Oval Definition:oval:org.opensuse.security:def:94423
Revision Date:2021-12-20Version:1
Title: (Important)
Description:

This update for log4j fixes the following issues:

- Update to 2.17.0 - CVE-2021-45105: Apache Log4j2 does not always protect from infinite recursion in lookup evaluation. (bsc#1193887, bsc#1193888)
Family:unixClass:patch
Status:Reference(s):1065600
1065729
1155798
1165692
1168468
1171675
1171688
1174003
1174098
1175599
1175621
1175807
1176019
1176400
1176907
1176979
1177090
1177109
1177121
1177193
1177194
1177206
1177258
1177271
1177283
1177284
1177285
1177286
1177297
1177384
1177511
1177617
1177681
1177683
1177687
1177694
1177697
1177719
1177724
1177725
1177726
1193887
1193888
954532
CVE-2020-12351
CVE-2020-12352
CVE-2020-24490
CVE-2020-25641
CVE-2020-25643
CVE-2020-25645
CVE-2021-45105
SUSE-SU-2020:2980-1
Platform(s):Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • kernel-default-5.3.18-24.29.2 is installed
  • OR kernel-default-base-5.3.18-24.29.2.9.9.3 is installed
  • OR kernel-default-devel-5.3.18-24.29.2 is installed
  • OR kernel-devel-5.3.18-24.29.2 is installed
  • OR kernel-macros-5.3.18-24.29.2 is installed
  • OR kernel-preempt-5.3.18-24.29.2 is installed
  • Definition Synopsis
  • Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE is installed
  • AND Package Information
  • log4j-2.17.0-4.13.1 is installed
  • OR log4j-slf4j-2.17.0-4.13.1 is installed
  • BACK