OVAL Reference oval:org.opensuse.security:def:51057

Oval Definition:

oval:org.opensuse.security:def:51057

Revision Date:	2020-12-01	Version:	1
Title:	Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork (Moderate)
Description:	This update for containerd, docker, docker-runc, golang-github-docker-libnetwork fixes the following issues: Security issue fixed: - CVE-2019-16884: Fixed incomplete patch for LSM bypass via malicious Docker image that mount over a /proc directory (bsc#1152308). Bug fixes: - Update to Docker 19.03.5-ce (bsc#1158590). - Update to Docker 19.03.3-ce (bsc#1153367). - Update to Docker 19.03.2-ce (bsc#1150397). - Fixed default installation such that --userns-remap=default works properly (bsc#1143349). - Fixed nginx blocked by apparmor (bsc#1122469).
Family:	unix	Class:	patch
Status:		Reference(s):	1012382 1031392 1046305 1046306 1046307 1051510 1055120 1061840 1065600 1065729 1081917 1082519 1083647 1085030 1086288 1086315 1086317 1086327 1086331 1086906 1087092 1090078 1090888 1094244 1097104 1097577 1097583 1097584 1097585 1097586 1097587 1097588 1097808 1098782 1100132 1101480 1101669 1101822 1102495 1102517 1102715 1103269 1103277 1103363 1103405 1103445 1103587 1103636 1103886 1104353 1104365 1104427 1104482 1104494 1104495 1104683 1104708 1104777 1104888 1104890 1104897 1105190 1105292 1105296 1105322 1105355 1105378 1105396 1105467 1105731 1105795 1106105 1106240 1106948 1107783 1107829 1107928 1107947 1108096 1108170 1108281 1108323 1108399 1108823 1109244 1109333 1109336 1109337 1109603 1109806 1109859 1109979 1109992 1110006 1110301 1110363 1110639 1110642 1110643 1110644 1110645 1110646 1110647 1110649 1110650 1121571 1121816 1121818 1121821 1122292 1122299 1122469 1141780 1141782 1141783 1141785 1141787 1141789 1143349 1147021 1150397 1152308 1153367 1158590 1158880 1160790 1161088 1161089 1161670 1163581 1167462 1167816 1169511 1170940 1171252 1171254 1174415 1174538 1176569 1178150 802154 971975 CVE-2009-0696 CVE-2009-4022 CVE-2010-2494 CVE-2010-3613 CVE-2010-3614 CVE-2010-3615 CVE-2011-0414 CVE-2011-1907 CVE-2011-1910 CVE-2011-2464 CVE-2011-4313 CVE-2012-1667 CVE-2012-3817 CVE-2012-3868 CVE-2012-4244 CVE-2012-5166 CVE-2012-5468 CVE-2012-5688 CVE-2012-5689 CVE-2013-2266 CVE-2013-4854 CVE-2014-0591 CVE-2018-10853 CVE-2018-10902 CVE-2018-11212 CVE-2018-14633 CVE-2018-15572 CVE-2018-17182 CVE-2018-20685 CVE-2018-20685 CVE-2018-9363 CVE-2019-11771 CVE-2019-11772 CVE-2019-11775 CVE-2019-16785 CVE-2019-16786 CVE-2019-16789 CVE-2019-16792 CVE-2019-16884 CVE-2019-2449 CVE-2019-2762 CVE-2019-2766 CVE-2019-2769 CVE-2019-2786 CVE-2019-2816 CVE-2019-4473 CVE-2019-6109 CVE-2019-6109 CVE-2019-6110 CVE-2019-6110 CVE-2019-6111 CVE-2019-6111 CVE-2019-7317 CVE-2020-12653 CVE-2020-12654 CVE-2020-15652 CVE-2020-15659 CVE-2020-15900 CVE-2020-16125 CVE-2020-1983 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2767 CVE-2020-2773 CVE-2020-2778 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2816 CVE-2020-2830 CVE-2020-6463 CVE-2020-6514 SUSE-SU-2018:2538-1 SUSE-SU-2018:3159-1 SUSE-SU-2019:0126-1 SUSE-SU-2019:2291-1 SUSE-SU-2020:0035-1 SUSE-SU-2020:1502-1 SUSE-SU-2020:1511-1 SUSE-SU-2020:2179-1 SUSE-SU-2020:3269-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Containers 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libxslt-1.1.24-19.23 is installed OR libxslt-32bit-1.1.24-19.23 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information xorg-x11-libXext-7.4-1.18 is installed OR xorg-x11-libXext-32bit-7.4-1.18 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information bind-libs-9.9.5P1-1 is installed OR bind-libs-32bit-9.9.5P1-1 is installed OR bind-utils-9.9.5P1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information gpgme-1.5.1-1 is installed OR libgpgme11-1.5.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND drm-kmp-default-4.9.33_k4.4.73_5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gstreamer-0_10-plugins-good-0.10.31-16 is installed OR gstreamer-0_10-plugins-good-lang-0.10.31-16 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information python-waitress-1.4.3-3.3 is installed OR python2-waitress-1.4.3-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 15 SP1 is installed AND Package Information containerd-1.2.10-5.19 is installed OR docker-19.03.5_ce-6.31 is installed OR docker-bash-completion-19.03.5_ce-6.31 is installed OR docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18 is installed OR docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND openssh-askpass-gnome-7.6p1-9.13 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-3.24 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-3.24 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.40-3.24 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-3.24 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-25.16 is installed OR kernel-default-livepatch-4.12.14-25.16 is installed OR kernel-livepatch-4_12_14-25_16-default-1-1.3 is installed OR kernel-livepatch-SLE15_Update_4-1-1.