Oval Definition:	oval:org.opensuse.security:def:58583
Revision Date: 2020-12-01 Version: 1 Title: Security update for xorg-x11-server (Moderate) Description: This update for xorg-x11-server fixes several issues. These security issues were fixed: - CVE-2017-13721: Missing validation of shmseg resource id in Xext/XShm could lead to shared memory segments of other users beeing freed (bnc#1052984) - CVE-2017-13723: A local denial of service via unusual characters in XkbAtomText and XkbStringText was fixed (bnc#1051150) - CVE-2017-12184,CVE-2017-12185,CVE-2017-12186,CVE-2017-12187: Fixed unvalidated lengths in multiple extensions (bsc#1063034) - CVE-2017-12183: Fixed some unvalidated lengths in the XFIXES extension. (bsc#1063035) - CVE-2017-12180,CVE-2017-12181,CVE-2017-12182: Fixed various unvalidated lengths in the XFree86-VidMode/XFree86-DGA/XFree86-DRI extensions (bsc#1063037) - CVE-2017-12179: Fixed an integer overflow and unvalidated length in (S)ProcXIBarrierReleasePointer in Xi (bsc#1063038) - CVE-2017-12178: Fixed a wrong extra length check in ProcXIChangeHierarchy in Xi (bsc#1063039) - CVE-2017-12177: Fixed an unvalidated variable-length request in ProcDbeGetVisualInfo (bsc#1063040) - CVE-2017-12176: Fixed an unvalidated extra length in ProcEstablishConnection (bsc#1063041) These non-security issues were fixed: - Make colormap/gamma glue code work with the RandR extension disabled. This prevents it from crashing and showing wrong colors. (bsc#1061107) - Recognize ssh as a remote client to fix launching applications remotely when using DRI3. (bsc#1022727) Family: unix Class: patch Status: Reference(s): 1006984 1006989 1010201 1012382 1012829 1016715 1017461 1020645 1021424 1022595 1022600 1022727 1022914 1024014 1024017 1024030 1024034 1024062 1024412 1024908 1025461 1027301 1028971 1030061 1031717 1034048 1034113 1037811 1037890 1038231 1043485 1046107 1050060 1050231 1051150 1052984 1053919 1055478 1055567 1056003 1056365 1056427 1056979 1057199 1058135 1059863 1060333 1060682 1060985 1061107 1061451 1061756 1062520 1062941 1062962 1063026 1063034 1063035 1063037 1063038 1063039 1063040 1063041 1063460 1063475 1063501 1063509 1063516 1063520 1063695 1064206 1064701 1064926 1065180 1065600 1065639 1065692 1065717 1065866 1066045 1066192 1066213 1066223 1066285 1066382 1066470 1066471 1066472 1066573 1066606 1066629 1067105 1067132 1067494 1067888 1068032 1068671 1068978 1068980 1068982 1069270 1069793 1069942 1069996 1070006 1070145 1070535 1070737 1070767 1070771 1070805 1070825 1070964 1071231 1071693 1071694 1071695 1071833 1073311 1080157 1080533 1082632 1083125 1085447 1087231 1087659 1087906 1090368 1090646 1090869 1093158 1094268 1096748 1097356 1097560 1097824 1100078 1100152 1101820 1103186 1103809 1103810 1104076 1104205 1104826 1106913 1109209 1109772 1111331 1111657 1112178 1113399 1113975 1116841 1117951 1118338 1119019 1122822 1124729 1124734 1124832 1125580 1127080 1128378 1129279 1131416 1131427 1131587 1132673 1132828 1133188 1138748 1149792 1165631 1173659 1173942 1174247 963575 964944 966170 966172 966186 966191 966316 966318 969474 969475 969476 969477 971975 974590 977043 979928 981848 989261 996376 CVE-2009-0023 CVE-2009-1191 CVE-2009-1195 CVE-2009-1890 CVE-2009-1891 CVE-2009-1955 CVE-2009-1956 CVE-2009-2412 CVE-2009-2699 CVE-2009-3094 CVE-2009-3095 CVE-2009-3555 CVE-2009-3560 CVE-2009-3720 CVE-2010-0408 CVE-2010-0425 CVE-2010-0434 CVE-2010-1452 CVE-2010-1623 CVE-2010-2068 CVE-2011-1176 CVE-2011-3192 CVE-2011-3368 CVE-2011-3607 CVE-2011-4317 CVE-2012-0021 CVE-2012-0031 CVE-2012-0053 CVE-2012-2687 CVE-2012-3499 CVE-2012-3502 CVE-2012-5783 CVE-2013-1896 CVE-2013-2249 CVE-2013-5704 CVE-2013-6438 CVE-2014-0098 CVE-2014-0117 CVE-2014-0118 CVE-2014-0226 CVE-2014-0231 CVE-2014-3523 CVE-2014-3581 CVE-2014-3583 CVE-2014-8109 CVE-2015-0228 CVE-2015-0253 CVE-2015-4000 CVE-2016-0736 CVE-2016-10198 CVE-2016-10199 CVE-2016-1546 CVE-2016-2161 CVE-2016-4975 CVE-2016-4979 CVE-2016-5387 CVE-2016-8636 CVE-2016-8740 CVE-2016-8743 CVE-2016-8743 CVE-2017-1000410 CVE-2017-11600 CVE-2017-12176 CVE-2017-12177 CVE-2017-12178 CVE-2017-12179 CVE-2017-12180 CVE-2017-12181 CVE-2017-12182 CVE-2017-12183 CVE-2017-12184 CVE-2017-12185 CVE-2017-12186 CVE-2017-12187 CVE-2017-12193 CVE-2017-13166 CVE-2017-13721 