Revision Date: | 2020-12-02 | Version: | 1 |
Title: | Security update for spice (Important) |
Description: |
This update for spice fixes the following issues:
Security issue fixed:
- CVE-2019-3813: Fixed a out-of-bounds read in the memslot_get_virt function that could lead to denial-of-service or code-execution (bsc#1122706).
Non-security issue fixed:
- Include spice-server tweak to compensate for performance issues with Windows guests (bsc#1109044).
|
Family: | unix | Class: | patch |
Status: | | Reference(s): | 1000019 1004465 1013882 1046305 1046306 1050252 1050549 1051510 1054610 1055121 1056658 1056662 1056787 1060463 1063638 1065600 1070995 1071995 1078355 1082943 1083548 1083647 1084216 1086095 1086282 1086301 1086313 1086314 1086323 1087082 1087092 1088133 1094555 1098382 1098425 1098995 1101676 1101677 1101678 1103342 1103429 1104353 1106105 1106434 1106811 1107078 1107665 1108101 1108870 1109044 1109695 1110096 1110705 1111666 1111858 1111859 1112368 1112377 1112384 1112386 1112391 1112397 1112404 1112415 1112417 1112421 1112432 1112767 1113042 1113712 1113722 1113939 1114279 1114585 1116686 1117108 1117155 1117645 1118338 1118754 1119019 1119086 1119766 1119843 1120008 1120041 1120318 1120601 1120758 1120854 1120902 1120909 1120955 1121317 1121726 1121789 1121805 1122019 1122192 1122198 1122324 1122475 1122554 1122662 1122706 1122764 1122779 1122822 1122885 1122927 1122944 1122971 1122982 1123060 1123061 1123161 1123317 1123348 1123357 1123456 1123538 1123697 1123882 1123933 1124055 1124204 1124235 1124579 1124589 1124728 1124732 1124735 1124969 1124974 1124975 1124976 1124978 1124979 1124980 1124981 1124982 1124984 1124985 1125109 1125125 1125252 1125315 1125614 1125728 1125780 1125797 1125799 1125800 1125907 1125947 1126131 1126209 1126389 1126393 1126476 1126480 1126481 1126488 1126495 1126555 1126579 1126789 1126790 1126802 1126803 1126804 1126805 1126806 1126807 1127027 1127042 1127062 1127082 1127154 1127285 1127286 1127307 1127363 1127493 1127494 1127495 1127496 1127497 1127498 1127534 1127561 1127567 1127595 1127603 1127682 1127731 1127750 1127836 1127961 1128094 1128166 1128351 1128451 1128895 1129046 1129080 1129163 1129179 1129181 1129182 1129183 1129184 1129205 1129281 1129284 1129285 1129291 1129292 1129293 1129294 1129295 1129296 1129326 1129327 1129330 1129363 1129366 1129497 1129519 1129543 1129547 1129551 1129581 1129625 1129664 1129739 1129923 1137595 1138872 1140868 1141322 1149296 1149297 1149298 1149299 1149303 1149304 1150939 1152375 1168669 1172461 1172506 1173027 1173032 1173998 1174910 1174913 1175476 1175674 1176116 1176256 1176257 1176258 1176259 824948 CVE-2010-0405 CVE-2011-2721 CVE-2011-3627 CVE-2012-1457 CVE-2012-1458 CVE-2012-1459 CVE-2013-6473 CVE-2013-6474 CVE-2013-6475 CVE-2013-6476 CVE-2014-2707 CVE-2014-4336 CVE-2014-4337 CVE-2014-4338 CVE-2016-5181 CVE-2016-5182 CVE-2016-5183 CVE-2016-5184 CVE-2016-5185 CVE-2016-5186 CVE-2016-5187 CVE-2016-5188 CVE-2016-5189 CVE-2016-5190 CVE-2016-5191 CVE-2016-5192 CVE-2016-5193 CVE-2016-9843 CVE-2018-20669 CVE-2018-3058 CVE-2018-3060 CVE-2018-3063 CVE-2018-3064 CVE-2018-3066 CVE-2018-3143 CVE-2018-3156 CVE-2018-3162 CVE-2018-3173 CVE-2018-3174 CVE-2018-3185 CVE-2018-3200 CVE-2018-3251 CVE-2018-3277 CVE-2018-3282 CVE-2018-3284 CVE-2019-11703 CVE-2019-11704 CVE-2019-11705 CVE-2019-11706 CVE-2019-11707 CVE-2019-11708 CVE-2019-11709 CVE-2019-11710 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11714 CVE-2019-11715 CVE-2019-11716 CVE-2019-11717 CVE-2019-11719 CVE-2019-11720 CVE-2019-11721 CVE-2019-11723 CVE-2019-11724 CVE-2019-11725 CVE-2019-11727 CVE-2019-11728 CVE-2019-11729 CVE-2019-11730 CVE-2019-11739 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11752 CVE-2019-11755 CVE-2019-14562 CVE-2019-2024 CVE-2019-2510 CVE-2019-2537 CVE-2019-3459 CVE-2019-3460 CVE-2019-3813 CVE-2019-3819 CVE-2019-6974 CVE-2019-7221 CVE-2019-7222 CVE-2019-7308 CVE-2019-8912 CVE-2019-8980 CVE-2019-9213 CVE-2020-12402 CVE-2020-13753 CVE-2020-13777 CVE-2020-14361 CVE-2020-14362 CVE-2020-15166 CVE-2020-8177 CVE-2020-9802 CVE-2020-9803 CVE-2020-9805 CVE-2020-9806 CVE-2020-9807 CVE-2020-9843 CVE-2020-9850 SUSE-SU-2016:2597-1 SUSE-SU-2019:0242-1 SUSE-SU-2019:0555-1 SUSE-SU-2019:0784-1 SUSE-SU-2019:1683-1 SUSE-SU-2019:2515-1 SUSE-SU-2020:1584-1 SUSE-SU-2020:1773-1 SUSE-SU-2020:1850-1 SUSE-SU-2020:1990-1 SUSE-SU-2020:2481-1 SUSE-SU-2020:2713-1 SUSE-SU-2020:3264-1
