OVAL Reference oval:org.opensuse.security:def:2601

Oval Definition:

oval:org.opensuse.security:def:2601

Revision Date:	2020-12-02	Version:	1
Title:	Security update for docker (Moderate)
Description:	This update for containerd, docker, docker-runc and golang-github-docker-libnetwork fixes the following issues: Security issues fixed for containerd, docker, docker-runc and golang-github-docker-libnetwork: - CVE-2018-16873: cmd/go: remote command execution during 'go get -u' (bsc#1118897) - CVE-2018-16874: cmd/go: directory traversal in 'go get' via curly braces in import paths (bsc#1118898) - CVE-2018-16875: crypto/x509: CPU denial of service (bsc#1118899) Non-security issues fixed for docker: - Disable leap based builds for kubic flavor (bsc#1121412) - Allow users to explicitly specify the NIS domainname of a container (bsc#1001161) - Update docker.service to match upstream and avoid rlimit problems (bsc#1112980) - Allow docker images larger then 23GB (bsc#1118990) - Docker version update to version 18.09.0-ce (bsc#1115464)
Family:	unix	Class:	patch
Status:		Reference(s):	1001161 1051510 1054914 1055117 1061305 1061840 1065600 1065729 1071995 1076958 1082555 1104841 1104967 1109158 1112438 1112980 1113722 1114279 1115464 1118897 1118898 1118899 1118990 1119086 1120644 1121412 1122191 1123034 1125689 1127988 1129528 1131291 1131304 1134616 1137069 1137865 1137959 1137990 1138743 1139210 1140155 1141013 1141689 1142076 1142635 1142721 1142743 1144065 1146042 1146111 1146115 1146123 1146182 1146184 1146519 1146540 1146664 1148133 1148712 1148868 1149313 1149429 1149446 1149555 1149651 1150003 1150250 1150381 1150423 1151186 1151350 1151610 1151667 1151680 1151891 1151955 1152024 1152025 1152026 1152161 1152325 1152457 1152460 1152466 1152539 1152972 1152974 1152975 1153423 1153869 1154401 1154738 1154849 1154884 1154887 1156188 1156543 CVE-2017-14988 CVE-2017-15107 CVE-2017-18595 CVE-2018-11782 CVE-2018-16873 CVE-2018-16874 CVE-2018-16875 CVE-2018-20406 CVE-2019-0203 CVE-2019-10214 CVE-2019-11757 CVE-2019-11758 CVE-2019-11759 CVE-2019-11760 CVE-2019-11761 CVE-2019-11762 CVE-2019-11763 CVE-2019-11764 CVE-2019-12290 CVE-2019-14809 CVE-2019-14821 CVE-2019-14834 CVE-2019-15291 CVE-2019-1547 CVE-2019-1563 CVE-2019-15903 CVE-2019-18224 CVE-2019-18804 CVE-2019-5010 CVE-2019-9506 CVE-2019-9511 CVE-2019-9512 CVE-2019-9513 CVE-2019-9514 SUSE-SU-2019:0215-1 SUSE-SU-2019:0286-1 SUSE-SU-2019:2031-1 SUSE-SU-2019:2043-1 SUSE-SU-2019:2214-1 SUSE-SU-2019:2346-1 SUSE-SU-2019:2473-1 SUSE-SU-2019:2561-1 SUSE-SU-2019:2706-1 SUSE-SU-2019:2871-1 SUSE-SU-2019:3033-1 SUSE-SU-2019:3086-1 SUSE-SU-2019:3188-1
Platform(s):	SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise Module for Containers 15 SUSE Linux Enterprise Module for Containers 15 SP1 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for Rasperry Pi 12 SP2 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND python-Beaker-1.6.4-0.7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information MozillaFirefox-31.1.0esr-1 is installed OR MozillaFirefox-translations-31.1.0esr-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libpng12-1.2.50-19 is installed OR libpng12-0-1.2.50-19 is installed OR libpng12-0-32bit-1.2.50-19 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information qemu-2.6.2-31 is installed OR qemu-block-curl-2.6.2-31 is installed OR qemu-ipxe-1.0.0-31 is installed OR qemu-kvm-2.6.2-31 is installed OR qemu-seabios-1.9.1-31 is installed OR qemu-sgabios-8-31 is installed OR qemu-tools-2.6.2-31 is installed OR qemu-vgabios-1.9.1-31 is installed OR qemu-x86-2.6.2-31 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libfreetype6-2.6.3-7.15 is installed OR libfreetype6-32bit-2.6.3-7.15 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND conntrack-tools-1.4.