Oval Definition:	oval:org.opensuse.security:def:56577
Revision Date: 2020-12-01 Version: 1 Title: Security update for procps (Moderate) Description: This update for procps fixes the following security issues: - CVE-2018-1122: Prevent local privilege escalation in top. If a user ran top with HOME unset in an attacker-controlled directory, the attacker could have achieved privilege escalation by exploiting one of several vulnerabilities in the config_file() function (bsc#1092100). - CVE-2018-1123: Prevent denial of service in ps via mmap buffer overflow. Inbuilt protection in ps maped a guard page at the end of the overflowed buffer, ensuring that the impact of this flaw is limited to a crash (temporary denial of service) (bsc#1092100). - CVE-2018-1124: Prevent multiple integer overflows leading to a heap corruption in file2strvec function. This allowed a privilege escalation for a local attacker who can create entries in procfs by starting processes, which could result in crashes or arbitrary code execution in proc utilities run by other users (bsc#1092100). - CVE-2018-1125: Prevent stack buffer overflow in pgrep. This vulnerability was mitigated by FORTIFY limiting the impact to a crash (bsc#1092100). - CVE-2018-1126: Ensure correct integer size in proc/alloc.* to prevent truncation/integer overflow issues (bsc#1092100). Family: unix Class: patch Status: Reference(s): 1002573 1003952 1012260 1021577 1026191 1027519 1041469 1041894 1046637 1047675 1048920 1049578 1049703 1051787 1051788 1052686 1061204 1064786 1065464 1066489 1073210 1078436 1091107 1091551 1091836 1092100 1092697 1094767 1096515 1107343 1108771 1108986 1109363 1109465 1110506 1110507 1119947 1128481 1132728 1132729 1132732 1132734 1133375 1134718 1135824 1136570 703591 839074 857131 893359 961935 963806 963810 970287 970295 971770 972124 980904 981143 983394 984639 986362 CVE-2011-0465 CVE-2011-2895 CVE-2015-7555 CVE-2016-0505 CVE-2016-0546 CVE-2016-0596 CVE-2016-0597 CVE-2016-0598 CVE-2016-0600 CVE-2016-0606 CVE-2016-0608 CVE-2016-0609 CVE-2016-0616 CVE-2016-0640 CVE-2016-0641 CVE-2016-0642 CVE-2016-0643 CVE-2016-0644 CVE-2016-0646 CVE-2016-0647 CVE-2016-0648 CVE-2016-0649 CVE-2016-0650 CVE-2016-0651 CVE-2016-0655 CVE-2016-0666 CVE-2016-0668 CVE-2016-2047 CVE-2016-3977 CVE-2016-4983 CVE-2016-4997 CVE-2017-10664 CVE-2017-10806 CVE-2017-11334 CVE-2017-11434 CVE-2017-12135 CVE-2017-12137 CVE-2017-16541 CVE-2018-1122 CVE-2018-1123 CVE-2018-1124 CVE-2018-1125 CVE-2018-1126 CVE-2018-12376 CVE-2018-12377 CVE-2018-12378 CVE-2018-12379 CVE-2018-12381 CVE-2018-12383 CVE-2018-12385 CVE-2018-12386 CVE-2018-12387 CVE-2018-16884 CVE-2018-3646 CVE-2019-10245 CVE-2019-11691 CVE-2019-11692 CVE-2019-11693 CVE-2019-11694 CVE-2019-11698 CVE-2019-2602 CVE-2019-2684 CVE-2019-2697 CVE-2019-2698 CVE-2019-3860 CVE-2019-7317 CVE-2019-9800 CVE-2019-9815 CVE-2019-9816 CVE-2019-9817 CVE-2019-9818 CVE-2019-9819 CVE-2019-9820 CVE-2019-9928 SUSE-SU-2016:1620-1 SUSE-SU-2016:1709-1 SUSE-SU-2016:2915-1 SUSE-SU-2017:2319-1 SUSE-SU-2018:2451-2 SUSE-SU-2018:2480-1 SUSE-SU-2018:3591-1 SUSE-SU-2019:1345-1 SUSE-SU-2019:1388-1 SUSE-SU-2019:1602-1 SUSE-SU-2019:1606-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information