Oval Definition:	oval:org.opensuse.security:def:51043
Revision Date: 2020-12-01 Version: 1 Title: Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork (Important) Description: This update for containerd, docker, docker-runc, golang-github-docker-libnetwork fixes the following issues: Docker: - CVE-2019-14271: Fixed a code injection if the nsswitch facility dynamically loaded a library inside a chroot (bsc#1143409). - CVE-2019-13509: Fixed an information leak in the debug log (bsc#1142160). - Update to version 19.03.1-ce, see changelog at /usr/share/doc/packages/docker/CHANGELOG.md (bsc#1142413, bsc#1139649). runc: - Use %config(noreplace) for /etc/docker/daemon.json (bsc#1138920). - Update to runc 425e105d5a03, which is required by Docker (bsc#1139649). containerd: - CVE-2019-5736: Fixed a container breakout vulnerability (bsc#1121967). - Update to containerd v1.2.6, which is required by docker (bsc#1139649). golang-github-docker-libnetwork: - Update to version git.fc5a7d91d54cc98f64fc28f9e288b46a0bee756c, which is required by docker (bsc#1142413, bsc#1139649). Family: unix Class: patch Status: Reference(s): 1012382 1017693 1031392 1051510 1054594 1055120 1055186 1058115 1061210 1061840 1065600 1065729 1082318 1082519 1085030 1090078 1094244 1098782 1100331 1101669 1102495 1103269 1103405 1103587 1103636 1104888 1105173 1105190 1105795 1106105 1106240 1106948 1107783 1107829 1107928 1107947 1108096 1108170 1108281 1108323 1108399 1108823 1109244 1109333 1109336 1109337 1109603 1109806 1109859 1109979 1109992 1110006 1110301 1110363 1110639 1110642 1110643 1110644 1110645 1110646 1110647 1110649 1110650 1112066 1112695 1113668 1113669 1115717 1121967 1129452 1136666 1138920 1139649 1142160 1142413 1143409 1144348 1144352 1144522 1144524 1146848 1149742 1152148 1152472 1152489 1152684 1153108 1153274 1154091 1154353 1155518 1155798 1156317 1156321 1156395 1157770 1164903 1166844 1166847 1167527 1169365 1170232 1170774 1171000 1171068 1171073 1171558 1171688 1171696 1171742 1172419 1172757 1172873 1173017 1173060 1173115 1173267 1173746 1173902 1173994 1174029 1174110 1174111 1174358 1174484 1174486 1174899 1175263 1175568 1175667 1175718 1175749 1175787 1175882 1175952 1175996 1175997 1175998 1175999 1176000 1176001 1176019 1176022 1176031 1176038 1176063 1176137 1176235 1176236 1176237 1176242 1176278 1176357 1176358 1176359 1176360 1176361 1176362 1176363 1176364 1176365 1176366 1176367 1176381 1176410 1176423 1176449 1176482 1176486 1176507 1176536 1176537 1176538 1176539 1176540 1176541 1176542 1176544 1176545 1176546 1176548 1176558 1176559 1176587 1176588 1176659 1176698 1176699 1176700 1176721 1176722 1176725 1176732 1176763 1176775 1176788 1176789 1176833 1176869 1176877 1176925 1176962 1176980 1176990 1177021 1177030 1177143 1177613 990460 CVE-2016-10092 CVE-2016-10093 CVE-2016-10094 CVE-2016-6223 CVE-2017-12944 CVE-2018-10892 CVE-2018-14633 CVE-2018-17182 CVE-2018-19131 CVE-2018-19132 CVE-2018-19210 CVE-2019-10220 CVE-2019-13272 CVE-2019-13456 CVE-2019-13509 CVE-2019-14271 CVE-2019-14491 CVE-2019-14492 CVE-2019-15239 CVE-2019-15939 CVE-2019-17185 CVE-2019-5736 CVE-2019-9853 CVE-2020-0404 CVE-2020-0427 CVE-2020-0431 CVE-2020-0432 CVE-2020-10531 CVE-2020-14318 CVE-2020-14323 CVE-2020-14383 CVE-2020-14385 CVE-2020-14390 CVE-2020-1945 CVE-2020-24553 CVE-2020-25212 CVE-2020-25219 CVE-2020-25284 CVE-2020-26088 CVE-2020-26154 CVE-2020-8027 SUSE-SU-2018:3159-1 SUSE-SU-2018:3786-1 SUSE-SU-2018:4008-1 SUSE-SU-2019:2117-1 SUSE-SU-2019:3192-2 SUSE-SU-2019:3249-1 SUSE-SU-2020:0819-1 SUSE-SU-2020:1023-1 SUSE-SU-2020:1177-1 SUSE-SU-2020:2712-1 SUSE-SU-2020:2879-1 SUSE-SU-2020:2901-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Containers 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libgcrypt11-1.5.0-0.15 is installed OR libgcrypt11-32bit-1.5.0-0.15 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information xen-4.2.5_14-18 is installed OR xen-doc-html-4.2.5_14-18 is installed OR xen-doc-pdf-4.2.5_14-18 