Oval Definition:oval:org.opensuse.security:def:4805
Revision Date:2020-12-02Version:1
Title:Security update for xen (Important)
Description:

This update for xen fixes the following issues:

- CVE-2019-19581: Fixed a potential out of bounds on 32-bit Arm (bsc#1158003 XSA-307). - CVE-2019-19582: Fixed a potential infinite loop when x86 accesses to bitmaps with a compile time known size of 64 (bsc#1158003 XSA-307). - CVE-2019-19583: Fixed improper checks which could have allowed HVM/PVH guest userspace code to crash the guest,leading to a guest denial of service (bsc#1158004 XSA-308). - CVE-2019-19578: Fixed an issue where a malicious or buggy PV guest could have caused hypervisor crash resulting in denial of service affecting the entire host (bsc#1158005 XSA-309). - CVE-2019-19580: Fixed a privilege escalation where a malicious PV guest administrator could have been able to escalate their privilege to that of the host (bsc#1158006 XSA-310). - CVE-2019-19577: Fixed an issue where a malicious guest administrator could have caused Xen to access data structures while they are being modified leading to a crash (bsc#1158007 XSA-311). - CVE-2019-19579: Fixed a privilege escaltion where an untrusted domain with access to a physical device can DMA into host memory (bsc#1157888 XSA-306). - CVE-2019-18423: A malicious guest administrator may cause a hypervisor crash, resulting in a Denial of Service (DoS) (bsc#1154460 XSA-301). - CVE-2019-18422: A malicious ARM guest might contrive to arrange for critical Xen code to run with interrupts erroneously enabled. This could lead to data corruption, denial of service, or possibly even privilege escalation. However a precise attack technique has not been identified. (bsc#1154464 XSA-303)
Family:unixClass:patch
Status:Reference(s):1046303
1048942
1051510
1065600
1071995
1078248
1082635
1083647
1089644
1090888
1091041
1104427
1108043
1113722
1114279
1115026
1117169
1120853
1125401
1127371
1131107
1132501
1135855
1138039
1140948
1141025
1142095
1143706
1143959
1144333
1146519
1146544
1149448
1150466
1151317
1151548
1151900
1152631
1152782
1153628
1153681
1153811
1154043
1154058
1154124
1154355
1154460
1154464
1154526
1154956
1155021
1155331
1155334
1155689
1155692
1155836
1155897
1155921
1156187
1156258
1156259
1156429
1156462
1156466
1156471
1156494
1156609
1156700
1156729
1156882
1157038
1157042
1157070
1157143
1157145
1157158
1157162
1157169
1157171
1157173
1157178
1157180
1157182
1157183
1157184
1157191
1157193
1157197
1157298
1157303
1157307
1157324
1157333
1157424
1157463
1157499
1157678
1157698
1157778
1157853
1157888
1157908
1158003
1158004
1158005
1158006
1158007
1158049
1158063
1158064
1158065
1158066
1158067
1158068
1158082
1158094
1158132
1158381
1158394
1158398
1158407
1158410
1158413
1158417
1158427
1158445
1158533
1158637
1158638
1158639
1158640
1158641
1158643
1158644
1158645
1158646
1158647
1158649
1158651
1158652
1158823
1158824
1158827
1158834
1158893
1158900
1158903
1158904
1158954
1159024
1159297
1160968
1162202
1162675
1166238
1169740
1171355
1172651
1173334
1174117
1174121
1175193
1175194
1176086
1176181
1176671
992038
CVE-2009-0035
CVE-2010-1172
CVE-2010-2640
CVE-2010-2641
CVE-2010-2642
CVE-2010-2643
CVE-2013-0292
CVE-2018-8956
CVE-2019-10691
CVE-2019-12269
CVE-2019-14895
CVE-2019-14901
CVE-2019-15213
CVE-2019-15916
CVE-2019-16231
CVE-2019-17055
CVE-2019-18422
CVE-2019-18423
CVE-2019-18634
CVE-2019-18660
CVE-2019-18683
CVE-2019-18805
CVE-2019-18808
CVE-2019-18809
CVE-2019-19049
CVE-2019-19051
CVE-2019-19052
CVE-2019-19056
CVE-2019-19057
CVE-2019-19058
CVE-2019-19060
CVE-2019-19062
CVE-2019-19063
CVE-2019-19065
CVE-2019-19066
CVE-2019-19067
CVE-2019-19068
CVE-2019-19073
CVE-2019-19074
CVE-2019-19075
CVE-2019-19077
CVE-2019-19227
CVE-2019-19332
CVE-2019-19338
CVE-2019-19523
CVE-2019-19524
CVE-2019-19525
CVE-2019-19526
CVE-2019-19527
CVE-2019-19528
CVE-2019-19529
CVE-2019-19530
CVE-2019-19531
CVE-2019-19532
CVE-2019-19533
CVE-2019-19534
CVE-2019-19535
CVE-2019-19536
CVE-2019-19537
CVE-2019-19543
CVE-2019-19577
CVE-2019-19578
CVE-2019-19579
CVE-2019-19580
CVE-2019-19581
CVE-2019-19582
CVE-2019-19583
CVE-2019-19767
CVE-2019-20503
CVE-2020-11868
CVE-2020-13817
CVE-2020-13934
CVE-2020-13935
CVE-2020-14349
CVE-2020-14350
CVE-2020-15025
CVE-2020-24659
CVE-2020-2583
CVE-2020-2590
CVE-2020-2593
CVE-2020-2601
CVE-2020-2604
CVE-2020-2654
CVE-2020-2655
CVE-2020-6805
CVE-2020-6806
CVE-2020-6807
CVE-2020-6811
CVE-2020-6812
CVE-2020-6814
SUSE-SU-2019:0997-1
SUSE-SU-2019:1576-1
SUSE-SU-2019:2982-1
SUSE-SU-2019:3309-1
SUSE-SU-2019:3381-1
SUSE-SU-2020:0213-1
SUSE-SU-2020:0408-1
SUSE-SU-2020:0721-1
SUSE-SU-2020:1823-1
SUSE-SU-2020:2045-1
SUSE-SU-2020:2264-1
SUSE-SU-2020:2988-1
Platform(s):SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Availability 12
SUSE Linux Enterprise High Availability 12 SP1
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE OpenStack Cloud 5
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • compat-openssl097g-0.9.7g-146.22.1 is installed
