Oval Definition:oval:org.opensuse.security:def:2597
Revision Date:2020-12-02Version:1
Title:Security update for containerd, docker, docker-runc, go, go1.11, go1.12, golang-github-docker-libnetwork (Important)
Description:

This update for containerd, docker, docker-runc, go, go1.11, go1.12, golang-github-docker-libnetwork fixes the following issues:

Security issues fixed:

- CVE-2019-5736: containerd: Fixing container breakout vulnerability (bsc#1121967). - CVE-2019-6486: go security release, fixing crypto/elliptic CPU DoS vulnerability affecting P-521 and P-384 (bsc#1123013). - CVE-2018-16873: go secuirty release, fixing cmd/go remote command execution (bsc#1118897). - CVE-2018-16874: go security release, fixing cmd/go directory traversal (bsc#1118898). - CVE-2018-16875: go security release, fixing crypto/x509 CPU denial of service (bsc#1118899).

Other changes and bug fixes:

- Update to containerd v1.2.5, which is required for v18.09.5-ce (bsc#1128376, bsc#1134068). - Update to runc 2b18fe1d885e, which is required for Docker v18.09.5-ce (bsc#1128376, bsc#1134068). - Update to Docker 18.09.5-ce see upstream changelog in the packaged (bsc#1128376, bsc#1134068). - docker-test: Improvements to test packaging (bsc#1128746). - Move daemon.json file to /etc/docker directory (bsc#1114832). - Revert golang(API) removal since it turns out this breaks >= requires in certain cases (bsc#1114209). - Fix go build failures (bsc#1121397).
Family:unixClass:patch
Status:Reference(s):1013712
1051510
1055117
1071995
1083647
1083710
1096726
1096945
1100691
1102247
1114209
1114832
1115375
1118897
1118898
1118899
1119222
1120431
1121397
1121826
1121967
1122293
1122299
1123013
1123080
1123823
1123828
1123832
1127034
1127315
1128376
1128746
1129770
1130972
1133021
1133283
1134068
1134097
1134390
1134399
1134978
1135335
1135642
1137458
1137534
1137535
1137584
1137609
1137827
1139358
1140133
1140322
1140652
1140903
1140945
1141401
1141402
1141452
1141453
1141454
1141478
1141780
1141782
1141783
1141784
1141785
1141786
1141787
1141789
1142023
1142112
1142220
1142221
1142254
1142350
1142351
1142354
1142359
1142450
1142701
1142868
1143003
1143045
1143105
1143185
1143189
1143191
1143507
1150137
1153674
1154884
1154887
1156402
CVE-2016-9798
CVE-2018-1000622
CVE-2018-11212
CVE-2018-15664
CVE-2018-16873
CVE-2018-16874
CVE-2018-16875
CVE-2018-20748
CVE-2018-20749
CVE-2018-20750
CVE-2018-20855
CVE-2019-1125
CVE-2019-11810
CVE-2019-12083
CVE-2019-12290
CVE-2019-13631
CVE-2019-13648
CVE-2019-14283
CVE-2019-14284
CVE-2019-14287
CVE-2019-16168
CVE-2019-18224
CVE-2019-2201
CVE-2019-2422
CVE-2019-2426
CVE-2019-2745
CVE-2019-2762
CVE-2019-2766
CVE-2019-2769
CVE-2019-2786
CVE-2019-2816
CVE-2019-2842
CVE-2019-5736
CVE-2019-6133
CVE-2019-6486
CVE-2019-7317
SUSE-SU-2019:0221-1
SUSE-SU-2019:0283-1
SUSE-SU-2019:1234-1
SUSE-SU-2019:1562-1
SUSE-SU-2019:2018-1
SUSE-SU-2019:2021-1
SUSE-SU-2019:2439-1
SUSE-SU-2019:2533-1
SUSE-SU-2019:2656-1
SUSE-SU-2019:2971-1
SUSE-SU-2019:3046-1
SUSE-SU-2019:3086-1
Platform(s):SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 15
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Linux Enterprise Module for Containers 15
SUSE Linux Enterprise Module for Containers 15 SP1
SUSE Linux Enterprise Module for High Performance Computing 15
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Legacy Software 15 SP1
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Module for Web Scripting 15 SP1
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 11-SECURITY
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for Rasperry Pi 12 SP2
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE Package Hub for SUSE Linux Enterprise 12
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND python-pymongo-2.6.3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • accountsservice-0.6.35-1 is installed
  • OR accountsservice-lang-0.6.35-1 is installed
  • OR libaccountsservice0-0.6.35-1 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.35-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • rrdtool-1.4.7-20 is installed
  • OR rrdtool-cached-1.4.7-20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • jasper-1.900.14-181 is installed
  • OR libjasper1-1.900.14-181 is installed
  • OR libjasper1-32bit-1.900.14-181 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND libexempi3-2.2.1-5.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND ctdb-4.4.2-29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.4.73-5 is installed