apache2-mod_php7-7.2.5-lp150.1 is installed OR php7-7.2.5-lp150.1 is installed OR php7-ctype-7.2.5-lp150.1 is installed OR php7-dom-7.2.5-lp150.1 is installed OR php7-iconv-7.2.5-lp150.1 is installed OR php7-json-7.2.5-lp150.1 is installed OR php7-mysql-7.2.5-lp150.1 is installed OR php7-pdo-7.2.5-lp150.1 is installed OR php7-pgsql-7.2.5-lp150.1 is installed OR php7-sqlite-7.2.5-lp150.1 is installed OR php7-tokenizer-7.2.5-lp150.1 is installed OR php7-xmlreader-7.2.5-lp150.1 is installed OR php7-xmlwriter-7.2.5-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information gnutls-3.6.7-lp151.2.3 is installed OR gnutls-guile-3.6.7-lp151.2.3 is installed OR libgnutls-dane-devel-3.6.7-lp151.2.3 is installed OR libgnutls-dane0-3.6.7-lp151.2.3 is installed OR libgnutls-devel-3.6.7-lp151.2.3 is installed OR libgnutls-devel-32bit-3.6.7-lp151.2.3 is installed OR libgnutls30-3.6.7-lp151.2.3 is installed OR libgnutls30-32bit-3.6.7-lp151.2.3 is installed OR libgnutlsxx-devel-3.6.7-lp151.2.3 is installed OR libgnutlsxx28-3.6.7-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libprocps3-3.3.9-11.14 is installed OR procps-3.3.9-11.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information xorg-x11-7.6_1-14 is installed OR xorg-x11-essentials-7.6_1-14 is installed OR xrdb-1.1.0-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information xen-4.5.5_26-22.55 is installed OR xen-doc-html-4.5.5_26-22.55 is installed OR xen-kmp-default-4.5.5_26_k3.12.74_60.64.99-22.55 is installed OR xen-libs-4.5.5_26-22.55 is installed OR xen-libs-32bit-4.5.5_26-22.55 is installed OR xen-tools-4.5.5_26-22.55 is installed OR xen-tools-domU-4.5.5_26-22.55 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information giflib-progs-5.0.5-12 is installed OR libgif6-5.0.5-12 is installed OR libgif6-32bit-5.0.5-12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libdcerpc-binding0-4.4.2-38.20 is installed OR libdcerpc-binding0-32bit-4.4.2-38.20 is installed OR libdcerpc0-4.4.2-38.20 is installed OR libdcerpc0-32bit-4.4.2-38.20 is installed OR libndr-krb5pac0-4.4.2-38.20 is installed OR libndr-krb5pac0-32bit-4.4.2-38.20 is installed OR libndr-nbt0-4.4.2-38.20 is installed OR libndr-nbt0-32bit-4.4.2-38.20 is installed OR libndr-standard0-4.4.2-38.20 is installed OR libndr-standard0-32bit-4.4.2-38.20 is installed OR libndr0-4.4.2-38.20 is installed OR libndr0-32bit-4.4.2-38.20 is installed OR libnetapi0-4.4.2-38.20 is installed OR libnetapi0-32bit-4.4.2-38.20 is installed OR libsamba-credentials0-4.4.2-38.20 is installed OR libsamba-credentials0-32bit-4.4.2-38.20 is installed OR libsamba-errors0-4.4.2-38.20 is installed OR libsamba-errors0-32bit-4.4.2-38.20 is installed OR libsamba-hostconfig0-4.4.2-38.20 is installed OR libsamba-hostconfig0-32bit-4.4.2-38.20 is installed OR libsamba-passdb0-4.4.2-38.20 is installed OR libsamba-passdb0-32bit-4.4.2-38.20 is installed OR libsamba-util0-4.4.2-38.20 is installed OR libsamba-util0-32bit-4.4.2-38.20 is installed OR libsamdb0-4.4.2-38.20 is installed OR libsamdb0-32bit-4.4.2-38.20 is installed OR libsmbclient0-4.4.2-38.20 is installed OR libsmbclient0-32bit-4.4.2-38.20 