OVAL Reference oval:org.opensuse.security:def:53528

Oval Definition:

oval:org.opensuse.security:def:53528

Revision Date:	2020-12-01	Version:	1
Title:	Security update for xorg-x11-server (Important)
Description:	This update for xorg-x11-server fixes the following issues: - CVE-2020-14347: Leak of uninitialized heap memory from the X server to clients on pixmap allocation (bsc#1174633, ZDI-CAN-11426). - CVE-2020-14346: XIChangeHierarchy Integer Underflow Privilege Escalation Vulnerability (bsc#1174638, ZDI-CAN-11429). - CVE-2020-14345: XKB out-of-bounds access privilege escalation vulnerability (bsc#1174635, ZDI-CAN-11428).
Family:	unix	Class:	patch
Status:		Reference(s):	1000048 1021814 1021817 1021818 1021819 1021820 1021821 1021822 1021823 1021824 1021991 1028391 1043290 1050087 1054171 1056434 1058630 1059735 1060382 1066168 1066170 1082283 1082291 1082348 1082362 1082792 1082837 1083628 1083634 1085130 1085671 1086011 1087059 1120999 1167631 1174633 1174635 1174638 898572 901715 924312 934401 935856 937258 937343 937787 958789 958790 967012 967013 982017 982018 982019 982222 982223 982285 982959 983961 983982 991080 991466 994760 994771 994774 996441 997858 997859 CVE-2010-0405 CVE-2012-4504 CVE-2013-1752 CVE-2013-1753 CVE-2013-6369 CVE-2014-1829 CVE-2014-1830 CVE-2014-4650 CVE-2014-7185 CVE-2015-2296 CVE-2015-4792 CVE-2015-4802 CVE-2015-4807 CVE-2015-4815 CVE-2015-4816 CVE-2015-4819 CVE-2015-4826 CVE-2015-4830 CVE-2015-4836 CVE-2015-4858 CVE-2015-4861 CVE-2015-4870 CVE-2015-4879 CVE-2015-4895 CVE-2015-4913 CVE-2016-2347 CVE-2016-2391 CVE-2016-2392 CVE-2016-4453 CVE-2016-4454 CVE-2016-5105 CVE-2016-5106 CVE-2016-5107 CVE-2016-5126 CVE-2016-5238 CVE-2016-5337 CVE-2016-5338 CVE-2016-5403 CVE-2016-6490 CVE-2016-6833 CVE-2016-6836 CVE-2016-6888 CVE-2016-7116 CVE-2016-7155 CVE-2016-7156 CVE-2017-11524 CVE-2017-12692 CVE-2017-12693 CVE-2017-13768 CVE-2017-14314 CVE-2017-14505 CVE-2017-14739 CVE-2017-15016 CVE-2017-15017 CVE-2017-16352 CVE-2017-16353 CVE-2017-18209 CVE-2017-18211 CVE-2017-5373 CVE-2017-5375 CVE-2017-5376 CVE-2017-5378 CVE-2017-5380 CVE-2017-5383 CVE-2017-5386 CVE-2017-5390 CVE-2017-5396 CVE-2017-5398 CVE-2017-5400 CVE-2017-5401 CVE-2017-5402 CVE-2017-5404 CVE-2017-5405 CVE-2017-5407 CVE-2017-5408 CVE-2017-5409 CVE-2017-5410 CVE-2017-5974 CVE-2017-5975 CVE-2017-5976 CVE-2017-5977 CVE-2017-5978 CVE-2017-5979 CVE-2017-5980 CVE-2017-5981 CVE-2017-7555 CVE-2017-9500 CVE-2018-5125 CVE-2018-5127 CVE-2018-5129 CVE-2018-5130 CVE-2018-5131 CVE-2018-5144 CVE-2018-5145 CVE-2018-5146 CVE-2018-5147 CVE-2018-5148 CVE-2018-7443 CVE-2018-7470 CVE-2018-8804 CVE-2020-14345 CVE-2020-14346 CVE-2020-14347 CVE-2020-1752 SUSE-SU-2015:1344-1 SUSE-SU-2016:0121-1 SUSE-SU-2016:2589-1 SUSE-SU-2017:0427-1 SUSE-SU-2017:0714-1 SUSE-SU-2018:0652-1 SUSE-SU-2018:0850-1 SUSE-SU-2018:0857-1 SUSE-SU-2020:0820-1 SUSE-SU-2020:2326-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND chromium-66.0.3359.170-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libnetpbm-devel-10.80.1-lp151.4.3 is installed OR libnetpbm11-10.80.1-lp151.4.3 is installed OR libnetpbm11-32bit-10.80.1-lp151.4.3 is installed OR netpbm-10.80.1-lp151.4.3 is installed OR netpbm-vulnerable-10.80.1-lp151.4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information krb5-1.6.3-133.49.58 is installed OR krb5-32bit-1.6.3-133.49.58 is installed OR krb5-client-1.6.3-133.49.58 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information finch-2.6.6-0.23 is installed OR libpurple-2.6.6-0.23 is installed OR libpurple-lang-2.6.6-0.23 is installed OR libpurple-meanwhile-2.6.6-0.23 is installed OR libpurple-tcl-2.6.6-0.23 is installed OR pidgin-2.6.6-0.23 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information librsvg-2.26.0-2.5 is installed OR