Oval Definition:	oval:org.opensuse.security:def:51040
Revision Date: 2020-12-01 Version: 1 Title: Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork (Moderate) Description: This update for containerd, docker, docker-runc, golang-github-docker-libnetwork fixes the following issues: Security issue fixed: - CVE-2019-16884: Fixed incomplete patch for LSM bypass via malicious Docker image that mount over a /proc directory (bsc#1152308). Bug fixes: - Update to Docker 19.03.5-ce (bsc#1158590). - Update to Docker 19.03.3-ce (bsc#1153367). - Update to Docker 19.03.2-ce (bsc#1150397). - Fixed default installation such that --userns-remap=default works properly (bsc#1143349). - Fixed nginx blocked by apparmor (bsc#1122469). Family: unix Class: patch Status: Reference(s): 1012382 1027519 1043912 1044189 1046302 1046306 1046307 1046543 1050244 1051510 1054914 1055014 1055117 1058659 1060463 1064232 1065600 1065729 1068032 1069138 1071995 1077761 1077989 1078720 1080157 1081947 1082555 1083647 1083663 1084332 1085030 1085042 1085262 1086282 1089663 1090528 1091396 1092903 1093389 1093733 1094244 1094301 1095344 1096748 1097105 1098459 1098822 1099922 1099999 1100000 1100001 1100132 1100352 1101295 1101420 1101557 1101669 1101776 1101777 1101786 1101788 1101791 1101794 1101800 1101802 1101804 1101810 1102346 1102870 1102875 1102877 1102879 1102882 1102896 1103363 1103387 1103421 1103948 1103949 1103961 1104172 1104353 1104448 1104824 1105010 1105247 1105524 1105536 1105597 1105603 1105672 1105907 1106007 1106016 1106105 1106121 1106163 1106170 1106178 1106191 1106229 1106230 1106231 1106233 1106235 1106236 1106237 1106238 1106240 1106291 1106297 1106333 1106369 1106426 1106427 1106464 1106509 1106511 1106514 1106594 1106636 1106688 1106697 1106743 1106779 1106800 1106890 1106891 1106892 1106893 1106894 1106896 1106897 1106898 1106899 1106900 1106901 1106902 1106903 1106905 1106906 1106948 1106995 1107008 1107060 1107061 1107065 1107073 1107074 1107078 1107265 1107319 1107320 1107522 1107535 1107689 1107735 1107756 1107870 1107924 1107945 1107966 1108010 1108093 1108243 1108520 1108870 1109269 1109511 1111647 1117740 1120163 1121231 1121232 1121233 1121234 1121235 1122469 1127367 1127369 1127370 1129715 1131941 1131945 1133021 1136021 1137526 1141980 1143349 1149032 1150397 1150690 1152308 1152472 1152489 1152497 1153108 1153274 1153367 1154064 1154353 1154488 1154492 1155518 1156288 1156320 1156321 1156334 1156395 1157047 1157888 1158003 1158004 1158005 1158006 1158007 1158505 1158590 1159058 1160634 1161052 1162689 1162691 1162777 1163368 1165241 1165710 1167373 1167773 1169659 1169790 1170313 1171634 1171688 1171862 1172108 1172197 1172247 1172418 1172515 1172871 1172963 1173468 1173485 1173798 1173813 1173954 1174002 1174003 1174026 1174205 1174247 1174362 1174387 1174484 1174625 1174645 1174689 1174699 1174737 1174757 1174762 1174770 1174771 1174777 1174805 1174824 1174825 1174852 1174865 1174880 1174897 1174906 1174969 1175009 1175010 1175011 1175012 1175013 1175014 1175015 1175016 1175017 1175018 1175019 1175020 1175021 1175052 1175112 1175116 1175128 1175149 1175175 1175176 1175180 1175181 1175182 1175183 1175184 1175185 1175186 1175187 1175188 1175189 1175190 1175191 1175192 1175195 1175199 1175213 1175232 1175263 1175284 1175296 1175344 