OVAL Reference oval:org.opensuse.security:def:1611

Oval Definition:

oval:org.opensuse.security:def:1611

Revision Date:	2021-06-10	Version:	1
Title:	Security update for qemu (Important)
Description:	This update for qemu fixes the following issues: * - Switch method of splitting off hw-s390x-virtio-gpu-ccw.so as a module to what was accepted upstream (bsc#1181103) - Fix OOB access in sdhci interface (CVE-2020-17380, bsc#1175144, CVE-2020-25085, bsc#1176681, CVE-2021-3409, bsc#1182282) - Fix potential privilege escalation in virtiofsd tool (CVE-2021-20263, bsc#1183373) - Fix OOB access (stack overflow) in rtl8139 NIC emulation (CVE-2021-3416, bsc#1182968) - Fix heap overflow in MSIx emulation (CVE-2020-27821, bsc#1179686) - Fix package scripts to not use hard coded paths for temporary working directories and log files (bsc#1182425) - QEMU BIOS fails to read stage2 loader on s390x (bsc#1186290) - For the record, these issues are fixed in this package already. Most are alternate references to previously mentioned issues: (CVE-2019-15890, bsc#1149813, CVE-2020-8608, bsc#1163019, CVE-2020-14364, bsc#1175534, CVE-2020-25707, bsc#1178683, CVE-2020-25723, bsc#1178935, CVE-2020-29130, bsc#1179477, CVE-2020-29129, bsc#1179484, CVE-2021-3419, bsc#1182975)
Family:	unix	Class:	patch
Status:		Reference(s):	1149813 1153936 1163019 1175144 1175534 1176681 1178683 1178935 1179477 1179484 1179686 1181103 1182282 1182425 1182968 1182975 1183373 1186290 CVE-2013-2139 CVE-2014-3214 CVE-2014-3859 CVE-2014-8500 CVE-2014-8680 CVE-2015-1349 CVE-2015-4620 CVE-2015-5477 CVE-2015-5722 CVE-2015-5986 CVE-2015-6360 CVE-2015-8000 CVE-2015-8461 CVE-2015-8704 CVE-2015-8705 CVE-2016-1285 CVE-2016-1286 CVE-2016-2088 CVE-2016-2775 CVE-2016-2776 CVE-2016-8864 CVE-2016-9131 CVE-2016-9147 CVE-2016-9444 CVE-2016-9778 CVE-2017-3135 CVE-2017-3137 CVE-2017-3138 CVE-2017-3140 CVE-2017-3141 CVE-2017-3142 CVE-2017-3143 CVE-2017-3145 CVE-2018-5740 CVE-2018-5743 CVE-2018-5745 CVE-2019-15890 CVE-2019-17543 CVE-2019-17543 CVE-2019-6465 CVE-2019-6471 CVE-2020-14364 CVE-2020-17380 CVE-2020-25085 CVE-2020-25707 CVE-2020-25723 CVE-2020-27821 CVE-2020-29129 CVE-2020-29130 CVE-2020-8608 CVE-2021-20263 CVE-2021-3409 CVE-2021-3416 CVE-2021-3419 SUSE-SU-2019:2757-1 SUSE-SU-2021:1942-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise High Availability 15 SP1 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SP2 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SP3 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Storage 7 SUSE Linux Enterprise Storage 7.1 SUSE Manager Proxy 4.1 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.1 SUSE Manager Server 4.2	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND gzip-1.6-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information NetworkManager-1.0.12-12 is installed OR NetworkManager-lang-1.0.12-12 is installed OR libnm-glib-vpn1-1.0.12-12 is installed OR libnm-glib4-1.0.12-12 is installed OR libnm-util2-1.0.12-12 is installed OR libnm0-1.0.12-12 is installed OR typelib-1_0-NM-1_0-1.0.12-12 is installed OR typelib-1_0-NMClient-1_0-1.0.12-12 is installed OR typelib-1_0-NetworkManager-1_0-1.0.12-12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed AND Package Information libsrtp-devel-1.6.0-2.19 is installed OR libsrtp1-1.6.0-2.19 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 is installed AND Package Information ruby2.5-rubygem-sprockets-3.7.2-3.3 is installed OR rubygem-sprockets-3.7.2-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP1 is installed AND Package Information ctdb-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-4.9.5+git.187.71edee57d5a-3.9 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Module for Server Applications 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Linux Enterprise Storage 7.1 is installed OR SUSE Manager Proxy 4.2 is installed OR SUSE Manager Retail Branch Server 4.2 is installed OR SUSE Manager Server 4.2 is installed AND Package Information