Oval Definition:	oval:org.opensuse.security:def:2608
Revision Date: 2020-12-02 Version: 1 Title: Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork (Important) Description: This update for containerd, docker, docker-runc, golang-github-docker-libnetwork fixes the following issues: Docker: - CVE-2019-14271: Fixed a code injection if the nsswitch facility dynamically loaded a library inside a chroot (bsc#1143409). - CVE-2019-13509: Fixed an information leak in the debug log (bsc#1142160). - Update to version 19.03.1-ce, see changelog at /usr/share/doc/packages/docker/CHANGELOG.md (bsc#1142413, bsc#1139649). runc: - Use %config(noreplace) for /etc/docker/daemon.json (bsc#1138920). - Update to runc 425e105d5a03, which is required by Docker (bsc#1139649). containerd: - CVE-2019-5736: Fixed a container breakout vulnerability (bsc#1121967). - Update to containerd v1.2.6, which is required by docker (bsc#1139649). golang-github-docker-libnetwork: - Update to version git.fc5a7d91d54cc98f64fc28f9e288b46a0bee756c, which is required by docker (bsc#1142413, bsc#1139649). Family: unix Class: patch Status: Reference(s): 1100331 1118367 1118368 1119991 1121967 1122191 1123919 1138529 1138687 1138920 1139649 1139884 1139885 1139886 1140100 1140102 1140103 1140104 1140105 1140106 1140110 1140111 1140501 1140513 1140520 1140534 1140538 1140543 1140545 1140547 1140549 1140552 1140554 1140664 1140665 1140666 1140667 1140668 1140669 1140673 1141171 1142160 1142413 1143409 1145092 1145383 1146873 1149121 1149792 1149955 1151490 1152506 1152856 1153238 1154212 1155812 1157652 1158328 1172410 CVE-2018-10892 CVE-2018-12207 CVE-2018-20126 CVE-2019-10208 CVE-2019-11135 CVE-2019-11745 CVE-2019-12068 CVE-2019-12974 CVE-2019-12975 CVE-2019-12976 CVE-2019-12977 CVE-2019-12978 CVE-2019-12979 CVE-2019-13133 CVE-2019-13134 CVE-2019-13135 CVE-2019-13136 CVE-2019-13137 CVE-2019-13295 CVE-2019-13296 CVE-2019-13297 CVE-2019-13298 CVE-2019-13299 CVE-2019-13300 CVE-2019-13301 CVE-2019-13302 CVE-2019-13303 CVE-2019-13304 CVE-2019-13305 CVE-2019-13306 CVE-2019-13307 CVE-2019-13308 CVE-2019-13309 CVE-2019-13310 CVE-2019-13311 CVE-2019-13391 CVE-2019-13454 CVE-2019-13509 CVE-2019-13722 CVE-2019-14271 CVE-2019-14806 CVE-2019-16056 CVE-2019-16935 CVE-2019-17005 CVE-2019-17008 CVE-2019-17009 CVE-2019-17010 CVE-2019-17011 CVE-2019-17012 CVE-2019-2894 CVE-2019-2933 CVE-2019-2945 CVE-2019-2949 CVE-2019-2958 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2975 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2987 CVE-2019-2988 CVE-2019-2989 CVE-2019-2992 CVE-2019-2999 CVE-2019-5010 CVE-2019-5736 CVE-2019-6471 CVE-2020-10749 SUSE-SU-2019:0271-1 SUSE-SU-2019:2106-1 SUSE-SU-2019:2117-1 SUSE-SU-2019:2228-1 SUSE-SU-2019:2308-1 SUSE-SU-2019:2550-1 SUSE-SU-2019:2802-1 SUSE-SU-2019:2954-1 SUSE-SU-2019:3087-1 SUSE-SU-2019:3238-1 SUSE-SU-2019:3337-1 SUSE-SU-2020:1957-1 Platform(s): SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Containers 15 SP1 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Real Time Extension 12 SP1 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND haproxy-1.5.4-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information MozillaFirefox-31.1.0esr-1 is installed OR MozillaFirefox-translations-31.1.0esr-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information gstreamer-1.2.4-2.3 is installed OR gstreamer-lang-1.2.4-2.3 is installed OR gstreamer-utils-1.2.4-2.3 is installed OR libgstreamer-1_0-0-1.2.4-2.3 is installed OR libgstreamer-1_0-0-32bit-1.2.4-2.3 is installed OR typelib-1_0-Gst-1_0-1.2.4-2.