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND haproxy-1.6.11-10 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP4 is installed AND fence-agents-4.2.1+git.1537269352.7b1fd536-1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 is installed AND Package Information drbd-9.0.13+git.b83ade31-3.2 is installed OR drbd-kmp-default-9.0.13+git.b83ade31_k4.12.14_23-3.2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 15 is installed AND Package Information containerd-1.1.2-5.6 is installed OR docker-18.09.0_ce-6.11 is installed OR docker-bash-completion-18.09.0_ce-6.11 is installed OR docker-libnetwork-0.7.0.1+gitr2704_6da50d197830-4.6 is installed OR docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.6 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2704_6da50d197830-4.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 15 SP1 is installed AND Package Information podman-1.4.4-4.11 is installed OR podman-cni-config-1.4.4-4.11 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information libmunge2-0.5.13-4.3 is installed OR munge-0.5.13-4.3 is installed OR munge-devel-0.5.13-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information libpmi0-18.08.8-3.4 is installed OR libslurm33-18.08.8-3.4 is installed OR perl-Switch-2.17-3.2 is installed OR perl-slurm-18.08.8-3.4 is installed OR slurm-18.08.8-3.4 is installed OR slurm-auth-none-18.08.8-3.4 is installed OR slurm-config-18.08.8-3.4 is installed OR slurm-config-man-18.08.8-3.4 is installed OR slurm-devel-18.08.8-3.4 is installed OR slurm-doc-18.08.8-3.4 is installed OR slurm-lua-18.08.8-3.4 is installed OR slurm-munge-18.08.8-3.4 is installed OR slurm-node-18.08.8-3.4 is installed OR slurm-pam_slurm-18.08.8-3.4 is installed OR slurm-plugins-18.08.8-3.4 is installed OR slurm-slurmdbd-18.08.8-3.4 is installed OR slurm-sql-18.08.8-3.4 is installed OR slurm-sview-18.08.8-3.4 is installed OR slurm-torque-18.08.8-3.4 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information cups154-1.5.4-2 is installed OR cups154-client-1.5.4-2 is installed OR cups154-filters-1.5.4-2 is installed OR cups154-libs-1.5.4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information kernel-default-4.12.14-25.6 is installed OR reiserfs-kmp-default-4.12.14-25.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.35-3.20 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND kernel-livepatch-tools-1.1-5.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_10-default-3-2 is installed OR kernel-livepatch-SLE15-SP1_Update_3-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information libsvn_auth_gnome_keyring-1-0-1.10.6-3.6 is installed OR subversion-1.10.6-3.6 is installed OR subversion-python-ctypes-1.10.6-3.6 is installed OR subversion-ruby-1.10.6-3.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information containerd-1.2.5-5.13 is installed OR containerd-ctr-1.2.5-5.13 is installed OR containerd-test-1.2.5-5.13 is installed OR docker-18.09.6_ce-6.17 is installed OR docker-runc-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed OR docker-runc-test-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed OR docker-test-18.09.6_ce-6.17 is installed OR docker-zsh-completion-18.09.6_ce-6.17 is installed OR go-1.12-3.10 is installed OR go-doc-1.12-3.10 is installed OR go-race-1.12-3.10 is installed OR go1.11-1.11.9-1.12 is installed OR go1.11-doc-1.11.9-1.12 is installed OR go1.11-race-1.11.9-1.12 is installed OR go1.12-1.12.4-1.9 is installed OR go1.12-doc-1.12.4-1.9 is installed OR go1.12-race-1.12.4-1.9 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND rmt-server-2.1.4-3.17 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information libfreebl3-hmac-3.44.1-3.16 is installed OR libsoftokn3-hmac-3.44.1-3.16 is installed OR mozilla-nss-3.44.1-3.16 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information nodejs4-4.5.0-5 is installed OR nodejs4-devel-4.5.0-5 is installed OR nodejs4-docs-4.5.0-5 is installed OR npm4-4.5.0-5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs8-8.15.1-3.14 