Oval Definition:	oval:org.opensuse.security:def:44673
Revision Date: 2020-12-01 Version: 1 Title: Security update for xen (Important) Description: This update for xen fixes the following security issues: - CVE-2018-3646: Systems with microprocessors utilizing speculative execution and address translations may have allowed unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis (bsc#1091107, bsc#1027519). - Incorrect MSR_DEBUGCTL handling let guests enable BTS allowing a malicious or buggy guest administrator can lock up the entire host (bsc#1103276) Family: unix Class: patch Status: Reference(s): 1012382 1020645 1020989 1027519 1031492 1036304 1045735 1047487 1049825 1051510 1053043 1055478 1056134 1062056 1063638 1066223 1070737 1070851 1070872 1076192 1080918 1080951 1081556 1085539 1087092 1087813 1088420 1088705 1091107 1091624 1092413 1094244 1095189 1095825 1095826 1095827 1095945 1096480 1096728 1096803 1097103 1097104 1099847 1100028 1100132 1100365 1101349 1101820 1102429 1103098 1103276 1105348 1106110 1106913 1106929 1111331 1111657 1112178 1113399 1114542 1114638 1114648 1114893 1115375 1115750 1118338 1118506 1119086 1120386 1120902 1122822 1125580 1126356 1127445 1129278 1129326 1129770 1130130 1130343 1130344 1130345 1130346 1130347 1130356 1130425 1130567 1130737 1131107 1131416 1131427 1131587 1131659 1131857 1131900 1131934 1131935 1131980 1132227 1132534 1132589 1132618 1132619 1132634 1132635 1132636 1132637 1132638 1132727 1132828 1133147 1133308 1133584 1137325 1138748 1141780 1141782 1141783 1141784 1141785 1141786 1141787 1141789 1145929 1149591 1149792 1154118 1154844 1155689 1157155 1157157 1157303 1157804 1158021 1158642 1158819 1159199 1159285 1159297 1159841 1159908 1159910 1159911 1159912 1159913 1160195 1161586 1162227 1162928 1162929 1162931 1163508 1163971 1164009 1164051 1164069 1164078 1164846 1165111 1165311 1165631 1165873 1165881 1165984 1165985 1167421 1167423 1167629 1168075 1168295 1168424 1168829 1168854 1170056 1170345 1170715 1170778 1170847 1172698 1172704 1174922 1174923 981848 989121 989122 994770 CVE-2015-8946 CVE-2016-10713 CVE-2016-6224 CVE-2017-12133 CVE-2017-18255 CVE-2017-9269 CVE-2018-1000156 CVE-2018-1000204 CVE-2018-10853 CVE-2018-10903 CVE-2018-11440 CVE-2018-11577 CVE-2018-11683 CVE-2018-11684 CVE-2018-11685 CVE-2018-12085 CVE-2018-12126 CVE-2018-12126 CVE-2018-12127 CVE-2018-12127 CVE-2018-12130 CVE-2018-12130 CVE-2018-14348 CVE-2018-15594 CVE-2018-21008 CVE-2018-3646 CVE-2018-4700 CVE-2018-5391 CVE-2018-5814 CVE-2018-6951 CVE-2018-7685 CVE-2019-11091 CVE-2019-11091 CVE-2019-14615 CVE-2019-14896 CVE-2019-14897 CVE-2019-18675 CVE-2019-19066 CVE-2019-19319 CVE-2019-19447 CVE-2019-19767 CVE-2019-19768 CVE-2019-19965 CVE-2019-19966 CVE-2019-20054 CVE-2019-20096 CVE-2019-2745 CVE-2019-2762 CVE-2019-2766 CVE-2019-2769 CVE-2019-2786 CVE-2019-2816 CVE-2019-2842 CVE-2019-3701 CVE-2019-3882 CVE-2019-5108 CVE-2019-7317 CVE-2019-9455 CVE-2019-9458 CVE-2019-9503 CVE-2020-10690 CVE-2020-10720 CVE-2020-10942 CVE-2020-11494 CVE-2020-11608 CVE-2020-11609 CVE-2020-12673 CVE-2020-12674 CVE-2020-1749 CVE-2020-2732 CVE-2020-8023 CVE-2020-8647 CVE-2020-8648 CVE-2020-8649 CVE-2020-8992 CVE-2020-9383 SUSE-SU-2018:0336-1 SUSE-SU-2018:0655-1 SUSE-SU-2018:1128-1 SUSE-SU-2018:4089-1 SUSE-SU-2019:1245-1 SUSE-SU-2019:2036-1 SUSE-SU-2020:0792-1 SUSE-SU-2020:1275-1 SUSE-SU-2020:1859-1 Platform(s): openSUSE Leap 42.3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Development Tools 15 SP1 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP2-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP3-BCL SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP3-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 7 Product(s): Definition Synopsis openSUSE Leap 42.3 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-27 is installed OR aaa_base-extras-13.2+git20140911.61c1681-27 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information cups-1.7.5-2 is installed OR cups-client-1.7.5-2 is installed OR cups-libs-1.7.5-2 is installed OR cups-libs-32bit-1.7.5-2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information java-1_7_0-openjdk-1.7.0.91-21 is installed OR java-1_7_0-openjdk-headless-1.7.0.91-21 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information bzip2-1.0.6-29 is installed OR libbz2-1-1.0.6-29 is installed OR libbz2-1-32bit-1.0.6-29 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND autofs-5.0.9-27 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information cyrus-sasl-2.1.26-8.7 is installed OR cyrus-sasl-32bit-2.1.26-8.7 is installed OR cyrus-sasl-crammd5-2.1.26-8.7 is installed OR cyrus-sasl-crammd5-32bit-2.1.26-8.7 is installed OR cyrus-sasl-digestmd5-2.1.26-8.7 is installed OR cyrus-sasl-digestmd5-32bit-2.1.26-8.7 is installed OR cyrus-sasl-gssapi-2.1.26-8.7 is installed OR cyrus-sasl-gssapi-32bit-2.1.26-8.7 is installed OR cyrus-sasl-plain-2.1.26-8.7 is installed OR cyrus-sasl-plain-32bit-2.1.26-8.7 is installed OR cyrus-sasl-saslauthd-2.1.26-8.7 is installed OR libsasl2-3-2.1.26-8.7 is installed OR libsasl2-3-32bit-2.1.26-8.7 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information nmap-7.70-3.5 is installed OR nping-7.70-3.