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libX11-1.6.2-8 is installed OR libX11-6-1.6.2-8 is installed OR libX11-6-32bit-1.6.2-8 is installed OR libX11-data-1.6.2-8 is installed OR libX11-xcb1-1.6.2-8 is installed OR libX11-xcb1-32bit-1.6.2-8 is installed OR libXfixes-5.0.1-7 is installed OR libXfixes3-5.0.1-7 is installed OR libXfixes3-32bit-5.0.1-7 is installed OR libXi-1.7.4-14 is installed OR libXi6-1.7.4-14 is installed OR libXi6-32bit-1.7.4-14 is installed OR libXrender-0.9.8-7 is installed OR libXrender1-0.9.8-7 is installed OR libXrender1-32bit-0.9.8-7 is installed OR libXtst-1.2.2-7 is installed OR libXtst6-1.2.2-7 is installed OR libXtst6-32bit-1.2.2-7 is installed OR libXv-1.0.10-7 is installed OR libXv1-1.0.10-7 is installed OR libXv1-32bit-1.0.10-7 is installed OR libXvMC-1.0.8-7 is installed OR libXvMC1-1.0.8-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libgraphite2-3-1.3.1-10.3 is installed OR libgraphite2-3-32bit-1.3.1-10.3 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND haproxy-1.6.5-5 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information cluster-md-kmp-default-4.4.73-5 is installed OR dlm-kmp-default-4.4.73-5 is installed OR gfs2-kmp-default-4.4.73-5 is installed OR ocfs2-kmp-default-4.4.73-5 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND conntrack-tools-1.4.2-5 is installed Definition Synopsis SUSE Linux Enterprise High Availability 15 is installed AND Package Information cluster-md-kmp-default-4.12.14-25.13 is installed OR dlm-kmp-default-4.12.14-25.13 is installed OR gfs2-kmp-default-4.12.14-25.13 is installed OR kernel-default-4.12.14-25.13 is installed OR ocfs2-kmp-default-4.12.14-25.13 is installed Definition Synopsis SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND facter-2.0.2-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 12 is installed AND python-PyYAML-3.10-15 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 15 SP1 is installed AND Package Information containerd-1.2.6-5.16 is installed OR docker-19.03.1_ce-6.26 is installed OR docker-bash-completion-19.03.1_ce-6.26 is installed OR docker-libnetwork-0.7.0.1+gitr2800_fc5a7d91d54c-4.15 is installed OR docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.21 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2800_fc5a7d91d54c-4.15 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information python-numpy_1_16_1-gnu-hpc-1.16.1-4.8 is installed OR python2-numpy-gnu-hpc-1.16.1-4.8 is installed OR python2-numpy-gnu-hpc-devel-1.16.1-4.8 is installed OR python3-numpy-gnu-hpc-1.16.1-4.8 is installed OR python3-numpy-gnu-hpc-devel-1.16.1-4.8 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information libslurm32-17.11.13-6.18 is installed OR slurm-17.11.13-6.18 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-3.3 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-3.3 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-3.3 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.7 is installed OR reiserfs-kmp-default-4.12.14-197.7 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-25.6 is installed OR kernel-default-livepatch-4.12.14-25.6 is installed OR kernel-livepatch-4_12_14-25_6-default-1-1.3 is installed OR kernel-livepatch-SLE15_Update_2-1-1.