Oval Definition:oval:org.opensuse.security:def:4834
Revision Date:2020-12-02Version:1
Title:Security update for libvirt (Important)
Description:

This update for libvirt fixes the following issues:

Security issues fixed:

- CVE-2019-10161: Fixed virDomainSaveImageGetXMLDesc API which could accept a path parameter pointing anywhere on the system and potentially leading to execution of a malicious file with root privileges by libvirtd (bsc#1138301). - CVE-2019-10166: Fixed an issue with virDomainManagedSaveDefineXML which could have been used to alter the domain's config used for managedsave or execute arbitrary emulator binaries (bsc#1138302). - CVE-2019-10167: Fixed an issue with virConnectGetDomainCapabilities API which could have been used to execute arbitrary emulators (bsc#1138303). - CVE-2019-10168: Fixed an issue with virConnect*HypervisorCPU API which could have been used to execute arbitrary emulators (bsc#1138305).
Family:unixClass:patch
Status:Reference(s):1027519
1097983
1100345
1100348
1105869
1138301
1138302
1138303
1138305
1140868
1141322
1149296
1149297
1149298
1149299
1149303
1149304
1150939
1152375
1152497
1154448
1154456
1154458
1154460
1154461
1154464
1155945
1159329
1161335
1161719
1163809
1170452
1171701
1174633
1174635
1174638
1174910
1174913
1174955
1175476
1175674
1176625
1177155
983926
CVE-2008-4989
CVE-2011-3635
CVE-2011-4128
CVE-2012-0390
CVE-2012-1569
CVE-2012-1573
CVE-2013-4509
CVE-2014-0092
CVE-2014-1959
CVE-2014-3466
CVE-2016-3100
CVE-2018-12207
CVE-2018-12458
CVE-2018-13300
CVE-2018-13305
CVE-2018-15822
CVE-2019-10161
CVE-2019-10166
CVE-2019-10167
CVE-2019-10168
CVE-2019-11135
CVE-2019-11709
CVE-2019-11710
CVE-2019-11711
CVE-2019-11712
CVE-2019-11713
CVE-2019-11714
CVE-2019-11715
CVE-2019-11716
CVE-2019-11717
CVE-2019-11719
CVE-2019-11720
CVE-2019-11721
CVE-2019-11723
CVE-2019-11724
CVE-2019-11725
CVE-2019-11727
CVE-2019-11728
CVE-2019-11729
CVE-2019-11730
CVE-2019-11739
CVE-2019-11740
CVE-2019-11742
CVE-2019-11743
CVE-2019-11744
CVE-2019-11746
CVE-2019-11752
CVE-2019-11755
CVE-2019-14562
CVE-2019-18420
CVE-2019-18421
CVE-2019-18422
CVE-2019-18423
CVE-2019-18424
CVE-2019-18425
CVE-2019-8835
CVE-2019-8844
CVE-2019-8846
CVE-2020-12105
CVE-2020-14345
CVE-2020-14346
CVE-2020-14347
CVE-2020-14361
CVE-2020-14362
CVE-2020-15708
CVE-2020-25637
CVE-2020-3862
CVE-2020-3864
CVE-2020-3865
CVE-2020-3867
CVE-2020-3868
SUSE-SU-2016:2217-1
SUSE-SU-2018:3609-1
SUSE-SU-2019:1643-1
SUSE-SU-2019:2515-1
SUSE-SU-2019:2961-1
SUSE-SU-2020:0468-1
SUSE-SU-2020:1337-1
SUSE-SU-2020:2241-1
SUSE-SU-2020:2398-1
SUSE-SU-2020:2713-1
SUSE-SU-2020:2814-1
SUSE-SU-2020:2969-1
Platform(s):SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Availability 12
SUSE Linux Enterprise High Availability 12 SP1
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 12 SP5
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Toolchain 12
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE OpenStack Cloud 5
SUSE Package Hub for SUSE Linux Enterprise 12 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • java-1_6_0-openjdk-1.6.0.0_b27.1.12.7-0.2.1 is installed
  • OR java-1_6_0-openjdk-demo-1.6.0.0_b27.1.12.7-0.2.1 is installed
  • OR java-1_6_0-openjdk-devel-1.6.0.0_b27.1.12.7-0.2.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • empathy-3.10.3-1 is installed
  • OR empathy-lang-3.10.3-1 is installed
  • OR telepathy-mission-control-plugin-goa-3.10.3-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND busybox-1.21.1-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND busybox-1.21.1-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • audiofile-0.3.6-10 is installed
  • OR libaudiofile1-0.3.6-10 is installed
  • OR libaudiofile1-32bit-0.3.6-10 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • accountsservice-0.6.42-16.3 is installed