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information gpg2-2.2.5-2 is installed OR gpg2-lang-2.2.5-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND perl-XML-LibXML-2.0132-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information gnome-online-accounts-devel-3.26.2-3 is installed OR libgoa-1_0-0-3.26.2-3 is installed OR libgoa-backend-1_0-1-3.26.2-3 is installed OR typelib-1_0-Goa-1_0-3.26.2-3 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND open-vm-tools-desktop-10.3.10-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 is installed AND Package Information ImageMagick-7.0.7.34-3.61 is installed OR perl-PerlMagick-7.0.7.34-3.61 is installed Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND Package Information glibc-2.26-13.36 is installed OR glibc-devel-32bit-2.26-13.36 is installed OR glibc-devel-static-2.26-13.36 is installed OR glibc-utils-2.26-13.36 is installed OR glibc-utils-src-2.26-13.36 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information libpmi0-17.11.7-6.3 is installed OR libslurm32-17.11.7-6.3 is installed OR perl-slurm-17.11.7-6.3 is installed OR slurm-17.11.7-6.3 is installed OR slurm-auth-none-17.11.7-6.3 is installed OR slurm-config-17.11.7-6.3 is installed OR slurm-devel-17.11.7-6.3 is installed OR slurm-doc-17.11.7-6.3 is installed OR slurm-lua-17.11.7-6.3 is installed OR slurm-munge-17.11.7-6.3 is installed OR slurm-node-17.11.7-6.3 is installed OR slurm-pam_slurm-17.11.7-6.3 is installed OR slurm-plugins-17.11.7-6.3 is installed OR slurm-slurmdbd-17.11.7-6.3 is installed OR slurm-sql-17.11.7-6.3 is installed OR slurm-torque-17.11.7-6.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-3.24 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-3.24 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-3.24 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-3.24 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_38-default-3-2 is installed OR kernel-livepatch-SLE15_Update_15-3-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information cronie-1.5.1-6.7 is installed OR cronie-anacron-1.5.1-6.7 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libvirt-5.1.0-8.6 is installed OR libvirt-devel-32bit-5.1.0-8.6 is installed OR wireshark-plugin-libvirt-5.1.0-8.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.30 is installed OR kernel-azure-base-4.12.14-5.30 is installed OR kernel-azure-devel-4.12.14-5.30 is installed OR kernel-devel-azure-4.12.14-5.30 is installed OR kernel-source-azure-4.12.14-5.30 is installed OR kernel-syms-azure-4.12.14-5.30 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information kernel-azure-4.12.14-8.27 is installed OR kernel-azure-base-4.12.14-8.27 is installed OR kernel-azure-devel-4.12.14-8.27 is installed OR kernel-devel-azure-4.12.14-8.27 is installed OR kernel-source-azure-4.12.14-8.27 is installed OR kernel-syms-azure-4.12.14-8.27 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND skopeo-0.1.26-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information libfreebl3-hmac-3.47.1-3.22 is installed OR libsoftokn3-hmac-3.47.1-3.22 is installed OR mozilla-nss-3.47.1-3.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.40-38.34 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.40-38.34 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.40-38.34 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.40-38.34 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.40-38.34 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND gd-2.1.0-12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information git-2.12.3-27.14 is installed OR git-core-2.12.3-27.14 is installed OR git-doc-2.12.3-27.14 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND xen-4.7.6_04-43.39 is installed OR xen-doc-html-4.7.6_04-43.39 is installed OR xen-libs-4.7.6_04-43.39 is installed OR xen-libs-32bit-4.7.6_04-43.39 is installed OR xen-tools-4.7.6_04-43.39 is installed OR xen-tools-domU-4.7.6_04-43.39 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP2-ESPOS is installed AND xen-4.7.6_04-43.39 is installed OR xen-doc-html-4.7.6_04-43.39 is installed OR xen-libs-4.7.6_04-43.39 is installed OR xen-libs-32bit-4.7.6_04-43.39 is installed OR xen-tools-4.7.6_04-43.39 is installed OR xen-tools-domU-4.7.6_04-43.39 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_7_0-openjdk-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_103-92_53-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_16-7-2 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND ecryptfs-utils-103-8.3 is installed OR ecryptfs-utils-32bit-103-8.3 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND ecryptfs-utils-103-8.3 is installed OR ecryptfs-utils-32bit-103-8.