Oval Definition:	oval:org.opensuse.security:def:4834
Revision Date: 2020-12-02 Version: 1 Title: Security update for libvirt (Important) Description: This update for libvirt fixes the following issues: Security issues fixed: - CVE-2019-10161: Fixed virDomainSaveImageGetXMLDesc API which could accept a path parameter pointing anywhere on the system and potentially leading to execution of a malicious file with root privileges by libvirtd (bsc#1138301). - CVE-2019-10166: Fixed an issue with virDomainManagedSaveDefineXML which could have been used to alter the domain's config used for managedsave or execute arbitrary emulator binaries (bsc#1138302). - CVE-2019-10167: Fixed an issue with virConnectGetDomainCapabilities API which could have been used to execute arbitrary emulators (bsc#1138303). - CVE-2019-10168: Fixed an issue with virConnect*HypervisorCPU API which could have been used to execute arbitrary emulators (bsc#1138305). Family: unix Class: patch Status: Reference(s): 1027519 1097983 1100345 1100348 1105869 1138301 1138302 1138303 1138305 1140868 1141322 1149296 1149297 1149298 1149299 1149303 1149304 1150939 1152375 1152497 1154448 1154456 1154458 1154460 1154461 1154464 1155945 1159329 1161335 1161719 1163809 1170452 1171701 1174633 1174635 1174638 1174910 1174913 1174955 1175476 1175674 1176625 1177155 983926 CVE-2008-4989 CVE-2011-3635 CVE-2011-4128 CVE-2012-0390 CVE-2012-1569 CVE-2012-1573 CVE-2013-4509 CVE-2014-0092 CVE-2014-1959 CVE-2014-3466 CVE-2016-3100 CVE-2018-12207 CVE-2018-12458 CVE-2018-13300 CVE-2018-13305 CVE-2018-15822 CVE-2019-10161 CVE-2019-10166 CVE-2019-10167 CVE-2019-10168 CVE-2019-11135 CVE-2019-11709 CVE-2019-11710 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11714 CVE-2019-11715 CVE-2019-11716 CVE-2019-11717 CVE-2019-11719 CVE-2019-11720 CVE-2019-11721 CVE-2019-11723 CVE-2019-11724 CVE-2019-11725 CVE-2019-11727 CVE-2019-11728 CVE-2019-11729 CVE-2019-11730 CVE-2019-11739 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11752 CVE-2019-11755 CVE-2019-14562 CVE-2019-18420 CVE-2019-18421 CVE-2019-18422 CVE-2019-18423 CVE-2019-18424 CVE-2019-18425 CVE-2019-8835 CVE-2019-8844 CVE-2019-8846 CVE-2020-12105 CVE-2020-14345 CVE-2020-14346 CVE-2020-14347 CVE-2020-14361 CVE-2020-14362 CVE-2020-15708 CVE-2020-25637 CVE-2020-3862 CVE-2020-3864 CVE-2020-3865 CVE-2020-3867 CVE-2020-3868 SUSE-SU-2016:2217-1 SUSE-SU-2018:3609-1 SUSE-SU-2019:1643-1 SUSE-SU-2019:2515-1 SUSE-SU-2019:2961-1 SUSE-SU-2020:0468-1 SUSE-SU-2020:1337-1 SUSE-SU-2020:2241-1 SUSE-SU-2020:2398-1 SUSE-SU-2020:2713-1 SUSE-SU-2020:2814-1 SUSE-SU-2020:2969-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Toolchain 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 5 SUSE Package Hub for SUSE Linux Enterprise 12 SP1 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information java-1_6_0-openjdk-1.6.0.0_b27.1.12.7-0.2.1 is installed OR java-1_6_0-openjdk-demo-1.6.0.0_b27.1.12.7-0.2.1 is installed OR java-1_6_0-openjdk-devel-1.6.0.0_b27.1.12.7-0.2.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information empathy-3.10.3-1 is installed OR empathy-lang-3.10.3-1 is installed OR telepathy-mission-control-plugin-goa-3.10.3-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND busybox-1.21.1-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND busybox-1.21.1-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 is installed AND Package Information conntrack-tools-1.4.2-5.2 is installed OR libnetfilter_cthelper-1.0.0-7.1 is installed OR libnetfilter_cthelper0-1.0.0-7.1 is installed OR libnetfilter_cttimeout-1.0.0-9.1 is installed OR libnetfilter_cttimeout1-1.0.0-9.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP1 is installed AND hawk2-1.0.1+git.1456406635.49e230d-12.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND lighttpd-1.4.35-1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND python-requests-2.8.1-6.16 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND Package Information cluster-md-kmp-default-4.12.14-94.41 is installed OR dlm-kmp-default-4.12.14-94.41 is installed OR gfs2-kmp-default-4.12.14-94.41 is installed OR ocfs2-kmp-default-4.12.14-94.41 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP5 is installed AND haproxy-1.6.11-10 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_39-47-default-1-2.1 is installed OR kgraft-patch-3_12_39-47-xen-1-2.1 is installed OR kgraft-patch-SLE12_Update_4-1-2.