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.7 is installed OR kernel-default-livepatch-4.12.14-197.7 is installed OR kernel-default-livepatch-devel-4.12.14-197.7 is installed OR kernel-livepatch-4_12_14-197_7-default-1-3.3 is installed OR kernel-livepatch-SLE15-SP1_Update_2-1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information ImageMagick-7.0.7.34-3.67 is installed OR ImageMagick-doc-7.0.7.34-3.67 is installed OR ImageMagick-extra-7.0.7.34-3.67 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information bzip2-1.0.6-5.3 is installed OR bzip2-doc-1.0.6-5.3 is installed OR libbz2-devel-32bit-1.0.6-5.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information subversion-1.10.6-3.6 is installed OR subversion-server-1.10.6-3.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information graphviz-addons-2.40.1-6.3 is installed OR graphviz-tcl-2.40.1-6.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php5-5.5.14-4 is installed OR php5-5.5.14-4 is installed OR php5-bcmath-5.5.14-4 is installed OR php5-bz2-5.5.14-4 is installed OR php5-calendar-5.5.14-4 is installed OR php5-ctype-5.5.14-4 is installed OR php5-curl-5.5.14-4 is installed OR php5-dba-5.5.14-4 is installed OR php5-dom-5.5.14-4 is installed OR php5-enchant-5.5.14-4 is installed OR php5-exif-5.5.14-4 is installed OR php5-fastcgi-5.5.14-4 is installed OR php5-fileinfo-5.5.14-4 is installed OR php5-fpm-5.5.14-4 is installed OR php5-ftp-5.5.14-4 is installed OR php5-gd-5.5.14-4 is installed OR php5-gettext-5.5.14-4 is installed OR php5-gmp-5.5.14-4 is installed OR php5-iconv-5.5.14-4 is installed OR php5-intl-5.5.14-4 is installed OR php5-json-5.5.14-4 is installed OR php5-ldap-5.5.14-4 is installed OR php5-mbstring-5.5.14-4 is installed OR php5-mcrypt-5.5.14-4 is installed OR php5-mysql-5.5.14-4 is installed OR php5-odbc-5.5.14-4 is installed OR php5-openssl-5.5.14-4 is installed OR php5-pcntl-5.5.14-4 is installed OR php5-pdo-5.5.14-4 is installed OR php5-pear-5.5.14-4 is installed OR php5-pgsql-5.5.14-4 is installed OR php5-pspell-5.5.14-4 is installed OR php5-shmop-5.5.14-4 is installed OR php5-snmp-5.5.14-4 is installed OR php5-soap-5.5.14-4 is installed OR php5-sockets-5.5.14-4 is installed OR php5-sqlite-5.5.14-4 is installed OR php5-suhosin-5.5.14-4 is installed OR php5-sysvmsg-5.5.14-4 is installed OR php5-sysvsem-5.5.14-4 is installed OR php5-sysvshm-5.5.14-4 is installed OR php5-tokenizer-5.5.14-4 is installed OR php5-wddx-5.5.14-4 is installed OR php5-xmlreader-5.5.14-4 is installed OR php5-xmlrpc-5.5.14-4 is installed OR php5-xmlwriter-5.5.14-4 is installed OR php5-xsl-5.5.14-4 is installed OR php5-zip-5.5.14-4 is installed OR php5-zlib-5.5.14-4 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information apache2-mod_php7-7.2.5-4.9 is installed OR php7-7.2.5-4.9 is installed OR php7-bcmath-7.2.5-4.9 is installed OR php7-bz2-7.2.5-4.9 is installed OR php7-calendar-7.2.5-4.9 is installed OR php7-ctype-7.2.5-4.9 