OVAL Reference oval:org.opensuse.security:def:60439

Oval Definition:

oval:org.opensuse.security:def:60439

Revision Date:	2021-12-20	Version:	1
Title:	Security update for xorg-x11-server (Important)
Description:	This update for xorg-x11-server fixes the following issues: - CVE-2021-4009: The handler for the CreatePointerBarrier request of the XFixes extension does not properly validate the request length leading to out of bounds memory write. (bsc#1190487) - CVE-2021-4011: The handlers for the RecordCreateContext and RecordRegisterClients requests of the Record extension do not properly validate the request length leading to out of bounds memory write. (bsc#1190489)
Family:	unix	Class:	patch
Status:		Reference(s):	1067841 1067844 1082023 1109105 1110949 1111479 1111480 1112229 1117022 1117274 1117313 1117327 1117331 1120489 1122623 1144903 1149294 1149295 1149296 1149297 1149298 1149299 1149303 1149304 1149324 1150003 1150250 1153108 1153158 1153161 1158785 1158787 1158788 1158789 1158790 1158791 1158792 1158793 1158795 1168422 1176496 1176764 1190487 1190489 CVE-2010-2242 CVE-2011-1146 CVE-2011-2511 CVE-2011-4600 CVE-2012-3445 CVE-2013-0170 CVE-2013-1962 CVE-2013-1976 CVE-2013-2218 CVE-2013-2230 CVE-2013-4153 CVE-2013-4154 CVE-2013-4238 CVE-2013-4239 CVE-2013-4296 CVE-2013-4297 CVE-2013-4311 CVE-2013-4399 CVE-2013-4400 CVE-2013-4401 CVE-2013-6436 CVE-2013-6456 CVE-2013-6457 CVE-2013-6458 CVE-2013-7490 CVE-2014-0028 CVE-2014-0050 CVE-2014-0179 CVE-2014-1447 CVE-2014-3633 CVE-2014-3657 CVE-2014-3970 CVE-2014-7823 CVE-2014-8131 CVE-2015-0236 CVE-2015-5174 CVE-2015-5247 CVE-2015-5313 CVE-2015-5345 CVE-2015-5346 CVE-2015-5351 CVE-2016-0706 CVE-2016-0714 CVE-2016-0762 CVE-2016-0763 CVE-2016-0772 CVE-2016-1000110 CVE-2016-3092 CVE-2016-5018 CVE-2016-5636 CVE-2016-5699 CVE-2016-6794 CVE-2016-6796 CVE-2016-6797 CVE-2016-6816 CVE-2016-8735 CVE-2016-8745 CVE-2017-15098 CVE-2017-15099 CVE-2017-2635 CVE-2017-5647 CVE-2017-5648 CVE-2018-17183 CVE-2018-17456 CVE-2018-17961 CVE-2018-18073 CVE-2018-18284 CVE-2018-19409 CVE-2018-19475 CVE-2018-19476 CVE-2018-19477 CVE-2018-20217 CVE-2019-10220 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11752 CVE-2019-11753 CVE-2019-1348 CVE-2019-1349 CVE-2019-1350 CVE-2019-1351 CVE-2019-1352 CVE-2019-1353 CVE-2019-1354 CVE-2019-1387 CVE-2019-1547 CVE-2019-1563 CVE-2019-17133 CVE-2019-19604 CVE-2019-20919 CVE-2019-3816 CVE-2019-3833 CVE-2019-9812 CVE-2020-3898 CVE-2021-4009 CVE-2021-4011 SUSE-SU-2017:3391-1 SUSE-SU-2018:4088-1 SUSE-SU-2018:4090-1 SUSE-SU-2019:0111-1 SUSE-SU-2019:0656-1 SUSE-SU-2019:2436-1 SUSE-SU-2019:3311-1 SUSE-SU-2020:1045-1 SUSE-SU-2020:2856-1 SUSE-SU-2021:4119-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information epiphany-3.28.1.1-lp151.3.3 is installed OR epiphany-branding-upstream-3.28.1.1-lp151.3.3 is installed OR epiphany-lang-3.28.1.1-lp151.3.3 is installed OR gnome-shell-search-provider-epiphany-3.28.1.1-lp151.3.3 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information apache2-mod_php7-7.2.5-lp151.6.6 is installed OR php7-7.2.5-lp151.6.6 is installed