Oval Definition:	oval:org.opensuse.security:def:4817
Revision Date: 2020-12-02 Version: 1 Title: Security update for ovmf (Moderate) Description: This update for ovmf fixes the following issues: Security issues fixed: - CVE-2019-0160: Fixed multiple buffer overflows in UDF-related codes in MdeModulePkg\Universal\Disk\PartitionDxe\Udf.c and MdeModulePkg\Universal\Disk\UdfDxe (bsc#1130267). - CVE-2018-12181: Fixed a stack buffer overflow in the HII database when a corrupted Bitmap was used (bsc#1128503). Family: unix Class: patch Status: Reference(s): 1058115 1061210 1065729 1071995 1085030 1098447 1098649 1125230 1126088 1128503 1130267 1132666 1134157 1134853 1136035 1143463 1143777 1143817 1143818 1143819 1143820 1143821 1143823 1143824 1143825 1143827 1143828 1143830 1143831 1144522 1148868 1151178 1152472 1152489 1152684 1153274 1154353 1154492 1155518 1155798 1156395 1157169 1158050 1158242 1158265 1158748 1158765 1158983 1159781 1159867 1160850 1160888 1160947 1161495 1162002 1162063 1162198 1162400 1162702 1164648 1164777 1164780 1165211 1165933 1165975 1166844 1166985 1167104 1167209 1167651 1167773 1168230 1168779 1168838 1168959 1168994 1169021 1169094 1169194 1169514 1169681 1169771 1170011 1170284 1170442 1170617 1170774 1170879 1170891 1170895 1171150 1171189 1171191 1171219 1171220 1171246 1171417 1171513 1171529 1171530 1171662 1171688 1171699 1171732 1171739 1171743 1171759 1171828 1171857 1171868 1171904 1171915 1171982 1171983 1171988 1172017 1172046 1172061 1172062 1172063 1172064 1172065 1172066 1172067 1172068 1172069 1172073 1172086 1172095 1172169 1172170 1172201 1172208 1172223 1172342 1172343 1172344 1172365 1172366 1172374 1172391 1172393 1172394 1172453 1172458 1172467 1172484 1172537 1172543 1172687 1172719 1172739 1172751 1172759 1172775 1172781 1172782 1172783 1172814 1172823 1172841 1172871 1172938 1172939 1172940 1172956 1172983 1172984 1172985 1172986 1172987 1172988 1172989 1172990 1172999 1173060 1173068 1173074 1173085 1173139 1173206 1173271 1173280 1173284 1173428 1173438 1173461 1173514 1173552 1173573 1173625 1173746 1173776 1173812 1173817 1173818 1173820 1173822 1173823 1173824 1173825 1173826 1173827 1173828 1173830 1173831 1173832 1173833 1173834 1173836 1173837 1173838 1173839 1173841 1173843 1173844 1173845 1173847 1173849 1173860 1173894 1173941 1174018 1174072 1174116 1174126 1174127 1174128 1174129 1174185 1174244 1174263 1174264 1174331 1174332 1174333 1174345 1174356 1174396 1174398 1174407 1174409 1174411 1174438 1174462 1174463 1174513 1174527 1174543 1174570 1174627 1175070 1175071 1175074 1175626 1175656 962849 CVE-2010-0624 CVE-2011-2485 CVE-2012-1571 CVE-2018-12181 CVE-2018-15587 CVE-2019-0160 CVE-2019-11059 CVE-2019-11690 CVE-2019-13103 CVE-2019-14192 CVE-2019-14193 CVE-2019-14194 CVE-2019-14195 CVE-2019-14196 CVE-2019-14197 CVE-2019-14198 CVE-2019-14199 CVE-2019-14200 CVE-2019-14201 CVE-2019-14202 CVE-2019-14203 CVE-2019-14204 CVE-2019-14902 CVE-2019-14907 CVE-2019-16239 CVE-2019-19462 CVE-2019-20810 CVE-2019-20812 CVE-2019-2614 CVE-2019-2627 CVE-2019-2628 CVE-2019-9853 CVE-2020-0305 CVE-2020-10135 CVE-2020-10531 CVE-2020-10648 CVE-2020-10711 CVE-2020-10713 CVE-2020-10732 CVE-2020-10751 CVE-2020-10766 CVE-2020-10767 CVE-2020-10768 CVE-2020-10773 CVE-2020-10781 CVE-2020-11984 CVE-2020-11993 CVE-2020-12656 CVE-2020-12769 CVE-2020-12771 CVE-2020-12888 CVE-2020-13143 CVE-2020-13974 CVE-2020-14308 CVE-2020-14309 CVE-2020-14310 CVE-2020-14311 CVE-2020-14416 CVE-2020-15393 CVE-2020-15706 CVE-2020-15707 CVE-2020-15780 CVE-2020-8432 CVE-2020-9490 SUSE-SU-2019:0804-1 SUSE-SU-2019:1266-2 