  • OR accountsservice-lang-0.6.42-16.3 is installed
  • OR libaccountsservice0-0.6.42-16.3 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 is installed
  • AND Package Information
  • conntrack-tools-1.4.2-5.2 is installed
  • OR libnetfilter_cthelper-1.0.0-7.1 is installed
  • OR libnetfilter_cthelper0-1.0.0-7.1 is installed
  • OR libnetfilter_cttimeout-1.0.0-9.1 is installed
  • OR libnetfilter_cttimeout1-1.0.0-9.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP1 is installed
  • AND hawk2-1.0.1+git.1456406635.49e230d-12.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND lighttpd-1.4.35-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND python-requests-2.8.1-6.16 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-94.41 is installed
  • OR dlm-kmp-default-4.12.14-94.41 is installed
  • OR gfs2-kmp-default-4.12.14-94.41 is installed
  • OR ocfs2-kmp-default-4.12.14-94.41 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP5 is installed
  • AND haproxy-1.6.11-10 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_39-47-default-1-2.1 is installed
  • OR kgraft-patch-3_12_39-47-xen-1-2.1 is installed
  • OR kgraft-patch-SLE12_Update_4-1-2.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • libvirt-5.1.0-8.6 is installed
  • OR libvirt-admin-5.1.0-8.6 is installed
  • OR libvirt-bash-completion-5.1.0-8.6 is installed
  • OR libvirt-client-5.1.0-8.6 is installed
  • OR libvirt-daemon-5.1.0-8.6 is installed
  • OR libvirt-daemon-config-network-5.1.0-8.6 is installed
  • OR libvirt-daemon-config-nwfilter-5.1.0-8.6 is installed
  • OR libvirt-daemon-driver-interface-5.1.0-8.6 is installed
  • OR libvirt-daemon-driver-libxl-5.1.0-8.6 is installed
  • OR libvirt-daemon-driver-lxc-5.1.0-8.6 is installed
  • OR libvirt-daemon-driver-network-5.1.0-8.6 is installed
  • OR libvirt-daemon-driver-nodedev-5.1.0-8.6 is installed
  • OR libvirt-daemon-driver-nwfilter-5.1.0-8.6 is installed
  • OR libvirt-daemon-driver-qemu-5.1.0-8.6 is installed
  • OR libvirt-daemon-driver-secret-5.1.0-8.6 is installed
  • OR libvirt-daemon-driver-storage-5.1.0-8.6 is installed
  • OR libvirt-daemon-driver-storage-core-5.1.0-8.6 is installed
  • OR libvirt-daemon-driver-storage-disk-5.1.0-8.6 is installed
  • OR libvirt-daemon-driver-storage-iscsi-5.1.0-8.6 is installed
  • OR libvirt-daemon-driver-storage-logical-5.1.0-8.6 is installed
  • OR libvirt-daemon-driver-storage-mpath-5.1.0-8.6 is installed
  • OR libvirt-daemon-driver-storage-rbd-5.1.0-8.6 is installed
  • OR libvirt-daemon-driver-storage-scsi-5.1.0-8.6 is installed
  • OR libvirt-daemon-hooks-5.1.0-8.6 is installed
  • OR libvirt-daemon-lxc-5.1.0-8.6 is installed
  • OR libvirt-daemon-qemu-5.1.0-8.6 is installed
  • OR libvirt-daemon-xen-5.1.0-8.6 is installed
  • OR libvirt-devel-5.1.0-8.6 is installed
  • OR libvirt-doc-5.1.0-8.6 is installed
  • OR libvirt-lock-sanlock-5.1.0-8.6 is installed
  • OR libvirt-nss-5.1.0-8.6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed
  • AND Package Information
  • libmysqlclient18-10.0.38-29.27 is installed
  • OR libmysqlclient18-32bit-10.0.38-29.27 is installed
  • OR mariadb-10.0.38-29.27 is installed
  • OR mariadb-client-10.0.38-29.27 is installed
  • OR mariadb-errormessages-10.0.38-29.27 is installed
  • OR mariadb-tools-10.0.38-29.27 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND Package Information
  • krb5-plugin-kdb-ldap-1.6.3-133.12 is installed
  • OR krb5-plugin-preauth-pkinit-1.6.3-133.12 is installed
  • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • freeradius-server-2.1.1-7.18.1 is installed
  • OR freeradius-server-dialupadmin-2.1.1-7.18.1 is installed
  • OR freeradius-server-doc-2.1.1-7.18.1 is installed
