OVAL Reference oval:org.opensuse.security:def:4788

Oval Definition:

oval:org.opensuse.security:def:4788

Revision Date:	2020-12-02	Version:	1
Title:	Security update for qemu (Important)
Description:	This update for qemu fixes the following issues: Security issues fixed: - CVE-2019-14378: Security fix for heap overflow in ip_reass on big packet input (bsc#1143794). - CVE-2019-12155: Security fix for null pointer dereference while releasing spice resources (bsc#1135902). - CVE-2019-13164: Security fix for qemu-bridge-helper ACL can be bypassed when names are too long (bsc#1140402). Bug fixes and enhancements: - Add vcpu features needed for Cascadelake-Server, Icelake-Client and Icelake-Server, especially the foundational arch-capabilities to help with security and performance on Intel hosts (bsc#1134883) (fate#327764) - Add support for one more security/performance related vcpu feature (bsc#1136778) (fate#327796) - Disable file locking in the Xen PV disk backend to avoid locking issues with PV domUs during migration. The issues triggered by the locking can not be properly handled in libxl. The locking introduced in qemu-2.10 was removed again in qemu-4.0 (bsc#1079730, bsc#1098403, bsc#1111025). - Ignore csske for expanding the cpu model (bsc#1136540) - Fix vm migration is failing with input/output error when nfs server is disconnected (bsc#1119115)
Family:	unix	Class:	patch
Status:		Reference(s):	1062631 1063993 1079730 1098403 1100408 1101982 1111025 1112646 1114957 1116717 1117275 1119115 1119493 1121600 1123156 1123179 1125330 1133534 1134883 1135902 1136540 1136778 1137595 1140402 1141861 1141862 1143794 1146025 1146098 1146105 1146107 1154862 1157627 1160903 1160905 1162117 1165849 1166844 1166916 1172053 1172177 1172182 1172184 1172186 1172189 1172442 1172443 1172795 1172796 1173274 1173351 983926 CVE-2010-2494 CVE-2012-5468 CVE-2014-5044 CVE-2016-3100 CVE-2018-16872 CVE-2018-18335 CVE-2018-18356 CVE-2018-18509 CVE-2018-18954 CVE-2018-19364 CVE-2018-19489 CVE-2019-11703 CVE-2019-11704 CVE-2019-11705 CVE-2019-11706 CVE-2019-12155 CVE-2019-13164 CVE-2019-14378 CVE-2019-16770 CVE-2019-17498 CVE-2019-18902 CVE-2019-5418 CVE-2019-5419 CVE-2019-5420 CVE-2019-5785 CVE-2019-6778 CVE-2019-9848 CVE-2019-9849 CVE-2019-9850 CVE-2019-9851 CVE-2019-9852 CVE-2020-10531 CVE-2020-11076 CVE-2020-11077 CVE-2020-11080 CVE-2020-12802 CVE-2020-12803 CVE-2020-14422 CVE-2020-15169 CVE-2020-5247 CVE-2020-5249 CVE-2020-5267 CVE-2020-7216 CVE-2020-7598 CVE-2020-8164 CVE-2020-8165 CVE-2020-8166 CVE-2020-8167 CVE-2020-8174 CVE-2020-8184 CVE-2020-8185 SUSE-SU-2016:2217-1 SUSE-SU-2019:0423-1 SUSE-SU-2019:0469-1 SUSE-SU-2019:1495-1 SUSE-SU-2019:2231-1 SUSE-SU-2019:2246-1 SUSE-SU-2019:2900-2 SUSE-SU-2020:0263-1 SUSE-SU-2020:1568-1 SUSE-SU-2020:1822-1 SUSE-SU-2020:1920-1 SUSE-SU-2020:2217-1 SUSE-SU-2020:3147-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 5 SUSE Package Hub for SUSE Linux Enterprise 12 SP1	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND bogofilter-1.2.4-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information MozillaFirefox-38.4.0esr-51 is installed OR MozillaFirefox-translations-38.4.0esr-51 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information NetworkManager-1.0.12-8 is installed OR NetworkManager-lang-1.0.12-8 is installed OR libnm-glib-vpn1-1.0.12-8 is installed OR libnm-glib4-1.0.12-8 is installed OR libnm-util2-1.0.12-8 is installed OR libnm0-1.0.12-8 is installed OR typelib-1_0-NM-1_0-1.0.12-8 is installed OR typelib-1_0-NMClient-1_0-1.0.12-8 is installed OR typelib-1_0-NetworkManager-1_0-1.0.12-8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information eog-3.20.4-7 is installed OR eog-lang-3.20.4-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information bluez-5.13-5.4 is installed OR bluez-cups-5.13-5.4 is installed OR libbluetooth3-5.13-5.4 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 is installed AND haproxy-1.5.4-2.4.