Oval Definition:oval:org.opensuse.security:def:4791
Revision Date:2020-12-02Version:1
Title:Security update for spice (Important)
Description:

This update for spice fixes the following issues:

Security issue fixed:

- CVE-2019-3813: Fixed a out-of-bounds read in the memslot_get_virt function that could lead to denial-of-service or code-execution (bsc#1122706).

Non-security issue fixed:

- Include spice-server tweak to compensate for performance issues with Windows guests (bsc#1109044).
Family:unixClass:patch
Status:Reference(s):1000019
1004465
1013882
1046305
1046306
1050252
1050549
1051510
1054610
1055121
1056658
1056662
1056787
1060463
1063638
1065600
1070995
1071995
1078355
1082943
1083548
1083647
1084216
1086095
1086282
1086301
1086313
1086314
1086323
1087082
1087092
1088133
1094555
1098382
1098425
1098995
1101676
1101677
1101678
1103342
1103429
1104353
1106105
1106434
1106811
1107078
1107665
1108101
1108870
1109044
1109695
1110096
1110705
1111666
1111858
1111859
1112368
1112377
1112384
1112386
1112391
1112397
1112404
1112415
1112417
1112421
1112432
1112767
1113042
1113712
1113722
1113939
1114279
1114585
1116686
1117108
1117155
1117645
1118338
1118754
1119019
1119086
1119766
1119843
1120008
1120041
1120318
1120601
1120758
1120854
1120902
1120909
1120955
1121317
1121726
1121789
1121805
1122019
1122192
1122198
1122324
1122475
1122554
1122662
1122706
1122764
1122779
1122822
1122885
1122927
1122944
1122971
1122982
1123060
1123061
1123161
1123317
1123348
1123357
1123456
1123538
1123697
1123882
1123933
1124055
1124204
1124235
1124579
1124589
1124728
1124732
1124735
1124969
1124974
1124975
1124976
1124978
1124979
1124980
1124981
1124982
1124984
1124985
1125109
1125125
1125252
1125315
1125614
1125728
1125780
1125797
1125799
1125800
1125907
1125947
1126131
1126209
1126389
1126393
1126476
1126480
1126481
1126488
1126495
1126555
1126579
1126789
1126790
1126802
1126803
1126804
1126805
1126806
1126807
1127027
1127042
1127062
1127082
1127154
1127285
1127286
1127307
1127363
1127493
1127494
1127495
1127496
1127497
1127498
1127534
1127561
1127567
1127595
1127603
1127682
1127731
1127750
1127836
1127961
1128094
1128166
1128351
1128451
1128895
1129046
1129080
1129163
1129179
1129181
1129182
1129183
1129184
1129205
1129281
1129284
1129285
1129291
1129292
1129293
1129294
1129295
1129296
1129326
1129327
1129330
1129363
1129366
1129497
1129519
1129543
1129547
1129551
1129581
1129625
1129664
1129739
1129923
1137595
1138872
1140868
1141322
1149296
1149297
1149298
1149299
1149303
1149304
1150939
1152375
1168669
1172461
1172506
1173027
1173032
1173998
1174910
1174913
1175476
1175674
1176116
1176256
1176257
1176258
1176259
824948
CVE-2010-0405
CVE-2011-2721
CVE-2011-3627
CVE-2012-1457
CVE-2012-1458
CVE-2012-1459
CVE-2013-6473
CVE-2013-6474
CVE-2013-6475
CVE-2013-6476
CVE-2014-2707
CVE-2014-4336
CVE-2014-4337
CVE-2014-4338
CVE-2016-5181
CVE-2016-5182
CVE-2016-5183
CVE-2016-5184
CVE-2016-5185
CVE-2016-5186
CVE-2016-5187
CVE-2016-5188
CVE-2016-5189
CVE-2016-5190
CVE-2016-5191
CVE-2016-5192
CVE-2016-5193
CVE-2016-9843
CVE-2018-20669
CVE-2018-3058
CVE-2018-3060
CVE-2018-3063
CVE-2018-3064
CVE-2018-3066
CVE-2018-3143
CVE-2018-3156
CVE-2018-3162
CVE-2018-3173
CVE-2018-3174
CVE-2018-3185
CVE-2018-3200
CVE-2018-3251
CVE-2018-3277
CVE-2018-3282
CVE-2018-3284
CVE-2019-11703
CVE-2019-11704
CVE-2019-11705
CVE-2019-11706
CVE-2019-11707
CVE-2019-11708
CVE-2019-11709
CVE-2019-11710
CVE-2019-11711
CVE-2019-11712
CVE-2019-11713
CVE-2019-11714
CVE-2019-11715
CVE-2019-11716
CVE-2019-11717
CVE-2019-11719
CVE-2019-11720
CVE-2019-11721
CVE-2019-11723
CVE-2019-11724
CVE-2019-11725
CVE-2019-11727
CVE-2019-11728
CVE-2019-11729
CVE-2019-11730
CVE-2019-11739
CVE-2019-11740
CVE-2019-11742
CVE-2019-11743
CVE-2019-11744
CVE-2019-11746
CVE-2019-11752
CVE-2019-11755
CVE-2019-14562
CVE-2019-2024
CVE-2019-2510
CVE-2019-2537
CVE-2019-3459
CVE-2019-3460
CVE-2019-3813
CVE-2019-3819
CVE-2019-6974
CVE-2019-7221
CVE-2019-7222
CVE-2019-7308
