Oval Definition:	oval:org.opensuse.security:def:2605
Revision Date: 2020-12-02 Version: 1 Title: Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork (Moderate) Description: This update for containerd, docker, docker-runc, golang-github-docker-libnetwork fixes the following issues: Security issue fixed: - CVE-2019-16884: Fixed incomplete patch for LSM bypass via malicious Docker image that mount over a /proc directory (bsc#1152308). Bug fixes: - Update to Docker 19.03.5-ce (bsc#1158590). - Update to Docker 19.03.3-ce (bsc#1153367). - Update to Docker 19.03.2-ce (bsc#1150397). - Fixed default installation such that --userns-remap=default works properly (bsc#1143349). - Fixed nginx blocked by apparmor (bsc#1122469). Family: unix Class: patch Status: Reference(s): 1051510 1055117 1071995 1076958 1082318 1083647 1083710 1102247 1114592 1119222 1122469 1123080 1127034 1127315 1128828 1129770 1130840 1130972 1133021 1134097 1134390 1134399 1135254 1135335 1135642 1137458 1137534 1137535 1137584 1137609 1137827 1138461 1138743 1139358 1140133 1140322 1140652 1140903 1140945 1141063 1141401 1141402 1141452 1141453 1141454 1141478 1141619 1141897 1142023 1142112 1142220 1142221 1142254 1142350 1142351 1142354 1142359 1142450 1142614 1142649 1142654 1142701 1142868 1143003 1143045 1143105 1143185 1143189 1143191 1143349 1143507 1146657 1148517 1149145 1149955 1150397 1152308 1152539 1153238 1153332 1153367 1153451 1153459 1154849 1156543 1158095 1158590 1170940 CVE-2017-15107 CVE-2018-16301 CVE-2018-20855 CVE-2019-10086 CVE-2019-1010006 CVE-2019-1125 CVE-2019-11810 CVE-2019-12855 CVE-2019-13631 CVE-2019-13648 CVE-2019-14250 CVE-2019-14283 CVE-2019-14284 CVE-2019-14834 CVE-2019-14889 CVE-2019-15165 CVE-2019-15847 CVE-2019-16056 CVE-2019-16884 CVE-2019-16935 CVE-2019-17041 CVE-2019-17042 CVE-2019-9893 CVE-2019-9947 CVE-2020-1983 SUSE-SU-2019:2052-1 SUSE-SU-2019:2212-1 SUSE-SU-2019:2245-1 SUSE-SU-2019:2517-1 SUSE-SU-2019:2673-1 SUSE-SU-2019:2743-1 SUSE-SU-2019:2937-1 SUSE-SU-2019:3061-1 SUSE-SU-2019:3188-1 SUSE-SU-2019:3293-1 SUSE-SU-2020:0035-1 SUSE-SU-2020:1197-1 Platform(s): SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 15 SUSE Linux Enterprise Module for Containers 15 SP1 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for Rasperry Pi 12 SP2 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Package Hub for SUSE Linux Enterprise 12 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND python-requests-2.3.0-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND argyllcms-1.6.3-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information bind-9.9.9P1-49 is installed OR bind-libs-9.9.9P1-49 is installed OR bind-libs-32bit-9.9.9P1-49 is installed OR bind-utils-9.9.9P1-49 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libgif6-5.0.5-12 is installed OR libgif6-32bit-5.0.5-12 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND conntrack-tools-1.4.2-5 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information cluster-md-kmp-default-4.4.73-5 is installed OR dlm-kmp-default-4.4.73-5 is installed OR gfs2-kmp-default-4.4.73-5 is installed OR ocfs2-kmp-default-4.4.73-5 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND Package Information cluster-md-kmp-default-4.12.14-94.41 is installed OR dlm-kmp-default-4.12.14-94.41 is installed OR gfs2-kmp-default-4.12.14-94.41 is installed OR ocfs2-kmp-default-4.12.14-94.41 is installed Definition Synopsis SUSE Linux Enterprise High Availability 15 is installed AND Package Information cluster-md-kmp-default-4.12.14-25.3 is installed OR dlm-kmp-default-4.12.14-25.3 is installed OR gfs2-kmp-default-4.12.14-25.3 is installed OR kernel-default-4.12.14-25.3 is installed OR ocfs2-kmp-default-4.12.14-25.