CVE-2017-13723 CVE-2017-15115 CVE-2017-15265 CVE-2017-16528 CVE-2017-16536 CVE-2017-16537 CVE-2017-16645 CVE-2017-16646 CVE-2017-16994 CVE-2017-17448 CVE-2017-17449 CVE-2017-17450 CVE-2017-17741 CVE-2017-18174 CVE-2017-3167 CVE-2017-3169 CVE-2017-5840 CVE-2017-5841 CVE-2017-5845 CVE-2017-7482 CVE-2017-7494 CVE-2017-7679 CVE-2017-8824 CVE-2018-1087 CVE-2018-10903 CVE-2018-1091 CVE-2018-1120 CVE-2018-1128 CVE-2018-1129 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-12470 CVE-2018-12471 CVE-2018-12472 CVE-2018-14526 CVE-2018-19407 CVE-2018-5848 CVE-2018-8781 CVE-2018-8897 CVE-2019-11091 CVE-2019-11486 CVE-2019-1559 CVE-2019-16746 CVE-2019-3882 CVE-2019-6974 CVE-2019-7221 CVE-2019-8564 CVE-2019-9213 CVE-2019-9503 CVE-2020-11668 CVE-2020-14331 CVE-2020-1749 SUSE-SU-2017:1010-1 SUSE-SU-2017:1392-1 SUSE-SU-2017:3047-1 SUSE-SU-2017:3410-1 SUSE-SU-2018:1536-1 SUSE-SU-2018:2815-1 SUSE-SU-2019:0803-1 SUSE-SU-2019:1088-1 SUSE-SU-2019:1287-1 SUSE-SU-2020:2502-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.0 NonFree openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information gnome-shell-3.26.2+20180130.0d9c74212-lp150.2 is installed OR gnome-shell-calendar-3.26.2+20180130.0d9c74212-lp150.2 is installed OR gnome-shell-lang-3.26.2+20180130.0d9c74212-lp150.2 is installed Definition Synopsis openSUSE Leap 15.0 NonFree is installed AND opera-54.0.2952.41-lp150.2.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libvlc5-3.0.7.1-lp151.6.3 is installed OR libvlccore9-3.0.7.1-lp151.6.3 is installed OR vlc-3.0.7.1-lp151.6.3 is installed OR vlc-codec-gstreamer-3.0.7.1-lp151.6.3 is installed OR vlc-devel-3.0.7.1-lp151.6.3 is installed OR vlc-jack-3.0.7.1-lp151.6.3 is installed OR vlc-lang-3.0.7.1-lp151.6.3 is installed OR vlc-noX-3.0.7.1-lp151.6.3 is installed OR vlc-qt-3.0.7.1-lp151.6.3 is installed OR vlc-vdpau-3.0.7.1-lp151.6.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information xorg-x11-server-7.6_1.18.3-76.15 is installed OR xorg-x11-server-extra-7.6_1.18.3-76.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information kernel-default-4.4.121-92.109 is installed OR kernel-default-base-4.4.121-92.109 is installed OR kernel-default-devel-4.4.121-92.109 is installed OR kernel-devel-4.4.121-92.109 is installed OR kernel-macros-4.4.121-92.109 is installed OR kernel-source-4.4.121-92.109 is installed OR kernel-syms-4.4.121-92.109 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information res-signingkeys-3.0.37-52.23 is installed OR smt-3.0.37-52.23 is installed OR smt-support-3.0.37-52.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_59-92_24-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_9-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND apache-commons-httpclient-3.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND ucode-intel-20190618-13.47 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libopenssl-devel-1.0.2j-60.60 is installed OR libopenssl1_0_0-1.0.2j-60.60 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.60 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.60 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.60 is installed OR openssl-1.0.2j-60.60 is installed OR openssl-doc-1.0.2j-60.60 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information xen-4.9.4_04-3.56 is installed OR xen-doc-html-4.9.4_04-3.56 is installed OR xen-libs-4.9.4_04-3.56 is installed OR xen-libs-32bit-4.9.4_04-3.56 is installed OR xen-tools-4.9.4_04-3.56 is installed OR xen-tools-domU-4.9.4_04-3.56 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information xen-4.9.3_03-3.44 is installed OR xen-doc-html-4.9.3_03-3.44 is installed OR xen-libs-4.9.3_03-3.44 is installed OR xen-libs-32bit-4.9.3_03-3.44 is installed OR xen-tools-4.9.3_03-3.44 is installed OR xen-tools-domU-4.9.3_03-3.44 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libidn-tools-1.28-5.3 is installed OR libidn11-1.28-5.3 is installed OR libidn11-32bit-1.28-5.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND ucode-intel-20200602-13.68 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-sprockets-2_12-2.12.5-1.4 is installed OR rubygem-sprockets-2_12-2.12.5-1.4 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND xrdp-0.9.0~git.1456906198.f422461-21.27 is installed
BACK