Oval Definition:	oval:org.opensuse.security:def:202014415
Revision Date: 2022-09-02 Version: 1 Title: CVE-2020-14415 Description: oss_write in audio/ossaudio.c in QEMU before 5.0.0 mishandles a buffer position. Family: unix Class: vulnerability Status: Reference(s): Mitre CVE-2020-14415 SUSE CVE-2020-14415 Platform(s): SUSE Enterprise Storage 7 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise Micro 5.0 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Real Time 15 SP2 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server for SAP Applications 11 SP2 SUSE Linux Enterprise Server for SAP Applications 11 SP3 SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Storage 7 SUSE Manager Proxy 4.1 SUSE Manager Retail Branch Server 4.1 SUSE Manager Server 4.1 Product(s): Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND qemu is not affected Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND qemu is not affected Definition Synopsis Release Information SUSE Linux Enterprise Software Development Kit 11 SP2 is installed OR SUSE Linux Enterprise Software Development Kit 11 SP3 is installed OR SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND qemu is not affected OR Package Information SUSE Linux Enterprise Desktop 11 SP2 is installed OR SUSE Linux Enterprise Desktop 11 SP3 is installed OR SUSE Linux Enterprise Desktop 11 SP4 is installed OR SUSE Linux Enterprise Server 11 is installed OR SUSE Linux Enterprise Server 11 SP1 is installed OR SUSE Linux Enterprise Server 11 SP2 is installed OR SUSE Linux Enterprise Server 11 SP3 is installed OR SUSE Linux Enterprise Server 11 SP4 is installed AND kvm is not affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 is installed OR SUSE Linux Enterprise Desktop 12 SP1 is installed OR SUSE Linux Enterprise Desktop 12 SP2 is installed OR SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise High Performance Computing 12 SP5 is installed OR SUSE Linux Enterprise Server 12 is installed OR SUSE Linux Enterprise Server 12 SP1 is installed OR SUSE Linux Enterprise Server 12 SP2 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND qemu is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND qemu is not affected OR qemu-block-curl is not affected OR qemu-block-iscsi is not affected OR qemu-block-rbd is not affected OR qemu-block-ssh is not affected OR qemu-guest-agent is not affected OR qemu-ipxe is not affected OR qemu-kvm is not affected OR qemu-lang is not affected OR qemu-ppc is not affected OR qemu-seabios is not affected OR qemu-sgabios is not affected OR qemu-tools is not affected OR qemu-vgabios is not affected OR qemu-x86 is not affected OR Package Information SUSE Linux Enterprise Server 12 SP5 is installed AND qemu is not affected OR qemu-arm is not affected OR qemu-audio-alsa is not affected OR qemu-audio-oss is not affected OR qemu-audio-pa is not affected OR qemu-audio-sdl is not affected OR qemu-block-curl is not affected OR qemu-block-iscsi is not affected OR qemu-block-rbd is not affected OR qemu-block-ssh is not affected OR qemu-guest-agent is not affected OR qemu-ipxe is not affected OR qemu-kvm is not affected OR qemu-lang is not affected OR qemu-ppc is not affected OR qemu-s390 is not affected OR qemu-seabios is not affected OR qemu-sgabios is not affected OR qemu-tools is not affected OR qemu-ui-curses is not affected OR qemu-ui-gtk is not affected OR qemu-ui-sdl is not affected OR qemu-vgabios is not affected OR qemu-x86 is not affected Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 is installed AND qemu is not affected Definition Synopsis Release Information SUSE Linux Enterprise Module for Basesystem 15 is installed OR SUSE Linux Enterprise Module for Server Applications 15 is installed AND qemu is not affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 is installed OR SUSE Linux Enterprise Desktop 12 SP1 is installed OR SUSE Linux Enterprise Desktop 12 SP2 is installed OR SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Desktop 12 SP4 is installed