OR php7-bcmath-7.2.5-lp151.6.6 is installed OR php7-bz2-7.2.5-lp151.6.6 is installed OR php7-calendar-7.2.5-lp151.6.6 is installed OR php7-ctype-7.2.5-lp151.6.6 is installed OR php7-curl-7.2.5-lp151.6.6 is installed OR php7-dba-7.2.5-lp151.6.6 is installed OR php7-devel-7.2.5-lp151.6.6 is installed OR php7-dom-7.2.5-lp151.6.6 is installed OR php7-embed-7.2.5-lp151.6.6 is installed OR php7-enchant-7.2.5-lp151.6.6 is installed OR php7-exif-7.2.5-lp151.6.6 is installed OR php7-fastcgi-7.2.5-lp151.6.6 is installed OR php7-fileinfo-7.2.5-lp151.6.6 is installed OR php7-firebird-7.2.5-lp151.6.6 is installed OR php7-fpm-7.2.5-lp151.6.6 is installed OR php7-ftp-7.2.5-lp151.6.6 is installed OR php7-gd-7.2.5-lp151.6.6 is installed OR php7-gettext-7.2.5-lp151.6.6 is installed OR php7-gmp-7.2.5-lp151.6.6 is installed OR php7-iconv-7.2.5-lp151.6.6 is installed OR php7-intl-7.2.5-lp151.6.6 is installed OR php7-json-7.2.5-lp151.6.6 is installed OR php7-ldap-7.2.5-lp151.6.6 is installed OR php7-mbstring-7.2.5-lp151.6.6 is installed OR php7-mysql-7.2.5-lp151.6.6 is installed OR php7-odbc-7.2.5-lp151.6.6 is installed OR php7-opcache-7.2.5-lp151.6.6 is installed OR php7-openssl-7.2.5-lp151.6.6 is installed OR php7-pcntl-7.2.5-lp151.6.6 is installed OR php7-pdo-7.2.5-lp151.6.6 is installed OR php7-pear-7.2.5-lp151.6.6 is installed OR php7-pear-Archive_Tar-7.2.5-lp151.6.6 is installed OR php7-pgsql-7.2.5-lp151.6.6 is installed OR php7-phar-7.2.5-lp151.6.6 is installed OR php7-posix-7.2.5-lp151.6.6 is installed OR php7-readline-7.2.5-lp151.6.6 is installed OR php7-shmop-7.2.5-lp151.6.6 is installed OR php7-snmp-7.2.5-lp151.6.6 is installed OR php7-soap-7.2.5-lp151.6.6 is installed OR php7-sockets-7.2.5-lp151.6.6 is installed OR php7-sodium-7.2.5-lp151.6.6 is installed OR php7-sqlite-7.2.5-lp151.6.6 is installed OR php7-sysvmsg-7.2.5-lp151.6.6 is installed OR php7-sysvsem-7.2.5-lp151.6.6 is installed OR php7-sysvshm-7.2.5-lp151.6.6 is installed OR php7-testresults-7.2.5-lp151.6.6 is installed OR php7-tidy-7.2.5-lp151.6.6 is installed OR php7-tokenizer-7.2.5-lp151.6.6 is installed OR php7-wddx-7.2.5-lp151.6.6 is installed OR php7-xmlreader-7.2.5-lp151.6.6 is installed OR php7-xmlrpc-7.2.5-lp151.6.6 is installed OR php7-xmlwriter-7.2.5-lp151.6.6 is installed OR php7-xsl-7.2.5-lp151.6.6 is installed OR php7-zip-7.2.5-lp151.6.6 is installed OR php7-zlib-7.2.5-lp151.6.6 is installed
Definition Synopsis
openSUSE Leap 15.2 is installed AND Package Information libecpg6-12.4-lp152.3.7 is installed OR libecpg6-32bit-12.4-lp152.3.7 is installed OR libpq5-12.4-lp152.3.7 is installed OR libpq5-32bit-12.4-lp152.3.7 is installed OR postgresql12-12.4-lp152.3.7 is installed OR postgresql12-contrib-12.4-lp152.3.7 is installed OR postgresql12-devel-12.4-lp152.3.7 is installed OR postgresql12-docs-12.4-lp152.3.7 is installed OR postgresql12-llvmjit-12.4-lp152.3.7 is installed OR postgresql12-plperl-12.4-lp152.3.7 is installed OR postgresql12-plpython-12.4-lp152.3.7 is installed OR postgresql12-pltcl-12.4-lp152.3.7 is installed OR postgresql12-server-12.4-lp152.3.7 