1175345 1175346 1175347 1175367 1175377 1175440 1175493 1175546 1175550 1175654 1175686 1175691 1175768 1175769 1175770 1175771 1175772 1175774 1175775 1175834 1175873 1176315 1177158 920344 957624 964336 CVE-2018-10873 CVE-2018-10893 CVE-2018-10938 CVE-2018-10940 CVE-2018-1128 CVE-2018-1129 CVE-2018-11354 CVE-2018-11355 CVE-2018-11356 CVE-2018-11357 CVE-2018-11358 CVE-2018-11359 CVE-2018-11360 CVE-2018-11361 CVE-2018-11362 CVE-2018-12086 CVE-2018-12896 CVE-2018-13093 CVE-2018-13094 CVE-2018-13095 CVE-2018-13301 CVE-2018-14339 CVE-2018-14340 CVE-2018-14341 CVE-2018-14342 CVE-2018-14343 CVE-2018-14344 CVE-2018-14367 CVE-2018-14368 CVE-2018-14369 CVE-2018-14370 CVE-2018-14613 CVE-2018-14617 CVE-2018-15473 CVE-2018-15919 CVE-2018-16056 CVE-2018-16057 CVE-2018-16058 CVE-2018-16658 CVE-2018-16871 CVE-2018-18225 CVE-2018-18226 CVE-2018-18227 CVE-2018-19622 CVE-2018-19623 CVE-2018-19624 CVE-2018-19625 CVE-2018-19626 CVE-2018-19627 CVE-2018-19628 CVE-2018-6554 CVE-2018-6555 CVE-2019-10220 CVE-2019-10894 CVE-2019-10895 CVE-2019-10896 CVE-2019-10897 CVE-2019-10898 CVE-2019-10899 CVE-2019-10900 CVE-2019-10901 CVE-2019-10902 CVE-2019-10903 CVE-2019-12519 CVE-2019-12521 CVE-2019-12528 CVE-2019-12730 CVE-2019-13272 CVE-2019-13619 CVE-2019-15917 CVE-2019-16319 CVE-2019-16884 CVE-2019-17542 CVE-2019-18860 CVE-2019-19553 CVE-2019-19577 CVE-2019-19578 CVE-2019-19579 CVE-2019-19580 CVE-2019-19581 CVE-2019-19582 CVE-2019-19583 CVE-2019-5716 CVE-2019-5717 CVE-2019-5718 CVE-2019-5719 CVE-2019-5721 CVE-2019-9208 CVE-2019-9209 CVE-2019-9214 CVE-2019-9718 CVE-2020-11945 CVE-2020-12823 CVE-2020-14314 CVE-2020-14314 CVE-2020-14331 CVE-2020-14331 CVE-2020-14355 CVE-2020-14356 CVE-2020-14356 CVE-2020-15663 CVE-2020-15664 CVE-2020-15669 CVE-2020-16166 CVE-2020-16166 CVE-2020-17507 CVE-2020-6792 CVE-2020-6793 CVE-2020-6794 CVE-2020-6795 CVE-2020-6797 CVE-2020-6798 CVE-2020-6800 CVE-2020-7044 CVE-2020-8517 CVE-2020-9428 CVE-2020-9429 CVE-2020-9430 CVE-2020-9431 SUSE-SU-2018:2709-1 SUSE-SU-2018:2980-1 SUSE-SU-2018:3686-1 SUSE-SU-2019:3184-2 SUSE-SU-2019:3246-1 SUSE-SU-2019:3338-1 SUSE-SU-2020:0035-1 SUSE-SU-2020:0385-1 SUSE-SU-2020:0693-1 SUSE-SU-2020:1156-1 SUSE-SU-2020:2486-1 SUSE-SU-2020:2552-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Containers 15 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 6-LTSS SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libldb1-3.6.3-0.24 is installed OR libldb1-32bit-3.6.3-0.24 is installed OR libsmbclient0-3.6.3-0.24 is installed OR libsmbclient0-32bit-3.6.3-0.24 is installed OR libtalloc2-3.6.3-0.24 is installed OR libtalloc2-32bit-3.6.3-0.24 is installed OR libtdb1-3.6.3-0.24 is installed OR libtdb1-32bit-3.6.3-0.24 is installed OR libtevent0-3.6.3-0.24 is installed OR libtevent0-32bit-3.6.3-0.24 is installed OR libwbclient0-3.6.3-0.24 is installed OR libwbclient0-32bit-3.6.3-0.24 is installed OR samba-3.6.3-0.24 is installed OR samba-32bit-3.6.3-0.24 is installed OR samba-client-3.6.3-0.24 is installed OR samba-client-32bit-3.6.3-0.24 is installed OR samba-doc-3.6.3-0.24 is installed OR samba-krb-printing-3.6.3-0.24 is installed OR samba-winbind-3.6.3-0.24 is installed OR samba-winbind-32bit-3.6.3-0.24 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information xen-4.2.5_06-0.7 is installed OR