librsvg-32bit-2.26.0-2.5 is installed OR rsvg-view-2.26.0-2.5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information libpython2_7-1_0-2.7.9-14 is installed OR libpython2_7-1_0-32bit-2.7.9-14 is installed OR python-2.7.9-14 is installed OR python-base-2.7.9-14 is installed OR python-curses-2.7.9-14 is installed OR python-devel-2.7.9-14 is installed OR python-tk-2.7.9-14 is installed OR python-xml-2.7.9-14 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information qemu-2.3.1-21 is installed OR qemu-block-curl-2.3.1-21 is installed OR qemu-ipxe-1.0.0-21 is installed OR qemu-kvm-2.3.1-21 is installed OR qemu-seabios-1.8.1-21 is installed OR qemu-sgabios-8-21 is installed OR qemu-tools-2.3.1-21 is installed OR qemu-vgabios-1.8.1-21 is installed OR qemu-x86-2.3.1-21 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information MozillaFirefox-45.7.0esr-99 is installed OR MozillaFirefox-translations-45.7.0esr-99 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libjbig2-2.0-12 is installed OR libjbig2-32bit-2.0-12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information bzip2-1.0.6-29 is installed OR libbz2-1-1.0.6-29 is installed OR libbz2-1-32bit-1.0.6-29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND autofs-5.0.9-8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_115-default-4-2 is installed OR kgraft-patch-3_12_74-60_64_115-xen-4-2 is installed OR kgraft-patch-SLE12-SP1_Update_34-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information ibus-chewing-1.4.14-4 is installed OR ibus-pinyin-1.5.0-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information kernel-default-4.4.121-92.95 is installed OR kernel-default-base-4.4.121-92.95 is installed OR kernel-default-devel-4.4.121-92.95 is installed OR kernel-devel-4.4.121-92.95 is installed OR kernel-macros-4.4.121-92.95 is installed OR kernel-source-4.4.121-92.95 is installed OR kernel-syms-4.4.121-92.95 is installed OR lttng-modules-2.7.1-9.6 is installed OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.95-9.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information jakarta-commons-fileupload-1.1.1-122.3 is installed OR jakarta-commons-fileupload-javadoc-1.1.1-122.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_67-default-5-2 is installed OR kgraft-patch-SLE12-SP2_Update_19-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information ecryptfs-utils-103-7 is installed OR ecryptfs-utils-32bit-103-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information glib2-2.48.2-12.15 is installed OR glib2-lang-2.48.2-12.15 is installed OR glib2-tools-2.48.2-12.15 is installed OR libgio-2_0-0-2.48.2-12.15 is installed OR libgio-2_0-0-32bit-2.48.2-12.15 is installed OR libglib-2_0-0-2.48.2-12.15 is installed OR libglib-2_0-0-32bit-2.48.2-12.15 is installed OR libgmodule-2_0-0-2.48.2-12.15 is installed OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed OR libgobject-2_0-0-2.48.2-12.15 is installed OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed OR libgthread-2_0-0-2.48.2-12.15 is installed OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information bzip2-1.0.6-30.8 is installed OR bzip2-doc-1.0.6-30.8 is installed OR libbz2-1-1.0.6-30.8 is installed OR libbz2-1-32bit-1.0.6-30.