CVE-2019-8912
CVE-2019-8980
CVE-2019-9213
CVE-2020-12402
CVE-2020-13753
CVE-2020-13777
CVE-2020-14361
CVE-2020-14362
CVE-2020-15166
CVE-2020-8177
CVE-2020-9802
CVE-2020-9803
CVE-2020-9805
CVE-2020-9806
CVE-2020-9807
CVE-2020-9843
CVE-2020-9850
SUSE-SU-2016:2597-1
SUSE-SU-2019:0242-1
SUSE-SU-2019:0555-1
SUSE-SU-2019:0784-1
SUSE-SU-2019:1683-1
SUSE-SU-2019:2515-1
SUSE-SU-2020:1584-1
SUSE-SU-2020:1773-1
SUSE-SU-2020:1850-1
SUSE-SU-2020:1990-1
SUSE-SU-2020:2481-1
SUSE-SU-2020:2713-1
SUSE-SU-2020:3264-1
Platform(s):SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Availability 12
SUSE Linux Enterprise High Availability 12 SP1
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 12 SP5
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 11-SECURITY
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE OpenStack Cloud 5
SUSE Package Hub for SUSE Linux Enterprise 12
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND clamav-0.98.4-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • alsa-1.0.27.2-11 is installed
  • OR libasound2-1.0.27.2-11 is installed
  • OR libasound2-32bit-1.0.27.2-11 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • alsa-1.0.27.2-11 is installed
  • OR libasound2-1.0.27.2-11 is installed
  • OR libasound2-32bit-1.0.27.2-11 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND facter-2.4.6-11 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • bzip2-1.0.6-29 is installed
  • OR libbz2-1-1.0.6-29 is installed
  • OR libbz2-1-32bit-1.0.6-29 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 is installed
  • AND Package Information
  • conntrack-tools-1.4.2-5.2 is installed
  • OR libnetfilter_cthelper-1.0.0-7.1 is installed
  • OR libnetfilter_cthelper0-1.0.0-7.1 is installed
  • OR libnetfilter_cttimeout-1.0.0-9.1 is installed
  • OR libnetfilter_cttimeout1-1.0.0-9.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP1 is installed
  • AND hawk2-1.0.1+git.1456406635.49e230d-12.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.4.21-69 is installed
  • OR cluster-network-kmp-default-4.4.21-69 is installed
  • OR dlm-kmp-default-4.4.21-69 is installed
  • OR gfs2-kmp-default-4.4.21-69 is installed
  • OR ocfs2-kmp-default-4.4.21-69 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND python-requests-2.11.1-6.28 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP5 is installed
  • AND haproxy-1.6.11-10 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND Package Information
  • alsa-1.0.27.2-15 is installed
  • OR alsa-docs-1.0.27.2-15 is installed
  • OR libasound2-1.0.27.2-15 is installed
  • OR libasound2-32bit-1.0.27.2-15 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_39-47-default-2-10.1 is installed
  • OR kgraft-patch-3_12_39-47-xen-2-10.1 is installed
  • OR kgraft-patch-SLE12_Update_4-2-10.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • libspice-server-devel-0.14.0-4.6 is installed
  • OR libspice-server1-0.14.0-4.6 is installed
  • OR spice-0.14.0-4.6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed
  • AND Package Information
  • libdcerpc-atsvc0-4.2.4-28.32 is installed
  • OR samba-4.2.4-28.32 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND Package Information
  • ecryptfs-utils-61-1.29.1 is installed
  • OR ecryptfs-utils-32bit-61-1.29.1 is installed
  • OR ecryptfs-utils-x86-61-1.29.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • compat-libldap-2_3-0-2.3.37-2.24.36 is installed
  • OR libldap-2_4-2-2.4.26-0.24.36 is installed
  • OR libldap-2_4-2-32bit-2.4.26-0.24.36 is installed
  • OR libldap-2_4-2-x86-2.4.26-0.24.36 is installed
  • OR openldap2-2.4.26-0.24.36 is installed
  • OR openldap2-back-meta-2.4.26-0.24.36 is installed
  • OR openldap2-client-2.4.26-0.24.36 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3-LTSS is installed
  • AND Package Information
  • bind-9.9.6P1-0.33.1 is installed
  • OR bind-chrootenv-9.9.6P1-0.33.1 is installed