|
Platform(s): | SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 5 SUSE Package Hub for SUSE Linux Enterprise 12
| Product(s): | |
Definition Synopsis |
SUSE Linux Enterprise Desktop 12 is installed AND clamav-0.98.4-1 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 12 SP1 is installed
AND Package Information
alsa-1.0.27.2-11 is installed
OR libasound2-1.0.27.2-11 is installed
OR libasound2-32bit-1.0.27.2-11 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 12 SP2 is installed
AND Package Information
alsa-1.0.27.2-11 is installed
OR libasound2-1.0.27.2-11 is installed
OR libasound2-32bit-1.0.27.2-11 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 12 SP3 is installed
AND facter-2.4.6-11 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 12 SP4 is installed
AND Package Information
bzip2-1.0.6-29 is installed
OR libbz2-1-1.0.6-29 is installed
OR libbz2-1-32bit-1.0.6-29 is installed
|
Definition Synopsis |
SUSE Linux Enterprise High Availability 12 is installed
AND Package Information
conntrack-tools-1.4.2-5.2 is installed
OR libnetfilter_cthelper-1.0.0-7.1 is installed
OR libnetfilter_cthelper0-1.0.0-7.1 is installed
OR libnetfilter_cttimeout-1.0.0-9.1 is installed
OR libnetfilter_cttimeout1-1.0.0-9.1 is installed
|
Definition Synopsis |
SUSE Linux Enterprise High Availability 12 SP1 is installed
AND hawk2-1.0.1+git.1456406635.49e230d-12.1 is installed
|
Definition Synopsis |
SUSE Linux Enterprise High Availability 12 SP2 is installed
AND Package Information
cluster-md-kmp-default-4.4.21-69 is installed
OR cluster-network-kmp-default-4.4.21-69 is installed
OR dlm-kmp-default-4.4.21-69 is installed
OR gfs2-kmp-default-4.4.21-69 is installed
OR ocfs2-kmp-default-4.4.21-69 is installed
|
Definition Synopsis |
SUSE Linux Enterprise High Availability 12 SP4 is installed
AND python-requests-2.11.1-6.28 is installed
|
Definition Synopsis |
SUSE Linux Enterprise High Availability 12 SP5 is installed
AND haproxy-1.6.11-10 is installed
|
Definition Synopsis |
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
AND Package Information
alsa-1.0.27.2-15 is installed
OR alsa-docs-1.0.27.2-15 is installed
OR libasound2-1.0.27.2-15 is installed
OR libasound2-32bit-1.0.27.2-15 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Live Patching 12 is installed
AND Package Information
kgraft-patch-3_12_39-47-default-2-10.1 is installed
OR kgraft-patch-3_12_39-47-xen-2-10.1 is installed
OR kgraft-patch-SLE12_Update_4-2-10.1 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Module for Server Applications 15 is installed
AND Package Information
libspice-server-devel-0.14.0-4.6 is installed
OR libspice-server1-0.14.0-4.6 is installed
OR spice-0.14.0-4.6 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed
AND Package Information
libdcerpc-atsvc0-4.2.4-28.32 is installed
OR samba-4.2.4-28.32 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 11 SP2 is installed
AND Package Information
ecryptfs-utils-61-1.29.1 is installed
OR ecryptfs-utils-32bit-61-1.29.1 is installed
OR ecryptfs-utils-x86-61-1.29.1 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 11 SP3 is installed
AND Package Information
compat-libldap-2_3-0-2.3.37-2.24.36 is installed
OR libldap-2_4-2-2.4.26-0.24.36 is installed
OR libldap-2_4-2-32bit-2.4.26-0.24.36 is installed
OR libldap-2_4-2-x86-2.4.26-0.24.36 is installed
OR openldap2-2.4.26-0.24.36 is installed
OR openldap2-back-meta-2.4.26-0.24.36 is installed
OR openldap2-client-2.4.26-0.24.36 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 11 SP3-LTSS is installed
AND Package Information
bind-9.9.6P1-0.33.1 is installed
OR bind-chrootenv-9.9.6P1-0.33.1 is installed
OR bind-doc-9.9.6P1-0.33.1 is installed
OR bind-libs-9.9.6P1-0.33.1 is installed
OR bind-libs-32bit-9.9.6P1-0.33.1 is installed