is installed OR xen-kmp-default-4.2.5_14_3.0.101_0.47.67-18 is installed OR xen-kmp-pae-4.2.5_14_3.0.101_0.47.67-18 is installed OR xen-libs-4.2.5_14-18 is installed OR xen-libs-32bit-4.2.5_14-18 is installed OR xen-tools-4.2.5_14-18 is installed OR xen-tools-domU-4.2.5_14-18 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information bzip2-1.0.6-27 is installed OR libbz2-1-1.0.6-27 is installed OR libbz2-1-32bit-1.0.6-27 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information fuse-2.9.3-5 is installed OR libfuse2-2.9.3-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND ctags-5.8-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information glibc-2.22-15 is installed OR glibc-32bit-2.22-15 is installed OR glibc-devel-2.22-15 is installed OR glibc-devel-32bit-2.22-15 is installed OR glibc-i18ndata-2.22-15 is installed OR glibc-locale-2.22-15 is installed OR glibc-locale-32bit-2.22-15 is installed OR nscd-2.22-15 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information opencv-3.3.1-6.6 is installed OR python2-opencv-3.3.1-6.6 is installed OR python3-opencv-3.3.1-6.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 15 SP1 is installed AND Package Information containerd-1.2.6-5.16 is installed OR docker-19.03.1_ce-6.26 is installed OR docker-bash-completion-19.03.1_ce-6.26 is installed OR docker-libnetwork-0.7.0.1+gitr2800_fc5a7d91d54c-4.15 is installed OR docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.21 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2800_fc5a7d91d54c-4.15 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information libtiff5-32bit-4.0.9-5.20 is installed OR tiff-4.0.9-5.20 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information kernel-default-4.12.14-25.22 is installed OR reiserfs-kmp-default-4.12.14-25.22 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP2 is installed AND Package Information openldap2-2.4.46-9.37 is installed OR openldap2-back-meta-2.4.46-9.37 is installed OR openldap2-back-perl-2.4.46-9.37 is installed OR openldap2-ppolicy-check-password-1.2-9.37 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_22-default-5-2 is installed OR kernel-livepatch-SLE15_Update_11-5-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information ant-antlr-1.10.7-4.3 is installed OR ant-apache-xalan2-1.10.7-4.3 is installed OR ant-commons-net-1.10.7-4.3 is installed OR ant-imageio-1.10.7-4.3 is installed OR ant-jsch-1.10.7-4.3 is installed OR ant-junit5-1.10.7-4.3 is installed OR ant-testutil-1.10.7-4.3 is installed OR ant-xz-1.10.7-4.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND squid-4.4-5.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information freeradius-server-3.0.16-3.6 is installed OR freeradius-server-devel-3.0.16-3.6 is installed OR freeradius-server-krb5-3.0.16-3.6 is installed OR freeradius-server-ldap-3.0.16-3.6 is installed OR freeradius-server-libs-3.0.16-3.6 is installed OR freeradius-server-mysql-3.0.16-3.6 is installed OR freeradius-server-perl-3.0.16-3.6 is installed OR freeradius-server-postgresql-3.0.16-3.6 is installed OR freeradius-server-python-3.0.16-3.6 is installed OR freeradius-server-sqlite-3.0.16-3.6 is installed OR freeradius-server-utils-3.0.16-3.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND w3m-0.5.3-153 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_60-default-4-2 is installed OR kgraft-patch-3_12_74-60_64_60-xen-4-2 is installed OR kgraft-patch-SLE12-SP1_Update_21-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND apache-commons-httpclient-3.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information kernel-default-4.4.121-92.125 is installed OR kernel-default-base-4.4.121-92.125 is installed OR kernel-default-devel-4.4.121-92.125 is installed OR kernel-devel-4.4.121-92.125 is installed OR kernel-macros-4.4.121-92.125 is installed OR kernel-source-4.4.121-92.125 is installed OR kernel-syms-4.4.121-92.125 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND shadow-4.2.1-27.