is installed OR libsmbconf0-4.4.2-38.20 is installed OR libsmbconf0-32bit-4.4.2-38.20 is installed OR libsmbldap0-4.4.2-38.20 is installed OR libsmbldap0-32bit-4.4.2-38.20 is installed OR libtevent-util0-4.4.2-38.20 is installed OR libtevent-util0-32bit-4.4.2-38.20 is installed OR libwbclient0-4.4.2-38.20 is installed OR libwbclient0-32bit-4.4.2-38.20 is installed OR samba-4.4.2-38.20 is installed OR samba-client-4.4.2-38.20 is installed OR samba-client-32bit-4.4.2-38.20 is installed OR samba-doc-4.4.2-38.20 is installed OR samba-libs-4.4.2-38.20 is installed OR samba-libs-32bit-4.4.2-38.20 is installed OR samba-winbind-4.4.2-38.20 is installed OR samba-winbind-32bit-4.4.2-38.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-devel-52.9.0esr-109.38 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND binutils-2.31-9.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND gdb-8.3.1-2.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND memcached-1.4.39-4.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information bzip2-1.0.6-29 is installed OR bzip2-doc-1.0.6-29 is installed OR libbz2-1-1.0.6-29 is installed OR libbz2-1-32bit-1.0.6-29 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information xen-4.5.5_14-22.25 is installed OR xen-doc-html-4.5.5_14-22.25 is installed OR xen-kmp-default-4.5.5_14_k3.12.74_60.64.54-22.25 is installed OR xen-libs-4.5.5_14-22.25 is installed OR xen-libs-32bit-4.5.5_14-22.25 is installed OR xen-tools-4.5.5_14-22.25 is installed OR xen-tools-domU-4.5.5_14-22.25 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.45-38.37 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.45-38.37 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.45-38.37 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.45-38.37 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.45-38.37 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information openstack-aodh-5.1.1~dev5-3.5 is installed OR openstack-aodh-api-5.1.1~dev5-3.5 is installed OR openstack-aodh-doc-5.1.1~dev5-3.5 is installed OR openstack-aodh-evaluator-5.1.1~dev5-3.5 is installed OR openstack-aodh-expirer-5.1.1~dev5-3.5 is installed OR openstack-aodh-listener-5.1.1~dev5-3.5 is installed OR openstack-aodh-notifier-5.1.1~dev5-3.5 is installed OR openstack-barbican-5.0.1~dev11-3.8 is installed OR openstack-barbican-api-5.0.1~dev11-3.8 is installed OR openstack-barbican-doc-5.0.1~dev11-3.8 is installed OR openstack-barbican-keystone-listener-5.0.1~dev11-3.8 is installed OR openstack-barbican-retry-5.0.1~dev11-3.8 is installed OR openstack-barbican-worker-5.0.1~dev11-3.8 is installed OR openstack-cinder-11.1.2~dev14-3.6 is installed OR openstack-cinder-api-11.1.2~dev14-3.6 is installed OR openstack-cinder-backup-11.1.2~dev14-3.6 is installed OR openstack-cinder-doc-11.1.2~dev14-3.6 is installed OR openstack-cinder-scheduler-11.1.2~dev14-3.6 is installed OR openstack-cinder-volume-11.1.2~dev14-3.6 is installed OR openstack-dashboard-12.0.4~dev1-3.8 is installed OR openstack-designate-5.0.2~dev5-3.5 is installed OR openstack-designate-agent-5.0.2~dev5-3.5 is installed OR openstack-designate-api-5.0.2~dev5-3.5 is installed OR