Oval Definition:	oval:org.opensuse.security:def:2596
Revision Date: 2020-12-02 Version: 1 Title: Security update for containerd, docker and go (Important) Description: This update for containerd, docker and go fixes the following issues: containerd and docker: - Add backport for building containerd (bsc#1102522, bsc#1113313) - Upgrade to containerd v1.1.2, which is required for Docker v18.06.1-ce. (bsc#1102522) - Enable seccomp support on SLE12 (fate#325877) - Update to containerd v1.1.1, which is the required version for the Docker v18.06.0-ce upgrade. (bsc#1102522) - Put containerd under the podruntime slice (bsc#1086185) - 3rd party registries used the default Docker certificate (bsc#1084533) - Handle build breakage due to missing 'export GOPATH' (caused by resolution of boo#1119634). I believe Docker is one of the only packages with this problem. go: - golang: arbitrary command execution via VCS path (bsc#1081495, CVE-2018-7187) - Make profile.d/go.sh no longer set GOROOT=, in order to make switching between versions no longer break. This ends up removing the need for go.sh entirely (because GOPATH is also set automatically) (boo#1119634) - Fix a regression that broke go get for import path patterns containing '...' (bsc#1119706) Additionally, the package go1.10 has been added. Family: unix Class: patch Status: Reference(s): 1047218 1074971 1080978 1081495 1082318 1083689 1084533 1086185 1092187 1094680 1095817 1098017 1099465 1102522 1104821 1105000 1105606 1108038 1108674 1109609 1113313 1113978 1114209 1114832 1118897 1118898 1118899 1119634 1119706 1119991 1120189 1121397 1121967 1123013 1126088 1128376 1128746 1128828 1132385 1132666 1134068 1136035 1138459 1139083 1142614 1143578 1143581 1143582 1143584 1144797 1146873 1152506 1153102 1153163 1153164 1154999 1155321 1155812 1156318 991201 CVE-2016-5416 CVE-2018-1054 CVE-2018-10871 CVE-2018-1089 CVE-2018-10935 CVE-2018-12207 CVE-2018-14638 CVE-2018-14648 CVE-2018-16873 CVE-2018-16874 CVE-2018-16875 CVE-2018-20126 CVE-2018-20860 CVE-2018-20861 CVE-2018-7187 CVE-2019-10160 CVE-2019-11043 CVE-2019-11135 CVE-2019-12068 CVE-2019-12900 CVE-2019-14382 CVE-2019-14383 CVE-2019-17113 CVE-2019-17177 CVE-2019-17178 CVE-2019-2614 CVE-2019-2627 CVE-2019-2628 CVE-2019-3883 CVE-2019-5736 CVE-2019-6486 CVE-2019-8551 CVE-2019-8558 CVE-2019-8559 CVE-2019-8563 CVE-2019-8625 CVE-2019-8674 CVE-2019-8681 CVE-2019-8684 CVE-2019-8686 CVE-2019-8687 CVE-2019-8688 CVE-2019-8689 CVE-2019-8690 CVE-2019-8707 CVE-2019-8710 CVE-2019-8719 CVE-2019-8720 CVE-2019-8726 CVE-2019-8733 CVE-2019-8735 CVE-2019-8743 CVE-2019-8763 CVE-2019-8764 CVE-2019-8765 CVE-2019-8766 CVE-2019-8768 CVE-2019-8769 CVE-2019-8771 CVE-2019-8782 CVE-2019-8783 CVE-2019-8808 CVE-2019-8811 CVE-2019-8812 CVE-2019-8813 CVE-2019-8814 CVE-2019-8815 CVE-2019-8816 CVE-2019-8819 CVE-2019-8820 CVE-2019-8821 CVE-2019-8822 CVE-2019-8823 CVE-2019-9893 SUSE-SU-2018:4297-1 SUSE-SU-2019:1234-2 SUSE-SU-2019:2004-1 SUSE-SU-2019:2020-1 SUSE-SU-2019:2064-1 SUSE-SU-2019:2155-1 SUSE-SU-2019:2435-1 SUSE-SU-2019:2517-1 SUSE-SU-2019:2622-1 SUSE-SU-2019:2819-1 SUSE-SU-2019:2954-1 SUSE-SU-2019:3044-1 SUSE-SU-2019:3078-1 Platform(s): SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 15 SUSE Linux Enterprise Module for Containers 15 SP1 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Toolchain 12 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for Rasperry Pi 12 SP2 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Package Hub for SUSE Linux Enterprise 12 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND python-pycrypto-2.6.1-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-1 is installed OR aaa_base-extras-13.2+git20140911.61c1681-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information sane-backends-1.0.24-3 is installed OR sane-backends-32bit-1.0.24-3 is installed OR sane-backends-autoconfig-1.0.24-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information bind-9.9.9P1-49 is installed OR bind-libs-9.9.9P1-49 is installed OR bind-libs-32bit-9.9.9P1-49 is installed OR bind-utils-9.9.9P1-49 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND libevent-2_0-5-2.0.21-6.3 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND conntrack-tools-1.4.2-5 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND conntrack-tools-1.4.2-5 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND Package Information corosync-2.3.6-9.13 is installed OR libcorosync4-2.3.6-9.13 is installed Definition Synopsis SUSE Linux Enterprise High Availability 15 is installed AND Package Information drbd-9.0.13+git.b83ade31-3.2 is installed OR drbd-kmp-default-9.0.13+git.b83ade31_k4.12.14_23-3.