Oval Definition:	oval:org.opensuse.security:def:50798
Revision Date: 2020-12-01 Version: 1 Title: Security update for xorg-x11-server (Important) Description: This update for xorg-x11-server fixes the following issues: - CVE-2020-14347: Leak of uninitialized heap memory from the X server to clients on pixmap allocation (bsc#1174633, ZDI-CAN-11426). - CVE-2020-14346: XIChangeHierarchy Integer Underflow Privilege Escalation Vulnerability (bsc#1174638, ZDI-CAN-11429). - CVE-2020-14345: XKB out-of-bounds access privilege escalation vulnerability (bsc#1174635, ZDI-CAN-11428). Family: unix Class: patch Status: Reference(s): 1055857 1059893 1065729 1071995 1074701 1083548 1085030 1085235 1085308 1087078 1100394 1102640 1105412 1111666 1112178 1113956 1120163 1120943 1124729 1124734 1126284 1128378 1132665 1133021 1134689 1138034 1140750 1144333 1157268 1159819 1159913 1160770 1160790 1161088 1161089 1161670 1165631 1166238 1169746 1169790 1170643 1171475 1171688 1171847 1171863 1171864 1171866 1171889 1171978 1172105 1172108 1172116 1172121 1172247 1172348 1172418 1172428 1172781 1172782 1172783 1172871 1172872 1172963 1173485 1173786 1173798 1173948 1173954 1174003 1174026 1174070 1174161 1174205 1174247 1174298 1174299 1174387 1174484 1174547 1174549 1174550 1174625 1174633 1174635 1174638 1174658 1174685 1174689 1174699 1174734 1174757 1174771 1174840 1174841 1174843 1174844 1174845 1174852 1174873 1174887 1174904 1174926 1174968 1175062 1175063 1175064 1175065 1175066 1175067 1175112 1175127 1175128 1175149 1175199 1175213 1175228 1175232 1175284 1175393 1175394 1175396 1175397 1175398 1175399 1175400 1175401 1175402 1175403 1175404 1175405 1175406 1175407 1175408 1175409 1175410 1175411 1175412 1175413 1175414 1175415 1175416 1175417 1175418 1175419 1175420 1175421 1175422 1175423 1175440 1175493 1175515 1175518 1175526 1175550 1175654 1175666 1175668 1175669 1175670 1175767 1175768 1175769 1175770 1175771 1175772 1175786 1175873 1175992 1177351 1177352 1177582 CVE-2016-6328 CVE-2017-7544 CVE-2018-20030 CVE-2019-10130 CVE-2019-10164 CVE-2019-13314 CVE-2019-16785 CVE-2019-16786 CVE-2019-16789 CVE-2019-16792 CVE-2019-17006 CVE-2019-18934 CVE-2019-20503 CVE-2019-5108 CVE-2019-6974 CVE-2019-7221 CVE-2019-8912 CVE-2019-9213 CVE-2019-9278 CVE-2020-0093 CVE-2020-10543 CVE-2020-10878 CVE-2020-12399 CVE-2020-12662 CVE-2020-12663 CVE-2020-12723 CVE-2020-12767 CVE-2020-13112 CVE-2020-13113 CVE-2020-13114 CVE-2020-13943 CVE-2020-14314 CVE-2020-14331 CVE-2020-14345 CVE-2020-14346 CVE-2020-14347 CVE-2020-14356 CVE-2020-16166 CVE-2020-1749 CVE-2020-24394 CVE-2020-3899 CVE-2020-6805 CVE-2020-6806 CVE-2020-6807 CVE-2020-6811 CVE-2020-6812 CVE-2020-6814 CVE-2020-7069 CVE-2020-7070 SUSE-SU-2019:1810-1 SUSE-SU-2020:0686-1 SUSE-SU-2020:1198-1 SUSE-SU-2020:1553-2 SUSE-SU-2020:1677-1 SUSE-SU-2020:1682-1 SUSE-SU-2020:2241-1 SUSE-SU-2020:3068-1 SUSE-SU-2020:3269-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information vm-install-0.5.12-0.5 is installed OR xen-4.1.3_02-0.5 is installed OR xen-doc-html-4.1.3_02-0.5 is installed OR xen-doc-pdf-4.1.3_02-0.5 is installed OR xen-kmp-default-4.1.3_02_3.0.38_0.5-0.5 is installed OR xen-kmp-trace-4.1.3_02_3.0.38_0.5-0.5 is installed OR xen-libs-4.1.3_02-0.5 is installed OR xen-libs-32bit-4.1.3_02-0.5 is installed OR xen-tools-4.1.3_02-0.5 is installed OR xen-tools-domU-4.1.3_02-0.5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information emacs-24.3-14 is installed OR emacs-info-24.3-14 is installed OR emacs-x11-24.3-14 is installed OR etags-24.3-14 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND binutils-2.25.0-13 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND dracut-044-113 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed AND Package Information libexif-0.6.22-5.6 is installed OR libexif12-32bit-0.6.22-5.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information xorg-x11-server-1.20.3-14.5 is installed OR xorg-x11-server-extra-1.20.3-14.