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information libvirt-5.1.0-8.6 is installed OR libvirt-admin-5.1.0-8.6 is installed OR libvirt-bash-completion-5.1.0-8.6 is installed OR libvirt-client-5.1.0-8.6 is installed OR libvirt-daemon-5.1.0-8.6 is installed OR libvirt-daemon-config-network-5.1.0-8.6 is installed OR libvirt-daemon-config-nwfilter-5.1.0-8.6 is installed OR libvirt-daemon-driver-interface-5.1.0-8.6 is installed OR libvirt-daemon-driver-libxl-5.1.0-8.6 is installed OR libvirt-daemon-driver-lxc-5.1.0-8.6 is installed OR libvirt-daemon-driver-network-5.1.0-8.6 is installed OR libvirt-daemon-driver-nodedev-5.1.0-8.6 is installed OR libvirt-daemon-driver-nwfilter-5.1.0-8.6 is installed OR libvirt-daemon-driver-qemu-5.1.0-8.6 is installed OR libvirt-daemon-driver-secret-5.1.0-8.6 is installed OR libvirt-daemon-driver-storage-5.1.0-8.6 is installed OR libvirt-daemon-driver-storage-core-5.1.0-8.6 is installed OR libvirt-daemon-driver-storage-disk-5.1.0-8.6 is installed OR libvirt-daemon-driver-storage-iscsi-5.1.0-8.6 is installed OR libvirt-daemon-driver-storage-logical-5.1.0-8.6 is installed OR libvirt-daemon-driver-storage-mpath-5.1.0-8.6 is installed OR libvirt-daemon-driver-storage-rbd-5.1.0-8.6 is installed OR libvirt-daemon-driver-storage-scsi-5.1.0-8.6 is installed OR libvirt-daemon-hooks-5.1.0-8.6 is installed OR libvirt-daemon-lxc-5.1.0-8.6 is installed OR libvirt-daemon-qemu-5.1.0-8.6 is installed OR libvirt-daemon-xen-5.1.0-8.6 is installed OR libvirt-devel-5.1.0-8.6 is installed OR libvirt-doc-5.1.0-8.6 is installed OR libvirt-lock-sanlock-5.1.0-8.6 is installed OR libvirt-nss-5.1.0-8.6 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed AND Package Information libmysqlclient18-10.0.38-29.27 is installed OR libmysqlclient18-32bit-10.0.38-29.27 is installed OR mariadb-10.0.38-29.27 is installed OR mariadb-client-10.0.38-29.27 is installed OR mariadb-errormessages-10.0.38-29.27 is installed OR mariadb-tools-10.0.38-29.27 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information krb5-plugin-kdb-ldap-1.6.3-133.12 is installed OR krb5-plugin-preauth-pkinit-1.6.3-133.12 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND freeradius-server-2.1.1-7.18.1 is installed OR freeradius-server-dialupadmin-2.1.1-7.18.1 is installed OR freeradius-server-doc-2.1.1-7.18.1 is installed OR freeradius-server-libs-2.1.1-7.18.1 is installed OR freeradius-server-utils-2.1.1-7.18.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND freeradius-server-2.1.1-7.18.1 is installed OR freeradius-server-dialupadmin-2.1.1-7.18.1 is installed OR freeradius-server-doc-2.1.1-7.18.1 is installed OR freeradius-server-libs-2.1.1-7.18.1 is installed OR freeradius-server-utils-2.1.1-7.18.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information PackageKit-0.3.14-2.28.46 is installed OR PackageKit-lang-0.3.14-2.28.46 is installed OR hal-0.5.12-23.68.1 is installed OR hal-32bit-0.5.12-23.68.1 is installed OR hal-doc-0.5.12-23.68.1 is installed OR hal-x86-0.5.12-23.68.1 is installed OR libpackagekit-glib10-0.3.14-2.28.46 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr2.0-4.1 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr2.0-4.1 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr2.0-4.1 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr2.0-4.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND mutt-1.5.21-49 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information bzip2-1.0.6-29 is installed OR bzip2-doc-1.0.6-29 is installed OR libbz2-1-1.0.6-29 is installed OR libbz2-1-32bit-1.0.6-29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information alsa-1.0.27.2-15 is installed OR alsa-docs-1.0.27.2-15 is installed OR libasound2-1.0.27.2-15 is installed OR libasound2-32bit-1.0.27.2-15 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_55-52_45-default-2-2.3 is installed OR kgraft-patch-3_12_55-52_45-xen-2-2.3 is installed OR kgraft-patch-SLE12_Update_13-2-2.3 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information gvim-7.4.326-7 is installed OR vim-7.4.326-7 is installed OR vim-data-7.4.326-7 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information xorg-x11-server-1.19.6-8.19 is installed OR xorg-x11-server-extra-1.19.6-8.19 is installed OR xorg-x11-server-sdk-1.19.6-8.19 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information mozilla-nspr-4.10.8-0.8.1 is installed OR mozilla-nspr-devel-4.10.8-0.8.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information ghostscript-devel-8.62-32.41.1 is installed OR ghostscript-ijs-devel-8.62-32.41.1 is installed OR ghostscript-library-8.62-32.41.1 is installed OR libgimpprint-devel-4.2.7-32.41.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information libmikmod-devel-3.2.0-4 is installed OR libmikmod3-3.2.0-4 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND accountsservice-devel-0.6.35-3 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information DirectFB-devel-1.7.1-6 is installed OR lib++dfb-devel-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information ffmpeg-3.4.2-4.12 is installed OR libavcodec-devel-3.4.2-4.12 is installed OR libavformat-devel-3.4.2-4.12 is installed OR libavformat57-3.4.2-4.12 is installed OR libavresample-devel-3.4.2-4.12 is installed OR libavresample3-3.4.2-4.12 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-68.1.1-3.51 is installed OR MozillaThunderbird-translations-common-68.1.1-3.51 is installed OR MozillaThunderbird-translations-other-68.1.1-3.51 is installed Definition Synopsis SUSE Package Hub for SUSE Linux Enterprise 12 SP1 is installed AND Package Information kinit-5.20.0-6 is installed OR kinit-devel-5.20.0-6 is installed OR kinit-lang-5.20.0-6 is installed
BACK