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information ghostscript-mini-9.52-3.32 is installed OR ghostscript-mini-devel-9.52-3.32 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information openssh-7.6p1-9.13 is installed OR openssh-fips-7.6p1-9.13 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information qemu-3.1.1.1-9.21 is installed OR qemu-arm-3.1.1.1-9.21 is installed OR qemu-audio-alsa-3.1.1.1-9.21 is installed OR qemu-audio-oss-3.1.1.1-9.21 is installed OR qemu-audio-pa-3.1.1.1-9.21 is installed OR qemu-block-curl-3.1.1.1-9.21 is installed OR qemu-block-iscsi-3.1.1.1-9.21 is installed OR qemu-block-rbd-3.1.1.1-9.21 is installed OR qemu-block-ssh-3.1.1.1-9.21 is installed OR qemu-guest-agent-3.1.1.1-9.21 is installed OR qemu-ipxe-1.0.0+-9.21 is installed OR qemu-kvm-3.1.1.1-9.21 is installed OR qemu-lang-3.1.1.1-9.21 is installed OR qemu-ppc-3.1.1.1-9.21 is installed OR qemu-s390-3.1.1.1-9.21 is installed OR qemu-seabios-1.12.0-9.21 is installed OR qemu-sgabios-8-9.21 is installed OR qemu-ui-curses-3.1.1.1-9.21 is installed OR qemu-ui-gtk-3.1.1.1-9.21 is installed OR qemu-vgabios-1.12.0-9.21 is installed OR qemu-x86-3.1.1.1-9.21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND yast2-core-3.1.18-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information ghostscript-9.25-23.13 is installed OR ghostscript-x11-9.25-23.13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information at-3.1.14-7 is installed OR flex-2.5.37-8 is installed OR flex-32bit-2.5.37-8 is installed OR libQtWebKit4-4.8.6+2.3.3-3 is installed OR libQtWebKit4-32bit-4.8.6+2.3.3-3 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-doc-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed OR libkde4-4.12.0-7 is installed OR libkde4-32bit-4.12.0-7 is installed OR libkdecore4-4.12.0-7 is installed OR libkdecore4-32bit-4.12.0-7 is installed OR libksuseinstall1-4.12.0-7 is installed OR libksuseinstall1-32bit-4.12.0-7 is installed OR libnetpbm11-10.66.3-4 is installed OR libnetpbm11-32bit-10.66.3-4 is installed OR netpbm-10.66.3-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libblkid1-2.28-44.18 is installed OR libblkid1-32bit-2.28-44.18 is installed OR libfdisk1-2.28-44.18 is installed OR libmount1-2.28-44.18 is installed OR libmount1-32bit-2.28-44.18 is installed OR libsmartcols1-2.28-44.18 is installed OR libuuid1-2.28-44.18 is installed OR libuuid1-32bit-2.28-44.18 is installed OR python-libmount-2.28-44.18 is installed OR util-linux-2.28-44.18 is installed OR util-linux-lang-2.28-44.18 is installed OR util-linux-systemd-2.28-44.18 is installed OR uuidd-2.28-44.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information openslp-2.0.0-18.15 is installed OR openslp-32bit-2.0.0-18.15 is installed OR openslp-server-2.0.0-18.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_35-default-10-2 is installed OR kgraft-patch-SLE12-SP2_Update_12-10-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND autofs-5.0.9-27 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libXvnc1-1.6.0-18.28 is installed OR tigervnc-1.6.0-18.28 is installed OR xorg-x11-Xvnc-1.6.0-18.28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information evince-3.20.2-6.27 is installed OR evince-browser-plugin-3.20.2-6.27 is installed OR evince-lang-3.20.2-6.27 is installed OR evince-plugin-djvudocument-3.20.2-6.27 is installed OR evince-plugin-dvidocument-3.20.2-6.27 is installed OR evince-plugin-pdfdocument-3.20.2-6.27 is installed OR evince-plugin-psdocument-3.20.2-6.27 is installed OR evince-plugin-tiffdocument-3.20.2-6.27 is installed OR evince-plugin-xpsdocument-3.20.2-6.27 is installed OR libevdocument3-4-3.20.2-6.27 is installed OR libevview3-3-3.20.2-6.27 is installed OR nautilus-evince-3.20.2-6.27 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_156-94_61-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_19-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libsoup-2.62.2-5.7 is installed OR libsoup-2_4-1-2.62.2-5.7 is installed OR libsoup-2_4-1-32bit-2.62.2-5.7 is installed OR libsoup-lang-2.62.2-5.7 is installed OR typelib-1_0-Soup-2_4-2.62.2-5.7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information bash-4.3-83.15 is installed OR bash-doc-4.3-83.15 is installed OR libreadline6-6.3-83.15 is installed OR libreadline6-32bit-6.3-83.15 is installed OR readline-doc-6.3-83.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information java-11-openjdk-11.0.7.0-3.42 is installed OR java-11-openjdk-demo-11.0.7.0-3.42 is installed OR java-11-openjdk-devel-11.0.7.0-3.42 is installed OR java-11-openjdk-headless-11.0.7.0-3.42 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.22 is installed OR kernel-default-extra-4.12.14-25.22 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information MozillaThunderbird-68.11.0-3.91 is installed OR MozillaThunderbird-translations-common-68.11.0-3.91 is installed OR MozillaThunderbird-translations-other-68.11.0-3.91 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND python-pymongo-3.0.3-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND python-PyJWT-1.4.2-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND ansible-2.4.6.0-3.6 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information cups-1.7.5-20.26 is installed OR cups-client-1.7.5-20.26 is installed OR cups-libs-1.7.5-20.26 is installed OR cups-libs-32bit-1.7.5-20.26 is installed

BACK