Oval Definition:	oval:org.opensuse.security:def:51032
Revision Date: 2020-12-01 Version: 1 Title: Security update for containerd, docker, docker-runc, go, go1.11, go1.12, golang-github-docker-libnetwork (Important) Description: This update for containerd, docker, docker-runc, go, go1.11, go1.12, golang-github-docker-libnetwork fixes the following issues: Security issues fixed: - CVE-2019-5736: containerd: Fixing container breakout vulnerability (bsc#1121967). - CVE-2019-6486: go security release, fixing crypto/elliptic CPU DoS vulnerability affecting P-521 and P-384 (bsc#1123013). - CVE-2018-16873: go secuirty release, fixing cmd/go remote command execution (bsc#1118897). - CVE-2018-16874: go security release, fixing cmd/go directory traversal (bsc#1118898). - CVE-2018-16875: go security release, fixing crypto/x509 CPU denial of service (bsc#1118899). Other changes and bug fixes: - Update to containerd v1.2.5, which is required for v18.09.5-ce (bsc#1128376, bsc#1134068). - Update to runc 2b18fe1d885e, which is required for Docker v18.09.5-ce (bsc#1128376, bsc#1134068). - Update to Docker 18.09.5-ce see upstream changelog in the packaged (bsc#1128376, bsc#1134068). - docker-test: Improvements to test packaging (bsc#1128746). - Move daemon.json file to /etc/docker directory (bsc#1114832). - Revert golang(API) removal since it turns out this breaks >= requires in certain cases (bsc#1114209). - Fix go build failures (bsc#1121397). Family: unix Class: patch Status: Reference(s): 1084300 1087066 1090023 1090024 1090025 1090026 1090027 1090028 1090029 1090030 1090032 1090033 1092115 1111647 1114209 1114832 1118897 1118898 1118899 1119454 1121397 1121967 1123013 1128376 1128746 1134068 1144348 1144352 1144903 1149742 1150114 1153108 1153158 1153161 1154091 1158809 1163102 1163103 1163104 1169679 1169748 1171441 1171443 1171444 1171445 1171446 1171447 1171474 1173247 1173605 1173674 1173786 1174200 1175476 1175686 1177351 1177352 CVE-2018-12086 CVE-2018-16873 CVE-2018-16874 CVE-2018-16875 CVE-2018-18227 CVE-2018-2790 CVE-2018-2794 CVE-2018-2795 CVE-2018-2796 CVE-2018-2797 CVE-2018-2798 CVE-2018-2799 CVE-2018-2800 CVE-2018-2814 CVE-2018-2815 CVE-2018-7738 CVE-2018-9154 CVE-2019-10220 CVE-2019-14491 CVE-2019-14492 CVE-2019-14562 CVE-2019-1551 CVE-2019-15604 CVE-2019-15605 CVE-2019-15606 CVE-2019-15939 CVE-2019-16167 CVE-2019-17133 CVE-2019-5736 CVE-2019-6486 CVE-2020-11017 CVE-2020-11018 CVE-2020-11019 CVE-2020-11038 CVE-2020-11039 CVE-2020-11040 CVE-2020-11041 CVE-2020-11043 CVE-2020-11085 CVE-2020-11086 CVE-2020-11087 CVE-2020-11088 CVE-2020-11089 CVE-2020-11095 CVE-2020-11096 CVE-2020-11097 CVE-2020-11098 CVE-2020-11099 CVE-2020-11521 CVE-2020-11522 CVE-2020-11523 CVE-2020-11524 CVE-2020-11525 CVE-2020-11526 CVE-2020-13396 CVE-2020-13397 CVE-2020-13398 CVE-2020-15503 CVE-2020-15663 CVE-2020-15664 CVE-2020-15669 CVE-2020-4030 CVE-2020-4031 CVE-2020-4032 CVE-2020-4033 CVE-2020-7069 CVE-2020-7069 CVE-2020-7070 CVE-2020-7070 SUSE-SU-2018:1938-2 SUSE-SU-2018:2066-1 SUSE-SU-2018:3282-1 SUSE-SU-2019:1234-1 SUSE-SU-2019:2749-1 SUSE-SU-2020:0064-1 SUSE-SU-2020:0454-1 SUSE-SU-2020:1420-2 SUSE-SU-2020:2029-1 SUSE-SU-2020:2068-1 SUSE-SU-2020:2552-1 SUSE-SU-2020:2941-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Containers 15 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information icu-4.0-7.26 is installed OR libicu-4.0-7.26 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND vorbis-tools-1.1.1-174 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libraptor2-0-2.0.10-3 is installed OR raptor-2.0.10-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information emacs-24.3-14 is installed OR emacs-info-24.3-14 is