Oval Definition:	oval:org.opensuse.security:def:56489
Revision Date: 2020-12-01 Version: 1 Title: Security update for xorg-x11-server (Moderate) Description: This update for xorg-x11-server fixes several issues. These security issues were fixed: - CVE-2017-13721: Missing validation of shmseg resource id in Xext/XShm could lead to shared memory segments of other users beeing freed (bnc#1052984) - CVE-2017-13723: A local denial of service via unusual characters in XkbAtomText and XkbStringText was fixed (bnc#1051150) - CVE-2017-12184,CVE-2017-12185,CVE-2017-12186,CVE-2017-12187: Fixed unvalidated lengths in multiple extensions (bsc#1063034) - CVE-2017-12183: Fixed some unvalidated lengths in the XFIXES extension. (bsc#1063035) - CVE-2017-12180,CVE-2017-12181,CVE-2017-12182: Fixed various unvalidated lengths in the XFree86-VidMode/XFree86-DGA/XFree86-DRI extensions (bsc#1063037) - CVE-2017-12179: Fixed an integer overflow and unvalidated length in (S)ProcXIBarrierReleasePointer in Xi (bsc#1063038) - CVE-2017-12178: Fixed a wrong extra length check in ProcXIChangeHierarchy in Xi (bsc#1063039) - CVE-2017-12177: Fixed an unvalidated variable-length request in ProcDbeGetVisualInfo (bsc#1063040) - CVE-2017-12176: Fixed an unvalidated extra length in ProcEstablishConnection (bsc#1063041) These non-security issues were fixed: - Make colormap/gamma glue code work with the RandR extension disabled. This prevents it from crashing and showing wrong colors. (bsc#1061107) - Recognize ssh as a remote client to fix launching applications remotely when using DRI3. (bsc#1022727) Family: unix Class: patch Status: Reference(s): 1015499 1015547 1021636 1022727 1026102 1027908 1030071 1032261 1035082 1040311 1040312 1040313 1050577 1050578 1050579 1050581 1051150 1052916 1052984 1055825 1055960 1056058 1061107 1063034 1063035 1063037 1063038 1063039 1063040 1063041 1065363 1086036 1086909 1090192 1090343 1090849 1094448 1095603 1096985 1100097 1102920 1108308 1116574 1133191 1136446 1137597 1159646 937787 957174 958789 969820 972907 983639 990592 CVE-2008-4225 CVE-2008-4226 CVE-2008-4409 CVE-2010-4494 CVE-2011-1944 CVE-2012-5134 CVE-2013-0338 CVE-2013-1969 CVE-2013-6393 CVE-2014-0191 CVE-2014-2525 CVE-2014-3660 CVE-2014-3686 CVE-2014-9130 CVE-2014-9130 CVE-2015-0210 CVE-2015-1863 CVE-2015-4792 CVE-2015-4802 CVE-2015-4807 CVE-2015-4815 CVE-2015-4826 CVE-2015-4830 CVE-2015-4836 CVE-2015-4858 CVE-2015-4861 CVE-2015-4870 CVE-2015-4913 CVE-2015-5969 CVE-2016-1950 CVE-2016-2774 CVE-2016-2834 CVE-2016-8635 CVE-2016-9574 CVE-2017-11624 CVE-2017-11625 CVE-2017-11626 CVE-2017-11627 CVE-2017-12176 CVE-2017-12177 CVE-2017-12178 CVE-2017-12179 CVE-2017-12180 CVE-2017-12181 CVE-2017-12182 CVE-2017-12183 CVE-2017-12184 CVE-2017-12185 CVE-2017-12186 CVE-2017-12187 CVE-2017-12595 CVE-2017-13721 CVE-2017-13723 CVE-2017-2885 CVE-2017-3735 CVE-2017-5429 CVE-2017-5432 CVE-2017-5433 CVE-2017-5434 CVE-2017-5435 CVE-2017-5436 CVE-2017-5437 CVE-2017-5438 CVE-2017-5439 CVE-2017-5440 CVE-2017-5441 CVE-2017-5442 CVE-2017-5443 CVE-2017-5444 CVE-2017-5445 CVE-2017-5446 CVE-2017-5447 CVE-2017-5448 CVE-2017-5459 CVE-2017-5460 CVE-2017-5461 CVE-2017-5462 CVE-2017-5464 CVE-2017-5465 CVE-2017-5469 CVE-2017-9208 CVE-2017-9209 CVE-2017-9210 CVE-2018-12099 CVE-2018-1288 CVE-2018-12910 CVE-2018-13785 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3214 CVE-2018-3817 CVE-2019-11477 CVE-2019-11478 CVE-2019-11487 CVE-2019-17571 CVE-2019-3846 SUSE-SU-2016:0296-1 SUSE-SU-2016:1791-1 SUSE-SU-2017:1248-1 SUSE-SU-2017:2981-1 SUSE-SU-2017:3047-1 SUSE-SU-2018:2204-1 SUSE-SU-2018:2536-1 SUSE-SU-2018:3066-1 SUSE-SU-2018:3074-1 