Oval Definition:	oval:org.opensuse.security:def:53868
Revision Date: 2020-12-01 Version: 1 Title: Security update for xorg-x11-server (Important) Description: This update for xorg-x11-server fixes the following issues: - CVE-2020-14347: Leak of uninitialized heap memory from the X server to clients on pixmap allocation (bsc#1174633, ZDI-CAN-11426). - CVE-2020-14346: XIChangeHierarchy Integer Underflow Privilege Escalation Vulnerability (bsc#1174638, ZDI-CAN-11429). - CVE-2020-14345: XKB out-of-bounds access privilege escalation vulnerability (bsc#1174635, ZDI-CAN-11428). Family: unix Class: patch Status: Reference(s): 1007501 1007766 1020950 1024749 1039034 1049399 1049404 1049417 1050469 1053364 1054591 1066892 1069925 1070046 1072665 1073654 1075419 1081925 1100365 1174633 1174635 1174638 578053 907268 949669 949670 966435 966436 CVE-2007-4772 CVE-2008-1483 CVE-2013-6473 CVE-2013-6474 CVE-2013-6475 CVE-2013-6476 CVE-2014-2653 CVE-2014-2707 CVE-2014-3686 CVE-2014-4336 CVE-2014-4337 CVE-2014-4338 CVE-2014-8091 CVE-2014-8092 CVE-2014-8093 CVE-2014-8094 CVE-2014-8095 CVE-2014-8096 CVE-2014-8097 CVE-2014-8098 CVE-2014-8099 CVE-2014-8100 CVE-2014-8101 CVE-2014-8102 CVE-2014-8103 CVE-2015-0210 CVE-2015-1863 CVE-2015-4141 CVE-2015-4142 CVE-2015-4143 CVE-2015-5130 CVE-2015-5288 CVE-2015-5289 CVE-2015-5310 CVE-2015-5352 CVE-2015-5600 CVE-2015-6563 CVE-2015-6564 CVE-2015-8041 CVE-2015-8325 CVE-2016-0766 CVE-2016-0773 CVE-2016-0777 CVE-2016-0778 CVE-2016-10009 CVE-2016-10010 CVE-2016-10011 CVE-2016-10012 CVE-2016-10708 CVE-2016-1908 CVE-2016-3115 CVE-2016-4692 CVE-2016-4743 CVE-2016-5824 CVE-2016-5827 CVE-2016-6210 CVE-2016-6515 CVE-2016-7032 CVE-2016-7076 CVE-2016-7586 CVE-2016-7587 CVE-2016-7589 CVE-2016-7592 CVE-2016-7598 CVE-2016-7599 CVE-2016-7610 CVE-2016-7623 CVE-2016-7632 CVE-2016-7635 CVE-2016-7639 CVE-2016-7641 CVE-2016-7645 CVE-2016-7652 CVE-2016-7654 CVE-2016-7656 CVE-2016-8858 CVE-2016-9584 CVE-2017-1000159 CVE-2017-12836 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081 CVE-2017-13087 CVE-2017-13088 CVE-2017-13788 CVE-2017-13798 CVE-2017-13803 CVE-2017-13856 CVE-2017-13866 CVE-2017-13870 CVE-2017-15906 CVE-2017-2350 CVE-2017-2354 CVE-2017-2355 CVE-2017-2356 CVE-2017-2362 CVE-2017-2363 CVE-2017-2364 CVE-2017-2365 CVE-2017-2366 CVE-2017-2369 CVE-2017-2371 CVE-2017-2373 CVE-2017-2496 CVE-2017-2510 CVE-2017-2539 CVE-2017-3636 CVE-2017-3641 CVE-2017-3653 CVE-2017-5715 CVE-2017-5753 CVE-2017-5754 CVE-2017-7006 CVE-2017-7011 CVE-2017-7012 CVE-2017-7018 CVE-2017-7019 CVE-2017-7020 CVE-2017-7030 CVE-2017-7034 CVE-2017-7037 CVE-2017-7038 CVE-2017-7039 CVE-2017-7040 CVE-2017-7041 CVE-2017-7042 CVE-2017-7043 CVE-2017-7046 CVE-2017-7048 CVE-2017-7049 CVE-2017-7052 CVE-2017-7055 CVE-2017-7056 CVE-2017-7059 CVE-2017-7061 CVE-2017-7064 CVE-2017-7081 CVE-2017-7087 CVE-2017-7089 CVE-2017-7090 CVE-2017-7091 CVE-2017-7092 CVE-2017-7093 CVE-2017-7094 CVE-2017-7095 CVE-2017-7096 CVE-2017-7098 CVE-2017-7099 CVE-2017-7100 CVE-2017-7102 CVE-2017-7104 CVE-2017-7107 CVE-2017-7109 CVE-2017-7111 CVE-2017-7117 CVE-2017-7120 CVE-2017-7142 CVE-2017-7156 CVE-2017-7157 CVE-2017-8779 