233 CVE-2018-12233 CVE-2018-12896 CVE-2018-12896 CVE-2018-13053 CVE-2018-13053 CVE-2018-13093 CVE-2018-13093 CVE-2018-13094 CVE-2018-13094 CVE-2018-13095 CVE-2018-13095 CVE-2018-13405 CVE-2018-13405 CVE-2018-13406 CVE-2018-13406 CVE-2018-14613 CVE-2018-14613 CVE-2018-14617 CVE-2018-14617 CVE-2018-14625 CVE-2018-14625 CVE-2018-14633 CVE-2018-14633 CVE-2018-15572 CVE-2018-15572 CVE-2018-16151 CVE-2018-16152 CVE-2018-16658 CVE-2018-16658 CVE-2018-16862 CVE-2018-16862 CVE-2018-16880 CVE-2018-16880 CVE-2018-16884 CVE-2018-16884 CVE-2018-17182 CVE-2018-17182 CVE-2018-17540 CVE-2018-18281 CVE-2018-18281 CVE-2018-18386 CVE-2018-18386 CVE-2018-18397 CVE-2018-18397 CVE-2018-18445 CVE-2018-18445 CVE-2018-18710 CVE-2018-18710 CVE-2018-19407 CVE-2018-19407 CVE-2018-19824 CVE-2018-19824 CVE-2018-19854 CVE-2018-19854 CVE-2018-19985 CVE-2018-19985 CVE-2018-20169 CVE-2018-20169 CVE-2018-20669 CVE-2018-20669 CVE-2018-3620 CVE-2018-3620 CVE-2018-3639 CVE-2018-3639 CVE-2018-3646 CVE-2018-3646 CVE-2018-5332 CVE-2018-5332 CVE-2018-5333 CVE-2018-5333 CVE-2018-5388 CVE-2018-5390 CVE-2018-5390 CVE-2018-5391 CVE-2018-5391 CVE-2018-5803 CVE-2018-5803 CVE-2018-5848 CVE-2018-5848 CVE-2018-6459 CVE-2018-6554 CVE-2018-6554 CVE-2018-6555 CVE-2018-6555 CVE-2018-6927 CVE-2018-6927 CVE-2018-7492 CVE-2018-7492 CVE-2018-7566 CVE-2018-7566 CVE-2018-7740 CVE-2018-7740 CVE-2018-8043 CVE-2018-8043 CVE-2018-8087 CVE-2018-8087 CVE-2018-8781 CVE-2018-8781 CVE-2018-8822 CVE-2018-8822 CVE-2018-9363 CVE-2018-9363 CVE-2018-9385 CVE-2018-9385 CVE-2018-9568 CVE-2018-9568 CVE-2019-11091 CVE-2019-11091 CVE-2019-2024 CVE-2019-2024 CVE-2019-25031 CVE-2019-25032 CVE-2019-25033 CVE-2019-25034 CVE-2019-25035 CVE-2019-25036 CVE-2019-25037 CVE-2019-25038 CVE-2019-25039 CVE-2019-25040 CVE-2019-25041 CVE-2019-25042 CVE-2019-3459 CVE-2019-3459 CVE-2019-3460 CVE-2019-3460 CVE-2019-3560 CVE-2019-3560 CVE-2019-3819 CVE-2019-3819 CVE-2019-6974 CVE-2019-6974 CVE-2019-7221 CVE-2019-7221 CVE-2019-7222 CVE-2019-7222 CVE-2019-7308 CVE-2019-7308 CVE-2019-8912 CVE-2019-8912 CVE-2019-8980 CVE-2019-8980 CVE-2019-9003 CVE-2019-9003 CVE-2019-9213 CVE-2019-9213 CVE-2020-28935 SUSE-SU-2022:0176-1 Platform(s): openSUSE 13.2 SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise Desktop 15 SP3 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Development Tools 15 SP1 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Storage 7 SUSE Linux Enterprise Storage 7.1 SUSE Linux Enterprise Workstation Extension 15 SUSE Manager Proxy 4.1 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.1 SUSE Manager Server 4.2 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND python-pymongo-2.6.3-2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND argyllcms-1.6.3-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND argyllcms-1.6.3-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information gtk2-data-2.24.31-7 is installed OR gtk2-lang-2.24.31-7 is installed OR gtk2-tools-2.24.31-7 is installed OR gtk2-tools-32bit-2.24.31-7 is installed OR libgtk-2_0-0-2.24.31-7 is installed OR libgtk-2_0-0-32bit-2.24.31-7 is installed OR typelib-1_0-Gtk-2_0-2.24.31-7 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information strongswan-5.8.2-9.2 is installed OR strongswan-doc-5.8.2-9.2 is installed OR strongswan-hmac-5.8.2-9.2 is installed OR strongswan-ipsec-5.8.2-9.2 is installed OR strongswan-libs0-5.8.2-9.2 is installed Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP3 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Linux Enterprise Storage 7.1 is installed OR SUSE Manager Proxy 4.2 is installed OR SUSE Manager Retail Branch Server 4.2 is installed OR SUSE Manager Server 4.2 is installed AND Package Information libunbound2-1.6.8-10.6.1 is installed OR unbound-anchor-1.6.8-10.6.1 is installed OR unbound-devel-1.6.8-10.6.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 15 is installed AND Package Information cluster-md-kmp-default-4.12.14-25.6 is installed OR dlm-kmp-default-4.12.14-25.6 is installed OR gfs2-kmp-default-4.12.14-25.6 is installed OR kernel-default-4.12.14-25.6 is installed OR ocfs2-kmp-default-4.12.14-25.6 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information java-1_8_0-openjdk-1.8.0.191-3.13 is installed OR java-1_8_0-openjdk-javadoc-1.8.0.191-3.13 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information strongswan-5.8.2-9 is installed OR strongswan-doc-5.8.2-9 is installed OR strongswan-hmac-5.8.2-9 is installed OR strongswan-ipsec-5.8.2-9 is installed