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP1 is installed AND Package Information libpcreposix0-8.39-5.1 is installed OR pcre-8.39-5.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND Package Information cluster-md-kmp-default-4.4.74-92.29.1 is installed OR cluster-network-kmp-default-4.4.74-92.29.1 is installed OR dlm-kmp-default-4.4.74-92.29.1 is installed OR gfs2-kmp-default-4.4.74-92.29.1 is installed OR kernel-default-4.4.74-92.29.1 is installed OR ocfs2-kmp-default-4.4.74-92.29.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP4 is installed AND Package Information libpacemaker3-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-cli-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-cts-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-remote-1.1.19+20180928.0d2680780-1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP5 is installed AND Package Information corosync-2.3.6-9.13 is installed OR libcorosync4-2.3.6-9.13 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_32-33-default-3-2.1 is installed OR kgraft-patch-3_12_32-33-xen-3-2.1 is installed OR kgraft-patch-SLE12_Update_1-3-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information qemu-2.11.2-9.28 is installed OR qemu-arm-2.11.2-9.28 is installed OR qemu-block-curl-2.11.2-9.28 is installed OR qemu-block-iscsi-2.11.2-9.28 is installed OR qemu-block-rbd-2.11.2-9.28 is installed OR qemu-block-ssh-2.11.2-9.28 is installed OR qemu-guest-agent-2.11.2-9.28 is installed OR qemu-ipxe-1.0.0+-9.28 is installed OR qemu-kvm-2.11.2-9.28 is installed OR qemu-lang-2.11.2-9.28 is installed OR qemu-ppc-2.11.2-9.28 is installed OR qemu-s390-2.11.2-9.28 is installed OR qemu-seabios-1.11.0-9.28 is installed OR qemu-sgabios-8-9.28 is installed OR qemu-vgabios-1.11.0-9.28 is installed OR qemu-x86-2.11.2-9.28 is installed
Definition Synopsis
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed AND Package Information hostinfo-1.0.1-19.5 is installed OR supportutils-3.0-95.21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information dhcp-4.2.3.P2-0.7.2 is installed OR dhcp-client-4.2.3.P2-0.7.2 is installed OR dhcp-relay-4.2.3.P2-0.7.2 is installed OR dhcp-server-4.2.3.P2-0.7.2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND bind-9.9.6P1-0.22.1 is installed OR bind-chrootenv-9.9.6P1-0.22.1 is installed OR bind-doc-9.9.6P1-0.22.1 is installed OR bind-libs-9.9.6P1-0.22.1 is installed OR bind-libs-32bit-9.9.6P1-0.22.1 is installed OR bind-libs-x86-9.9.6P1-0.22.1 is installed OR bind-utils-9.9.6P1-0.22.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND bind-9.9.6P1-0.22.1 is installed OR bind-chrootenv-9.9.6P1-0.22.1 is installed OR bind-doc-9.9.6P1-0.22.1 is installed OR bind-libs-9.9.6P1-0.22.1 is installed OR bind-libs-32bit-9.9.6P1-0.22.1 is installed OR bind-libs-x86-9.9.6P1-0.22.1 is installed OR bind-utils-9.9.6P1-0.22.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information bzip2-1.0.5-34.253.1 is installed OR bzip2-doc-1.0.5-34.253.1 is installed OR libbz2-1-1.0.5-34.253.1 is installed OR libbz2-1-32bit-1.0.5-34.253.1 is installed OR libbz2-1-x86-1.0.5-34.253.