openstack-designate-central-5.0.2~dev5-3.5 is installed OR openstack-designate-doc-5.0.2~dev5-3.5 is installed OR openstack-designate-producer-5.0.2~dev5-3.5 is installed OR openstack-designate-sink-5.0.2~dev5-3.5 is installed OR openstack-designate-worker-5.0.2~dev5-3.5 is installed OR openstack-glance-15.0.2~dev4-3.3 is installed OR openstack-glance-api-15.0.2~dev4-3.3 is installed OR openstack-glance-doc-15.0.2~dev4-3.3 is installed OR openstack-glance-registry-15.0.2~dev4-3.3 is installed OR openstack-heat-9.0.5~dev11-3.6 is installed OR openstack-heat-api-9.0.5~dev11-3.6 is installed OR openstack-heat-api-cfn-9.0.5~dev11-3.6 is installed OR openstack-heat-api-cloudwatch-9.0.5~dev11-3.6 is installed OR openstack-heat-doc-9.0.5~dev11-3.6 is installed OR openstack-heat-engine-9.0.5~dev11-3.6 is installed OR openstack-heat-plugin-heat_docker-9.0.5~dev11-3.6 is installed OR openstack-heat-templates-0.0.0+git.1525957319.6b5a7cd-3.3 is installed OR openstack-heat-test-9.0.5~dev11-3.6 is installed OR openstack-horizon-plugin-designate-ui-5.0.2~dev5-3.3 is installed OR openstack-horizon-plugin-freezer-ui-5.0.1~dev6-3.3 is installed OR openstack-horizon-plugin-gbp-ui-5.0.1~dev21-4.3 is installed OR openstack-horizon-plugin-manila-ui-2.10.3~dev4-4.5 is installed OR openstack-horizon-plugin-neutron-lbaas-ui-3.0.3~dev2-3.5 is installed OR openstack-horizon-plugin-trove-ui-9.0.1~dev7-3.3 is installed OR openstack-ironic-9.1.5~dev7-3.6 is installed OR openstack-ironic-api-9.1.5~dev7-3.6 is installed OR openstack-ironic-conductor-9.1.5~dev7-3.6 is installed OR openstack-ironic-doc-9.1.5~dev7-3.6 is installed OR openstack-keystone-12.0.1~dev19-5.8 is installed OR openstack-keystone-doc-12.0.1~dev19-5.8 is installed OR openstack-manila-5.0.2~dev55-3.6 is installed OR openstack-manila-api-5.0.2~dev55-3.6 is installed OR openstack-manila-data-5.0.2~dev55-3.6 is installed OR openstack-manila-doc-5.0.2~dev55-3.6 is installed OR openstack-manila-scheduler-5.0.2~dev55-3.6 is installed OR openstack-manila-share-5.0.2~dev55-3.6 is installed OR openstack-neutron-11.0.6~dev63-3.6 is installed OR openstack-neutron-dhcp-agent-11.0.6~dev63-3.6 is installed OR openstack-neutron-doc-11.0.6~dev63-3.6 is installed OR openstack-neutron-fwaas-11.0.2~dev7-3.5 is installed OR openstack-neutron-fwaas-doc-11.0.2~dev7-3.5 is installed OR openstack-neutron-ha-tool-11.0.6~dev63-3.6 is installed OR openstack-neutron-l3-agent-11.0.6~dev63-3.6 is installed OR openstack-neutron-lbaas-11.0.4~dev4-3.3 is installed OR openstack-neutron-lbaas-agent-11.0.4~dev4-3.3 is installed OR openstack-neutron-lbaas-doc-11.0.4~dev4-3.3 is installed OR openstack-neutron-linuxbridge-agent-11.0.6~dev63-3.6 is installed OR openstack-neutron-macvtap-agent-11.0.6~dev63-3.6 is installed OR openstack-neutron-metadata-agent-11.0.6~dev63-3.6 is installed OR openstack-neutron-metering-agent-11.0.6~dev63-3.6 is installed OR openstack-neutron-openvswitch-agent-11.0.6~dev63-3.6 is installed OR openstack-neutron-server-11.0.6~dev63-3.6 is installed OR openstack-neutron-vpn-agent-11.0.1~dev1-3.3 is installed OR openstack-neutron-vpnaas-11.0.1~dev1-3.3 is installed OR openstack-neutron-vpnaas-doc-11.0.1~dev1-3.3 