Oval Definition:oval:org.opensuse.security:def:4800
Revision Date:2020-12-02Version:1
Title:Security update for xen (Important)
Description:

This update for xen fixes the following issues:

- CVE-2018-12207: Untrusted virtual machines on Intel CPUs could exploit a race condition in the Instruction Fetch Unit of the Intel CPU to cause a Machine Exception during Page Size Change, causing the CPU core to be non-functional. (bsc#1155945) - CVE-2019-11135: Aborting an asynchronous TSX operation on Intel CPUs with Transactional Memory support could be used to facilitate sidechannel information leaks out of microarchitectural buffers, similar to the previously described 'Microarchitectural Data Sampling' attack. (bsc#1152497). - CVE-2019-18425: 32-bit PV guest user mode could elevate its privileges to that of the guest kernel. (bsc#1154456). - CVE-2019-18421: A malicious PV guest administrator may have been able to escalate their privilege to that of the host. (bsc#1154458). - CVE-2019-18420: Malicious x86 PV guests may have caused a hypervisor crash, resulting in a Denial of Service (Dos). (bsc#1154448)
Family:unixClass:patch
Status:Reference(s):1013708
1013712
1013893
1015171
1130116
1131644
1131868
1131870
1131871
1131872
1131874
1133640
1140868
1141322
1144443
1148643
1149296
1149297
1149298
1149299
1149303
1149304
1150934
1150939
1152375
1152497
1153163
1153164
1154448
1154456
1154458
1154461
1155945
1156920
1163985
1166933
1167331
1171924
1172906
1172935
1173160
1173197
1173376
1173377
1173378
1173380
1176733
1177895
930077
930078
930079
CVE-2012-4453
CVE-2012-4510
CVE-2013-0262
CVE-2013-0263
CVE-2013-0269
CVE-2013-0276
CVE-2013-0277
CVE-2015-4141
CVE-2015-4142
CVE-2015-4143
CVE-2015-8041
CVE-2016-9797
CVE-2016-9798
CVE-2016-9802
CVE-2016-9917
CVE-2017-13077
CVE-2017-13078
CVE-2017-13079
CVE-2017-13080
CVE-2017-13081
CVE-2017-13082
CVE-2017-13086
CVE-2017-13087
CVE-2017-13088
CVE-2018-12207
CVE-2018-14526
CVE-2019-11135
CVE-2019-11555
CVE-2019-11709
CVE-2019-11710
CVE-2019-11711
CVE-2019-11712
CVE-2019-11713
CVE-2019-11714
CVE-2019-11715
CVE-2019-11716
CVE-2019-11717
CVE-2019-11719
CVE-2019-11720
CVE-2019-11721
CVE-2019-11723
CVE-2019-11724
CVE-2019-11725
CVE-2019-11727
CVE-2019-11728
CVE-2019-11729
CVE-2019-11730
CVE-2019-11739
CVE-2019-11740
CVE-2019-11742
CVE-2019-11743
CVE-2019-11744
CVE-2019-11746
CVE-2019-11752
CVE-2019-11755
CVE-2019-13377
CVE-2019-16275
CVE-2019-17177
CVE-2019-17178
CVE-2019-18420
CVE-2019-18421
CVE-2019-18424
CVE-2019-18425
CVE-2019-7524
CVE-2019-9494
CVE-2019-9495
CVE-2019-9497
CVE-2019-9498
CVE-2019-9499
CVE-2020-10745
CVE-2020-14093
CVE-2020-14154
CVE-2020-14954
CVE-2020-15563
CVE-2020-15565
CVE-2020-15566
CVE-2020-15567
CVE-2020-1720
CVE-2020-26117
CVE-2020-27153
SUSE-SU-2019:0876-1
SUSE-SU-2019:1353-2
SUSE-SU-2019:2515-1
SUSE-SU-2019:2960-1
SUSE-SU-2019:3078-1
SUSE-SU-2020:1771-1
SUSE-SU-2020:1888-1
SUSE-SU-2020:2065-1
SUSE-SU-2020:2149-1
SUSE-SU-2020:2882-1
SUSE-SU-2020:3165-1
SUSE-SU-2020:3380-1
Platform(s):SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Availability 12
SUSE Linux Enterprise High Availability 12 SP1
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP5
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE OpenStack Cloud 5
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND Package Information
  • ruby2.1-rubygem-chef-10.32.2-3 is installed
  • OR rubygem-chef-10.32.2-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND bogofilter-1.1.1-174.27.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • cups-pk-helper-0.2.5-3 is installed
  • OR cups-pk-helper-lang-0.2.5-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • MozillaFirefox-38.4.0esr-51 is installed
  • OR MozillaFirefox-translations-38.4.0esr-51 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • at-3.1.14-7 is installed
  • OR libQtWebKit4-4.8.6+2.3.3-3 is installed
  • OR libQtWebKit4-32bit-4.8.6+2.3.3-3 is installed
  • OR libbonobo-2.32.1-16 is installed
  • OR libbonobo-32bit-2.32.1-16 is installed
  • OR libbonobo-lang-2.32.1-16 is installed
  • OR libkde4-4.12.0-7 is installed
  • OR libkde4-32bit-4.12.0-7 is installed
  • OR libkdecore4-4.12.0-7 is installed
  • OR libkdecore4-32bit-4.12.0-7 is installed
  • OR libksuseinstall1-4.12.0-7 is installed
  • OR libksuseinstall1-32bit-4.12.0-7 is installed
  • OR libnetpbm11-10.66.3-4 is installed
  • OR libnetpbm11-32bit-10.66.3-4 is installed
  • OR netpbm-10.66.3-4 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • gdk-pixbuf-lang-2.34.0-18 is installed
  • OR gdk-pixbuf-query-loaders-2.34.0-18 is installed
  • OR gdk-pixbuf-query-loaders-32bit-2.34.0-18 is installed
  • OR libgdk_pixbuf-2_0-0-2.34.0-18 is installed
  • OR libgdk_pixbuf-2_0-0-32bit-2.34.0-18 is installed
