Oval Definition:	oval:org.opensuse.security:def:50950
Revision Date: 2020-12-01 Version: 1 Title: Security update for xorg-x11-server (Important) Description: This update for xorg-x11-server fixes the following issues: - CVE-2020-14347: Leak of uninitialized heap memory from the X server to clients on pixmap allocation (bsc#1174633, ZDI-CAN-11426). - CVE-2020-14346: XIChangeHierarchy Integer Underflow Privilege Escalation Vulnerability (bsc#1174638, ZDI-CAN-11429). - CVE-2020-14345: XKB out-of-bounds access privilege escalation vulnerability (bsc#1174635, ZDI-CAN-11428). Family: unix Class: patch Status: Reference(s): 1012382 1015173 1018371 1024718 1037697 1044231 1046299 1046300 1046302 1046303 1046305 1046306 1046307 1046533 1046543 1050242 1050244 1050536 1050538 1050540 1051510 1051858 1054245 1055120 1055121 1055186 1056651 1056686 1056787 1058115 1058169 1058659 1060463 1061840 1065600 1065697 1065729 1066382 1068032 1068273 1075087 1075360 1076530 1077338 1077761 1077989 1078248 1079935 1082387 1082555 1082653 1083647 1085042 1085240 1085535 1085536 1085539 1086196 1086282 1086283 1086301 1086313 1086314 1086324 1086423 1086457 1087092 1087202 1087217 1087233 1087978 1088386 1089350 1090098 1090888 1091041 1091171 1091405 1091800 1093148 1093666 1094119 1094244 1095508 1096330 1096368 1097583 1097584 1097585 1097586 1097587 1097588 1097593 1097755 1098633 1099193 1100132 1100884 1101143 1101337 1101352 1101564 1101669 1101674 1101789 1101813 1101816 1102088 1102097 1102147 1102340 1102512 1102851 1102875 1102877 1102879 1102882 1102896 1103216 1103220 1103230 1103257 1103356 1103421 1103925 1103990 1103992 1104124 1104353 1104427 1104745 1104824 1104967 1105168 1105428 1105606 1106105 1106110 1106237 1106240 1106615 1106699 1106913 1107256 1107385 1107866 1108270 1108468 1109272 1109772 1109806 1109837 1110006 1110558 1110998 1111040 1111062 1111174 1111183 1111188 1111469 1111666 1111696 1111795 1111809 1111921 1111974 1112178 1112374 1112878 1112963 1113295 1113408 1113412 1113501 1113667 1113677 1113722 1113751 1113769 1113780 1113956 1113972 1114015 1114178 1114279 1114385 1114576 1114577 1114578 1114579 1114580 1114581 1114582 1114583 1114584 1114585 1114685 1114839 1114871 1115074 1115269 1115431 1115433 1115440 1115567 1115709 1115976 1116040 1116183 1116336 1116692 1116693 1116698 1116699 1116700 1116701 1116803 1116841 1116862 1116863 1116876 1116877 1116878 1116891 1116895 1116899 1116950 1117115 1117162 1117165 1117168 1117172 1117174 1117181 1117184 1117186 1117188 1117189 1117349 1117561 1117656 1117788 1117789 1117790 1117791 1117792 1117794 1117795 1117796 1117798 1117799 1117801 1117802 1117803 1117804 1117805 1117806 1117807 1117808 1117815 1117816 1117817 1117818 1117819 1117820 1117821 1117822 1117953 1118102 1118136 1118137 1118138 1118140 1118152 1118215 1118316 1118319 1118428 1118484 1118505 1118752 1118760 1118761 1118762 1118766 1118767 1118768 1118769 1118771 1118772 1118773 1118774 1118775 1118798 1118809 1118962 1119017 1119086 1119212 1119322 1119410 1119680 1119714 1119749 1119804 1119946 1119962 1119968 1120036 1120046 1120053 1120054 1120055 1120058 1120088 1120092 1120094 1120096 1120097 1120114 1120115 1120116 1120117 1120118 1120119 1120120 1120121 1120122 1120173 1120214 1120223 1120228 1120230 1120232 1120234 1120235 1120238 1120594 1120598 1120600 1120601 1120602 1120603 1120604 1120606 1120612 1120613 1120614 1120615 1120616 1120617 1120618 1120620 1120621 1120632 1120633 1120743 1120954 1121017 1121058 1121263 1121273 1121477 1121483 1121599 1121621 1121714 1121715 1121973 1123304 1127611 1133021 1134090 1136157 1140709 1141895 1144333 1146539 1149032 1151455 1155784 