is installed OR openstack-neutron-vyatta-agent-11.0.1~dev1-3.3 is installed OR openstack-neutron-zvm-agent-8.0.1~dev12-4.3 is installed OR openstack-nova-16.1.5~dev49-3.8 is installed OR openstack-nova-api-16.1.5~dev49-3.8 is installed OR openstack-nova-cells-16.1.5~dev49-3.8 is installed OR openstack-nova-compute-16.1.5~dev49-3.8 is installed OR openstack-nova-conductor-16.1.5~dev49-3.8 is installed OR openstack-nova-console-16.1.5~dev49-3.8 is installed OR openstack-nova-consoleauth-16.1.5~dev49-3.8 is installed OR openstack-nova-doc-16.1.5~dev49-3.8 is installed OR openstack-nova-novncproxy-16.1.5~dev49-3.8 is installed OR openstack-nova-placement-api-16.1.5~dev49-3.8 is installed OR openstack-nova-scheduler-16.1.5~dev49-3.8 is installed OR openstack-nova-serialproxy-16.1.5~dev49-3.8 is installed OR openstack-nova-virt-zvm-8.0.1~dev56-3.3 is installed OR openstack-nova-vncproxy-16.1.5~dev49-3.8 is installed OR openstack-octavia-1.0.3~dev21-4.6 is installed OR openstack-octavia-amphora-agent-1.0.3~dev21-4.6 is installed OR openstack-octavia-api-1.0.3~dev21-4.6 is installed OR openstack-octavia-health-manager-1.0.3~dev21-4.6 is installed OR openstack-octavia-housekeeping-1.0.3~dev21-4.6 is installed OR openstack-octavia-worker-1.0.3~dev21-4.6 is installed OR openstack-trove-8.0.1~dev11-3.3 is installed OR openstack-trove-api-8.0.1~dev11-3.3 is installed OR openstack-trove-conductor-8.0.1~dev11-3.3 is installed OR openstack-trove-doc-8.0.1~dev11-3.3 is installed OR openstack-trove-guestagent-8.0.1~dev11-3.3 is installed OR openstack-trove-taskmanager-8.0.1~dev11-3.3 is installed OR python-aodh-5.1.1~dev5-3.5 is installed OR python-barbican-5.0.1~dev11-3.8 is installed OR python-barbicanclient-4.5.2-4.3 is installed OR python-barbicanclient-doc-4.5.2-4.3 is installed OR python-cinder-11.1.2~dev14-3.6 is installed OR python-designate-5.0.2~dev5-3.5 is installed OR python-glance-15.0.2~dev4-3.3 is installed OR python-heat-9.0.5~dev11-3.6 is installed OR python-horizon-12.0.4~dev1-3.8 is installed OR python-horizon-plugin-designate-ui-5.0.2~dev5-3.3 is installed OR python-horizon-plugin-freezer-ui-5.0.1~dev6-3.3 is installed OR python-horizon-plugin-gbp-ui-5.0.1~dev21-4.3 is installed OR python-horizon-plugin-manila-ui-2.10.3~dev4-4.5 is installed OR python-horizon-plugin-neutron-lbaas-ui-3.0.3~dev2-3.5 is installed OR python-horizon-plugin-trove-ui-9.0.1~dev7-3.3 is installed OR python-ironic-9.1.5~dev7-3.6 is installed OR python-keystone-12.0.1~dev19-5.8 is installed OR python-keystone-json-assignment-0.0.2-3.3 is installed OR python-manila-5.0.2~dev55-3.6 is installed OR python-manilaclient-1.17.3-3.3 is installed OR python-manilaclient-doc-1.17.3-3.3 is installed OR python-neutron-11.0.6~dev63-3.6 is installed OR python-neutron-fwaas-11.0.2~dev7-3.5 is installed OR python-neutron-lbaas-11.0.4~dev4-3.3 is installed OR python-neutron-vpnaas-11.0.1~dev1-3.3 is installed OR python-nova-16.1.5~dev49-3.8 is installed OR python-octavia-1.0.3~dev21-4.6 is installed OR python-trove-8.0.1~dev11-3.3 is installed OR python-vmware-nsx-11.0.3~dev16-3.3 is installed OR python-vmware-nsxlib-11.0.4~dev7-3.3 is installed
BACK