qemu-5.2.0-17.1 is installed OR qemu-arm-5.2.0-17.1 is installed OR qemu-audio-alsa-5.2.0-17.1 is installed OR qemu-audio-pa-5.2.0-17.1 is installed OR qemu-audio-spice-5.2.0-17.1 is installed OR qemu-block-curl-5.2.0-17.1 is installed OR qemu-block-iscsi-5.2.0-17.1 is installed OR qemu-block-rbd-5.2.0-17.1 is installed OR qemu-block-ssh-5.2.0-17.1 is installed OR qemu-chardev-baum-5.2.0-17.1 is installed OR qemu-chardev-spice-5.2.0-17.1 is installed OR qemu-guest-agent-5.2.0-17.1 is installed OR qemu-hw-display-qxl-5.2.0-17.1 is installed OR qemu-hw-display-virtio-gpu-5.2.0-17.1 is installed OR qemu-hw-display-virtio-gpu-pci-5.2.0-17.1 is installed OR qemu-hw-display-virtio-vga-5.2.0-17.1 is installed OR qemu-hw-s390x-virtio-gpu-ccw-5.2.0-17.1 is installed OR qemu-hw-usb-redirect-5.2.0-17.1 is installed OR qemu-ipxe-1.0.0+-17.1 is installed OR qemu-ksm-5.2.0-17.1 is installed OR qemu-kvm-5.2.0-17.1 is installed OR qemu-lang-5.2.0-17.1 is installed OR qemu-ppc-5.2.0-17.1 is installed OR qemu-s390x-5.2.0-17.1 is installed OR qemu-seabios-1.14.0_0_g155821a-17.1 is installed OR qemu-sgabios-8-17.1 is installed OR qemu-skiboot-5.2.0-17.1 is installed OR qemu-ui-curses-5.2.0-17.1 is installed OR qemu-ui-gtk-5.2.0-17.1 is installed OR qemu-ui-opengl-5.2.0-17.1 is installed OR qemu-ui-spice-app-5.2.0-17.1 is installed OR qemu-ui-spice-core-5.2.0-17.1 is installed OR qemu-vgabios-1.14.0_0_g155821a-17.1 is installed OR qemu-x86-5.2.0-17.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information liblz4-1-1.8.0-3.5 is installed OR liblz4-1-32bit-1.8.0-3.5 is installed OR liblz4-devel-1.8.0-3.5 is installed OR lz4-1.8.0-3.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information ImageMagick-7.0.7.34-3.14 is installed OR ImageMagick-devel-7.0.7.34-3.14 is installed OR libMagick++-7_Q16HDRI4-7.0.7.34-3.14 is installed OR libMagick++-devel-7.0.7.34-3.14 is installed OR libMagickCore-7_Q16HDRI6-7.0.7.34-3.14 is installed OR libMagickWand-7_Q16HDRI6-7.0.7.34-3.14 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information MozillaFirefox-60.7.0-3.40 is installed OR MozillaFirefox-devel-60.7.0-3.40 is installed OR MozillaFirefox-translations-common-60.7.0-3.40 is installed OR MozillaFirefox-translations-other-60.7.0-3.40 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 is installed AND Package Information crash-7.2.1-3.2 is installed OR crash-devel-7.2.1-3.2 is installed OR crash-kmp-default-7.2.1_k4.12.14_23-3.2 is installed OR lttng-modules-2.10.0-5.2 is installed OR lttng-modules-kmp-default-2.10.0_k4.12.14_23-5.2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information tomcat-9.0.10-3.7 is installed OR tomcat-docs-webapp-9.0.10-3.7 is installed OR tomcat-embed-9.0.10-3.7 is installed OR tomcat-javadoc-9.0.10-3.7 is installed OR tomcat-jsvc-9.0.10-3.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information dhcp-4.3.5-6.3 is installed OR dhcp-relay-4.3.5-6.3 is installed OR dhcp-server-4.3.5-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information bind-9.11.2-12.13 is installed OR bind-chrootenv-9.11.2-12.13 is installed OR bind-doc-9.11.2-12.13 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs10-10.15.2-1.6 is installed OR nodejs10-devel-10.15.2-1.6 is installed OR nodejs10-docs-10.15.2-1.6 is installed OR npm10-10.15.2-1.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information tomcat-9.0.21-4.5 is installed OR tomcat-admin-webapps-9.0.21-4.5 is installed OR tomcat-el-3_0-api-9.0.21-4.5 is installed OR tomcat-jsp-2_3-api-9.0.21-4.5 is installed OR tomcat-lib-9.0.21-4.5 is installed OR tomcat-servlet-4_0-api-9.0.21-4.5 is installed OR tomcat-webapps-9.0.21-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information openvswitch-2.1.2-4.5 is installed OR openvswitch-kmp-default-2.1.2_k3.12.49_11-4.5 is installed OR openvswitch-kmp-xen-2.1.2_k3.12.49_11-4.5 is installed OR openvswitch-switch-2.1.2-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND unzip-6.00-32.1 is installed

BACK