is installed OR postgresql12-server-devel-12.4-lp152.3.7 is installed OR postgresql12-test-12.4-lp152.3.7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libpulse-mainloop-glib0-5.0-4 is installed OR libpulse-mainloop-glib0-32bit-5.0-4 is installed OR libpulse0-5.0-4 is installed OR libpulse0-32bit-5.0-4 is installed OR pulseaudio-5.0-4 is installed OR pulseaudio-esound-compat-5.0-4 is installed OR pulseaudio-gdm-hooks-5.0-4 is installed OR pulseaudio-lang-5.0-4 is installed OR pulseaudio-module-x11-5.0-4 is installed OR pulseaudio-module-zeroconf-5.0-4 is installed OR pulseaudio-utils-5.0-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information git-2.12.3-27.22 is installed OR git-core-2.12.3-27.22 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libopenssl-devel-1.0.2j-60.55 is installed OR libopenssl1_0_0-1.0.2j-60.55 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed OR openssl-1.0.2j-60.55 is installed OR openssl-doc-1.0.2j-60.55 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information curl-7.37.0-37.26 is installed OR libcurl4-7.37.0-37.26 is installed OR libcurl4-32bit-7.37.0-37.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information bluez-5.13-5.4 is installed OR libbluetooth3-5.13-5.4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information kernel-default-4.12.14-95.57 is installed OR kernel-default-base-4.12.14-95.57 is installed OR kernel-default-devel-4.12.14-95.57 is installed OR kernel-devel-4.12.14-95.57 is installed OR kernel-macros-4.12.14-95.57 is installed OR kernel-source-4.12.14-95.57 is installed OR kernel-syms-4.12.14-95.57 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information grub2-2.02-12.31 is installed OR grub2-arm64-efi-2.02-12.31 is installed OR grub2-i386-pc-2.02-12.31 is installed OR grub2-powerpc-ieee1275-2.02-12.31 is installed OR grub2-s390x-emu-2.02-12.31 is installed OR grub2-snapper-plugin-2.02-12.31 is installed OR grub2-systemd-sleep-plugin-2.02-12.31 is installed OR grub2-x86_64-efi-2.02-12.31 is installed OR grub2-x86_64-xen-2.02-12.31 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND xorg-x11-server-1.19.6-10.29.1 is installed OR xorg-x11-server-extra-1.19.6-10.29.1 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND xorg-x11-server-1.19.6-10.29.1 is installed OR xorg-x11-server-extra-1.19.6-10.29.1 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND git-2.12.3-27.17 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND Package Information tomcat-9.0.36-3.45 is installed OR tomcat-admin-webapps-9.0.36-3.45 is installed OR tomcat-docs-webapp-9.0.36-3.45 is installed OR tomcat-el-3_0-api-9.0.36-3.45 is installed OR tomcat-javadoc-9.0.36-3.45 is installed OR tomcat-jsp-2_3-api-9.0.36-3.45 is installed OR tomcat-lib-9.0.36-3.45 is installed OR tomcat-servlet-4_0-api-9.0.36-3.45 is installed OR tomcat-webapps-9.0.36-3.45 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information MozillaFirefox-60.9.0-109.86 is installed OR MozillaFirefox-translations-common-60.9.0-109.86 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information