1156146 1156510 1157179 1157424 1158187 1158709 1158798 1159285 1159692 1160398 1160659 1161561 1161951 1162928 1162929 1162931 1163592 1164078 1164507 1164648 1165111 1165404 1165488 1165527 1165741 1165813 1165873 1165929 1165950 1165980 1165984 1165985 1166003 1166101 1166102 1166103 1166104 1166632 1166658 1166730 1166731 1166732 1166733 1166734 1166735 1168994 1169511 1169978 1170415 1171352 1173258 1173274 1173812 1174463 1174570 1174633 1174635 1174638 1175193 1175194 1175721 1175749 1176086 1176181 1176354 1176671 1177281 1177766 1177799 1177801 1178166 1178173 1178175 1178176 1178177 1178183 1178184 1178185 1178186 1178190 1178191 1178255 1178307 1178330 1178395 CVE-2016-10030 CVE-2016-9918 CVE-2017-15134 CVE-2017-15135 CVE-2017-15566 CVE-2017-18344 CVE-2018-10850 CVE-2018-10935 CVE-2018-10995 CVE-2018-12232 CVE-2018-14624 CVE-2018-14625 CVE-2018-15126 CVE-2018-15127 CVE-2018-16862 CVE-2018-16884 CVE-2018-18281 CVE-2018-18397 CVE-2018-18710 CVE-2018-19407 CVE-2018-19824 CVE-2018-19854 CVE-2018-19985 CVE-2018-20019 CVE-2018-20020 CVE-2018-20021 CVE-2018-20022 CVE-2018-20023 CVE-2018-20024 CVE-2018-20169 CVE-2018-5390 CVE-2018-6307 CVE-2018-7033 CVE-2018-9568 CVE-2019-12838 CVE-2019-14818 CVE-2019-19727 CVE-2019-19728 CVE-2019-19768 CVE-2019-6438 CVE-2020-10713 CVE-2020-14308 CVE-2020-14309 CVE-2020-14310 CVE-2020-14311 CVE-2020-14345 CVE-2020-14346 CVE-2020-14347 CVE-2020-14349 CVE-2020-14350 CVE-2020-14422 CVE-2020-15706 CVE-2020-15707 CVE-2020-24659 CVE-2020-25656 CVE-2020-25705 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2773 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 CVE-2020-8647 CVE-2020-8648 CVE-2020-8649 CVE-2020-8694 CVE-2020-8903 CVE-2020-8907 CVE-2020-8933 CVE-2020-9383 SUSE-SU-2018:2223-1 SUSE-SU-2019:0080-1 SUSE-SU-2019:0224-1 SUSE-SU-2019:0841-1 SUSE-SU-2019:1207-1 SUSE-SU-2020:0439-1 SUSE-SU-2020:0443-1 SUSE-SU-2020:0836-1 SUSE-SU-2020:1569-1 SUSE-SU-2020:1934-1 SUSE-SU-2020:2240-1 SUSE-SU-2020:2355-1 SUSE-SU-2020:3273-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 6-LTSS SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information libpulse-browse0-0.9.23-0.15 is installed OR libpulse-mainloop-glib0-0.9.23-0.15 is installed OR libpulse0-0.9.23-0.15 is installed OR libpulse0-32bit-0.9.23-0.15 is installed OR pulseaudio-0.9.23-0.15 is installed OR pulseaudio-esound-compat-0.9.23-0.15 is installed OR pulseaudio-gdm-hooks-0.9.23-0.15 is installed OR pulseaudio-lang-0.9.23-0.15 is installed OR pulseaudio-module-bluetooth-0.9.23-0.15 is installed OR pulseaudio-module-gconf-0.9.23-0.15 is installed OR pulseaudio-module-jack-0.9.23-0.15 is installed OR pulseaudio-module-lirc-0.9.23-0.15 is installed OR pulseaudio-module-x11-0.9.23-0.15 is installed OR pulseaudio-module-zeroconf-0.9.23-0.15 is installed OR pulseaudio-utils-0.9.23-0.15 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information gnome-shell-3.10.4-22 is installed OR gnome-shell-browser-plugin-3.10.4-22 is installed OR gnome-shell-calendar-3.10.4-22 is installed OR gnome-shell-lang-3.10.4-22 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libgssglue1-0.4-3 is installed OR libgssglue1-32bit-0.4-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libQt5WebKit5-5.6.1-9 is installed OR libQt5WebKit5-imports-5.6.1-9 is installed OR libQt5WebKitWidgets5-5.6.1-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information cups-filters-1.0.58-17 is installed OR cups-filters-cups-browsed-1.0.58-17 is installed OR cups-filters-foomatic-rip-1.0.58-17 is installed OR cups-filters-ghostscript-1.0.58-17 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND dnsmasq-2.78-18.