  • OR typelib-1_0-GdkPixbuf-2_0-2.34.0-18 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • cracklib-2.9.0-7 is installed
  • OR libcrack2-2.9.0-7 is installed
  • OR libcrack2-32bit-2.9.0-7 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 is installed
  • AND haproxy-1.5.4-2.4.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP1 is installed
  • AND hawk2-1.0.1+git.1456406635.49e230d-12.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND ctdb-4.4.2-29 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP5 is installed
  • AND libpcreposix0-8.39-8.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND Package Information
  • MozillaFirefox-68.1.0-109.92 is installed
  • OR MozillaFirefox-translations-common-68.1.0-109.92 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_44-52_10-default-2-2.1 is installed
  • OR kgraft-patch-3_12_44-52_10-xen-2-2.1 is installed
  • OR kgraft-patch-SLE12_Update_6-2-2.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • xen-4.10.4_06-3.25 is installed
  • OR xen-devel-4.10.4_06-3.25 is installed
  • OR xen-tools-4.10.4_06-3.25 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed
  • AND Package Information
  • openssh-7.2p2-74.35 is installed
  • OR openssh-askpass-gnome-7.2p2-74.35 is installed
  • OR openssh-fips-7.2p2-74.35 is installed
  • OR openssh-helpers-7.2p2-74.35 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND Package Information
  • findutils-4.4.0-38.26.1 is installed
  • OR findutils-locate-4.4.0-38.26.1 is installed
  • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • curl-7.19.7-1.38.1 is installed
  • OR libcurl4-7.19.7-1.38.1 is installed
  • OR libcurl4-32bit-7.19.7-1.38.1 is installed
  • OR libcurl4-x86-7.19.7-1.38.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for VMWare 11 SP3 is installed
  • AND
  • curl-7.19.7-1.38.1 is installed
  • OR libcurl4-7.19.7-1.38.1 is installed
  • OR libcurl4-32bit-7.19.7-1.38.1 is installed
  • OR libcurl4-x86-7.19.7-1.38.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-17.0.4esr-0.10.42 is installed
  • OR MozillaFirefox-translations-17.0.4esr-0.10.42 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • tigervnc-1.3.0-22.3 is installed
  • OR xorg-x11-Xvnc-1.3.0-22.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libpulse-mainloop-glib0-5.0-2 is installed
  • OR libpulse-mainloop-glib0-32bit-5.0-2 is installed
  • OR libpulse0-5.0-2 is installed
  • OR libpulse0-32bit-5.0-2 is installed
  • OR pulseaudio-5.0-2 is installed
  • OR pulseaudio-esound-compat-5.0-2 is installed
  • OR pulseaudio-gdm-hooks-5.0-2 is installed
  • OR pulseaudio-lang-5.0-2 is installed
  • OR pulseaudio-module-x11-5.0-2 is installed
  • OR pulseaudio-module-zeroconf-5.0-2 is installed
  • OR pulseaudio-utils-5.0-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • MozillaFirefox-45.4.0esr-81 is installed
  • OR MozillaFirefox-translations-45.4.0esr-81 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND apache-commons-httpclient-3.1-4 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND ant-1.9.4-3.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12-LTSS is installed
  • AND Package Information
  • MozillaFirefox-45.4.0esr-81.1 is installed
  • OR MozillaFirefox-translations-45.4.0esr-81.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • libarchive-3.1.2-25 is installed
  • OR libarchive13-3.1.2-25 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • mutt-1.10.1-3.8 is installed
  • OR mutt-doc-1.10.1-3.8 is installed
  • OR mutt-lang-1.10.1-3.8 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
  • AND libopenssl-devel-0.9.8j-0.66.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND Package Information
  • MozillaFirefox-31.8.0esr-0.10.1 is installed
  • OR MozillaFirefox-devel-31.8.0esr-0.10.1 is installed
  • OR mozilla-nspr-4.10.8-0.5.1 is installed
  • OR mozilla-nspr-devel-4.10.8-0.5.1 is installed
  • OR mozilla-nss-3.19.2_CKBI_1.98-0.10.1 is installed
  • OR mozilla-nss-devel-3.19.2_CKBI_1.98-0.10.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND libXt-devel-1.1.4-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND checkbashisms-2.12.6-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND Package Information
  • FastCGI-2.4.0-167 is installed
  • OR perl-FastCGI-2.4.0-167 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • freerdp-2.0.0~rc4-3.10 is installed
  • OR freerdp-devel-2.0.0~rc4-3.10 is installed
  • OR libfreerdp2-2.0.0~rc4-3.10 is installed
  • OR libwinpr2-2.0.0~rc4-3.10 is installed
  • OR winpr2-devel-2.0.0~rc4-3.10 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • bluez-5.48-5.16 is installed
  • OR bluez-cups-5.48-5.16 is installed
  • BACK