crowbar-core-6.0+git.1566321308.1de18b9a4-3.7 is installed OR crowbar-core-branding-upstream-6.0+git.1566321308.1de18b9a4-3.7 is installed OR crowbar-ha-6.0+git.1566406179.7549de2-3.7 is installed OR crowbar-openstack-6.0+git.1566404979.41279a88e-3.7 is installed OR crowbar-ui-1.3.0+git.1563181545.65360af5-8 is installed OR openstack-ceilometer-11.0.2~dev14-3.7 is installed OR openstack-ceilometer-agent-central-11.0.2~dev14-3.7 is installed OR openstack-ceilometer-agent-compute-11.0.2~dev14-3.7 is installed OR openstack-ceilometer-agent-ipmi-11.0.2~dev14-3.7 is installed OR openstack-ceilometer-agent-notification-11.0.2~dev14-3.7 is installed OR openstack-ceilometer-polling-11.0.2~dev14-3.7 is installed OR openstack-cinder-13.0.7~dev3-3.7 is installed OR openstack-cinder-api-13.0.7~dev3-3.7 is installed OR openstack-cinder-backup-13.0.7~dev3-3.7 is installed OR openstack-cinder-scheduler-13.0.7~dev3-3.7 is installed OR openstack-cinder-volume-13.0.7~dev3-3.7 is installed OR openstack-designate-7.0.1~dev21-3.7 is installed OR openstack-designate-agent-7.0.1~dev21-3.7 is installed OR openstack-designate-api-7.0.1~dev21-3.7 is installed OR openstack-designate-central-7.0.1~dev21-3.7 is installed OR openstack-designate-producer-7.0.1~dev21-3.7 is installed OR openstack-designate-sink-7.0.1~dev21-3.7 is installed OR openstack-designate-worker-7.0.1~dev21-3.7 is installed OR openstack-heat-11.0.3~dev19-3.7 is installed OR openstack-heat-api-11.0.3~dev19-3.7 is installed OR openstack-heat-api-cfn-11.0.3~dev19-3.7 is installed OR openstack-heat-engine-11.0.3~dev19-3.7 is installed OR openstack-heat-plugin-heat_docker-11.0.3~dev19-3.7 is installed OR openstack-horizon-plugin-neutron-fwaas-ui-1.5.1~dev6-8 is installed OR openstack-horizon-plugin-neutron-lbaas-ui-5.0.1~dev7-8 is installed OR openstack-horizon-plugin-neutron-vpnaas-ui-1.4.1~dev7-8 is installed OR openstack-ironic-11.1.4~dev9-3.7 is installed OR openstack-ironic-api-11.1.4~dev9-3.7 is installed OR openstack-ironic-conductor-11.1.4~dev9-3.7 is installed OR openstack-ironic-python-agent-3.3.3~dev4-3.7 is installed OR openstack-keystone-14.1.1~dev8-3.7 is installed OR openstack-magnum-7.1.1~dev28-3.7 is installed OR openstack-magnum-api-7.1.1~dev28-3.7 is installed OR openstack-magnum-conductor-7.1.1~dev28-3.7 is installed OR openstack-manila-7.3.1~dev3-4.7 is installed OR openstack-manila-api-7.3.1~dev3-4.7 is installed OR openstack-manila-data-7.3.1~dev3-4.7 is installed OR openstack-manila-scheduler-7.3.1~dev3-4.7 is installed OR openstack-manila-share-7.3.1~dev3-4.7 is installed OR openstack-monasca-notification-1.14.2~dev1-6.7 is installed OR openstack-monasca-persister-1.12.1~dev9-9 is installed OR openstack-monasca-persister-java-1.12.1~dev9-9 is installed OR openstack-neutron-13.0.5~dev22-3.7 is installed OR openstack-neutron-dhcp-agent-13.0.5~dev22-3.7 is installed OR openstack-neutron-gbp-5.0.1~dev459-3.7 is installed OR openstack-neutron-ha-tool-13.0.5~dev22-3.7 is installed OR openstack-neutron-l3-agent-13.0.5~dev22-3.7 is installed