is installed OR nodejs8-devel-8.15.1-3.14 is installed OR nodejs8-docs-8.15.1-3.14 is installed OR npm8-8.15.1-3.14 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information apache2-mod_php7-7.2.5-4.35 is installed OR php7-7.2.5-4.35 is installed OR php7-bcmath-7.2.5-4.35 is installed OR php7-bz2-7.2.5-4.35 is installed OR php7-calendar-7.2.5-4.35 is installed OR php7-ctype-7.2.5-4.35 is installed OR php7-curl-7.2.5-4.35 is installed OR php7-dba-7.2.5-4.35 is installed OR php7-devel-7.2.5-4.35 is installed OR php7-dom-7.2.5-4.35 is installed OR php7-enchant-7.2.5-4.35 is installed OR php7-exif-7.2.5-4.35 is installed OR php7-fastcgi-7.2.5-4.35 is installed OR php7-fileinfo-7.2.5-4.35 is installed OR php7-fpm-7.2.5-4.35 is installed OR php7-ftp-7.2.5-4.35 is installed OR php7-gd-7.2.5-4.35 is installed OR php7-gettext-7.2.5-4.35 is installed OR php7-gmp-7.2.5-4.35 is installed OR php7-iconv-7.2.5-4.35 is installed OR php7-intl-7.2.5-4.35 is installed OR php7-json-7.2.5-4.35 is installed OR php7-ldap-7.2.5-4.35 is installed OR php7-mbstring-7.2.5-4.35 is installed OR php7-mysql-7.2.5-4.35 is installed OR php7-odbc-7.2.5-4.35 is installed OR php7-opcache-7.2.5-4.35 is installed OR php7-openssl-7.2.5-4.35 is installed OR php7-pcntl-7.2.5-4.35 is installed OR php7-pdo-7.2.5-4.35 is installed OR php7-pear-7.2.5-4.35 is installed OR php7-pear-Archive_Tar-7.2.5-4.35 is installed OR php7-pgsql-7.2.5-4.35 is installed OR php7-phar-7.2.5-4.35 is installed OR php7-posix-7.2.5-4.35 is installed OR php7-shmop-7.2.5-4.35 is installed OR php7-snmp-7.2.5-4.35 is installed OR php7-soap-7.2.5-4.35 is installed OR php7-sockets-7.2.5-4.35 is installed OR php7-sqlite-7.2.5-4.35 is installed OR php7-sysvmsg-7.2.5-4.35 is installed OR php7-sysvsem-7.2.5-4.35 is installed OR php7-sysvshm-7.2.5-4.35 is installed OR php7-tokenizer-7.2.5-4.35 is installed OR php7-wddx-7.2.5-4.35 is installed OR php7-xmlreader-7.2.5-4.35 is installed OR php7-xmlrpc-7.2.5-4.35 is installed OR php7-xmlwriter-7.2.5-4.35 is installed OR php7-xsl-7.2.5-4.35 is installed OR php7-zip-7.2.5-4.35 is installed OR php7-zlib-7.2.5-4.35 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information apache2-2.4.10-6 is installed OR apache2-doc-2.4.10-6 is installed OR apache2-example-pages-2.4.10-6 is installed OR apache2-prefork-2.4.10-6 is installed OR apache2-utils-2.4.10-6 is installed OR apache2-worker-2.4.10-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND ipsec-tools-0.8.0-15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND python-requests-2.8.1-6.11 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Rasperry Pi 12 SP2 is installed AND Package Information tomcat-8.0.36-17.1 is installed OR tomcat-admin-webapps-8.0.36-17.1 is installed OR tomcat-docs-webapp-8.0.36-17.1 is installed OR tomcat-el-3_0-api-8.0.36-17.1 is installed OR tomcat-javadoc-8.0.36-17.1 is installed OR tomcat-jsp-2_3-api-8.0.36-17.1 is installed OR tomcat-lib-8.0.36-17.1 is installed OR tomcat-servlet-3_1-api-8.0.36-17.1 is installed OR tomcat-webapps-8.0.36-17.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information fltk-1.3.2-10.2 is installed OR fltk-devel-1.3.2-10.2 is installed OR fltk-devel-static-1.3.2-10.2 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND libvdpau-devel-0.8-3.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND libpcsclite1-32bit-1.8.10-3.7 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-60.3.0-3.17 is installed OR MozillaThunderbird-translations-common-60.3.0-3.17 is installed OR MozillaThunderbird-translations-other-60.3.0-3.17 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information ffmpeg-3.4.2-4.17 is installed OR libavcodec-devel-3.4.2-4.17 is installed OR libavformat-devel-3.4.2-4.17 is installed OR libavformat57-3.4.2-4.17 is installed OR libavresample-devel-3.4.2-4.17 is installed OR libavresample3-3.4.2-4.17 is installed

BACK