SUSE-SU-2019:2020-1 SUSE-SU-2019:2737-1 SUSE-SU-2020:0121-1 SUSE-SU-2020:0224-1 SUSE-SU-2020:0819-1 SUSE-SU-2020:2073-1 SUSE-SU-2020:2105-1 SUSE-SU-2020:2344-1 SUSE-SU-2020:2626-1 SUSE-SU-2020:3283-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for Rasperry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 5 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information MozillaFirefox-17.0.4esr-0.5.1 is installed OR MozillaFirefox-branding-SLED-7-0.6.9.5 is installed OR MozillaFirefox-translations-17.0.4esr-0.5.1 is installed OR beagle-0.3.8-56.51.1 is installed OR beagle-evolution-0.3.8-56.51.1 is installed OR beagle-firefox-0.3.8-56.51.1 is installed OR beagle-gui-0.3.8-56.51.1 is installed OR beagle-lang-0.3.8-56.51.1 is installed OR libfreebl3-3.14.2-0.4.3.2 is installed OR libfreebl3-32bit-3.14.2-0.4.3.2 is installed OR mhtml-firefox-0.5-1.47.51.5 is installed OR mozilla-nspr-4.9.5-0.3.2 is installed OR mozilla-nspr-32bit-4.9.5-0.3.2 is installed OR mozilla-nss-3.14.2-0.4.3.2 is installed OR mozilla-nss-32bit-3.14.2-0.4.3.2 is installed OR mozilla-nss-tools-3.14.2-0.4.3.2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information cpio-2.11-26 is installed OR cpio-lang-2.11-26 is installed OR tar-1.27.1-2 is installed OR tar-lang-1.27.1-2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND argyllcms-1.6.3-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information cracklib-2.9.0-7 is installed OR libcrack2-2.9.0-7 is installed OR libcrack2-32bit-2.9.0-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information gstreamer-1.8.3-9 is installed OR gstreamer-lang-1.8.3-9 is installed OR gstreamer-utils-1.8.3-9 is installed OR libgstreamer-1_0-0-1.8.3-9 is installed OR libgstreamer-1_0-0-32bit-1.8.3-9 is installed OR typelib-1_0-Gst-1_0-1.8.3-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND argyllcms-1.6.3-3 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 is installed AND python-requests-2.8.1-6.9.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP1 is installed AND Package Information ctdb-4.2.4-26.2 is installed OR samba-4.2.4-26.2 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND conntrack-tools-1.4.2-5 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND ctdb-4.6.5+git.27.6afd48b1083-2 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND Package Information libpacemaker3-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-cli-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-cts-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-remote-1.1.19+20180928.0d2680780-1 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information apache2-2.4.23-29.43 is installed OR apache2-doc-2.4.23-29.43 is installed OR apache2-example-pages-2.4.23-29.43 is installed OR apache2-prefork-2.4.23-29.43 is installed OR apache2-utils-2.4.23-29.43 is installed OR apache2-worker-2.4.23-29.43 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_39-47-default-2-10.1 is installed OR kgraft-patch-3_12_39-47-xen-2-10.1 is installed OR kgraft-patch-SLE12_Update_4-2-10.