  • OR dlm-kmp-default-4.4.73-5 is installed
  • OR gfs2-kmp-default-4.4.73-5 is installed
  • OR ocfs2-kmp-default-4.4.73-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-94.41 is installed
  • OR dlm-kmp-default-4.12.14-94.41 is installed
  • OR gfs2-kmp-default-4.12.14-94.41 is installed
  • OR ocfs2-kmp-default-4.12.14-94.41 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 is installed
  • AND Package Information
  • ruby2.5-rubygem-sprockets-3.7.2-3.3 is installed
  • OR rubygem-sprockets-3.7.2-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
  • AND Package Information
  • puppet-3.6.2-3 is installed
  • OR puppet-server-3.6.2-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 15 is installed
  • AND Package Information
  • containerd-1.2.5-5.13 is installed
  • OR docker-18.09.6_ce-6.17 is installed
  • OR docker-bash-completion-18.09.6_ce-6.17 is installed
  • OR docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed
  • OR docker-runc-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed
  • OR golang-github-docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 15 SP1 is installed
  • AND Package Information
  • docker-18.09.6_ce-6.20 is installed
  • OR docker-bash-completion-18.09.6_ce-6.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 is installed
  • AND Package Information
  • python-numpy_1_16_1-gnu-hpc-1.16.1-4.8 is installed
  • OR python2-numpy-gnu-hpc-1.16.1-4.8 is installed
  • OR python2-numpy-gnu-hpc-devel-1.16.1-4.8 is installed
  • OR python3-numpy-gnu-hpc-1.16.1-4.8 is installed
  • OR python3-numpy-gnu-hpc-devel-1.16.1-4.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.171-3.3 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.171-3.3 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.171-3.3 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.171-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.212-3.19 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.212-3.19 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.212-3.19 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.212-3.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-25_13-default-2-2 is installed
  • OR kernel-livepatch-SLE15_Update_3-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-197_10-default-2-2 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_3-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • polkit-0.114-3.9 is installed
  • OR polkit-doc-0.114-3.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • 389-ds-1.4.0.3-4.7 is installed
  • OR 389-ds-snmp-1.4.0.3-4.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • MozillaFirefox-68.6.0-3.75 is installed
  • OR MozillaFirefox-branding-upstream-68.6.0-3.75 is installed
  • OR MozillaFirefox-buildsymbols-68.6.0-3.75 is installed
  • OR MozillaFirefox-devel-68.6.0-3.75 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • openssh-7.6p1-9.13 is installed
  • OR openssh-fips-7.6p1-9.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • graphviz-addons-2.40.1-6.3 is installed
  • OR graphviz-tcl-2.40.1-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND Package Information
  • apache2-mod_php5-5.5.14-4 is installed
  • OR php5-5.5.14-4 is installed
  • OR php5-bcmath-5.5.14-4 is installed
  • OR php5-bz2-5.5.14-4 is installed
  • OR php5-calendar-5.5.14-4 is installed
  • OR php5-ctype-5.5.14-4 is installed
  • OR php5-curl-5.5.14-4 is installed
  • OR php5-dba-5.5.14-4 is installed
  • OR php5-dom-5.5.14-4 is installed
  • OR php5-enchant-5.5.14-4 is installed
  • OR php5-exif-5.5.14-4 is installed
  • OR php5-fastcgi-5.5.14-4 is installed
  • OR php5-fileinfo-5.5.14-4 is installed
  • OR php5-fpm-5.5.14-4 is installed
  • OR php5-ftp-5.5.14-4 is installed
  • OR php5-gd-5.5.14-4 is installed
  • OR php5-gettext-5.5.14-4 is installed
  • OR php5-gmp-5.5.14-4 is installed
  • OR php5-iconv-5.5.14-4 is installed
  • OR php5-intl-5.5.14-4 is installed
  • OR php5-json-5.5.14-4 is installed
  • OR php5-ldap-5.5.14-4 is installed
  • OR php5-mbstring-5.5.14-4 is installed
  • OR php5-mcrypt-5.5.14-4 is installed
  • OR php5-mysql-5.5.14-4 is installed
  • OR php5-odbc-5.5.14-4 is installed
  • OR php5-openssl-5.5.14-4 is installed
  • OR php5-pcntl-5.5.14-4 is installed
  • OR php5-pdo-5.5.14-4 is installed