  • OR compat-openssl097g-32bit-0.9.7g-146.22.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • alsa-1.0.27.2-11 is installed
  • OR libasound2-1.0.27.2-11 is installed
  • OR libasound2-32bit-1.0.27.2-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-8 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-8 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-8 is installed
  • OR libMagickCore-6_Q16-1-32bit-6.8.8.1-8 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • bind-libs-9.9.9P1-46 is installed
  • OR bind-libs-32bit-9.9.9P1-46 is installed
  • OR bind-utils-9.9.9P1-46 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • gimp-2.8.18-8 is installed
  • OR gimp-lang-2.8.18-8 is installed
  • OR gimp-plugins-python-2.8.18-8 is installed
  • OR libgimp-2_0-0-2.8.18-8 is installed
  • OR libgimpui-2_0-0-2.8.18-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • cups-pk-helper-0.2.5-5 is installed
  • OR cups-pk-helper-lang-0.2.5-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 is installed
  • AND Package Information
  • ctdb-4.2.4-18.35.1 is installed
  • OR samba-4.2.4-18.35.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP1 is installed
  • AND Package Information
  • libpacemaker3-1.1.13-20.1 is installed
  • OR pacemaker-1.1.13-20.1 is installed
  • OR pacemaker-cli-1.1.13-20.1 is installed
  • OR pacemaker-cts-1.1.13-20.1 is installed
  • OR pacemaker-remote-1.1.13-20.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.4.21-69 is installed
  • OR cluster-network-kmp-default-4.4.21-69 is installed
  • OR dlm-kmp-default-4.4.21-69 is installed
  • OR gfs2-kmp-default-4.4.21-69 is installed
  • OR ocfs2-kmp-default-4.4.21-69 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND haproxy-1.6.11-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_59-60_41-default-1-2.1 is installed
  • OR kgraft-patch-3_12_59-60_41-xen-1-2.1 is installed
  • OR kgraft-patch-SLE12-SP1_Update_5-1-2.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • xen-4.10.4_08-3.28 is installed
  • OR xen-devel-4.10.4_08-3.28 is installed
  • OR xen-tools-4.10.4_08-3.28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed
  • AND Package Information
  • MozillaFirefox-60.7.0-109.72 is installed
  • OR MozillaFirefox-devel-60.7.0-109.72 is installed
  • OR MozillaFirefox-translations-common-60.7.0-109.72 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND Package Information
  • fuse-2.7.2-61.23.1 is installed
  • OR libfuse2-2.7.2-61.23.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • dhcp-4.2.4.P2-0.24.1 is installed
  • OR dhcp-client-4.2.4.P2-0.24.1 is installed
  • OR dhcp-relay-4.2.4.P2-0.24.1 is installed
  • OR dhcp-server-4.2.4.P2-0.24.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for VMWare 11 SP3 is installed
  • AND
  • dhcp-4.2.4.P2-0.24.1 is installed
  • OR dhcp-client-4.2.4.P2-0.24.1 is installed
  • OR dhcp-relay-4.2.4.P2-0.24.1 is installed
  • OR dhcp-server-4.2.4.P2-0.24.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • NetworkManager-0.7.1_git20090811-3.28.2 is installed
  • OR NetworkManager-glib-0.7.1_git20090811-3.28.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND mailx-12.5-22.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND librpcsecgss3-0.19-16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-28 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • accountsservice-0.6.42-14 is installed
  • OR accountsservice-lang-0.6.42-14 is installed
  • OR libaccountsservice0-0.6.42-14 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_55-52_42-default-2-2.2 is installed
  • OR kgraft-patch-3_12_55-52_42-xen-2-2.2 is installed
  • OR kgraft-patch-SLE12_Update_12-2-2.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.121-36 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.121-36 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.121-36 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.121-36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND ntp-4.2.8p15-4.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
  • AND Package Information
  • libpoppler-devel-0.12.3-1.10.1 is installed
  • OR libpoppler-glib-devel-0.12.3-1.10.1 is installed
  • OR libpoppler-qt2-0.12.3-1.10.1 is installed
  • OR libpoppler-qt3-devel-0.12.3-1.10.1 is installed
  • OR libpoppler-qt4-devel-0.12.3-1.10.1 is installed
  • OR poppler-tools-0.12.3-1.10.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND apache2-mod_fcgid-2.2-31.29.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND libXxf86vm-devel-1.1.3-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND Package Information
  • DirectFB-devel-1.7.1-4 is installed
  • OR lib++dfb-devel-1.7.1-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND aaa_base-malloccheck-13.2+git20140911.61c1681-28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-150.47 is installed
  • OR kernel-default-extra-4.12.14-150.47 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND enigmail-2.0.11-3.16 is installed
    • BACK