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11-SECURITY is installed AND Package Information openssh-openssl1-6.6p1-10.1 is installed OR openssh-openssl1-helpers-6.6p1-10.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND wget-1.14-7.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND libmusicbrainz4-2.1.5-27 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information libmysqlclient-devel-10.0.27-20.13.1 is installed OR libmysqlclient18-10.0.27-20.13.1 is installed OR libmysqlclient18-32bit-10.0.27-20.13.1 is installed OR libmysqlclient_r18-10.0.27-20.13.1 is installed OR libmysqld-devel-10.0.27-20.13.1 is installed OR libmysqld18-10.0.27-20.13.1 is installed OR mariadb-10.0.27-20.13.1 is installed OR mariadb-client-10.0.27-20.13.1 is installed OR mariadb-errormessages-10.0.27-20.13.1 is installed OR mariadb-tools-10.0.27-20.13.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information bind-9.9.9P1-49 is installed OR bind-chrootenv-9.9.9P1-49 is installed OR bind-doc-9.9.9P1-49 is installed OR bind-libs-9.9.9P1-49 is installed OR bind-utils-9.9.9P1-49 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information nodejs10-10.21.0-1.21 is installed OR nodejs10-devel-10.21.0-1.21 is installed OR nodejs10-docs-10.21.0-1.21 is installed OR npm10-10.21.0-1.21 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND mozilla-nss-devel-3.16.5-0.7.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information ImageMagick-6.4.3.6-7.37.1 is installed OR ImageMagick-devel-6.4.3.6-7.37.1 is installed OR libMagick++-devel-6.4.3.6-7.37.1 is installed OR libMagick++1-6.4.3.6-7.37.1 is installed OR libMagickWand1-6.4.3.6-7.37.1 is installed OR libMagickWand1-32bit-6.4.3.6-7.37.1 is installed OR perl-PerlMagick-6.4.3.6-7.37.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND libHX-devel-3.18-1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND MozillaFirefox-devel-38.4.0esr-51 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND MozillaFirefox-devel-45.4.0esr-81 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information libreoffice-6.2.6.2-3.21 is installed OR libreoffice-base-6.2.6.2-3.21 is installed OR libreoffice-base-drivers-postgresql-6.2.6.2-3.21 is installed OR libreoffice-branding-upstream-6.2.6.2-3.21 is installed OR libreoffice-calc-6.2.6.2-3.21 is installed OR libreoffice-calc-extensions-6.2.6.2-3.21 is installed OR libreoffice-draw-6.2.6.2-3.21 is installed OR libreoffice-filters-optional-6.2.6.2-3.21 is installed OR libreoffice-gnome-6.2.6.2-3.21 is installed OR libreoffice-gtk3-6.2.6.2-3.21 is installed OR libreoffice-icon-themes-6.2.6.2-3.21 is installed OR libreoffice-impress-6.2.6.2-3.21 is installed OR libreoffice-l10n-af-6.2.6.2-3.21 is installed OR libreoffice-l10n-ar-6.2.6.2-3.21 is installed OR libreoffice-l10n-as-6.2.6.2-3.21 is installed OR libreoffice-l10n-bg-6.2.6.2-3.21 is installed OR libreoffice-l10n-bn-6.2.6.2-3.21 is installed OR libreoffice-l10n-br-6.2.6.2-3.21 is installed OR libreoffice-l10n-ca-6.2.6.2-3.21 is installed OR libreoffice-l10n-cs-6.2.6.2-3.21 is installed OR libreoffice-l10n-cy-6.2.6.2-3.21 is installed OR libreoffice-l10n-da-6.2.6.2-3.21 is installed OR libreoffice-l10n-de-6.2.6.2-3.21 is installed OR libreoffice-l10n-dz-6.2.6.2-3.21 is installed OR libreoffice-l10n-el-6.2.6.2-3.21 is installed OR libreoffice-l10n-en-6.2.6.2-3.21 