Oval Definition:	oval:org.opensuse.security:def:4800
Revision Date: 2020-12-02 Version: 1 Title: Security update for xen (Important) Description: This update for xen fixes the following issues: - CVE-2018-12207: Untrusted virtual machines on Intel CPUs could exploit a race condition in the Instruction Fetch Unit of the Intel CPU to cause a Machine Exception during Page Size Change, causing the CPU core to be non-functional. (bsc#1155945) - CVE-2019-11135: Aborting an asynchronous TSX operation on Intel CPUs with Transactional Memory support could be used to facilitate sidechannel information leaks out of microarchitectural buffers, similar to the previously described 'Microarchitectural Data Sampling' attack. (bsc#1152497). - CVE-2019-18425: 32-bit PV guest user mode could elevate its privileges to that of the guest kernel. (bsc#1154456). - CVE-2019-18421: A malicious PV guest administrator may have been able to escalate their privilege to that of the host. (bsc#1154458). - CVE-2019-18420: Malicious x86 PV guests may have caused a hypervisor crash, resulting in a Denial of Service (Dos). (bsc#1154448) Family: unix Class: patch Status: Reference(s): 1013708 1013712 1013893 1015171 1130116 1131644 1131868 1131870 1131871 1131872 1131874 1133640 1140868 1141322 1144443 1148643 1149296 1149297 1149298 1149299 1149303 1149304 1150934 1150939 1152375 1152497 1153163 1153164 1154448 1154456 1154458 1154461 1155945 1156920 1163985 1166933 1167331 1171924 1172906 1172935 1173160 1173197 1173376 1173377 1173378 1173380 1176733 1177895 930077 930078 930079 CVE-2012-4453 CVE-2012-4510 CVE-2013-0262 CVE-2013-0263 CVE-2013-0269 CVE-2013-0276 CVE-2013-0277 CVE-2015-4141 CVE-2015-4142 CVE-2015-4143 CVE-2015-8041 CVE-2016-9797 CVE-2016-9798 CVE-2016-9802 CVE-2016-9917 CVE-2017-13077 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081 CVE-2017-13082 CVE-2017-13086 CVE-2017-13087 CVE-2017-13088 CVE-2018-12207 CVE-2018-14526 CVE-2019-11135 CVE-2019-11555 CVE-2019-11709 CVE-2019-11710 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11714 CVE-2019-11715 CVE-2019-11716 CVE-2019-11717 CVE-2019-11719 CVE-2019-11720 CVE-2019-11721 CVE-2019-11723 CVE-2019-11724 CVE-2019-11725 CVE-2019-11727 CVE-2019-11728 CVE-2019-11729 CVE-2019-11730 CVE-2019-11739 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11752 CVE-2019-11755 CVE-2019-13377 CVE-2019-16275 CVE-2019-17177 CVE-2019-17178 CVE-2019-18420 CVE-2019-18421 CVE-2019-18424 CVE-2019-18425 CVE-2019-7524 CVE-2019-9494 CVE-2019-9495 CVE-2019-9497 CVE-2019-9498 CVE-2019-9499 CVE-2020-10745 CVE-2020-14093 CVE-2020-14154 CVE-2020-14954 CVE-2020-15563 CVE-2020-15565 CVE-2020-15566 CVE-2020-15567 CVE-2020-1720 CVE-2020-26117 CVE-2020-27153 SUSE-SU-2019:0876-1 SUSE-SU-2019:1353-2 SUSE-SU-2019:2515-1 SUSE-SU-2019:2960-1 SUSE-SU-2019:3078-1 SUSE-SU-2020:1771-1 SUSE-SU-2020:1888-1 SUSE-SU-2020:2065-1 SUSE-SU-2020:2149-1 SUSE-SU-2020:2882-1 SUSE-SU-2020:3165-1 SUSE-SU-2020:3380-1 Platform(s): SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 5 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information ruby2.1-rubygem-chef-10.32.2-3 is installed OR rubygem-chef-10.32.2-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND bogofilter-1.1.1-174.27.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information cups-pk-helper-0.2.5-3 is installed OR cups-pk-helper-lang-0.2.5-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information MozillaFirefox-38.4.0esr-51 is installed OR MozillaFirefox-translations-38.4.0esr-51 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information at-3.1.14-7 is installed OR libQtWebKit4-4.8.6+2.3.3-3 is installed OR libQtWebKit4-32bit-4.8.6+2.3.3-3 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed OR libkde4-4.12.0-7 is installed OR libkde4-32bit-4.12.0-7 is installed OR libkdecore4-4.12.0-7 is installed OR libkdecore4-32bit-4.12.0-7 is installed OR libksuseinstall1-4.12.0-7 is installed OR libksuseinstall1-32bit-4.12.0-7 is installed OR libnetpbm11-10.66.3-4 is installed OR libnetpbm11-32bit-10.66.3-4 is installed OR netpbm-10.66.3-4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information gdk-pixbuf-lang-2.34.0-18 is installed OR gdk-pixbuf-query-loaders-2.34.0-18 is installed OR gdk-pixbuf-query-loaders-32bit-2.34.0-18 is installed OR libgdk_pixbuf-2_0-0-2.34.0-18 is installed OR libgdk_pixbuf-2_0-0-32bit-2.34.0-18 is installed OR typelib-1_0-GdkPixbuf-2_0-2.34.0-18 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information cracklib-2.9.0-7 is installed OR libcrack2-2.9.0-7 is installed OR libcrack2-32bit-2.9.0-7 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 is installed AND haproxy-1.5.4-2.4.