OVAL Reference oval:org.opensuse.security:def:51791

Oval Definition:

oval:org.opensuse.security:def:51791

Revision Date:	2020-12-01	Version:	1
Title:	Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork, runc (Important)
Description:	This update for containerd, docker, docker-runc, golang-github-docker-libnetwork, runc fixes the following issues: Security issues fixed: - CVE-2018-16875: Fixed a CPU Denial of Service (bsc#1118899). - CVE-2018-16874: Fixed a vulnerabity in go get command which could allow directory traversal in GOPATH mode (bsc#1118898). - CVE-2018-16873: Fixed a vulnerability in go get command which could allow remote code execution when executed with -u in GOPATH mode (bsc#1118897). - CVE-2019-5736: Effectively copying /proc/self/exe during re-exec to avoid write attacks to the host runc binary, which could lead to a container breakout (bsc#1121967). Other changes and fixes: - Update shell completion to use Group: System/Shells. - Add daemon.json file with rotation logs configuration (bsc#1114832) - Update to Docker 18.09.1-ce (bsc#1124308) and to to runc 96ec2177ae84. See upstream changelog in the packaged /usr/share/doc/packages/docker/CHANGELOG.md. - Update go requirements to >= go1.10 - Use -buildmode=pie for tests and binary build (bsc#1048046 and bsc#1051429). - Remove the usage of 'cp -r' to reduce noise in the build logs.
Family:	unix	Class:	patch
Status:		Reference(s):	1015173 1048046 1051429 1114832 1118897 1118898 1118899 1119835 1120672 1121967 1123562 1124308 1134689 1138034 1146657 1148643 1153259 1155784 1157465 1158696 1159284 1162327 1163985 1165572 1167437 1168340 1169604 1169800 1170104 1170288 1170595 1171906 1171924 1172075 1172743 1173072 1174165 CVE-2009-0946 CVE-2010-2497 CVE-2010-2805 CVE-2010-3053 CVE-2010-3054 CVE-2010-3311 CVE-2010-3430 CVE-2010-3431 CVE-2010-3814 CVE-2010-3853 CVE-2010-3855 CVE-2011-0226 CVE-2011-3148 CVE-2011-3149 CVE-2011-3256 CVE-2011-3439 CVE-2012-1126 CVE-2012-1127 CVE-2012-1128 CVE-2012-1129 CVE-2012-1130 CVE-2012-1131 CVE-2012-1132 CVE-2012-1133 CVE-2012-1134 CVE-2012-1135 CVE-2012-1136 CVE-2012-1137 CVE-2012-1138 CVE-2012-1139 CVE-2012-1140 CVE-2012-1141 CVE-2012-1142 CVE-2012-1143 CVE-2012-1144 CVE-2012-5668 CVE-2012-5669 CVE-2012-5670 CVE-2013-4314 CVE-2013-4509 CVE-2013-6418 CVE-2014-2240 CVE-2014-2241 CVE-2014-2583 CVE-2014-9656 CVE-2014-9657 CVE-2014-9658 CVE-2014-9659 CVE-2014-9660 CVE-2014-9661 CVE-2014-9662 CVE-2014-9663 CVE-2014-9664 CVE-2014-9665 CVE-2014-9666 CVE-2014-9667 CVE-2014-9668 CVE-2014-9669 CVE-2014-9670 CVE-2014-9671 CVE-2014-9672 CVE-2014-9673 CVE-2014-9674 CVE-2014-9675 CVE-2015-2590 CVE-2015-2597 CVE-2015-2601 CVE-2015-2613 CVE-2015-2619 CVE-2015-2621 CVE-2015-2625 CVE-2015-2627 CVE-2015-2628 CVE-2015-2632 CVE-2015-2637 CVE-2015-2638 CVE-2015-2659 CVE-2015-2664 CVE-2015-2808 CVE-2015-4000 CVE-2015-4729 CVE-2015-4731 CVE-2015-4732 CVE-2015-4733 CVE-2015-4734 CVE-2015-4736 CVE-2015-4748 CVE-2015-4749 CVE-2015-4760 CVE-2015-4803 CVE-2015-4805 CVE-2015-4806 CVE-2015-4810 CVE-2015-4835 CVE-2015-4840 CVE-2015-4842 CVE-2015-4843 CVE-2015-4844 CVE-2015-4860 CVE-2015-4868 CVE-2015-4872 CVE-2015-4881 CVE-2015-4882 CVE-2015-4883 CVE-2015-4893 CVE-2015-4901 CVE-2015-4902 CVE-2015-4903 CVE-2015-4906 CVE-2015-4908 CVE-2015-4911 CVE-2015-4916 CVE-2015-7575 CVE-2015-8126 CVE-2016-0402 CVE-2016-0448 CVE-2016-0466 CVE-2016-0475 CVE-2016-0483 CVE-2016-0494 CVE-2016-0636 CVE-2016-0686 CVE-2016-0687 CVE-2016-0695 CVE-2016-3425 CVE-2016-3426 CVE-2016-3427 CVE-2016-3458 CVE-2016-3485 CVE-2016-3498 CVE-2016-3500 CVE-2016-3503 CVE-2016-3508 CVE-2016-3511 CVE-2016-3550 CVE-2016-3552 CVE-2016-3587 CVE-2016-3598 CVE-2016-3606 CVE-2016-3610 CVE-2016-9918 CVE-2018-16873 CVE-2018-16874 CVE-2018-16875 CVE-2018-20105 CVE-2019-10086 CVE-2019-10130 CVE-2019-10164 CVE-2019-18897 CVE-2019-19727 CVE-2019-5736 CVE-2020-11651 CVE-2020-11652 CVE-2020-13867 CVE-2020-1720 SUSE-SU-2019:0495-1 SUSE-SU-2019:0629-1 SUSE-SU-2019:0841-1 SUSE-SU-2019:1810-1 SUSE-SU-2019:2245-1 SUSE-SU-2020:0228-1 SUSE-SU-2020:1973-1 SUSE-SU-2020:2086-1 SUSE-SU-2020:2149-1
