Oval Definition:	oval:org.opensuse.security:def:4842
Revision Date: 2020-12-02 Version: 1 Title: Security update for qemu (Important) Description: This update for qemu fixes the following issues: Security issues fixed: - CVE-2019-14378: Security fix for heap overflow in ip_reass on big packet input (bsc#1143794). - CVE-2019-12155: Security fix for null pointer dereference while releasing spice resources (bsc#1135902). - CVE-2019-13164: Security fix for qemu-bridge-helper ACL can be bypassed when names are too long (bsc#1140402). - CVE-2019-5008: Fix DoS (NULL pointer dereference) in sparc64 virtual machine possible through guest device driver (bsc#1133031). Bug fixes and enhancements: - Upstream tweaked SnowRidge-Server vcpu model to now be simply Snowridge (jsc#SLE-4883) - Add SnowRidge-Server vcpu model (jsc#SLE-4883) - Add in documentation about md-clear feature (bsc#1138534) - Fix SEV issue where older machine type is not processed correctly (bsc#1144087) - Fix case of a bad pointer in Xen PV usb support code (bsc#1128106) - Further refine arch-capabilities handling to help with security and performance in Intel hosts (bsc#1134883, bsc#1135210) (fate#327764) - Add support for one more security/performance related vcpu feature (bsc#1136778) (fate#327796) - Ignore csske for expanding the cpu model (bsc#1136540) Family: unix Class: patch Status: Reference(s): 1027519 1050549 1051510 1052904 1053043 1055117 1055121 1061840 1065600 1065729 1070872 1082555 1083647 1085535 1085536 1088804 1094244 1097583 1097584 1097585 1097586 1097587 1097588 1100132 1100352 1103259 1111331 1112128 1112178 1113399 1113722 1114279 1114542 1114638 1119086 1119680 1120318 1120902 1122767 1123105 1125342 1126221 1126356 1126704 1126740 1127175 1127371 1127372 1127374 1127378 1127445 1128106 1128415 1128544 1129276 1129715 1129770 1130130 1130154 1130195 1130335 1130336 1130337 1130338 1130425 1130427 1130518 1130527 1130567 1131062 1131107 1131167 1131168 1131169 1131170 1131171 1131172 1131173 1131174 1131175 1131176 1131177 1131178 1131179 1131180 1131290 1131335 1131336 1131416 1131427 1131442 1131467 1131574 1131587 1131659 1131673 1131847 1131848 1131851 1131900 1131934 1131935 1132083 1132219 1132226 1132227 1132365 1132368 1132369 1132370 1132372 1132373 1132384 1132397 1132402 1132403 1132404 1132405 1132407 1132411 1132412 1132413 1132414 1132426 1132527 1132531 1132555 1132558 1132561 1132562 1132563 1132564 1132570 1132571 1132572 1132589 1132618 1132681 1132726 1132828 1132943 1133005 1133031 1133094 1133095 1133115 1133149 1133486 1133529 1133584 1133667 1133668 1133672 1133674 1133675 1133698 1133702 1133731 1133769 1133772 1133774 1133778 1133779 1133780 1133825 1133850 1133851 1133852 1134506 1134883 1135210 1135902 1136540 1136778 1137526 1138534 1140402 1143650 1143794 1144087 1154064 1155200 1157490 1160903 1160905 1160932 1165206 1166844 1167007 1167152 1168140 1168142 1168143 1169392 1172686 1173477 1173691 1173694 1173700 1173701 1173743 1173874 1173875 1173876 1173880 1173937 1176086 1176181 1176589 1176671 1178171 945190 CVE-2009-0793 CVE-2013-4276 CVE-2013-4509 CVE-2014-0105 CVE-2014-0250 CVE-2014-0791 CVE-2014-3577 CVE-2015-5262 CVE-2017-18922 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-13301 CVE-2018-16880 CVE-2018-21247 CVE-2019-11091 CVE-2019-12155 CVE-2019-12730 CVE-2019-13164 CVE-2019-14275 CVE-2019-14378 CVE-2019-17542 CVE-2019-18902 CVE-2019-20839 CVE-2019-20840 CVE-2019-3882 CVE-2019-5008 CVE-2019-9003 CVE-2019-9500 CVE-2019-9503 CVE-2019-9718 CVE-2020-10531 CVE-2020-11739 CVE-2020-11740 CVE-2020-11741 CVE-2020-11742 CVE-2020-11743 CVE-2020-14397 CVE-2020-14398 CVE-2020-14399 CVE-2020-14400 CVE-2020-14401 CVE-2020-14402 CVE-2020-15095 CVE-2020-24659 CVE-2020-7216 CVE-2020-8252 SUSE-SU-2019:2192-1 SUSE-SU-2019:3184-1 SUSE-SU-2020:0263-1 SUSE-SU-2020:0819-1 SUSE-SU-2020:1124-1 SUSE-SU-2020:1922-1 SUSE-SU-2020:2829-1 SUSE-SU-2020:2951-1 SUSE-SU-2020:2988-1 SUSE-SU-2020:3151-1 Platform(s): SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 5 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information python-keystoneclient-1.0.0-14 is installed OR python-keystoneclient-doc-1.0.0-14 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libecpg6-9.1.9-0.3.1 is installed OR libpq5-9.1.9-0.3.1 is installed OR libpq5-32bit-9.1.9-0.3.1 is installed OR postgresql91-9.1.9-0.3.