xen-doc-html-4.2.5_06-0.7 is installed OR xen-doc-pdf-4.2.5_06-0.7 is installed OR xen-kmp-default-4.2.5_06_3.0.101_0.47.52-0.7 is installed OR xen-kmp-pae-4.2.5_06_3.0.101_0.47.52-0.7 is installed OR xen-libs-4.2.5_06-0.7 is installed OR xen-libs-32bit-4.2.5_06-0.7 is installed OR xen-tools-4.2.5_06-0.7 is installed OR xen-tools-domU-4.2.5_06-0.7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information bash-4.2-75 is installed OR bash-doc-4.2-75 is installed OR bash-lang-4.2-75 is installed OR libreadline6-6.2-75 is installed OR libreadline6-32bit-6.2-75 is installed OR readline-doc-6.2-75 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information flash-player-11.2.202.548-111 is installed OR flash-player-gnome-11.2.202.548-111 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information cpio-2.11-29 is installed OR cpio-lang-2.11-29 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information cpp48-4.8.5-30 is installed OR gcc48-4.8.5-30 is installed OR gcc48-32bit-4.8.5-30 is installed OR gcc48-c++-4.8.5-30 is installed OR gcc48-gij-4.8.5-30 is installed OR gcc48-gij-32bit-4.8.5-30 is installed OR gcc48-info-4.8.5-30 is installed OR libasan0-4.8.5-30 is installed OR libasan0-32bit-4.8.5-30 is installed OR libgcj48-4.8.5-30 is installed OR libgcj48-32bit-4.8.5-30 is installed OR libgcj48-jar-4.8.5-30 is installed OR libgcj_bc1-4.8.5-30 is installed OR libstdc++48-devel-4.8.5-30 is installed OR libstdc++48-devel-32bit-4.8.5-30 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information ghostscript-9.25-23.13 is installed OR ghostscript-x11-9.25-23.13 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information ffmpeg-3.4.2-4.27 is installed OR libavdevice57-3.4.2-4.27 is installed OR libavfilter6-3.4.2-4.27 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 15 is installed AND Package Information containerd-1.2.10-5.19 is installed OR docker-19.03.5_ce-6.31 is installed OR docker-bash-completion-19.03.5_ce-6.31 is installed OR docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18 is installed OR docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND openssh-askpass-gnome-7.6p1-9.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information kernel-default-4.12.14-25.19 is installed OR reiserfs-kmp-default-4.12.14-25.19 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP2 is installed AND Package Information kernel-default-5.3.18-24.12 is installed OR reiserfs-kmp-default-5.3.18-24.12 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_28-default-7-2 is installed OR kernel-livepatch-SLE15_Update_8-7-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information openconnect-7.08-6.9 is installed OR openconnect-doc-7.08-6.9 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information spice-gtk-0.34-3.3 is installed OR spice-gtk-devel-0.34-3.3 is installed OR typelib-1_0-SpiceClientGlib-2_0-0.34-3.3 is installed OR typelib-1_0-SpiceClientGtk-3_0-0.34-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information xen-4.12.1_06-3.9 is installed OR xen-devel-4.12.1_06-3.9 is installed OR xen-tools-4.12.1_06-3.