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_19-default-5-2 is installed OR kernel-livepatch-SLE15_Update_5-5-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-195-default-10-28 is installed OR kernel-livepatch-SLE15-SP1_Update_0-10-28 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libunbound-devel-mini-1.6.8-10.3 is installed OR unbound-1.6.8-10.3 is installed OR unbound-munin-1.6.8-10.3 is installed OR unbound-python-1.6.8-10.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information MozillaFirefox-78.0.2-3.97 is installed OR MozillaFirefox-branding-upstream-78.0.2-3.97 is installed OR MozillaFirefox-buildsymbols-78.0.2-3.97 is installed OR MozillaFirefox-devel-78.0.2-3.97 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libecpg6-10.9-4.13 is installed OR postgresql10-10.9-4.13 is installed OR postgresql10-contrib-10.9-4.13 is installed OR postgresql10-devel-10.9-4.13 is installed OR postgresql10-docs-10.9-4.13 is installed OR postgresql10-plperl-10.9-4.13 is installed OR postgresql10-plpython-10.9-4.13 is installed OR postgresql10-pltcl-10.9-4.13 is installed OR postgresql10-server-10.9-4.13 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP2 is installed AND Package Information tomcat-9.0.36-3.12 is installed OR tomcat-admin-webapps-9.0.36-3.12 is installed OR tomcat-el-3_0-api-9.0.36-3.12 is installed OR tomcat-jsp-2_3-api-9.0.36-3.12 is installed OR tomcat-lib-9.0.36-3.12 is installed OR tomcat-servlet-4_0-api-9.0.36-3.12 is installed OR tomcat-webapps-9.0.36-3.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information automake-1.13.4-4 is installed OR m4-1.4.16-15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_54-default-2-2 is installed OR kgraft-patch-3_12_74-60_64_54-xen-2-2 is installed OR kgraft-patch-SLE12-SP1_Update_19-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND cifs-utils-6.5-8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information xen-4.7.6_04-43.39 is installed OR xen-doc-html-4.7.6_04-43.39 is installed OR xen-libs-4.7.6_04-43.39 is installed OR xen-libs-32bit-4.7.6_04-43.39 is installed OR xen-tools-4.7.6_04-43.39 is installed OR xen-tools-domU-4.7.6_04-43.39 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_103-92_53-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_16-6-2 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information fetchmail-6.3.26-12 is installed OR fetchmailconf-6.3.26-12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND permissions-2015.09.28.1626-17.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_97-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_26-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND unzip-6.00-33.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libpython2_7-1_0-2.7.13-28.11 is installed OR libpython2_7-1_0-32bit-2.7.13-28.11 is installed OR python-base-2.7.13-28.11 is installed OR python-base-32bit-2.7.13-28.11 is installed OR python-xml-2.7.13-28.11 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.2-3.54 is installed OR libwebkit2gtk-4_0-37-2.28.2-3.54 is installed OR libwebkit2gtk3-lang-2.28.2-3.54 is installed OR webkit2gtk-4_0-injected-bundles-2.28.2-3.54 is installed OR webkit2gtk3-2.28.2-3.54 is installed OR webkit2gtk3-devel-2.28.2-3.54 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-150.14 is installed OR kernel-default-extra-4.12.14-150.14 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information xorg-x11-server-1.20.3-14.5.5 is installed OR xorg-x11-server-wayland-1.20.3-14.5.5 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND dnsmasq-utils-2.71-8 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND python-pycrypto-2.6.1-10.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-68.5.0-109.106 is installed OR MozillaFirefox-translations-common-68.5.0-109.106 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libpolkit0-0.113-5.18 is installed OR polkit-0.113-5.18 is installed OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed
BACK