is installed OR libreoffice-l10n-eo-6.2.6.2-3.21 is installed OR libreoffice-l10n-es-6.2.6.2-3.21 is installed OR libreoffice-l10n-et-6.2.6.2-3.21 is installed OR libreoffice-l10n-eu-6.2.6.2-3.21 is installed OR libreoffice-l10n-fa-6.2.6.2-3.21 is installed OR libreoffice-l10n-fi-6.2.6.2-3.21 is installed OR libreoffice-l10n-fr-6.2.6.2-3.21 is installed OR libreoffice-l10n-ga-6.2.6.2-3.21 is installed OR libreoffice-l10n-gl-6.2.6.2-3.21 is installed OR libreoffice-l10n-gu-6.2.6.2-3.21 is installed OR libreoffice-l10n-he-6.2.6.2-3.21 is installed OR libreoffice-l10n-hi-6.2.6.2-3.21 is installed OR libreoffice-l10n-hr-6.2.6.2-3.21 is installed OR libreoffice-l10n-hu-6.2.6.2-3.21 is installed OR libreoffice-l10n-it-6.2.6.2-3.21 is installed OR libreoffice-l10n-ja-6.2.6.2-3.21 is installed OR libreoffice-l10n-kk-6.2.6.2-3.21 is installed OR libreoffice-l10n-kn-6.2.6.2-3.21 is installed OR libreoffice-l10n-ko-6.2.6.2-3.21 is installed OR libreoffice-l10n-lt-6.2.6.2-3.21 is installed OR libreoffice-l10n-lv-6.2.6.2-3.21 is installed OR libreoffice-l10n-mai-6.2.6.2-3.21 is installed OR libreoffice-l10n-ml-6.2.6.2-3.21 is installed OR libreoffice-l10n-mr-6.2.6.2-3.21 is installed OR libreoffice-l10n-nb-6.2.6.2-3.21 is installed OR libreoffice-l10n-nl-6.2.6.2-3.21 is installed OR libreoffice-l10n-nn-6.2.6.2-3.21 is installed OR libreoffice-l10n-nr-6.2.6.2-3.21 is installed OR libreoffice-l10n-nso-6.2.6.2-3.21 is installed OR libreoffice-l10n-or-6.2.6.2-3.21 is installed OR libreoffice-l10n-pa-6.2.6.2-3.21 is installed OR libreoffice-l10n-pl-6.2.6.2-3.21 is installed OR libreoffice-l10n-pt_BR-6.2.6.2-3.21 is installed OR libreoffice-l10n-pt_PT-6.2.6.2-3.21 is installed OR libreoffice-l10n-ro-6.2.6.2-3.21 is installed OR libreoffice-l10n-ru-6.2.6.2-3.21 is installed OR libreoffice-l10n-si-6.2.6.2-3.21 is installed OR libreoffice-l10n-sk-6.2.6.2-3.21 is installed OR libreoffice-l10n-sl-6.2.6.2-3.21 is installed OR libreoffice-l10n-sr-6.2.6.2-3.21 is installed OR libreoffice-l10n-ss-6.2.6.2-3.21 is installed OR libreoffice-l10n-st-6.2.6.2-3.21 is installed OR libreoffice-l10n-sv-6.2.6.2-3.21 is installed OR libreoffice-l10n-ta-6.2.6.2-3.21 is installed OR libreoffice-l10n-te-6.2.6.2-3.21 is installed OR libreoffice-l10n-th-6.2.6.2-3.21 is installed OR libreoffice-l10n-tn-6.2.6.2-3.21 is installed OR libreoffice-l10n-tr-6.2.6.2-3.21 is installed OR libreoffice-l10n-ts-6.2.6.2-3.21 is installed OR libreoffice-l10n-uk-6.2.6.2-3.21 is installed OR libreoffice-l10n-ve-6.2.6.2-3.21 is installed OR libreoffice-l10n-xh-6.2.6.2-3.21 is installed OR libreoffice-l10n-zh_CN-6.2.6.2-3.21 is installed OR libreoffice-l10n-zh_TW-6.2.6.2-3.21 is installed OR libreoffice-l10n-zu-6.2.6.2-3.21 is installed OR libreoffice-mailmerge-6.2.6.2-3.21 is installed OR libreoffice-math-6.2.6.2-3.21 is installed OR libreoffice-officebean-6.2.6.2-3.21 is installed OR libreoffice-pyuno-6.2.6.2-3.21 is installed OR libreoffice-writer-6.2.6.2-3.21 is installed OR libreoffice-writer-extensions-6.2.6.2-3.21 is installed OR libreofficekit-6.2.6.2-3.21 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-60.7.0-3.36 is installed OR MozillaThunderbird-translations-common-60.7.0-3.36 is installed OR MozillaThunderbird-translations-other-60.7.0-3.36 is installed
Definition Synopsis
SUSE Package Hub for SUSE Linux Enterprise 12 SP1 is installed AND Package Information kinit-5.20.0-6 is installed OR kinit-devel-5.20.0-6 is installed OR kinit-lang-5.20.0-6 is installed

BACK