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information vino-3.10.1-1 is installed OR vino-lang-3.10.1-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_51-default-5-2 is installed OR kgraft-patch-3_12_74-60_64_51-xen-5-2 is installed OR kgraft-patch-SLE12-SP1_Update_18-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND ant-1.9.4-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND ucode-intel-20191112-13.53 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libopenssl-devel-1.0.2j-60.30 is installed OR libopenssl1_0_0-1.0.2j-60.30 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.30 is installed OR openssl-1.0.2j-60.30 is installed OR openssl-doc-1.0.2j-60.30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information xen-4.7.6_04-43.39 is installed OR xen-doc-html-4.7.6_04-43.39 is installed OR xen-libs-4.7.6_04-43.39 is installed OR xen-libs-32bit-4.7.6_04-43.39 is installed OR xen-tools-4.7.6_04-43.39 is installed OR xen-tools-domU-4.7.6_04-43.39 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND ucode-intel-20191112-13.53 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_162-94_69-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_21-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information postgresql96-9.6.15-3.29 is installed OR postgresql96-contrib-9.6.15-3.29 is installed OR postgresql96-docs-9.6.15-3.29 is installed OR postgresql96-libs-9.6.15-3.29 is installed OR postgresql96-plperl-9.6.15-3.29 is installed OR postgresql96-plpython-9.6.15-3.29 is installed OR postgresql96-pltcl-9.6.15-3.29 is installed OR postgresql96-server-9.6.15-3.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information alsa-1.0.27.2-15 is installed OR alsa-docs-1.0.27.2-15 is installed OR libasound2-1.0.27.2-15 is installed OR libasound2-32bit-1.0.27.2-15 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND squid-4.11-5.17 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libmaxminddb-1.4.2-1.3 is installed OR libmaxminddb-devel-1.4.2-1.3 is installed OR libmaxminddb0-1.4.2-1.3 is installed OR libmaxminddb0-32bit-1.4.2-1.3 is installed OR libspandsp2-0.0.6-3.2 is installed OR libwireshark13-3.2.2-3.35 is installed OR libwiretap10-3.2.2-3.35 is installed OR libwsutil11-3.2.2-3.35 is installed OR mmdblookup-1.4.2-1.3 is installed OR spandsp-0.0.6-3.2 is installed OR wireshark-3.2.2-3.35 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-68.5.0-3.71 is installed OR MozillaThunderbird-translations-common-68.5.0-3.71 is installed OR MozillaThunderbird-translations-other-68.5.0-3.71 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information kernel-default-5.3.18-24.12 is installed OR kernel-default-extra-5.3.18-24.12 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information openstack-glance-11.0.2~a0~dev2-1 is installed OR python-glance-11.0.2~a0~dev2-1 is installed Definition Synopsis SUSE OpenStack Cloud 6-LTSS is installed AND python-PyYAML-5.1.2-26.12 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information git-2.12.3-27.14 is installed OR git-core-2.12.3-27.14 is installed OR git-doc-2.12.3-27.14 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information bzip2-1.0.6-30.8 is installed OR bzip2-doc-1.0.6-30.8 is installed OR libbz2-1-1.0.6-30.8 is installed OR libbz2-1-32bit-1.0.6-30.8 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libpcap-1.8.1-10.3 is installed OR libpcap1-1.8.1-10.3 is installed OR tcpdump-4.9.2-14.14 is installed
BACK