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information ovmf-2017+git1510945757.b2662641d5-5.19 is installed OR ovmf-tools-2017+git1510945757.b2662641d5-5.19 is installed OR qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-5.19 is installed OR qemu-uefi-aarch64-2017+git1510945757.b2662641d5-5.19 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information libmariadb-devel-3.1.2-3.9 is installed OR libmariadb_plugins-3.1.2-3.9 is installed OR libmysqld-devel-10.2.25-3.17 is installed OR libmysqld19-10.2.25-3.17 is installed OR mariadb-10.2.25-3.17 is installed OR mariadb-client-10.2.25-3.17 is installed OR mariadb-connector-c-3.1.2-3.9 is installed OR mariadb-errormessages-10.2.25-3.17 is installed OR mariadb-tools-10.2.25-3.17 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed AND Package Information libsqlite3-0-3.8.10.2-9.9 is installed OR libsqlite3-0-32bit-3.8.10.2-9.9 is installed OR sqlite3-3.8.10.2-9.9 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information gstreamer-0_10-plugins-good-0.10.30-5.8.11 is installed OR gstreamer-0_10-plugins-good-doc-0.10.30-5.8.11 is installed OR gstreamer-0_10-plugins-good-lang-0.10.30-5.8.11 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND MozillaFirefox-17.0.10esr-0.7.4 is installed OR MozillaFirefox-branding-SLED-7-0.12.41 is installed OR MozillaFirefox-translations-17.0.10esr-0.7.4 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND MozillaFirefox-17.0.10esr-0.7.4 is installed OR MozillaFirefox-branding-SLED-7-0.12.41 is installed OR MozillaFirefox-translations-17.0.10esr-0.7.4 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information OpenEXR-1.6.1-83.17.1 is installed OR OpenEXR-32bit-1.6.1-83.17.1 is installed OR OpenEXR-x86-1.6.1-83.17.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information ImageMagick-6.8.8.1-8.2 is installed OR libMagickCore-6_Q16-1-6.8.8.1-8.2 is installed OR libMagickWand-6_Q16-1-6.8.8.1-8.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libudisks2-0-2.1.3-1 is installed OR udisks2-2.1.3-1 is installed OR udisks2-lang-2.1.3-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND ant-1.9.4-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND ant-1.9.4-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_55-52_42-default-2-2.2 is installed OR kgraft-patch-3_12_55-52_42-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_12-2-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information kernel-default-4.4.21-90 is installed OR kernel-default-base-4.4.21-90 is installed OR kernel-default-devel-4.4.21-90 is installed OR kernel-devel-4.4.21-90 is installed OR kernel-macros-4.4.21-90 is installed OR kernel-source-4.4.21-90 is installed OR kernel-syms-4.4.21-90 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information grub2-2.02-19.48 is installed OR grub2-i386-pc-2.02-19.48 is installed OR grub2-powerpc-ieee1275-2.02-19.48 is installed OR grub2-snapper-plugin-2.02-19.48 is installed OR grub2-systemd-sleep-plugin-2.02-19.48 is installed OR grub2-x86_64-efi-2.02-19.48 is installed OR grub2-x86_64-xen-2.02-19.48 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND libtasn1-devel-1.5-1.28.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information ctdb-1.0.114.6-0.14.1 is installed OR ctdb-devel-1.0.114.6-0.14.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND libexif-devel-0.6.21-6 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information FastCGI-2.4.0-167 is installed OR perl-FastCGI-2.4.0-167 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND aaa_base-malloccheck-13.2+git20140911.61c1681-28 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information evolution-3.26.6-4.3 is installed OR evolution-devel-3.26.6-4.3 is installed OR evolution-lang-3.26.6-4.3 is installed OR evolution-plugin-bogofilter-3.26.6-4.3 is installed OR evolution-plugin-pst-import-3.26.6-4.3 is installed OR evolution-plugin-spamassassin-3.26.6-4.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information kernel-default-5.3.18-24.9 is installed OR kernel-default-extra-5.3.18-24.9 is installed
BACK