  • OR bind-doc-9.9.6P1-0.33.1 is installed
  • OR bind-libs-9.9.6P1-0.33.1 is installed
  • OR bind-libs-32bit-9.9.6P1-0.33.1 is installed
  • OR bind-utils-9.9.6P1-0.33.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11-SECURITY is installed
  • AND Package Information
  • libopenssl1-devel-1.0.1g-0.40.1 is installed
  • OR libopenssl1_0_0-1.0.1g-0.40.1 is installed
  • OR libopenssl1_0_0-32bit-1.0.1g-0.40.1 is installed
  • OR libopenssl1_0_0-x86-1.0.1g-0.40.1 is installed
  • OR openssl1-1.0.1g-0.40.1 is installed
  • OR openssl1-doc-1.0.1g-0.40.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • tigervnc-1.3.0-22.3 is installed
  • OR xorg-x11-Xvnc-1.3.0-22.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libopenssl1_0_0-1.0.1i-34 is installed
  • OR libopenssl1_0_0-32bit-1.0.1i-34 is installed
  • OR libopenssl1_0_0-hmac-1.0.1i-34 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.1i-34 is installed
  • OR openssl-1.0.1i-34 is installed
  • OR openssl-doc-1.0.1i-34 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • accountsservice-0.6.42-14 is installed
  • OR accountsservice-lang-0.6.42-14 is installed
  • OR libaccountsservice0-0.6.42-14 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-36 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • apache2-2.4.23-29.24 is installed
  • OR apache2-doc-2.4.23-29.24 is installed
  • OR apache2-example-pages-2.4.23-29.24 is installed
  • OR apache2-prefork-2.4.23-29.24 is installed
  • OR apache2-utils-2.4.23-29.24 is installed
  • OR apache2-worker-2.4.23-29.24 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12-LTSS is installed
  • AND Package Information
  • libstorage-2.25.16.1-3.1 is installed
  • OR libstorage-ruby-2.25.16.1-3.1 is installed
  • OR libstorage5-2.25.16.1-3.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • jasper-1.900.14-181 is installed
  • OR libjasper1-1.900.14-181 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • gnutls-3.6.7-6.29 is installed
  • OR libgnutls-devel-3.6.7-6.29 is installed
  • OR libgnutls30-3.6.7-6.29 is installed
  • OR libgnutls30-32bit-3.6.7-6.29 is installed
  • OR libgnutls30-hmac-3.6.7-6.29 is installed
  • OR libgnutls30-hmac-32bit-3.6.7-6.29 is installed
  • OR libgnutlsxx-devel-3.6.7-6.29 is installed
  • OR libgnutlsxx28-3.6.7-6.29 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
  • AND Package Information
  • libgcrypt-1.5.0-0.19.1 is installed
  • OR libgcrypt-devel-1.5.0-0.19.1 is installed
  • OR libgcrypt-devel-32bit-1.5.0-0.19.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND Package Information
  • ImageMagick-6.4.3.6-7.48.1 is installed
  • OR ImageMagick-devel-6.4.3.6-7.48.1 is installed
  • OR libMagick++-devel-6.4.3.6-7.48.1 is installed
  • OR libMagick++1-6.4.3.6-7.48.1 is installed
  • OR libMagickWand1-6.4.3.6-7.48.1 is installed
  • OR libMagickWand1-32bit-6.4.3.6-7.48.1 is installed
  • OR perl-PerlMagick-6.4.3.6-7.48.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND libXext-devel-1.3.2-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND alsa-devel-1.0.27.2-11 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND Package Information
  • DirectFB-devel-1.7.1-6 is installed
  • OR lib++dfb-devel-1.7.1-6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • MozillaThunderbird-68.1.1-3.51 is installed
  • OR MozillaThunderbird-translations-common-68.1.1-3.51 is installed
  • OR MozillaThunderbird-translations-other-68.1.1-3.51 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • MozillaThunderbird-60.7.2-3.43 is installed
  • OR MozillaThunderbird-translations-common-60.7.2-3.43 is installed
  • OR MozillaThunderbird-translations-other-60.7.2-3.43 is installed
  • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 is installed
  • AND Package Information
  • chromedriver-54.0.2840.59-109 is installed
  • OR chromium-54.0.2840.59-109 is installed
  • OR chromium-ffmpegsumo-54.0.2840.59-109 is installed
  • BACK