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information tomcat-8.0.53-29.13 is installed OR tomcat-admin-webapps-8.0.53-29.13 is installed OR tomcat-docs-webapp-8.0.53-29.13 is installed OR tomcat-el-3_0-api-8.0.53-29.13 is installed OR tomcat-javadoc-8.0.53-29.13 is installed OR tomcat-jsp-2_3-api-8.0.53-29.13 is installed OR tomcat-lib-8.0.53-29.13 is installed OR tomcat-servlet-3_1-api-8.0.53-29.13 is installed OR tomcat-webapps-8.0.53-29.13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND libXxf86dga1-1.1.4-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information xorg-x11-server-1.19.6-8.16 is installed OR xorg-x11-server-extra-1.19.6-8.16 is installed OR xorg-x11-server-sdk-1.19.6-8.16 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information libspice-server1-0.12.5-10 is installed OR spice-0.12.5-10 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information ghostscript-9.26-23.16 is installed OR ghostscript-x11-9.26-23.16 is installed OR libspectre-0.2.7-12.4 is installed OR libspectre1-0.2.7-12.4 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libmariadb3-3.0.3-3.3 is installed OR mariadb-10.2.15-4.3 is installed OR mariadb-client-10.2.15-4.3 is installed OR mariadb-connector-c-3.0.3-3.3 is installed OR mariadb-errormessages-10.2.15-4.3 is installed OR mariadb-galera-10.2.15-4.3 is installed OR mariadb-tools-10.2.15-4.3 is installed OR xtrabackup-2.4.10-4.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND python-Django1-1.11.20-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information crowbar-core-5.0+git.1585575551.16781d00d-3.38 is installed OR crowbar-core-branding-upstream-5.0+git.1585575551.16781d00d-3.38 is installed OR crowbar-ha-5.0+git.1585316176.344190f-3.32 is installed OR crowbar-openstack-5.0+git.1585304226.2164b7895-4.37 is installed OR documentation-suse-openstack-cloud-deployment-8.20200319-1.23 is installed OR documentation-suse-openstack-cloud-supplement-8.20200319-1.23 is installed OR documentation-suse-openstack-cloud-upstream-admin-8.20200319-1.23 is installed OR documentation-suse-openstack-cloud-upstream-user-8.20200319-1.23 is installed OR memcached-1.5.17-3.3 is installed OR openstack-manila-5.1.1~dev5-3.26 is installed OR openstack-manila-api-5.1.1~dev5-3.26 is installed OR openstack-manila-data-5.1.1~dev5-3.26 is installed OR openstack-manila-doc-5.1.1~dev5-3.26 is installed OR openstack-manila-scheduler-5.1.1~dev5-3.26 is installed OR openstack-manila-share-5.1.1~dev5-3.26 is installed OR openstack-neutron-11.0.9~dev63-3.30 is installed OR openstack-neutron-dhcp-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-doc-11.0.9~dev63-3.30 is installed OR openstack-neutron-ha-tool-11.0.9~dev63-3.30 is installed OR openstack-neutron-l3-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-linuxbridge-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-macvtap-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-metadata-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-metering-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-openvswitch-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-server-11.0.9~dev63-3.30 is installed OR openstack-nova-16.1.9~dev61-3.35 is installed OR openstack-nova-api-16.1.9~dev61-3.35 is installed OR openstack-nova-cells-16.1.9~dev61-3.35 is installed OR openstack-nova-compute-16.1.9~dev61-3.35 is installed OR openstack-nova-conductor-16.1.9~dev61-3.35 is installed OR openstack-nova-console-16.1.9~dev61-3.35 is installed OR openstack-nova-consoleauth-16.1.9~dev61-3.35 is installed OR openstack-nova-doc-16.1.9~dev61-3.35 is installed OR openstack-nova-novncproxy-16.1.9~dev61-3.35 is installed OR openstack-nova-placement-api-16.1.9~dev61-3.35 is installed OR openstack-nova-scheduler-16.1.9~dev61-3.35 is installed OR openstack-nova-serialproxy-16.1.9~dev61-3.35 is installed OR openstack-nova-vncproxy-16.1.9~dev61-3.35 is installed OR python-amqp-2.4.2-3.9 is installed OR python-manila-5.1.1~dev5-3.26 is installed OR python-neutron-11.0.9~dev63-3.30 is installed OR python-nova-16.1.9~dev61-3.35 is installed OR ruby2.1-rubygem-puma-2.16.0-3.6 is installed OR rubygem-puma-2.16.0-3.6 is installed OR zookeeper-3.4.10-3.6 is installed OR zookeeper-server-3.4.10-3.6 is installed

BACK