Oval Definition:	oval:org.opensuse.security:def:58472
Revision Date: 2020-12-01 Version: 1 Title: Security update for xorg-x11-server (Moderate) Description: This update for xorg-x11-server provides the following fixes: - Remove unused function with use-after-free issue. (bsc#1025035) - Use arc4random to generate cookies. (bsc#1025084) - Prevent timing attack against MIT cookie. (bsc#1025029, CVE-2017-2624) - XDrawArc performance improvement. (bsc#1019649) - Re-enable indirect GLX by default. (bsc#1039042) - Add IndirectGLX ServerFlags option which allows users to enable or disable indirect GLX. (bsc#1032509) - Fix dashing in GLAMOR. (bsc#1021803) - Fix X server crash on drawing dashed lines. (bsc#1025985) Family: unix Class: patch Status: Reference(s): 1005179 1007216 1008501 1008894 1012382 1014338 1018128 1019649 1021803 1024218 1024908 1025029 1025035 1025084 1025985 1027519 1030263 1032114 1032120 1032509 1034113 1036453 1039042 1043485 1046856 1054413 1056088 1056090 1056093 1056095 1056097 1056101 1056105 1068032 1073311 1073879 1080157 1080533 1082632 1087231 1087659 1087906 1093158 1094268 1096748 1097108 1097356 1099306 1100152 1103186 1103203 1105528 1106913 1108940 1109772 1111331 1111622 1112178 1113399 1114423 1115040 1115045 1115047 1116380 1116841 1117756 1118338 1119019 1122668 1122822 1124729 1124734 1124832 1125580 1128378 1129279 1131416 1131427 1131587 1132673 1132828 1133188 1163985 1165787 1172906 1172935 1173197 1174628 761500 922448 929736 935252 945455 947357 961596 967128 977940 982141 985232 987144 990438 999688 CVE-2015-2296 CVE-2016-10220 CVE-2016-2183 CVE-2016-5009 CVE-2016-5547 CVE-2016-5548 CVE-2016-5549 CVE-2016-5552 CVE-2016-8636 CVE-2016-9601 CVE-2017-1000083 CVE-2017-13738 CVE-2017-13739 CVE-2017-13740 CVE-2017-13741 CVE-2017-13743 CVE-2017-13744 CVE-2017-17741 CVE-2017-18174 CVE-2017-18344 CVE-2017-2624 CVE-2017-3231 CVE-2017-3241 CVE-2017-3252 CVE-2017-3253 CVE-2017-3259 CVE-2017-3261 CVE-2017-3272 CVE-2017-3289 CVE-2017-5951 CVE-2017-7207 CVE-2017-8291 CVE-2018-10853 CVE-2018-1091 CVE-2018-1120 CVE-2018-1128 CVE-2018-1129 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-18074 CVE-2018-18849 CVE-2018-19407 CVE-2018-19665 CVE-2018-19961 CVE-2018-19962 CVE-2018-19965 CVE-2018-19966 CVE-2018-3646 CVE-2018-5848 CVE-2019-11091 CVE-2019-11486 CVE-2019-3882 CVE-2019-6974 CVE-2019-7221 CVE-2019-8564 CVE-2019-9213 CVE-2019-9503 CVE-2020-10188 CVE-2020-14093 CVE-2020-14154 CVE-2020-14344 CVE-2020-14954 CVE-2020-1720 SUSE-SU-2017:0367-1 SUSE-SU-2017:0460-1 SUSE-SU-2017:1404-1 SUSE-SU-2017:1675-1 SUSE-SU-2017:1893-1 SUSE-SU-2017:2570-1 SUSE-SU-2018:2391-1 SUSE-SU-2019:0709-1 SUSE-SU-2019:1287-1 SUSE-SU-2020:0715-1 SUSE-SU-2020:2196-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND hplip-hpijs-3.17.9-lp150.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libpng16-1.6.34-lp151.3.3 is installed OR libpng16-16-1.6.34-lp151.3.3 is installed OR libpng16-16-32bit-1.6.34-lp151.3.3 is installed OR libpng16-compat-devel-1.6.34-lp151.3.3 is installed OR libpng16-compat-devel-32bit-1.6.34-lp151.3.3 is installed OR libpng16-devel-1.6.34-lp151.3.3 is installed OR libpng16-devel-32bit-1.6.34-lp151.3.3 is installed OR libpng16-tools-1.6.34-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information xorg-x11-server-7.6_1.18.3-71 is installed OR xorg-x11-server-extra-7.6_1.18.3-71 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information kernel-default-4.4.121-92.109 is installed OR kernel-default-base-4.4.121-92.109 is installed OR kernel-default-devel-4.4.121-92.109 is installed OR kernel-devel-4.4.121-92.109 is installed OR kernel-macros-4.4.121-92.109 is installed OR kernel-source-4.4.121-92.109 is installed OR kernel-syms-4.4.121-92.109 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information xen-4.7.6_05-43.45 is installed OR xen-doc-html-4.7.6_05-43.45 is installed OR xen-libs-4.7.6_05-43.45 is installed OR xen-libs-32bit-4.7.6_05-43.45 is installed OR xen-tools-4.7.6_05-43.45 is installed OR xen-tools-domU-4.7.6_05-43.45 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_50-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_15-9-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information elfutils-0.158-6 is installed OR libasm1-0.158-6 is installed OR libasm1-32bit-0.158-6 is installed OR libdw1-0.158-6 is installed OR libdw1-32bit-0.158-6 is installed OR libebl1-0.158-6 is installed OR libebl1-32bit-0.158-6 is installed OR libelf1-0.158-6 is installed OR libelf1-32bit-0.158-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information glibc-2.22-62.22 is installed OR glibc-32bit-2.22-62.22 is installed OR glibc-devel-2.22-62.22 is installed OR glibc-devel-32bit-2.22-62.22 is installed OR glibc-html-2.22-62.22 is installed OR glibc-i18ndata-2.22-62.22 is installed OR glibc-info-2.22-62.22 is installed OR glibc-locale-2.22-62.22 is installed OR glibc-locale-32bit-2.22-62.22 is installed OR glibc-profile-2.22-62.22 is installed OR glibc-profile-32bit-2.22-62.22 is installed OR nscd-2.22-62.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information MozillaFirefox-68.2.0-109.95 is installed OR MozillaFirefox-translations-common-68.2.0-109.95 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information cups-1.7.5-20.20 is installed OR cups-client-1.7.5-20.20 is installed OR cups-libs-1.7.5-20.20 is installed OR cups-libs-32bit-1.7.5-20.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information fontconfig-2.11.1-7 is installed OR fontconfig-32bit-2.11.1-7 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information ardana-monasca-8.0+git.1535031421.9262a47-3.12 is installed OR ardana-spark-8.0+git.1534267176.a5f3a22-3.6 is installed OR kafka-0.10.2.2-5.6 is installed OR openstack-monasca-api-2.2.1~dev24-3.6 is installed OR python-monasca-api-2.2.1~dev24-3.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-rails-html-sanitizer-1.0.3-8.8 is installed OR rubygem-rails-html-sanitizer-1.0.3-8.8 is installed
BACK