Platform(s):	openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND chrony-3.2-lp150.5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-24.7.0esr-0.8 is installed OR MozillaFirefox-translations-24.7.0esr-0.8 is installed OR libfreebl3-3.16.2-0.8 is installed OR libfreebl3-32bit-3.16.2-0.8 is installed OR libsoftokn3-3.16.2-0.8 is installed OR libsoftokn3-32bit-3.16.2-0.8 is installed OR mozilla-nss-3.16.2-0.8 is installed OR mozilla-nss-32bit-3.16.2-0.8 is installed OR mozilla-nss-tools-3.16.2-0.8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information libtiff3-3.8.2-141.160 is installed OR libtiff3-32bit-3.8.2-141.160 is installed OR tiff-3.8.2-141.160 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information ibus-chewing-1.4.10.1-2 is installed OR ibus-pinyin-1.5.0-2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libfreetype6-2.5.5-7.5 is installed OR libfreetype6-32bit-2.5.5-7.5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information java-1_8_0-openjdk-1.8.0.101-14 is installed OR java-1_8_0-openjdk-headless-1.8.0.101-14 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information kernel-default-4.4.73-5 is installed OR kernel-default-devel-4.4.73-5 is installed OR kernel-default-extra-4.4.73-5 is installed OR kernel-devel-4.4.73-5 is installed OR kernel-macros-4.4.73-5 is installed OR kernel-source-4.4.73-5 is installed OR kernel-syms-4.4.73-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND ft2demos-2.6.3-7.15 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information containerd-1.2.2-5.9 is installed OR containerd-ctr-1.2.2-5.9 is installed OR containerd-test-1.2.2-5.9 is installed OR docker-18.09.1_ce-6.14 is installed OR docker-runc-1.0.0rc6+gitr3748_96ec2177ae84-6.12 is installed OR docker-runc-test-1.0.0rc6+gitr3748_96ec2177ae84-6.12 is installed OR docker-test-18.09.1_ce-6.14 is installed OR docker-zsh-completion-18.09.1_ce-6.14 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2711_2cfbf9b1f981-4.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python2-targetcli-fb-2.1.49-10.9 is installed OR targetcli-fb-2.1.49-10.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libecpg6-10.9-4.13 is installed OR postgresql10-10.9-4.13 is installed OR postgresql10-contrib-10.9-4.13 is installed OR postgresql10-devel-10.9-4.13 is installed OR postgresql10-docs-10.9-4.13 is installed OR postgresql10-plperl-10.9-4.13 is installed OR postgresql10-plpython-10.9-4.13 is installed OR postgresql10-pltcl-10.9-4.13 is installed OR postgresql10-server-10.9-4.13 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information libecpg6-12.3-3.8 is installed OR postgresql-12.0.1-8.14 is installed OR postgresql-contrib-12.0.1-8.14 is installed OR postgresql-devel-12.0.1-8.14 is installed OR postgresql-docs-12.0.1-8.14 is installed OR postgresql-plperl-12.0.1-8.14 is installed OR postgresql-plpython-12.0.1-8.14 is installed OR postgresql-pltcl-12.0.1-8.14 is installed OR postgresql-server-12.0.1-8.14 is installed OR postgresql-server-devel-12.0.1-8.14 is installed OR postgresql12-12.3-3.8 is installed OR postgresql12-contrib-12.3-3.8 is installed OR postgresql12-devel-12.3-3.8 is installed OR postgresql12-docs-12.3-3.8 is installed OR postgresql12-plperl-12.3-3.8 is installed OR postgresql12-plpython-12.3-3.8 is installed OR postgresql12-pltcl-12.3-3.8 is installed OR postgresql12-server-12.3-3.8 is installed OR postgresql12-server-devel-12.3-3.