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information xorg-x11-server-1.20.3-22.5 is installed OR xorg-x11-server-extra-1.20.3-22.5 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information pdsh-2.33-7.6 is installed OR pdsh-dshgroup-2.33-7.6 is installed OR pdsh-genders-2.33-7.6 is installed OR pdsh-machines-2.33-7.6 is installed OR pdsh-netgroup-2.33-7.6 is installed OR pdsh-slurm-2.33-7.6 is installed OR pdsh-slurm_18_08-2.33-7.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-25.6 is installed OR kernel-default-livepatch-4.12.14-25.6 is installed OR kernel-livepatch-4_12_14-25_6-default-1-1.3 is installed OR kernel-livepatch-SLE15_Update_2-1-1.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.37 is installed OR kernel-default-livepatch-4.12.14-197.37 is installed OR kernel-default-livepatch-devel-4.12.14-197.37 is installed OR kernel-livepatch-4_12_14-197_37-default-1-3.3 is installed OR kernel-livepatch-SLE15-SP1_Update_10-1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information dpdk-18.11.3-4.3 is installed OR dpdk-doc-18.11.3-4.3 is installed OR dpdk-examples-18.11.3-4.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information libpython3_6m1_0-32bit-3.6.10-3.56 is installed OR python3-3.6.10-3.56 is installed OR python3-32bit-3.6.10-3.56 is installed OR python3-base-3.6.10-3.56 is installed OR python3-base-32bit-3.6.10-3.56 is installed OR python3-doc-3.6.10-3.56 is installed OR python3-testsuite-3.6.10-3.56 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information google-compute-engine-20190801-4.38 is installed OR google-compute-engine-init-20190801-4.38 is installed OR google-compute-engine-oslogin-20190801-4.38 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information 389-ds-1.4.0.3-4.7 is installed OR 389-ds-devel-1.4.0.3-4.7 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information postgresql10-10.14-8.19 is installed OR postgresql10-contrib-10.14-8.19 is installed OR postgresql10-devel-10.14-8.19 is installed OR postgresql10-docs-10.14-8.19 is installed OR postgresql10-plperl-10.14-8.19 is installed OR postgresql10-plpython-10.14-8.19 is installed OR postgresql10-pltcl-10.14-8.19 is installed OR postgresql10-server-10.14-8.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libsoup-2_4-1-2.44.2-1 is installed OR libsoup-2_4-1-32bit-2.44.2-1 is installed OR libsoup-lang-2.44.2-1 is installed OR typelib-1_0-Soup-2_4-2.44.2-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_48-default-2-2 is installed OR kgraft-patch-3_12_74-60_64_48-xen-2-2 is installed OR kgraft-patch-SLE12-SP1_Update_17-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libpango-1_0-0-1.40.1-9 is installed OR libpango-1_0-0-32bit-1.40.1-9 is installed OR typelib-1_0-Pango-1_0-1.40.1-9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information ImageMagick-6.8.8.1-71.108 is installed OR ImageMagick-config-6-SUSE-6.8.8.1-71.108 is installed OR ImageMagick-config-6-upstream-6.8.8.1-71.108 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.108 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.108 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libdcerpc-binding0-4.4.2-38.20 is installed OR libdcerpc-binding0-32bit-4.4.2-38.20 is installed OR libdcerpc0-4.4.2-38.20 is installed OR libdcerpc0-32bit-4.4.2-38.20 is installed OR libndr-krb5pac0-4.4.2-38.20 is installed OR libndr-krb5pac0-32bit-4.4.2-38.20 is installed OR libndr-nbt0-4.4.2-38.20 is installed OR libndr-nbt0-32bit-4.4.2-38.20 is installed OR libndr-standard0-4.4.2-38.20 is installed OR libndr-standard0-32bit-4.4.2-38.20 is installed OR libndr0-4.4.2-38.20 is installed OR libndr0-32bit-4.4.2-38.20 is installed OR