is installed OR php7-curl-7.2.5-4.9 is installed OR php7-dba-7.2.5-4.9 is installed OR php7-devel-7.2.5-4.9 is installed OR php7-dom-7.2.5-4.9 is installed OR php7-enchant-7.2.5-4.9 is installed OR php7-exif-7.2.5-4.9 is installed OR php7-fastcgi-7.2.5-4.9 is installed OR php7-fileinfo-7.2.5-4.9 is installed OR php7-fpm-7.2.5-4.9 is installed OR php7-ftp-7.2.5-4.9 is installed OR php7-gd-7.2.5-4.9 is installed OR php7-gettext-7.2.5-4.9 is installed OR php7-gmp-7.2.5-4.9 is installed OR php7-iconv-7.2.5-4.9 is installed OR php7-intl-7.2.5-4.9 is installed OR php7-json-7.2.5-4.9 is installed OR php7-ldap-7.2.5-4.9 is installed OR php7-mbstring-7.2.5-4.9 is installed OR php7-mysql-7.2.5-4.9 is installed OR php7-odbc-7.2.5-4.9 is installed OR php7-opcache-7.2.5-4.9 is installed OR php7-openssl-7.2.5-4.9 is installed OR php7-pcntl-7.2.5-4.9 is installed OR php7-pdo-7.2.5-4.9 is installed OR php7-pear-7.2.5-4.9 is installed OR php7-pear-Archive_Tar-7.2.5-4.9 is installed OR php7-pgsql-7.2.5-4.9 is installed OR php7-phar-7.2.5-4.9 is installed OR php7-posix-7.2.5-4.9 is installed OR php7-shmop-7.2.5-4.9 is installed OR php7-snmp-7.2.5-4.9 is installed OR php7-soap-7.2.5-4.9 is installed OR php7-sockets-7.2.5-4.9 is installed OR php7-sqlite-7.2.5-4.9 is installed OR php7-sysvmsg-7.2.5-4.9 is installed OR php7-sysvsem-7.2.5-4.9 is installed OR php7-sysvshm-7.2.5-4.9 is installed OR php7-tokenizer-7.2.5-4.9 is installed OR php7-wddx-7.2.5-4.9 is installed OR php7-xmlreader-7.2.5-4.9 is installed OR php7-xmlrpc-7.2.5-4.9 is installed OR php7-xmlwriter-7.2.5-4.9 is installed OR php7-xsl-7.2.5-4.9 is installed OR php7-zip-7.2.5-4.9 is installed OR php7-zlib-7.2.5-4.9 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs10-10.16.3-1.12 is installed OR nodejs10-devel-10.16.3-1.12 is installed OR nodejs10-docs-10.16.3-1.12 is installed OR npm10-10.16.3-1.12 is installed Definition Synopsis SUSE Linux Enterprise Real Time Extension 12 SP1 is installed AND Package Information kernel-compute-3.12.58-14.1 is installed OR kernel-compute-base-3.12.58-14.1 is installed OR kernel-compute-devel-3.12.58-14.1 is installed OR kernel-compute_debug-3.12.58-14.1 is installed OR kernel-compute_debug-devel-3.12.58-14.1 is installed OR kernel-devel-rt-3.12.58-14.1 is installed OR kernel-rt-3.12.58-14.1 is installed OR kernel-rt-base-3.12.58-14.1 is installed OR kernel-rt-devel-3.12.58-14.1 is installed OR kernel-rt_debug-3.12.58-14.1 is installed OR kernel-rt_debug-devel-3.12.58-14.1 is installed OR kernel-source-rt-3.12.58-14.1 is installed OR kernel-syms-rt-3.12.58-14.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND ant-1.9.4-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND kbd-1.15.5-8.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND rsync-3.1.0-12 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information cups-1.7.5-9.1 is installed OR cups-devel-1.7.5-9.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND libyaml-devel-0.1.6-7.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND libssh4-0.6.3-8.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND transfig-3.2.6a-4.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.4 is installed OR kernel-default-extra-4.12.14-197.4 is installed
BACK