installed OR emacs-x11-24.3-14 is installed OR etags-24.3-14 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND bogofilter-1.2.4-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND busybox-1.21.1-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND ft2demos-2.6.3-7.15 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND jasper-2.0.14-3.11 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 15 is installed AND Package Information containerd-1.2.5-5.13 is installed OR docker-18.09.6_ce-6.17 is installed OR docker-bash-completion-18.09.6_ce-6.17 is installed OR docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed OR docker-runc-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information wireshark-2.4.10-3.12 is installed OR wireshark-devel-2.4.10-3.12 is installed OR wireshark-ui-qt-2.4.10-3.12 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-3.3 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-3.3 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-3.3 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information libopenssl-1_0_0-devel-1.0.2p-3.25 is installed OR libopenssl1_0_0-1.0.2p-3.25 is installed OR openssl-1_0_0-1.0.2p-3.25 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_32-default-3-2 is installed OR kernel-livepatch-SLE15_Update_13-3-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information opencv-3.3.1-6.6 is installed OR opencv-doc-3.3.1-6.6 is installed OR python2-opencv-3.3.1-6.6 is installed OR python3-opencv-3.3.1-6.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information util-linux-systemd-2.31.1-9.3 is installed OR uuidd-2.31.1-9.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information sysstat-12.0.2-3.15 is installed OR sysstat-isag-12.0.2-3.15 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP2 is installed AND Package Information apache2-mod_php7-7.4.6-3.11 is installed OR php7-7.4.6-3.11 is installed OR php7-bcmath-7.4.6-3.11 is installed OR php7-bz2-7.4.6-3.11 is installed OR php7-calendar-7.4.6-3.11 is installed OR php7-ctype-7.4.6-3.11 is installed OR php7-curl-7.4.6-3.11 is installed OR php7-dba-7.4.6-3.11 is installed OR php7-devel-7.4.6-3.11 is installed OR php7-dom-7.4.6-3.11 is installed OR php7-enchant-7.4.6-3.11 is installed OR php7-exif-7.4.6-3.11 is installed OR php7-fastcgi-7.4.6-3.11 is installed OR php7-fileinfo-7.4.6-3.11 is installed OR php7-fpm-7.4.6-3.11 is installed OR php7-ftp-7.4.6-3.11 is installed OR php7-gd-7.4.6-3.11 is installed OR php7-gettext-7.4.6-3.11 is installed OR php7-gmp-7.4.6-3.11 is installed OR php7-iconv-7.4.6-3.11 is installed OR php7-intl-7.4.6-3.11 is installed OR php7-json-7.4.6-3.11 is installed OR php7-ldap-7.4.6-3.11 is installed OR php7-mbstring-7.4.6-3.11 is installed OR php7-mysql-7.4.6-3.11 is installed OR php7-odbc-7.4.6-3.11 is installed OR php7-opcache-7.4.6-3.11 is installed OR php7-openssl-7.4.6-3.11 is installed OR php7-pcntl-7.4.6-3.11 is installed OR php7-pdo-7.4.6-3.11 is installed OR php7-pgsql-7.4.6-3.11 is installed OR php7-phar-7.4.6-3.11 is installed OR php7-posix-7.4.6-3.11 is installed OR php7-readline-7.4.6-3.11 is installed OR php7-shmop-7.4.6-3.11 is installed OR php7-snmp-7.4.6-3.11 is installed OR php7-soap-7.4.6-3.11 is installed OR php7-sockets-7.4.6-3.11 is installed OR php7-sodium-7.4.6-3.11 is installed OR php7-sqlite-7.4.6-3.11 is installed OR php7-sysvmsg-7.4.6-3.11 is installed OR php7-sysvsem-7.4.6-3.11 is installed OR php7-sysvshm-7.4.6-3.11 is installed OR php7-tidy-7.4.6-3.11 is installed OR php7-tokenizer-7.4.6-3.11 is installed OR php7-xmlreader-7.4.6-3.11 is installed OR php7-xmlrpc-7.4.6-3.11 is installed OR php7-xmlwriter-7.4.6-3.11 is installed OR php7-xsl-7.4.6-3.11 is installed OR php7-zip-7.4.6-3.11 is installed OR php7-zlib-7.4.6-3.