AND qemu is not affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 is installed OR SUSE Linux Enterprise High Performance Computing 15 is installed OR SUSE Linux Enterprise Module for Basesystem 15 is installed OR SUSE Linux Enterprise Server 15 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 is installed AND qemu is not affected OR Package Information SUSE Linux Enterprise Desktop 15 SP2 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP2 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed OR SUSE Linux Enterprise Server 15 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed OR SUSE Linux Enterprise Storage 7 is installed OR SUSE Manager Proxy 4.1 is installed OR SUSE Manager Retail Branch Server 4.1 is installed OR SUSE Manager Server 4.1 is installed AND qemu is affected Definition Synopsis Release Information SUSE Linux Enterprise Server 11 is installed OR SUSE Linux Enterprise Server 11 SP1 is installed OR SUSE Linux Enterprise Server 11 SP2 is installed OR SUSE Linux Enterprise Server 11 SP3 is installed AND kvm is not affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP2 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP2 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed OR SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed OR SUSE Linux Enterprise Real Time 15 SP2 is installed OR SUSE Linux Enterprise Server 15 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed OR SUSE Linux Enterprise Storage 7 is installed OR SUSE Manager Proxy 4.1 is installed OR SUSE Manager Retail Branch Server 4.1 is installed OR SUSE Manager Server 4.1 is installed AND qemu is affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed AND qemu is affected OR qemu-audio-alsa is affected OR qemu-audio-pa is affected OR qemu-block-curl is affected OR qemu-block-iscsi is affected OR qemu-block-rbd is affected OR qemu-block-ssh is affected OR qemu-guest-agent is affected OR qemu-ipxe is affected OR qemu-kvm is affected OR qemu-lang is affected OR qemu-microvm is affected OR qemu-ppc is affected OR qemu-seabios is affected OR qemu-sgabios is affected OR qemu-tools is affected OR qemu-ui-curses is affected OR qemu-ui-gtk is affected OR qemu-ui-spice-app is affected OR qemu-vgabios is affected OR qemu-x86 is affected Definition Synopsis Release Information SUSE Linux Enterprise Server 12 is installed OR SUSE Linux Enterprise Server 12 SP1 is installed OR SUSE Linux Enterprise Server 12 SP2 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND qemu is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND qemu is not affected OR qemu-block-curl is not affected OR qemu-block-iscsi is not affected OR qemu-block-rbd is not affected OR qemu-block-ssh is not affected OR qemu-guest-agent is not affected OR qemu-ipxe is not affected OR qemu-kvm is not affected OR qemu-lang is not affected OR qemu-ppc is not affected OR qemu-seabios is not affected OR qemu-sgabios is not affected OR qemu-tools is not affected OR qemu-vgabios is not affected OR qemu-x86 is not affected OR Package Information SUSE Linux Enterprise Server 12 SP5 is installed AND qemu is not affected OR qemu-arm is not affected OR qemu-audio-alsa is not affected OR qemu-audio-oss is not affected OR qemu-audio-pa is not affected OR qemu-audio-sdl is not affected OR qemu-block-curl is not affected OR qemu-block-iscsi is not affected OR qemu-block-rbd is not affected OR qemu-block-ssh is not affected OR qemu-guest-agent is not affected OR qemu-ipxe is not affected OR qemu-kvm is not affected OR qemu-lang is not affected OR qemu-ppc is not affected OR qemu-s390 is not affected OR qemu-seabios is not affected OR qemu-sgabios is not affected OR qemu-tools is not affected OR qemu-ui-curses is not affected OR qemu-ui-gtk is not affected OR qemu-ui-sdl is not affected OR qemu-vgabios is not affected OR qemu-x86 is not affected Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND qemu is not affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP2 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP2 