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND facter-2.0.2-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 15 is installed AND Package Information containerd-1.2.10-5.19 is installed OR docker-19.03.5_ce-6.31 is installed OR docker-bash-completion-19.03.5_ce-6.31 is installed OR docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18 is installed OR docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 15 SP1 is installed AND slirp4netns-0.4.5-3.9 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information libpmi0_18_08-18.08.9-1.5 is installed OR libslurm33-18.08.9-1.5 is installed OR pdsh-2.33-7.6 is installed OR pdsh-dshgroup-2.33-7.6 is installed OR pdsh-genders-2.33-7.6 is installed OR pdsh-machines-2.33-7.6 is installed OR pdsh-netgroup-2.33-7.6 is installed OR pdsh-slurm-2.33-7.6 is installed OR pdsh-slurm_18_08-2.33-7.6 is installed OR perl-slurm_18_08-18.08.9-1.5 is installed OR slurm_18_08-18.08.9-1.5 is installed OR slurm_18_08-auth-none-18.08.9-1.5 is installed OR slurm_18_08-config-18.08.9-1.5 is installed OR slurm_18_08-devel-18.08.9-1.5 is installed OR slurm_18_08-doc-18.08.9-1.5 is installed OR slurm_18_08-lua-18.08.9-1.5 is installed OR slurm_18_08-munge-18.08.9-1.5 is installed OR slurm_18_08-node-18.08.9-1.5 is installed OR slurm_18_08-pam_slurm-18.08.9-1.5 is installed OR slurm_18_08-plugins-18.08.9-1.5 is installed OR slurm_18_08-slurmdbd-18.08.9-1.5 is installed OR slurm_18_08-sql-18.08.9-1.5 is installed OR slurm_18_08-torque-18.08.9-1.5 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information python-numpy_1_16_1-gnu-hpc-1.16.1-4.8 is installed OR python2-numpy-gnu-hpc-1.16.1-4.8 is installed OR python2-numpy-gnu-hpc-devel-1.16.1-4.8 is installed OR python3-numpy-gnu-hpc-1.16.1-4.8 is installed OR python3-numpy-gnu-hpc-devel-1.16.1-4.8 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information kernel-default-4.12.14-25.19 is installed OR reiserfs-kmp-default-4.12.14-25.19 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information java-1_8_0-openjdk-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.212-3.19 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-25.16 is installed OR kernel-default-livepatch-4.12.14-25.16 is installed OR kernel-livepatch-4_12_14-25_16-default-1-1.3 is installed OR kernel-livepatch-SLE15_Update_4-1-1.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_7-default-5-2 is installed OR kernel-livepatch-SLE15-SP1_Update_2-5-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information evince-3.26.0+20180128.1bd86963-4.10 is installed OR evince-plugin-comicsdocument-3.26.0+20180128.1bd86963-4.10 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information 389-ds-1.4.0.3-4.7 is installed OR 389-ds-snmp-1.4.0.3-4.7 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 12 is installed AND python-pycrypto-2.6.1-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libecpg6-10.9-4.13 is installed OR postgresql10-10.9-4.13 is installed OR postgresql10-contrib-10.9-4.13 is installed OR postgresql10-devel-10.9-4.13 is installed OR postgresql10-docs-10.9-4.13 is installed OR postgresql10-plperl-10.9-4.13 is installed OR postgresql10-plpython-10.9-4.13 is installed OR postgresql10-pltcl-10.9-4.13 is installed OR postgresql10-server-10.9-4.13 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information subversion-1.10.6-3.6 is installed OR subversion-server-1.10.6-3.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information apache2-mod_php7-7.2.5-4.3 is installed OR php7-7.2.5-4.3 is installed OR php7-bcmath-7.2.5-4.3 is installed OR php7-bz2-7.2.5-4.3 is installed OR php7-calendar-7.2.5-4.3 is installed OR php7-ctype-7.2.5-4.3 is installed OR php7-curl-7.2.5-4.3 is installed OR php7-dba-7.2.5-4.3 is installed OR php7-devel-7.2.5-4.3 is installed OR php7-dom-7.2.5-4.3 is installed OR php7-enchant-7.2.5-4.3 is installed OR php7-exif-7.2.5-4.3 is installed OR php7-fastcgi-7.2.5-4.3 is installed OR php7-fileinfo-7.2.5-4.3 is installed OR