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP1 is installed AND hawk2-1.0.1+git.1456406635.49e230d-12.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND ctdb-4.4.2-29 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP5 is installed AND libpcreposix0-8.39-8.3 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information MozillaFirefox-68.1.0-109.92 is installed OR MozillaFirefox-translations-common-68.1.0-109.92 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_44-52_10-default-2-2.1 is installed OR kgraft-patch-3_12_44-52_10-xen-2-2.1 is installed OR kgraft-patch-SLE12_Update_6-2-2.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information xen-4.10.4_06-3.25 is installed OR xen-devel-4.10.4_06-3.25 is installed OR xen-tools-4.10.4_06-3.25 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed AND Package Information openssh-7.2p2-74.35 is installed OR openssh-askpass-gnome-7.2p2-74.35 is installed OR openssh-fips-7.2p2-74.35 is installed OR openssh-helpers-7.2p2-74.35 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information findutils-4.4.0-38.26.1 is installed OR findutils-locate-4.4.0-38.26.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND curl-7.19.7-1.38.1 is installed OR libcurl4-7.19.7-1.38.1 is installed OR libcurl4-32bit-7.19.7-1.38.1 is installed OR libcurl4-x86-7.19.7-1.38.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND curl-7.19.7-1.38.1 is installed OR libcurl4-7.19.7-1.38.1 is installed OR libcurl4-32bit-7.19.7-1.38.1 is installed OR libcurl4-x86-7.19.7-1.38.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information MozillaFirefox-17.0.4esr-0.10.42 is installed OR MozillaFirefox-translations-17.0.4esr-0.10.42 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information tigervnc-1.3.0-22.3 is installed OR xorg-x11-Xvnc-1.3.0-22.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libpulse-mainloop-glib0-5.0-2 is installed OR libpulse-mainloop-glib0-32bit-5.0-2 is installed OR libpulse0-5.0-2 is installed OR libpulse0-32bit-5.0-2 is installed OR pulseaudio-5.0-2 is installed OR pulseaudio-esound-compat-5.0-2 is installed OR pulseaudio-gdm-hooks-5.0-2 is installed OR pulseaudio-lang-5.0-2 is installed OR pulseaudio-module-x11-5.0-2 is installed OR pulseaudio-module-zeroconf-5.0-2 is installed OR pulseaudio-utils-5.0-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information MozillaFirefox-45.4.0esr-81 is installed OR MozillaFirefox-translations-45.4.0esr-81 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND apache-commons-httpclient-3.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND ant-1.9.4-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information MozillaFirefox-45.4.0esr-81.1 is installed OR MozillaFirefox-translations-45.4.0esr-81.1 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information libarchive-3.1.2-25 is installed OR libarchive13-3.1.2-25 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information mutt-1.10.1-3.8 is installed OR mutt-doc-1.10.1-3.8 is installed OR mutt-lang-1.10.1-3.8 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND libopenssl-devel-0.9.8j-0.66.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information MozillaFirefox-31.8.0esr-0.10.1 is installed OR MozillaFirefox-devel-31.8.0esr-0.10.1 is installed OR mozilla-nspr-4.10.8-0.5.1 is installed OR mozilla-nspr-devel-4.10.8-0.5.1 is installed OR mozilla-nss-3.19.2_CKBI_1.98-0.10.1 is installed OR mozilla-nss-devel-3.19.2_CKBI_1.98-0.10.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND libXt-devel-1.1.4-3 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND checkbashisms-2.12.6-3 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information FastCGI-2.4.0-167 is installed OR perl-FastCGI-2.4.0-167 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information freerdp-2.0.0~rc4-3.10 is installed OR freerdp-devel-2.0.0~rc4-3.10 is installed OR libfreerdp2-2.0.0~rc4-3.10 is installed OR libwinpr2-2.0.0~rc4-3.10 is installed OR winpr2-devel-2.0.0~rc4-3.10 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information bluez-5.48-5.16 is installed OR bluez-cups-5.48-5.16 is installed
BACK