OR bind-utils-9.9.6P1-0.33.1 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 11-SECURITY is installed
AND Package Information
libopenssl1-devel-1.0.1g-0.40.1 is installed
OR libopenssl1_0_0-1.0.1g-0.40.1 is installed
OR libopenssl1_0_0-32bit-1.0.1g-0.40.1 is installed
OR libopenssl1_0_0-x86-1.0.1g-0.40.1 is installed
OR openssl1-1.0.1g-0.40.1 is installed
OR openssl1-doc-1.0.1g-0.40.1 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 is installed
AND Package Information
tigervnc-1.3.0-22.3 is installed
OR xorg-x11-Xvnc-1.3.0-22.3 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP1 is installed
AND Package Information
libopenssl1_0_0-1.0.1i-34 is installed
OR libopenssl1_0_0-32bit-1.0.1i-34 is installed
OR libopenssl1_0_0-hmac-1.0.1i-34 is installed
OR libopenssl1_0_0-hmac-32bit-1.0.1i-34 is installed
OR openssl-1.0.1i-34 is installed
OR openssl-doc-1.0.1i-34 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2 is installed
AND Package Information
accountsservice-0.6.42-14 is installed
OR accountsservice-lang-0.6.42-14 is installed
OR libaccountsservice0-0.6.42-14 is installed
OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3 is installed
AND Package Information
aaa_base-13.2+git20140911.61c1681-36 is installed
OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP4 is installed
AND Package Information
apache2-2.4.23-29.24 is installed
OR apache2-doc-2.4.23-29.24 is installed
OR apache2-example-pages-2.4.23-29.24 is installed
OR apache2-prefork-2.4.23-29.24 is installed
OR apache2-utils-2.4.23-29.24 is installed
OR apache2-worker-2.4.23-29.24 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12-LTSS is installed
AND Package Information
libstorage-2.25.16.1-3.1 is installed
OR libstorage-ruby-2.25.16.1-3.1 is installed
OR libstorage5-2.25.16.1-3.1 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
AND Package Information
jasper-1.900.14-181 is installed
OR libjasper1-1.900.14-181 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server for SAP Applications 15 is installed
AND Package Information
gnutls-3.6.7-6.29 is installed
OR libgnutls-devel-3.6.7-6.29 is installed
OR libgnutls30-3.6.7-6.29 is installed
OR libgnutls30-32bit-3.6.7-6.29 is installed
OR libgnutls30-hmac-3.6.7-6.29 is installed
OR libgnutls30-hmac-32bit-3.6.7-6.29 is installed
OR libgnutlsxx-devel-3.6.7-6.29 is installed
OR libgnutlsxx28-3.6.7-6.29 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
AND Package Information
libgcrypt-1.5.0-0.19.1 is installed
OR libgcrypt-devel-1.5.0-0.19.1 is installed
OR libgcrypt-devel-32bit-1.5.0-0.19.1 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
AND Package Information
ImageMagick-6.4.3.6-7.48.1 is installed
OR ImageMagick-devel-6.4.3.6-7.48.1 is installed
OR libMagick++-devel-6.4.3.6-7.48.1 is installed
OR libMagick++1-6.4.3.6-7.48.1 is installed
OR libMagickWand1-6.4.3.6-7.48.1 is installed
OR libMagickWand1-32bit-6.4.3.6-7.48.1 is installed
OR perl-PerlMagick-6.4.3.6-7.48.1 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Software Development Kit 12 is installed
AND libXext-devel-1.3.2-3 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
AND alsa-devel-1.0.27.2-11 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
AND Package Information
DirectFB-devel-1.7.1-6 is installed
OR lib++dfb-devel-1.7.1-6 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Workstation Extension 15 is installed
AND Package Information
MozillaThunderbird-68.1.1-3.51 is installed
OR MozillaThunderbird-translations-common-68.1.1-3.51 is installed
OR MozillaThunderbird-translations-other-68.1.1-3.51 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
AND Package Information
MozillaThunderbird-60.7.2-3.43 is installed
OR MozillaThunderbird-translations-common-60.7.2-3.43 is installed
OR MozillaThunderbird-translations-other-60.7.2-3.43 is installed
|
Definition Synopsis |
SUSE Package Hub for SUSE Linux Enterprise 12 is installed
AND Package Information
chromedriver-54.0.2840.59-109 is installed
OR chromium-54.0.2840.59-109 is installed
OR chromium-ffmpegsumo-54.0.2840.59-109 is installed
|