  • OR php5-pear-5.5.14-4 is installed
  • OR php5-pgsql-5.5.14-4 is installed
  • OR php5-pspell-5.5.14-4 is installed
  • OR php5-shmop-5.5.14-4 is installed
  • OR php5-snmp-5.5.14-4 is installed
  • OR php5-soap-5.5.14-4 is installed
  • OR php5-sockets-5.5.14-4 is installed
  • OR php5-sqlite-5.5.14-4 is installed
  • OR php5-suhosin-5.5.14-4 is installed
  • OR php5-sysvmsg-5.5.14-4 is installed
  • OR php5-sysvsem-5.5.14-4 is installed
  • OR php5-sysvshm-5.5.14-4 is installed
  • OR php5-tokenizer-5.5.14-4 is installed
  • OR php5-wddx-5.5.14-4 is installed
  • OR php5-xmlreader-5.5.14-4 is installed
  • OR php5-xmlrpc-5.5.14-4 is installed
  • OR php5-xmlwriter-5.5.14-4 is installed
  • OR php5-xsl-5.5.14-4 is installed
  • OR php5-zip-5.5.14-4 is installed
  • OR php5-zlib-5.5.14-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND Package Information
  • nodejs8-8.16.1-3.20 is installed
  • OR nodejs8-devel-8.16.1-3.20 is installed
  • OR nodejs8-docs-8.16.1-3.20 is installed
  • OR npm8-8.16.1-3.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed
  • AND Package Information
  • nodejs10-10.16.0-1.9 is installed
  • OR nodejs10-devel-10.16.0-1.9 is installed
  • OR nodejs10-docs-10.16.0-1.9 is installed
  • OR npm10-10.16.0-1.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND ant-1.9.4-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND hardlink-1.0-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • alsa-1.0.27.2-15 is installed
  • OR alsa-docs-1.0.27.2-15 is installed
  • OR libasound2-1.0.27.2-15 is installed
  • OR libasound2-32bit-1.0.27.2-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND python-imaging-1.1.7-21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Rasperry Pi 12 SP2 is installed
  • AND Package Information
  • MozillaFirefox-45.5.1esr-93.1 is installed
  • OR MozillaFirefox-translations-45.5.1esr-93.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND Package Information
  • libspice-server-devel-0.12.4-6.1 is installed
  • OR spice-0.12.4-6.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND libtasn1-devel-3.7-4.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND libid3tag0-0.15.1b-182.58 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.25 is installed
  • OR kernel-default-extra-4.12.14-25.25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • libixion-0.14.1-4.3 is installed
  • OR libixion-0_14-0-0.14.1-4.3 is installed
  • OR liborcus-0.14.1-3.3 is installed
  • OR liborcus-0_14-0-0.14.1-3.3 is installed
  • OR liborcus-devel-0.14.1-3.3 is installed
  • OR myspell-af_ZA-20190423-3.9 is installed
  • OR myspell-ar-20190423-3.9 is installed
  • OR myspell-bg_BG-20190423-3.9 is installed
  • OR myspell-bn_BD-20190423-3.9 is installed
  • OR myspell-br_FR-20190423-3.9 is installed
  • OR myspell-ca-20190423-3.9 is installed
  • OR myspell-cs_CZ-20190423-3.9 is installed
  • OR myspell-da_DK-20190423-3.9 is installed
  • OR myspell-dictionaries-20190423-3.9 is installed
  • OR myspell-el_GR-20190423-3.9 is installed
  • OR myspell-et_EE-20190423-3.9 is installed
  • OR myspell-fr_FR-20190423-3.9 is installed
  • OR myspell-gl-20190423-3.9 is installed
  • OR myspell-gu_IN-20190423-3.9 is installed
  • OR myspell-he_IL-20190423-3.9 is installed
  • OR myspell-hi_IN-20190423-3.9 is installed
  • OR myspell-hr_HR-20190423-3.9 is installed
  • OR myspell-it_IT-20190423-3.9 is installed
  • OR myspell-lt_LT-20190423-3.9 is installed
  • OR myspell-lv_LV-20190423-3.9 is installed
  • OR myspell-nl_NL-20190423-3.9 is installed
  • OR myspell-nn_NO-20190423-3.9 is installed
  • OR myspell-pl_PL-20190423-3.9 is installed
  • OR myspell-pt_PT-20190423-3.9 is installed
  • OR myspell-si_LK-20190423-3.9 is installed
  • OR myspell-sk_SK-20190423-3.9 is installed
  • OR myspell-sl_SI-20190423-3.9 is installed
  • OR myspell-sr-20190423-3.9 is installed
  • OR myspell-sv_SE-20190423-3.9 is installed
  • OR myspell-te_IN-20190423-3.9 is installed
  • OR myspell-th_TH-20190423-3.9 is installed
  • OR myspell-tr_TR-20190423-3.9 is installed
  • OR myspell-uk_UA-20190423-3.9 is installed
  • OR myspell-zu_ZA-20190423-3.9 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 is installed
  • AND Package Information
  • chromedriver-54.0.2840.59-109 is installed
  • OR chromium-54.0.2840.59-109 is installed
  • OR chromium-ffmpegsumo-54.0.2840.59-109 is installed
    • BACK