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_73-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_21-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND ucode-intel-20191112a-13.56 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND ucode-intel-20190618-13.47 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information apache-commons-beanutils-1.9.2-3.3 is installed OR apache-commons-beanutils-javadoc-1.9.2-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache-commons-daemon-1.0.15-6 is installed OR apache-commons-daemon-javadoc-1.0.15-6 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information rpmlint-1.10-7.12 is installed OR rpmlint-mini-1.10-5.12 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information icu-60.2-3.9 is installed OR libicu-devel-60.2-3.9 is installed OR libicu60_2-60.2-3.9 is installed OR libicu60_2-ledata-60.2-3.9 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information cmis-client-0.5.2-3.3 is installed OR libcmis-0_5-5-0.5.2-3.3 is installed OR libcmis-devel-0.5.2-3.3 is installed OR libixion-0.15.0-4.6 is installed OR libixion-0_15-0-0.15.0-4.6 is installed OR libmwaw-0.3.15-4.6 is installed OR libmwaw-0_3-3-0.3.15-4.6 is installed OR liborcus-0.15.3-3.6 is installed OR liborcus-0_15-0-0.15.3-3.6 is installed OR liborcus-devel-0.15.3-3.6 is installed OR myspell-af_ZA-20191016-3.12 is installed OR myspell-ar-20191016-3.12 is installed OR myspell-bg_BG-20191016-3.12 is installed OR myspell-bn_BD-20191016-3.12 is installed OR myspell-br_FR-20191016-3.12 is installed OR myspell-ca-20191016-3.12 is installed OR myspell-cs_CZ-20191016-3.12 is installed OR myspell-da_DK-20191016-3.12 is installed OR myspell-dictionaries-20191016-3.12 is installed OR myspell-el_GR-20191016-3.12 is installed OR myspell-et_EE-20191016-3.12 is installed OR myspell-fr_FR-20191016-3.12 is installed OR myspell-gl-20191016-3.12 is installed OR myspell-gu_IN-20191016-3.12 is installed OR myspell-he_IL-20191016-3.12 is installed OR myspell-hi_IN-20191016-3.12 is installed OR myspell-hr_HR-20191016-3.12 is installed OR myspell-it_IT-20191016-3.12 is installed OR myspell-lt_LT-20191016-3.12 is installed OR myspell-lv_LV-20191016-3.12 is installed OR myspell-nl_NL-20191016-3.12 is installed OR myspell-nn_NO-20191016-3.12 is installed OR myspell-pl_PL-20191016-3.12 is installed OR myspell-pt_PT-20191016-3.12 is installed OR myspell-si_LK-20191016-3.12 is installed OR myspell-sk_SK-20191016-3.12 is installed OR myspell-sl_SI-20191016-3.12 is installed OR myspell-sr-20191016-3.12 is installed OR myspell-sv_SE-20191016-3.12 is installed OR myspell-te_IN-20191016-3.12 is installed OR myspell-th_TH-20191016-3.12 is installed OR myspell-tr_TR-20191016-3.12 is installed OR myspell-uk_UA-20191016-3.12 is installed OR myspell-zu_ZA-20191016-3.12 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information kernel-default-5.3.18-24.24 is installed OR kernel-default-extra-5.3.18-24.24 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information openstack-ironic-4.2.3~a0~dev14-1 is installed OR openstack-ironic-api-4.2.3~a0~dev14-1 is installed OR openstack-ironic-conductor-4.2.3~a0~dev14-1 is installed OR python-ironic-4.2.3~a0~dev14-1 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND ucode-intel-20180425-13.20 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libmysqlclient18-10.0.38-29.27 is installed OR mariadb-10.0.38-29.27 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information crowbar-core-5.0+git.1569597589.1f025c557-3.32 is installed OR crowbar-core-branding-upstream-5.0+git.1569597589.1f025c557-3.32 is installed OR crowbar-ha-5.0+git.1567673535.607aada-3.26 is installed OR crowbar-openstack-5.0+git.1570141351.058c8bd44-4.31 is installed OR crowbar-ui-1.2.0+git.1568396400.0344a727-3.12 is installed OR galera-3-25.3.25-4.6 is installed OR galera-3-wsrep-provider-25.3.25-4.6 is installed OR grafana-4.6.5-4.6 is installed OR