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND apache-commons-beanutils-1.9.2-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND libXfont1-1.4.7-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_88-default-7-2 is installed OR kgraft-patch-3_12_74-60_64_88-xen-7-2 is installed OR kgraft-patch-SLE12-SP1_Update_27-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libvirt-2.0.0-26 is installed OR libvirt-client-2.0.0-26 is installed OR libvirt-daemon-2.0.0-26 is installed OR libvirt-daemon-config-network-2.0.0-26 is installed OR libvirt-daemon-config-nwfilter-2.0.0-26 is installed OR libvirt-daemon-driver-interface-2.0.0-26 is installed OR libvirt-daemon-driver-libxl-2.0.0-26 is installed OR libvirt-daemon-driver-lxc-2.0.0-26 is installed OR libvirt-daemon-driver-network-2.0.0-26 is installed OR libvirt-daemon-driver-nodedev-2.0.0-26 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-26 is installed OR libvirt-daemon-driver-qemu-2.0.0-26 is installed OR libvirt-daemon-driver-secret-2.0.0-26 is installed OR libvirt-daemon-driver-storage-2.0.0-26 is installed OR libvirt-daemon-lxc-2.0.0-26 is installed OR libvirt-daemon-qemu-2.0.0-26 is installed OR libvirt-daemon-xen-2.0.0-26 is installed OR libvirt-doc-2.0.0-26 is installed OR libvirt-lock-sanlock-2.0.0-26 is installed OR libvirt-nss-2.0.0-26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libdcerpc-binding0-4.4.2-38.20 is installed OR libdcerpc-binding0-32bit-4.4.2-38.20 is installed OR libdcerpc0-4.4.2-38.20 is installed OR libdcerpc0-32bit-4.4.2-38.20 is installed OR libndr-krb5pac0-4.4.2-38.20 is installed OR libndr-krb5pac0-32bit-4.4.2-38.20 is installed OR libndr-nbt0-4.4.2-38.20 is installed OR libndr-nbt0-32bit-4.4.2-38.20 is installed OR libndr-standard0-4.4.2-38.20 is installed OR libndr-standard0-32bit-4.4.2-38.20 is installed OR libndr0-4.4.2-38.20 is installed OR libndr0-32bit-4.4.2-38.20 is installed OR libnetapi0-4.4.2-38.20 is installed OR libnetapi0-32bit-4.4.2-38.20 is installed OR libsamba-credentials0-4.4.2-38.20 is installed OR libsamba-credentials0-32bit-4.4.2-38.20 is installed OR libsamba-errors0-4.4.2-38.20 is installed OR libsamba-errors0-32bit-4.4.2-38.20 is installed OR libsamba-hostconfig0-4.4.2-38.20 is installed OR libsamba-hostconfig0-32bit-4.4.2-38.20 is installed OR libsamba-passdb0-4.4.2-38.20 is installed OR libsamba-passdb0-32bit-4.4.2-38.20 is installed OR libsamba-util0-4.4.2-38.20 is installed OR libsamba-util0-32bit-4.4.2-38.20 is installed OR libsamdb0-4.4.2-38.20 is installed OR libsamdb0-32bit-4.4.2-38.20 is installed OR libsmbclient0-4.4.2-38.20 is installed OR libsmbclient0-32bit-4.4.2-38.20 is installed OR libsmbconf0-4.4.2-38.20 is installed OR libsmbconf0-32bit-4.4.2-38.20 is installed OR libsmbldap0-4.4.2-38.20 is installed OR libsmbldap0-32bit-4.4.2-38.20 is installed OR libtevent-util0-4.4.2-38.20 is installed OR libtevent-util0-32bit-4.4.2-38.20 is installed OR libwbclient0-4.4.2-38.20 is installed OR libwbclient0-32bit-4.4.2-38.20 is installed OR samba-4.4.2-38.20 is installed OR samba-client-4.4.2-38.20 is installed OR samba-client-32bit-4.4.2-38.20 is installed OR samba-doc-4.4.2-38.20 is installed OR samba-libs-4.4.2-38.20 is installed OR samba-libs-32bit-4.4.2-38.20 is installed OR samba-winbind-4.4.2-38.20 is installed OR samba-winbind-32bit-4.4.2-38.20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kernel-default-4.4.121-92.92 is installed OR kernel-default-base-4.4.121-92.92 is installed OR kernel-default-devel-4.4.121-92.92 is installed OR kernel-devel-4.4.121-92.92 is installed OR kernel-macros-4.4.121-92.92 is installed OR kernel-source-4.4.121-92.92 is installed OR kernel-syms-4.4.121-92.92 is installed OR kgraft-patch-4_4_121-92_92-default-1-3.7 is installed OR kgraft-patch-SLE12-SP2_Update_24-1-3.7 is installed OR lttng-modules-2.7.1-9.4 is installed OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.92-9.4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information libdcerpc-atsvc0-4.2.4-28.29 is installed OR samba-4.2.4-28.