libnetapi0-4.4.2-38.20 is installed OR libnetapi0-32bit-4.4.2-38.20 is installed OR libsamba-credentials0-4.4.2-38.20 is installed OR libsamba-credentials0-32bit-4.4.2-38.20 is installed OR libsamba-errors0-4.4.2-38.20 is installed OR libsamba-errors0-32bit-4.4.2-38.20 is installed OR libsamba-hostconfig0-4.4.2-38.20 is installed OR libsamba-hostconfig0-32bit-4.4.2-38.20 is installed OR libsamba-passdb0-4.4.2-38.20 is installed OR libsamba-passdb0-32bit-4.4.2-38.20 is installed OR libsamba-util0-4.4.2-38.20 is installed OR libsamba-util0-32bit-4.4.2-38.20 is installed OR libsamdb0-4.4.2-38.20 is installed OR libsamdb0-32bit-4.4.2-38.20 is installed OR libsmbclient0-4.4.2-38.20 is installed OR libsmbclient0-32bit-4.4.2-38.20 is installed OR libsmbconf0-4.4.2-38.20 is installed OR libsmbconf0-32bit-4.4.2-38.20 is installed OR libsmbldap0-4.4.2-38.20 is installed OR libsmbldap0-32bit-4.4.2-38.20 is installed OR libtevent-util0-4.4.2-38.20 is installed OR libtevent-util0-32bit-4.4.2-38.20 is installed OR libwbclient0-4.4.2-38.20 is installed OR libwbclient0-32bit-4.4.2-38.20 is installed OR samba-4.4.2-38.20 is installed OR samba-client-4.4.2-38.20 is installed OR samba-client-32bit-4.4.2-38.20 is installed OR samba-doc-4.4.2-38.20 is installed OR samba-libs-4.4.2-38.20 is installed OR samba-libs-32bit-4.4.2-38.20 is installed OR samba-winbind-4.4.2-38.20 is installed OR samba-winbind-32bit-4.4.2-38.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_103-92_56-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_17-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libssh2-1-1.4.3-20.14 is installed OR libssh2-1-32bit-1.4.3-20.14 is installed OR libssh2_org-1.4.3-20.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libsolv-0.6.36-2.27.19 is installed OR libsolv-tools-0.6.36-2.27.19 is installed OR libzypp-16.20.2-27.60 is installed OR perl-solv-0.6.36-2.27.19 is installed OR python-solv-0.6.36-2.27.19 is installed OR zypper-1.13.54-18.40 is installed OR zypper-log-1.13.54-18.40 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libjpeg-turbo-1.5.3-31.14 is installed OR libjpeg62-62.2.0-31.14 is installed OR libjpeg62-32bit-62.2.0-31.14 is installed OR libjpeg62-turbo-1.5.3-31.14 is installed OR libjpeg8-8.1.2-31.14 is installed OR libjpeg8-32bit-8.1.2-31.14 is installed OR libturbojpeg0-8.1.2-31.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information bluez-5.13-5.4 is installed OR libbluetooth3-5.13-5.4 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information java-1_8_0-openjdk-1.8.0.252-3.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.252-3.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.252-3.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.252-3.35 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.28 is installed OR kernel-default-extra-4.12.14-25.28 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.10 is installed OR kernel-default-extra-4.12.14-197.10 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND couchdb-1.6.1-2 is installed Definition Synopsis SUSE OpenStack Cloud 6-LTSS is installed AND Package Information containerd-1.2.6-16.23 is installed OR docker-19.03.1_ce-98.46 is installed OR docker-libnetwork-0.7.0.1+gitr2800_fc5a7d91d54c-25 is installed OR docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.29 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2800_fc5a7d91d54c-25 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information ghostscript-9.25-23.13 is installed OR ghostscript-x11-9.25-23.13 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-68.3.0-109.98 is installed OR MozillaFirefox-translations-common-68.3.0-109.98 is installed
BACK