CVE-2018-1058 CVE-2018-14348 CVE-2020-14345 CVE-2020-14346 CVE-2020-14347 SUSE-SU-2015:1821-1 SUSE-SU-2016:0555-1 SUSE-SU-2016:2893-1 SUSE-SU-2017:2419-1 SUSE-SU-2018:0079-1 SUSE-SU-2018:0219-1 SUSE-SU-2018:0756-1 SUSE-SU-2018:0947-1 SUSE-SU-2018:2468-1 SUSE-SU-2020:2241-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information elfutils-0.168-lp150.2 is installed OR elfutils-lang-0.168-lp150.2 is installed OR libasm1-0.168-lp150.2 is installed OR libdw1-0.168-lp150.2 is installed OR libdw1-32bit-0.168-lp150.2 is installed OR libebl-plugins-0.168-lp150.2 is installed OR libebl-plugins-32bit-0.168-lp150.2 is installed OR libelf1-0.168-lp150.2 is installed OR libelf1-32bit-0.168-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information go1.12-1.12.9-lp151.2.13 is installed OR go1.12-doc-1.12.9-lp151.2.13 is installed OR go1.12-race-1.12.9-lp151.2.13 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND kvm-0.15.1-0.27 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information bind-libs-9.9.4P2-0.6 is installed OR bind-libs-32bit-9.9.4P2-0.6 is installed OR bind-utils-9.9.4P2-0.6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information flash-player-11.2.202.569-0.35 is installed OR flash-player-gnome-11.2.202.569-0.35 is installed OR flash-player-kde4-11.2.202.569-0.35 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information cups-filters-1.0.58-2 is installed OR cups-filters-cups-browsed-1.0.58-2 is installed OR cups-filters-foomatic-rip-1.0.58-2 is installed OR cups-filters-ghostscript-1.0.58-2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libecpg6-9.4.6-7 is installed OR libpq5-9.4.6-7 is installed OR libpq5-32bit-9.4.6-7 is installed OR postgresql94-9.4.6-7 is installed OR postgresql94-libs-9.4.6-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND sudo-1.8.10p3-8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libcgroup-0.41.rc1-10.9 is installed OR libcgroup1-0.41.rc1-10.9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libical1-1.0.1-16.3 is installed OR libical1-32bit-1.0.1-16.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND apache-commons-httpclient-3.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_32-default-4-3 is installed OR kgraft-patch-3_12_69-60_64_32-xen-4-3 is installed OR kgraft-patch-SLE12-SP1_Update_13-4-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libsmi-0.4.8-18 is installed OR libsmi2-0.4.8-18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libjavascriptcoregtk-4_0-18-2.22.4-2.29 is installed OR libwebkit2gtk-4_0-37-2.22.4-2.29 is installed OR typelib-1_0-JavaScriptCore-4_0-2.22.4-2.29 is installed OR typelib-1_0-WebKit2-4_0-2.22.4-2.29 is installed OR webkit2gtk-4_0-injected-bundles-2.22.4-2.29 is installed OR webkit2gtk3-2.22.4-2.