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND facter-2.0.2-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 15 is installed AND Package Information containerd-1.1.2-5.3 is installed OR docker-18.06.1_ce-6.8 is installed OR docker-bash-completion-18.06.1_ce-6.8 is installed OR docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3 is installed OR docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 15 SP1 is installed AND Package Information containerd-1.2.5-5.13 is installed OR docker-18.09.6_ce-6.17 is installed OR docker-bash-completion-18.09.6_ce-6.17 is installed OR docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed OR docker-runc-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information libpmi0-17.11.7-6.3 is installed OR libslurm32-17.11.7-6.3 is installed OR perl-slurm-17.11.7-6.3 is installed OR slurm-17.11.7-6.3 is installed OR slurm-auth-none-17.11.7-6.3 is installed OR slurm-config-17.11.7-6.3 is installed OR slurm-devel-17.11.7-6.3 is installed OR slurm-doc-17.11.7-6.3 is installed OR slurm-lua-17.11.7-6.3 is installed OR slurm-munge-17.11.7-6.3 is installed OR slurm-node-17.11.7-6.3 is installed OR slurm-pam_slurm-17.11.7-6.3 is installed OR slurm-plugins-17.11.7-6.3 is installed OR slurm-slurmdbd-17.11.7-6.3 is installed OR slurm-sql-17.11.7-6.3 is installed OR slurm-torque-17.11.7-6.3 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information pdsh-2.33-7.6 is installed OR pdsh-dshgroup-2.33-7.6 is installed OR pdsh-genders-2.33-7.6 is installed OR pdsh-machines-2.33-7.6 is installed OR pdsh-netgroup-2.33-7.6 is installed OR pdsh-slurm-2.33-7.6 is installed OR pdsh-slurm_18_08-2.33-7.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information kernel-default-4.12.14-25.3 is installed OR reiserfs-kmp-default-4.12.14-25.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.10 is installed OR reiserfs-kmp-default-4.12.14-197.10 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-23-default-3-7 is installed OR kernel-livepatch-SLE15_Update_0-3-7 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_7-default-4-2 is installed OR kernel-livepatch-SLE15-SP1_Update_2-4-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information bzip2-1.0.6-5.9 is installed OR bzip2-doc-1.0.6-5.9 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information bzip2-1.0.6-5.3 is installed OR bzip2-doc-1.0.6-5.3 is installed OR libbz2-devel-32bit-1.0.6-5.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information xen-4.10.3_04-3.19 is installed OR xen-devel-4.10.3_04-3.19 is installed OR xen-tools-4.10.3_04-3.19 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information 389-ds-1.4.0.3-4.7 is installed OR 389-ds-devel-1.4.0.3-4.7 is installed Definition Synopsis SUSE Linux Enterprise Module for Toolchain 12 is installed AND Package Information cpp5-5.3.1+r233831-9 is installed OR gcc5-5.3.1+r233831-9 is installed OR gcc5-c++-5.3.1+r233831-9 is installed OR gcc5-fortran-5.3.1+r233831-9 is installed OR gcc5-info-5.3.1+r233831-9 is installed OR gcc5-locale-5.3.1+r233831-9 is installed OR libffi-devel-gcc5-5.3.1+r233831-9 is installed OR libstdc++6-devel-gcc5-5.3.1+r233831-9 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs10-10.16.3-1.12 is installed OR nodejs10-devel-10.16.3-1.12 is installed OR nodejs10-docs-10.16.3-1.12 is installed OR npm10-10.16.3-1.12 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs8-8.15.1-3.17 is installed OR nodejs8-devel-8.15.1-3.17 is installed OR nodejs8-docs-8.15.1-3.17 is installed OR npm8-8.15.1-3.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information alsa-1.0.27.2-11 is installed OR alsa-docs-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND gzip-1.6-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information python-cupshelpers-1.5.7-7 is installed OR system-config-printer-1.5.7-7 is installed OR system-config-printer-common-1.5.7-7 is installed OR system-config-printer-common-lang-1.5.7-7 is installed OR system-config-printer-dbus-service-1.5.7-7 is installed OR udev-configure-printer-1.5.7-7 is installed Definition Synopsis SUSE Linux Enterprise Server for Rasperry Pi 12 SP2 is installed AND Package Information libXi-1.7.4-17.1 is installed OR libXi6-1.7.4-17.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information gd-2.1.0-5.1 is installed OR gd-devel-2.1.0-5.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND libtag-devel-1.9.1-1.265 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND libgio-fam-2.38.2-5.12 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-60.2.1-3.13 is installed OR MozillaThunderbird-translations-common-60.2.1-3.13 is installed OR MozillaThunderbird-translations-other-60.2.1-3.13 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.10 is installed OR kernel-default-extra-4.12.14-197.10 is installed Definition Synopsis SUSE Package Hub for SUSE Linux Enterprise 12 is installed AND Package Information irssi-0.8.20-9 is installed OR irssi-devel-0.8.20-9 is installed
BACK