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information sysvinit-tools-2.88+-94 is installed OR whois-5.1.1-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_57-default-5-2 is installed OR kgraft-patch-3_12_74-60_64_57-xen-5-2 is installed OR kgraft-patch-SLE12-SP1_Update_20-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND cifs-utils-6.5-8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information nfs-client-1.3.0-34.22 is installed OR nfs-doc-1.3.0-34.22 is installed OR nfs-kernel-server-1.3.0-34.22 is installed OR nfs-utils-1.3.0-34.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information gpg2-2.0.24-9.3 is installed OR gpg2-lang-2.0.24-9.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_73-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_21-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information freeradius-server-3.0.14-1 is installed OR freeradius-server-doc-3.0.14-1 is installed OR freeradius-server-krb5-3.0.14-1 is installed OR freeradius-server-ldap-3.0.14-1 is installed OR freeradius-server-libs-3.0.14-1 is installed OR freeradius-server-mysql-3.0.14-1 is installed OR freeradius-server-perl-3.0.14-1 is installed OR freeradius-server-postgresql-3.0.14-1 is installed OR freeradius-server-python-3.0.14-1 is installed OR freeradius-server-sqlite-3.0.14-1 is installed OR freeradius-server-utils-3.0.14-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information nfs-client-1.3.0-34.22 is installed OR nfs-doc-1.3.0-34.22 is installed OR nfs-kernel-server-1.3.0-34.22 is installed OR nfs-utils-1.3.0-34.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information MozillaFirefox-68.2.0-109.95 is installed OR MozillaFirefox-translations-common-68.2.0-109.95 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information MozillaFirefox-60.9.0-109.86 is installed OR MozillaFirefox-translations-common-60.9.0-109.86 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information dpdk-16.11.9-11.3 is installed OR dpdk-kmp-default-16.11.9_k4.4.140_96.45.TDC-11.3 is installed OR dpdk-tools-16.11.9-11.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information nodejs8-8.17.0-3.28 is installed OR nodejs8-devel-8.17.0-3.28 is installed OR nodejs8-docs-8.17.0-3.28 is installed OR npm8-8.17.0-3.28 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-68.12.0-3.94 is installed OR MozillaThunderbird-translations-common-68.12.0-3.94 is installed OR MozillaThunderbird-translations-other-68.12.0-3.94 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information libraw-0.18.9-3.11 is installed OR libraw-devel-0.18.9-3.11 is installed OR libraw16-0.18.9-3.11 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND dnsmasq-utils-2.71-8 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information ansible-2.2.3.0-5 is installed OR monasca-installer-20170912_10.45-5 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information glib2-2.48.2-12.15 is installed OR glib2-lang-2.48.2-12.15 is installed OR glib2-tools-2.48.2-12.15 is installed OR libgio-2_0-0-2.48.2-12.15 is installed OR libgio-2_0-0-32bit-2.48.2-12.15 is installed OR libglib-2_0-0-2.48.2-12.15 is installed OR libglib-2_0-0-32bit-2.48.2-12.15 is installed OR libgmodule-2_0-0-2.48.2-12.15 is installed OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed OR libgobject-2_0-0-2.48.2-12.15 is installed OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed OR libgthread-2_0-0-2.48.2-12.15 is installed OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND python-Twisted-15.2.1-9.8 is installed
BACK