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information xen-4.7.6_04-43.39 is installed OR xen-doc-html-4.7.6_04-43.39 is installed OR xen-libs-4.7.6_04-43.39 is installed OR xen-libs-32bit-4.7.6_04-43.39 is installed OR xen-tools-4.7.6_04-43.39 is installed OR xen-tools-domU-4.7.6_04-43.39 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_73-default-5-2 is installed OR kgraft-patch-SLE12-SP2_Update_21-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information gnome-settings-daemon-3.20.1-49 is installed OR gnome-settings-daemon-lang-3.20.1-49 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libsolv-0.6.36-2.27.19 is installed OR libsolv-tools-0.6.36-2.27.19 is installed OR libzypp-16.20.2-27.60 is installed OR perl-solv-0.6.36-2.27.19 is installed OR python-solv-0.6.36-2.27.19 is installed OR zypper-1.13.54-18.40 is installed OR zypper-log-1.13.54-18.40 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information bzip2-1.0.6-30.8 is installed OR bzip2-doc-1.0.6-30.8 is installed OR libbz2-1-1.0.6-30.8 is installed OR libbz2-1-32bit-1.0.6-30.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libQtWebKit4-4.8.7+2.3.4-4.7 is installed OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed OR libqca2-2.0.3-17.7 is installed OR libqca2-32bit-2.0.3-17.7 is installed OR libqt4-4.8.7-8.8 is installed OR libqt4-32bit-4.8.7-8.8 is installed OR libqt4-devel-doc-4.8.7-8.8 is installed OR libqt4-qt3support-4.8.7-8.8 is installed OR libqt4-qt3support-32bit-4.8.7-8.8 is installed OR libqt4-sql-4.8.7-8.8 is installed OR libqt4-sql-32bit-4.8.7-8.8 is installed OR libqt4-sql-mysql-4.8.7-8.8 is installed OR libqt4-sql-plugins-4.8.7-8.8 is installed OR libqt4-sql-sqlite-4.8.7-8.8 is installed OR libqt4-x11-4.8.7-8.8 is installed OR libqt4-x11-32bit-4.8.7-8.8 is installed OR qt4-x11-tools-4.8.7-8.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information bzip2-1.0.6-29 is installed OR bzip2-doc-1.0.6-29 is installed OR libbz2-1-1.0.6-29 is installed OR libbz2-1-32bit-1.0.6-29 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information xorg-x11-server-1.20.3-14.5 is installed OR xorg-x11-server-wayland-1.20.3-14.5 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information openstack-heat-5.0.2~a0~dev9-1 is installed OR openstack-heat-api-5.0.2~a0~dev9-1 is installed OR openstack-heat-api-cfn-5.0.2~a0~dev9-1 is installed OR openstack-heat-api-cloudwatch-5.0.2~a0~dev9-1 is installed OR openstack-heat-engine-5.0.2~a0~dev9-1 is installed OR openstack-heat-plugin-heat_docker-5.0.2~a0~dev9-1 is installed OR python-heat-5.0.2~a0~dev9-1 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information freeradius-server-3.0.3-17.12 is installed OR freeradius-server-doc-3.0.3-17.12 is installed OR freeradius-server-krb5-3.0.3-17.12 is installed OR freeradius-server-ldap-3.0.3-17.12 is installed OR freeradius-server-libs-3.0.3-17.12 is installed OR freeradius-server-mysql-3.0.3-17.12 is installed OR freeradius-server-perl-3.0.3-17.12 is installed OR freeradius-server-postgresql-3.0.3-17.12 is installed OR freeradius-server-python-3.0.3-17.12 is installed OR freeradius-server-sqlite-3.0.3-17.12 is installed OR freeradius-server-utils-3.0.3-17.12 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND python-urllib3-1.22-5.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information MozillaFirefox-68.3.0-109.98 is installed OR MozillaFirefox-translations-common-68.3.0-109.98 is installed
BACK