SUSE-SU-2018:3933-1 SUSE-SU-2020:0054-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information gnome-photos-3.26.3-lp150.2 is installed OR gnome-photos-lang-3.26.3-lp150.2 is installed OR gnome-shell-search-provider-gnome-photos-3.26.3-lp150.2 is installed OR gtk2-data-2.24.32-lp150.2 is installed OR gtk2-immodule-amharic-2.24.32-lp150.2 is installed OR gtk2-immodule-inuktitut-2.24.32-lp150.2 is installed OR gtk2-immodule-thai-2.24.32-lp150.2 is installed OR gtk2-immodule-vietnamese-2.24.32-lp150.2 is installed OR gtk2-immodule-xim-2.24.32-lp150.2 is installed OR gtk2-lang-2.24.32-lp150.2 is installed OR gtk2-tools-2.24.32-lp150.2 is installed OR libgtk-2_0-0-2.24.32-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libnetpbm-devel-10.80.1-lp151.4.3 is installed OR libnetpbm11-10.80.1-lp151.4.3 is installed OR libnetpbm11-32bit-10.80.1-lp151.4.3 is installed OR netpbm-10.80.1-lp151.4.3 is installed OR netpbm-vulnerable-10.80.1-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information xorg-x11-server-7.6_1.18.3-76.15 is installed OR xorg-x11-server-extra-7.6_1.18.3-76.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libxml2-2-2.9.1-10 is installed OR libxml2-2-32bit-2.9.1-10 is installed OR libxml2-doc-2.9.1-10 is installed OR libxml2-tools-2.9.1-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.35-38.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND libyaml-0-2-0.1.6-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libvirt-2.0.0-27.42 is installed OR libvirt-client-2.0.0-27.42 is installed OR libvirt-daemon-2.0.0-27.42 is installed OR libvirt-daemon-config-network-2.0.0-27.42 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed OR libvirt-daemon-driver-network-2.0.0-27.42 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed OR libvirt-daemon-hooks-2.0.0-27.42 is installed OR libvirt-daemon-lxc-2.0.0-27.42 is installed OR libvirt-daemon-qemu-2.0.0-27.42 is installed OR libvirt-daemon-xen-2.0.0-27.42 is installed OR libvirt-doc-2.0.0-27.42 is installed OR libvirt-lock-sanlock-2.0.0-27.42 is installed OR libvirt-nss-2.0.0-27.42 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kernel-default-4.4.121-92.85 is installed OR kernel-default-base-4.4.121-92.85 is installed OR kernel-default-devel-4.4.121-92.85 is installed OR kernel-devel-4.4.121-92.85 is installed OR kernel-macros-4.4.121-92.85 is installed OR kernel-source-4.4.121-92.85 is installed OR kernel-syms-4.4.121-92.85 is installed OR kgraft-patch-4_4_121-92_85-default-1-3.5 is installed OR kgraft-patch-SLE12-SP2_Update_23-1-3.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_50-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_15-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information dbus-1-1.8.22-28 is installed OR dbus-1-x11-1.8.22-28 is installed OR libdbus-1-3-1.8.22-28 is installed OR libdbus-1-3-32bit-1.8.22-28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ghostscript-9.52-23.34 is installed OR ghostscript-x11-9.52-23.34 is installed OR libspectre-0.2.7-12.10 is installed OR libspectre1-0.2.7-12.10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND dnsmasq-2.78-18.3 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND python-PyYAML-3.10-15 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information grafana-4.5.1-1.8 is installed OR kafka-0.10.2.2-5 is installed OR logstash-2.4.1-5 is installed OR monasca-installer-20180608_12.47-9 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information adns-1.4-103.3 is installed OR libadns1-1.4-103.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.17.1-11.33 is installed
BACK