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND autofs-5.0.9-27 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND ucode-intel-20191112a-13.56 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_176-94_88-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_24-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libzypp-16.17.20-2.33 is installed OR zypper-1.13.45-21.21 is installed OR zypper-log-1.13.45-21.21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information bind-9.11.2-1 is installed OR bind-chrootenv-9.11.2-1 is installed OR bind-doc-9.11.2-1 is installed OR bind-utils-9.11.2-1 is installed OR libbind9-160-9.11.2-1 is installed OR libdns169-9.11.2-1 is installed OR libirs160-9.11.2-1 is installed OR libisc166-9.11.2-1 is installed OR libisc166-32bit-9.11.2-1 is installed OR libisccc160-9.11.2-1 is installed OR libisccfg160-9.11.2-1 is installed OR liblwres160-9.11.2-1 is installed OR python-bind-9.11.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information python2-salt-3000-5.78 is installed OR python3-salt-3000-5.78 is installed OR salt-3000-5.78 is installed OR salt-api-3000-5.78 is installed OR salt-bash-completion-3000-5.78 is installed OR salt-cloud-3000-5.78 is installed OR salt-doc-3000-5.78 is installed OR salt-fish-completion-3000-5.78 is installed OR salt-master-3000-5.78 is installed OR salt-minion-3000-5.78 is installed OR salt-proxy-3000-5.78 is installed OR salt-ssh-3000-5.78 is installed OR salt-standalone-formulas-configuration-3000-5.78 is installed OR salt-syndic-3000-5.78 is installed OR salt-zsh-completion-3000-5.78 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information bluez-5.48-5.13 is installed OR bluez-cups-5.48-5.13 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information containerd-0.2.4+gitr565_0366d7e-9 is installed OR docker-1.12.3-81 is installed OR runc-0.1.1+gitr2816_02f8fa7-9 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information MozillaFirefox-60.2.2esr-109.46 is installed OR MozillaFirefox-branding-SLE-60-32.3 is installed OR MozillaFirefox-devel-60.2.2esr-109.46 is installed OR MozillaFirefox-translations-common-60.2.2esr-109.46 is installed OR apache2-mod_nss-1.0.14-19.6 is installed OR libfreebl3-3.36.4-58.15 is installed OR libfreebl3-32bit-3.36.4-58.15 is installed OR libfreebl3-hmac-3.36.4-58.15 is installed OR libfreebl3-hmac-32bit-3.36.4-58.15 is installed OR libsoftokn3-3.36.4-58.15 is installed OR libsoftokn3-32bit-3.36.4-58.15 is installed OR libsoftokn3-hmac-3.36.4-58.15 is installed OR libsoftokn3-hmac-32bit-3.36.4-58.15 is installed OR mozilla-nspr-4.19-19.3 is installed OR mozilla-nspr-32bit-4.19-19.3 is installed OR mozilla-nss-3.36.4-58.15 is installed OR mozilla-nss-32bit-3.36.4-58.15 is installed OR mozilla-nss-certs-3.36.4-58.15 is installed OR mozilla-nss-certs-32bit-3.36.4-58.15 is installed OR mozilla-nss-sysinit-3.36.4-58.15 is installed OR mozilla-nss-sysinit-32bit-3.36.4-58.15 is installed OR mozilla-nss-tools-3.36.4-58.15 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information glib2-2.48.2-12.15 is installed OR glib2-lang-2.48.2-12.15 is installed OR glib2-tools-2.48.2-12.15 is installed OR libgio-2_0-0-2.48.2-12.15 is installed OR libgio-2_0-0-32bit-2.48.2-12.15 is installed OR libglib-2_0-0-2.48.2-12.15 is installed OR libglib-2_0-0-32bit-2.48.2-12.15 is installed OR libgmodule-2_0-0-2.48.2-12.15 is installed OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed OR libgobject-2_0-0-2.48.2-12.15 is installed OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed OR libgthread-2_0-0-2.48.2-12.15 is installed OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.14.3-11.15 is installed

BACK