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed OR SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed OR SUSE Linux Enterprise Server 15 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed OR SUSE Linux Enterprise Storage 7 is installed OR SUSE Manager Proxy 4.1 is installed OR SUSE Manager Retail Branch Server 4.1 is installed OR SUSE Manager Server 4.1 is installed AND qemu is affected OR Package Information SUSE Enterprise Storage 7 is installed AND qemu is affected OR qemu-arm is affected OR qemu-audio-alsa is affected OR qemu-audio-pa is affected OR qemu-block-curl is affected OR qemu-block-iscsi is affected OR qemu-block-rbd is affected OR qemu-block-ssh is affected OR qemu-guest-agent is affected OR qemu-ipxe is affected OR qemu-kvm is affected OR qemu-lang is affected OR qemu-microvm is affected OR qemu-seabios is affected OR qemu-sgabios is affected OR qemu-tools is affected OR qemu-ui-curses is affected OR qemu-ui-gtk is affected OR qemu-ui-spice-app is affected OR qemu-vgabios is affected OR qemu-x86 is affected OR Package Information SUSE Linux Enterprise Real Time 15 SP2 is installed AND qemu is affected OR qemu-audio-alsa is affected OR qemu-audio-pa is affected OR qemu-block-curl is affected OR qemu-block-iscsi is affected OR qemu-block-rbd is affected OR qemu-block-ssh is affected OR qemu-guest-agent is affected OR qemu-ipxe is affected OR qemu-kvm is affected OR qemu-lang is affected OR qemu-microvm is affected OR qemu-seabios is affected OR qemu-sgabios is affected OR qemu-tools is affected OR qemu-ui-curses is affected OR qemu-ui-gtk is affected OR qemu-ui-spice-app is affected OR qemu-vgabios is affected OR qemu-x86 is affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed AND qemu is affected OR qemu-audio-alsa is affected OR qemu-audio-pa is affected OR qemu-block-curl is affected OR qemu-block-iscsi is affected OR qemu-block-rbd is affected OR qemu-block-ssh is affected OR qemu-guest-agent is affected OR qemu-ipxe is affected OR qemu-kvm is affected OR qemu-lang is affected OR qemu-microvm is affected OR qemu-ppc is affected OR qemu-seabios is affected OR qemu-sgabios is affected OR qemu-tools is affected OR qemu-ui-curses is affected OR qemu-ui-gtk is affected OR qemu-ui-spice-app is affected OR qemu-vgabios is affected OR qemu-x86 is affected Definition Synopsis SUSE Linux Enterprise Micro 5.0 is installed AND qemu is affected Definition Synopsis Release Information SUSE Linux Enterprise High Performance Computing 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND qemu is not affected OR Package Information SUSE Linux Enterprise Server 12 SP5 is installed AND qemu is not affected OR qemu-arm is not affected OR qemu-audio-alsa is not affected OR qemu-audio-oss is not affected OR qemu-audio-pa is not affected OR qemu-audio-sdl is not affected OR qemu-block-curl is not affected OR qemu-block-iscsi is not affected OR qemu-block-rbd is not affected OR qemu-block-ssh is not affected OR qemu-guest-agent is not affected OR qemu-ipxe is not affected OR qemu-kvm is not affected OR qemu-lang is not affected OR qemu-ppc is not affected OR qemu-s390 is not affected OR qemu-seabios is not affected OR qemu-sgabios is not affected OR qemu-tools is not affected OR qemu-ui-curses is not affected OR qemu-ui-gtk is not affected OR qemu-ui-sdl is not affected OR qemu-vgabios is not affected OR qemu-x86 is not affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed AND qemu is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND qemu is not affected OR qemu-block-curl is not affected OR qemu-block-iscsi is not affected OR qemu-block-rbd is not affected OR qemu-block-ssh is not affected OR qemu-guest-agent is not affected OR qemu-ipxe is not affected OR qemu-kvm is not affected OR qemu-lang is not affected OR qemu-ppc is not affected OR qemu-seabios is not affected OR qemu-sgabios is not affected OR qemu-tools is not affected OR qemu-vgabios is not affected OR qemu-x86 is not affected
BACK