OR openstack-neutron-lbaas-13.0.1~dev14-3.7 is installed OR openstack-neutron-lbaas-agent-13.0.1~dev14-3.7 is installed OR openstack-neutron-linuxbridge-agent-13.0.5~dev22-3.7 is installed OR openstack-neutron-macvtap-agent-13.0.5~dev22-3.7 is installed OR openstack-neutron-metadata-agent-13.0.5~dev22-3.7 is installed OR openstack-neutron-metering-agent-13.0.5~dev22-3.7 is installed OR openstack-neutron-openvswitch-agent-13.0.5~dev22-3.7 is installed OR openstack-neutron-server-13.0.5~dev22-3.7 is installed OR openstack-nova-18.2.2~dev9-3.7 is installed OR openstack-nova-api-18.2.2~dev9-3.7 is installed OR openstack-nova-cells-18.2.2~dev9-3.7 is installed OR openstack-nova-compute-18.2.2~dev9-3.7 is installed OR openstack-nova-conductor-18.2.2~dev9-3.7 is installed OR openstack-nova-console-18.2.2~dev9-3.7 is installed OR openstack-nova-novncproxy-18.2.2~dev9-3.7 is installed OR openstack-nova-placement-api-18.2.2~dev9-3.7 is installed OR openstack-nova-scheduler-18.2.2~dev9-3.7 is installed OR openstack-nova-serialproxy-18.2.2~dev9-3.7 is installed OR openstack-nova-vncproxy-18.2.2~dev9-3.7 is installed OR openstack-octavia-3.1.2~dev8-3.7 is installed OR openstack-octavia-amphora-agent-3.1.2~dev8-3.7 is installed OR openstack-octavia-api-3.1.2~dev8-3.7 is installed OR openstack-octavia-health-manager-3.1.2~dev8-3.7 is installed OR openstack-octavia-housekeeping-3.1.2~dev8-3.7 is installed OR openstack-octavia-worker-3.1.2~dev8-3.7 is installed OR openstack-tempest-19.0.0-12 is installed OR openstack-tempest-test-19.0.0-12 is installed OR python-ceilometer-11.0.2~dev14-3.7 is installed OR python-cinder-13.0.7~dev3-3.7 is installed OR python-cinder-tempest-plugin-0.1.0-8 is installed OR python-designate-7.0.1~dev21-3.7 is installed OR python-heat-11.0.3~dev19-3.7 is installed OR python-horizon-plugin-neutron-fwaas-ui-1.5.1~dev6-8 is installed OR python-horizon-plugin-neutron-lbaas-ui-5.0.1~dev7-8 is installed OR python-horizon-plugin-neutron-vpnaas-ui-1.4.1~dev7-8 is installed OR python-ironic-11.1.4~dev9-3.7 is installed OR python-ironicclient-2.5.3-4.7 is installed OR python-ironicclient-doc-2.5.3-4.7 is installed OR python-keystone-14.1.1~dev8-3.7 is installed OR python-keystonemiddleware-5.2.0-8 is installed OR python-magnum-7.1.1~dev28-3.7 is installed OR python-manila-7.3.1~dev3-4.7 is installed OR python-monasca-notification-1.14.2~dev1-6.7 is installed OR python-monasca-persister-1.12.1~dev9-9 is installed OR python-monasca-tempest-plugin-0.3.0-8 is installed OR python-neutron-13.0.5~dev22-3.7 is installed OR python-neutron-gbp-5.0.1~dev459-3.7 is installed OR python-neutron-lbaas-13.0.1~dev14-3.7 is installed OR python-nova-18.2.2~dev9-3.7 is installed OR python-octavia-3.1.2~dev8-3.7 is installed OR python-openstackclient-3.16.2-8 is installed OR python-openstacksdk-0.17.3-8 is installed OR python-proliantutils-2.8.4-8 is installed OR python-tempest-19.0.0-12 is installed OR python-vmware-nsx-13.0.1~dev146-9 is installed OR python-vmware-nsxlib-13.0.1~dev24-8 is installed OR yast2-crowbar-3.4.2-8 is installed

BACK