libmariadb3-3.1.2-3.12 is installed OR mariadb-10.2.25-4.14 is installed OR mariadb-client-10.2.25-4.14 is installed OR mariadb-connector-c-3.1.2-3.12 is installed OR mariadb-errormessages-10.2.25-4.14 is installed OR mariadb-galera-10.2.25-4.14 is installed OR mariadb-tools-10.2.25-4.14 is installed OR novnc-1.0.0-3.6 is installed OR openstack-cinder-11.2.3~dev16-3.21 is installed OR openstack-cinder-api-11.2.3~dev16-3.21 is installed OR openstack-cinder-backup-11.2.3~dev16-3.21 is installed OR openstack-cinder-doc-11.2.3~dev16-3.21 is installed OR openstack-cinder-scheduler-11.2.3~dev16-3.21 is installed OR openstack-cinder-volume-11.2.3~dev16-3.21 is installed OR openstack-glance-15.0.3~dev3-3.12 is installed OR openstack-glance-api-15.0.3~dev3-3.12 is installed OR openstack-glance-doc-15.0.3~dev3-3.12 is installed OR openstack-glance-registry-15.0.3~dev3-3.12 is installed OR openstack-heat-9.0.8~dev13-3.24 is installed OR openstack-heat-api-9.0.8~dev13-3.24 is installed OR openstack-heat-api-cfn-9.0.8~dev13-3.24 is installed OR openstack-heat-api-cloudwatch-9.0.8~dev13-3.24 is installed OR openstack-heat-doc-9.0.8~dev13-3.24 is installed OR openstack-heat-engine-9.0.8~dev13-3.24 is installed OR openstack-heat-plugin-heat_docker-9.0.8~dev13-3.24 is installed OR openstack-heat-test-9.0.8~dev13-3.24 is installed OR openstack-horizon-plugin-neutron-vpnaas-ui-1.0.1~dev3-3.6 is installed OR openstack-keystone-12.0.4~dev4-5.27 is installed OR openstack-keystone-doc-12.0.4~dev4-5.27 is installed OR openstack-monasca-installer-20190923_16.32-3.9 is installed OR openstack-neutron-11.0.9~dev51-3.24 is installed OR openstack-neutron-dhcp-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-doc-11.0.9~dev51-3.24 is installed OR openstack-neutron-gbp-7.3.1~dev56-3.9 is installed OR openstack-neutron-ha-tool-11.0.9~dev51-3.24 is installed OR openstack-neutron-l3-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-lbaas-11.0.4~dev6-3.15 is installed OR openstack-neutron-lbaas-agent-11.0.4~dev6-3.15 is installed OR openstack-neutron-lbaas-doc-11.0.4~dev6-3.15 is installed OR openstack-neutron-linuxbridge-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-macvtap-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-metadata-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-metering-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-openvswitch-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-server-11.0.9~dev51-3.24 is installed OR openstack-nova-16.1.9~dev7-3.29 is installed OR openstack-nova-api-16.1.9~dev7-3.29 is installed OR openstack-nova-cells-16.1.9~dev7-3.29 is installed OR openstack-nova-compute-16.1.9~dev7-3.29 is installed OR openstack-nova-conductor-16.1.9~dev7-3.29 is installed OR openstack-nova-console-16.1.9~dev7-3.29 is installed OR openstack-nova-consoleauth-16.1.9~dev7-3.29 is installed OR openstack-nova-doc-16.1.9~dev7-3.29 is installed OR openstack-nova-novncproxy-16.1.9~dev7-3.29 is installed OR openstack-nova-placement-api-16.1.9~dev7-3.29 is installed OR openstack-nova-scheduler-16.1.9~dev7-3.29 is installed OR openstack-nova-serialproxy-16.1.9~dev7-3.29 is installed OR openstack-nova-vncproxy-16.1.9~dev7-3.29 is installed OR python-amqp-2.2.2-3.6 is installed OR python-cinder-11.2.3~dev16-3.21 is installed OR python-glance-15.0.3~dev3-3.12 is installed OR python-heat-9.0.8~dev13-3.24 is installed OR python-horizon-plugin-neutron-vpnaas-ui-1.0.1~dev3-3.6 is installed OR python-keystone-12.0.4~dev4-5.27 is installed OR python-neutron-11.0.9~dev51-3.24 is installed OR python-neutron-gbp-7.3.1~dev56-3.9 is installed OR python-neutron-lbaas-11.0.4~dev6-3.15 is installed OR python-nova-16.1.9~dev7-3.29 is installed OR python-ovs-2.7.2-3.6 is installed OR python-pysaml2-4.0.2-5.3 is installed OR python-urllib3-1.22-5.9 is installed OR release-notes-suse-openstack-cloud-8.20190911-3.20 is installed OR ruby2.1-rubygem-easy_diff-1.0.0-3.4 is installed OR rubygem-easy_diff-1.0.0-3.4 is installed
BACK