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information gstreamer-plugins-good-1.8.3-15 is installed OR gstreamer-plugins-good-lang-1.8.3-15 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP3-BCL is installed AND kernel-default-4.4.180-94.116 is installed OR kernel-default-base-4.4.180-94.116 is installed OR kernel-default-devel-4.4.180-94.116 is installed OR kernel-devel-4.4.180-94.116 is installed OR kernel-macros-4.4.180-94.116 is installed OR kernel-source-4.4.180-94.116 is installed OR kernel-syms-4.4.180-94.116 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-BCL is installed AND kernel-default-4.4.180-94.116 is installed OR kernel-default-base-4.4.180-94.116 is installed OR kernel-default-devel-4.4.180-94.116 is installed OR kernel-devel-4.4.180-94.116 is installed OR kernel-macros-4.4.180-94.116 is installed OR kernel-source-4.4.180-94.116 is installed OR kernel-syms-4.4.180-94.116 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND dovecot22-2.2.31-19.22 is installed OR dovecot22-backend-mysql-2.2.31-19.22 is installed OR dovecot22-backend-pgsql-2.2.31-19.22 is installed OR dovecot22-backend-sqlite-2.2.31-19.22 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS is installed AND dovecot22-2.2.31-19.22 is installed OR dovecot22-backend-mysql-2.2.31-19.22 is installed OR dovecot22-backend-pgsql-2.2.31-19.22 is installed OR dovecot22-backend-sqlite-2.2.31-19.22 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-LTSS is installed AND java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND libcgroup-0.41.rc1-10.9 is installed OR libcgroup-tools-0.41.rc1-10.9 is installed OR libcgroup1-0.41.rc1-10.9 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA is installed AND libcgroup-0.41.rc1-10.9 is installed OR libcgroup-tools-0.41.rc1-10.9 is installed OR libcgroup1-0.41.rc1-10.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ovmf-2017+git1492060560.b6d11d7c46-4.12 is installed OR ovmf-tools-2017+git1492060560.b6d11d7c46-4.12 is installed OR qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-4.12 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND opensc-0.13.0-3.3 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND opensc-0.13.0-3.3 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND ghostscript-9.27-23.28 is installed OR ghostscript-x11-9.27-23.28 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND ghostscript-9.27-23.28 is installed OR ghostscript-x11-9.27-23.28 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libecpg6-10.12-4.19 is installed OR libpq5-10.12-4.19 is installed OR postgresql10-10.12-4.19 is installed OR postgresql10-contrib-10.12-4.19 is installed OR postgresql10-devel-10.12-4.19 is installed OR postgresql10-docs-10.12-4.19 is installed OR postgresql10-plperl-10.12-4.19 is installed OR postgresql10-plpython-10.12-4.19 is installed OR postgresql10-pltcl-10.12-4.19 is installed OR postgresql10-server-10.12-4.19 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.5-3.33 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.5-3.33 is installed OR java-1_8_0-ibm-devel-1.8.0_sr6.5-3.33 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.5-3.33 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information kernel-default-3.12.62-60.62 is installed OR kernel-default-extra-3.12.62-60.62 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information imap-2007e_suse-22 is installed OR libc-client2007e_suse-2007e_suse-22 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND icu-52.1-8.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information libraw-0.18.9-3.8 is installed OR libraw-devel-0.18.9-3.8 is installed OR libraw16-0.18.9-3.8 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information evolution-3.26.6-4.3 is installed OR evolution-devel-3.26.6-4.3 is installed OR evolution-lang-3.26.6-4.3 is installed OR evolution-plugin-bogofilter-3.26.6-4.3 is installed OR evolution-plugin-pst-import-3.26.6-4.3 is installed OR evolution-plugin-spamassassin-3.26.6-4.3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information openstack-glance-13.0.1~a0~dev6-4.3 is installed OR openstack-glance-api-13.0.1~a0~dev6-4.3 is installed OR openstack-glance-doc-13.0.1~a0~dev6-4.3 is installed OR openstack-glance-glare-13.0.1~a0~dev6-4.3 is installed OR openstack-glance-registry-13.0.1~a0~dev6-4.3 is installed OR python-glance-13.0.1~a0~dev6-4.3 is installed
BACK