  • OR freeradius-server-libs-2.1.1-7.18.1 is installed
  • OR freeradius-server-utils-2.1.1-7.18.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for VMWare 11 SP3 is installed
  • AND
  • freeradius-server-2.1.1-7.18.1 is installed
  • OR freeradius-server-dialupadmin-2.1.1-7.18.1 is installed
  • OR freeradius-server-doc-2.1.1-7.18.1 is installed
  • OR freeradius-server-libs-2.1.1-7.18.1 is installed
  • OR freeradius-server-utils-2.1.1-7.18.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • PackageKit-0.3.14-2.28.46 is installed
  • OR PackageKit-lang-0.3.14-2.28.46 is installed
  • OR hal-0.5.12-23.68.1 is installed
  • OR hal-32bit-0.5.12-23.68.1 is installed
  • OR hal-doc-0.5.12-23.68.1 is installed
  • OR hal-x86-0.5.12-23.68.1 is installed
  • OR libpackagekit-glib10-0.3.14-2.28.46 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr2.0-4.1 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr2.0-4.1 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr2.0-4.1 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr2.0-4.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND mutt-1.5.21-49 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • bzip2-1.0.6-29 is installed
  • OR bzip2-doc-1.0.6-29 is installed
  • OR libbz2-1-1.0.6-29 is installed
  • OR libbz2-1-32bit-1.0.6-29 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • MozillaFirefox-52.2.0esr-108 is installed
  • OR MozillaFirefox-translations-52.2.0esr-108 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • alsa-1.0.27.2-15 is installed
  • OR alsa-docs-1.0.27.2-15 is installed
  • OR libasound2-1.0.27.2-15 is installed
  • OR libasound2-32bit-1.0.27.2-15 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_55-52_45-default-2-2.3 is installed
  • OR kgraft-patch-3_12_55-52_45-xen-2-2.3 is installed
  • OR kgraft-patch-SLE12_Update_13-2-2.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • gvim-7.4.326-7 is installed
  • OR vim-7.4.326-7 is installed
  • OR vim-data-7.4.326-7 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • xorg-x11-server-1.19.6-8.19 is installed
  • OR xorg-x11-server-extra-1.19.6-8.19 is installed
  • OR xorg-x11-server-sdk-1.19.6-8.19 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
  • AND Package Information
  • mozilla-nspr-4.10.8-0.8.1 is installed
  • OR mozilla-nspr-devel-4.10.8-0.8.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND Package Information
  • ghostscript-devel-8.62-32.41.1 is installed
  • OR ghostscript-ijs-devel-8.62-32.41.1 is installed
  • OR ghostscript-library-8.62-32.41.1 is installed
  • OR libgimpprint-devel-4.2.7-32.41.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND Package Information
  • libmikmod-devel-3.2.0-4 is installed
  • OR libmikmod3-3.2.0-4 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND accountsservice-devel-0.6.35-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND Package Information
  • DirectFB-devel-1.7.1-6 is installed
  • OR lib++dfb-devel-1.7.1-6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • ffmpeg-3.4.2-4.12 is installed
  • OR libavcodec-devel-3.4.2-4.12 is installed
  • OR libavformat-devel-3.4.2-4.12 is installed
  • OR libavformat57-3.4.2-4.12 is installed
  • OR libavresample-devel-3.4.2-4.12 is installed
  • OR libavresample3-3.4.2-4.12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • MozillaThunderbird-68.1.1-3.51 is installed
  • OR MozillaThunderbird-translations-common-68.1.1-3.51 is installed
  • OR MozillaThunderbird-translations-other-68.1.1-3.51 is installed
  • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 SP1 is installed
  • AND Package Information
  • kinit-5.20.0-6 is installed
  • OR kinit-devel-5.20.0-6 is installed
  • OR kinit-lang-5.20.0-6 is installed
  • BACK