php7-fpm-7.2.5-4.3 is installed OR php7-ftp-7.2.5-4.3 is installed OR php7-gd-7.2.5-4.3 is installed OR php7-gettext-7.2.5-4.3 is installed OR php7-gmp-7.2.5-4.3 is installed OR php7-iconv-7.2.5-4.3 is installed OR php7-intl-7.2.5-4.3 is installed OR php7-json-7.2.5-4.3 is installed OR php7-ldap-7.2.5-4.3 is installed OR php7-mbstring-7.2.5-4.3 is installed OR php7-mysql-7.2.5-4.3 is installed OR php7-odbc-7.2.5-4.3 is installed OR php7-opcache-7.2.5-4.3 is installed OR php7-openssl-7.2.5-4.3 is installed OR php7-pcntl-7.2.5-4.3 is installed OR php7-pdo-7.2.5-4.3 is installed OR php7-pear-7.2.5-4.3 is installed OR php7-pear-Archive_Tar-7.2.5-4.3 is installed OR php7-pgsql-7.2.5-4.3 is installed OR php7-phar-7.2.5-4.3 is installed OR php7-posix-7.2.5-4.3 is installed OR php7-shmop-7.2.5-4.3 is installed OR php7-snmp-7.2.5-4.3 is installed OR php7-soap-7.2.5-4.3 is installed OR php7-sockets-7.2.5-4.3 is installed OR php7-sqlite-7.2.5-4.3 is installed OR php7-sysvmsg-7.2.5-4.3 is installed OR php7-sysvsem-7.2.5-4.3 is installed OR php7-sysvshm-7.2.5-4.3 is installed OR php7-tokenizer-7.2.5-4.3 is installed OR php7-wddx-7.2.5-4.3 is installed OR php7-xmlreader-7.2.5-4.3 is installed OR php7-xmlrpc-7.2.5-4.3 is installed OR php7-xmlwriter-7.2.5-4.3 is installed OR php7-xsl-7.2.5-4.3 is installed OR php7-zip-7.2.5-4.3 is installed OR php7-zlib-7.2.5-4.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs8-8.15.1-3.17 is installed OR nodejs8-devel-8.15.1-3.17 is installed OR nodejs8-docs-8.15.1-3.17 is installed OR npm8-8.15.1-3.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-1 is installed OR aaa_base-extras-13.2+git20140911.61c1681-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr3.50-28 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr3.50-28 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr3.50-28 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr3.50-28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information res-signingkeys-3.0.18-26 is installed OR smt-3.0.18-26 is installed OR smt-support-3.0.18-26 is installed Definition Synopsis SUSE Linux Enterprise Server for Rasperry Pi 12 SP2 is installed AND Package Information ntp-4.2.8p9-55.1 is installed OR ntp-doc-4.2.8p9-55.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information curl-7.37.0-15.1 is installed OR libcurl-devel-7.37.0-15.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information libxcb-composite0-1.10-1.21 is installed OR libxcb-damage0-1.10-1.21 is installed OR libxcb-devel-1.10-1.21 is installed OR libxcb-devel-doc-1.10-1.21 is installed OR libxcb-dpms0-1.10-1.21 is installed OR libxcb-dri3-0-1.10-1.21 is installed OR libxcb-present0-1.10-1.21 is installed OR libxcb-record0-1.10-1.21 is installed OR libxcb-res0-1.10-1.21 is installed OR libxcb-screensaver0-1.10-1.21 is installed OR libxcb-xevie0-1.10-1.21 is installed OR libxcb-xinerama0-1.10-1.21 is installed OR libxcb-xprint0-1.10-1.21 is installed OR libxcb-xtest0-1.10-1.21 is installed OR libxcb-xvmc0-1.10-1.21 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND libraw9-0.15.4-3.88 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information libntfs-3g87-2016.2.22-3.3 is installed OR ntfs-3g-2016.2.22-3.3 is installed OR ntfs-3g_ntfsprogs-2016.2.22-3.3 is installed OR ntfsprogs-2016.2.22-3.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-60.7.0-3.33 is installed OR MozillaThunderbird-translations-common-60.7.0-3.33 is installed OR MozillaThunderbird-translations-other-60.7.0-3.33 is installed Definition Synopsis SUSE Package Hub for SUSE Linux Enterprise 12 is installed AND Package Information chromedriver-53.0.2785.89-96 is installed OR chromium-53.0.2785.89-96 is installed OR chromium-desktop-gnome-53.0.2785.89-96 is installed OR chromium-desktop-kde-53.0.2785.89-96 is installed OR chromium-ffmpegsumo-53.0.2785.89-96 is installed
BACK