OR strongswan-libs0-5.8.2-9 is installed Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 is installed AND Package Information ImageMagick-7.0.7.34-3.34 is installed OR perl-PerlMagick-7.0.7.34-3.34 is installed Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND Package Information kernel-docs-4.12.14-195 is installed OR kernel-obs-build-4.12.14-195 is installed OR kernel-source-4.12.14-195 is installed OR kernel-syms-4.12.14-195 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information python-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed OR python2-numpy-gnu-hpc-1.14.0-4.5 is installed OR python2-numpy-gnu-hpc-devel-1.14.0-4.5 is installed OR python2-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed OR python2-numpy_1_14_0-gnu-hpc-devel-1.14.0-4.5 is installed OR python3-numpy-gnu-hpc-1.14.0-4.5 is installed OR python3-numpy-gnu-hpc-devel-1.14.0-4.5 is installed OR python3-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed OR python3-numpy_1_14_0-gnu-hpc-devel-1.14.0-4.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information libopenssl-1_0_0-devel-1.0.2p-3.8 is installed OR libopenssl1_0_0-1.0.2p-3.8 is installed OR openssl-1_0_0-1.0.2p-3.8 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-25.3 is installed OR kernel-default-livepatch-4.12.14-25.3 is installed OR kernel-livepatch-4_12_14-25_3-default-1-1.3 is installed OR kernel-livepatch-SLE15_Update_1-1-1.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information qemu-2.11.2-9.28 is installed OR qemu-block-dmg-2.11.2-9.28 is installed OR qemu-extra-2.11.2-9.28 is installed OR qemu-linux-user-2.11.2-9.28 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information rsyslog-8.33.1-3.3 is installed OR rsyslog-module-gssapi-8.33.1-3.3 is installed OR rsyslog-module-mysql-8.33.1-3.3 is installed OR rsyslog-module-pgsql-8.33.1-3.3 is installed OR rsyslog-module-relp-8.33.1-3.3 is installed OR rsyslog-module-snmp-8.33.1-3.3 is installed OR rsyslog-module-udpspoof-8.33.1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information apache2-mod_php7-7.2.5-4.3 is installed OR php7-7.2.5-4.3 is installed OR php7-bcmath-7.2.5-4.3 is installed OR php7-bz2-7.2.5-4.3 is installed OR php7-calendar-7.2.5-4.3 is installed OR php7-ctype-7.2.5-4.3 is installed OR php7-curl-7.2.5-4.3 is installed OR php7-dba-7.2.5-4.3 is installed OR php7-devel-7.2.5-4.3 is installed OR php7-dom-7.2.5-4.3 is installed OR php7-enchant-7.2.5-4.3 is installed OR php7-exif-7.2.5-4.3 is installed OR php7-fastcgi-7.2.5-4.3 is installed OR php7-fileinfo-7.2.5-4.3 is installed OR php7-fpm-7.2.5-4.3 is installed OR php7-ftp-7.2.5-4.3 is installed OR php7-gd-7.2.5-4.3 is installed OR php7-gettext-7.2.5-4.3 is installed OR php7-gmp-7.2.5-4.3 is installed OR php7-iconv-7.2.5-4.3 is installed OR php7-intl-7.2.5-4.3 is installed OR php7-json-7.2.5-4.3 is installed OR php7-ldap-7.2.5-4.3 is installed OR php7-mbstring-7.2.5-4.3 is installed OR php7-mysql-7.2.5-4.3 is installed OR php7-odbc-7.2.5-4.3 is installed OR php7-opcache-7.2.5-4.3 is installed OR php7-openssl-7.2.5-4.3 is installed OR php7-pcntl-7.2.5-4.3 is installed OR php7-pdo-7.2.5-4.3 is installed OR php7-pear-7.2.5-4.3 is installed OR php7-pear-Archive_Tar-7.2.5-4.3 is installed OR php7-pgsql-7.2.5-4.3 is installed OR php7-phar-7.2.5-4.3 is installed OR php7-posix-7.2.5-4.3 is installed OR php7-shmop-7.2.5-4.3 is installed OR php7-snmp-7.2.5-4.3 is installed OR php7-soap-7.2.5-4.3 is installed OR php7-sockets-7.2.5-4.3 is installed OR php7-sqlite-7.2.5-4.3 is installed OR php7-sysvmsg-7.2.5-4.3 is installed OR php7-sysvsem-7.2.5-4.3 is installed OR php7-sysvshm-7.2.5-4.3 is installed OR php7-tokenizer-7.2.5-4.3 is installed OR php7-wddx-7.2.5-4.3 is installed OR php7-xmlreader-7.2.5-4.3 is installed OR php7-xmlrpc-7.2.5-4.3 is installed OR php7-xmlwriter-7.2.5-4.3 is installed OR php7-xsl-7.2.5-4.3 is installed OR php7-zip-7.2.5-4.3 is installed OR php7-zlib-7.2.5-4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information libMagickCore-6_Q16-1-6.8.8.1-5.8 is installed OR libMagickWand-6_Q16-1-6.8.8.1-5.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information krb5-appl-clients-1.0.3-1.5 is installed OR krb5-appl-servers-1.0.3-1.5 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-52.9.1-3.7 is installed OR MozillaThunderbird-devel-52.9.1-3.7 is installed OR MozillaThunderbird-translations-common-52.9.1-3.7 is installed OR MozillaThunderbird-translations-other-52.9.1-3.7 is installed
BACK