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information freerdp-1.0.2-7 is installed OR libfreerdp-1_0-1.0.2-7 is installed OR libfreerdp-1_0-plugins-1.0.2-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information cpp48-4.8.5-24 is installed OR gcc48-4.8.5-24 is installed OR gcc48-32bit-4.8.5-24 is installed OR gcc48-c++-4.8.5-24 is installed OR gcc48-gij-4.8.5-24 is installed OR gcc48-gij-32bit-4.8.5-24 is installed OR gcc48-info-4.8.5-24 is installed OR libasan0-4.8.5-24 is installed OR libasan0-32bit-4.8.5-24 is installed OR libgcj48-4.8.5-24 is installed OR libgcj48-32bit-4.8.5-24 is installed OR libgcj48-jar-4.8.5-24 is installed OR libgcj_bc1-4.8.5-24 is installed OR libstdc++48-devel-4.8.5-24 is installed OR libstdc++48-devel-32bit-4.8.5-24 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND argyllcms-1.6.3-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND busybox-1.21.1-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information avahi-0.6.32-30 is installed OR avahi-lang-0.6.32-30 is installed OR libavahi-client3-0.6.32-30 is installed OR libavahi-client3-32bit-0.6.32-30 is installed OR libavahi-common3-0.6.32-30 is installed OR libavahi-common3-32bit-0.6.32-30 is installed OR libavahi-core7-0.6.32-30 is installed OR libdns_sd-0.6.32-30 is installed OR libdns_sd-32bit-0.6.32-30 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 is installed AND python-PyYAML-3.10-15.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP1 is installed AND Package Information ctdb-4.2.4-26.2 is installed OR samba-4.2.4-26.2 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND Package Information cluster-md-kmp-default-4.4.21-69 is installed OR cluster-network-kmp-default-4.4.21-69 is installed OR dlm-kmp-default-4.4.21-69 is installed OR gfs2-kmp-default-4.4.21-69 is installed OR ocfs2-kmp-default-4.4.21-69 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND haproxy-1.6.11-10 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND Package Information libpacemaker3-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-cli-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-cts-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-remote-1.1.19+20180928.0d2680780-1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP5 is installed AND Package Information libpacemaker3-1.1.21+20190809.bf34b44fa-1 is installed OR pacemaker-1.1.21+20190809.bf34b44fa-1 is installed OR pacemaker-cli-1.1.21+20190809.bf34b44fa-1 is installed OR pacemaker-cts-1.1.21+20190809.bf34b44fa-1 is installed OR pacemaker-remote-1.1.21+20190809.bf34b44fa-1 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information ImageMagick-config-6-SUSE-6.8.8.1-71.126 is installed OR ImageMagick-config-6-upstream-6.8.8.1-71.126 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.126 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.126 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_38-44-default-1-2.2 is installed OR kgraft-patch-3_12_38-44-xen-1-2.2 is installed OR kgraft-patch-SLE12_Update_3-1-2.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information qemu-3.1.1-9.3 is installed OR qemu-arm-3.1.1-9.3 is installed OR qemu-audio-alsa-3.1.1-9.3 is installed OR qemu-audio-oss-3.1.1-9.3 is installed OR qemu-audio-pa-3.1.1-9.3 is installed OR qemu-block-curl-3.1.1-9.3 is installed OR qemu-block-iscsi-3.1.1-9.3 is installed OR qemu-block-rbd-3.1.1-9.3 is installed OR qemu-block-ssh-3.1.1-9.3 is installed OR qemu-guest-agent-3.1.1-9.3 is installed OR qemu-ipxe-1.0.0+-9.3 is installed OR qemu-kvm-3.1.1-9.3 is installed OR qemu-lang-3.1.1-9.3 is installed OR qemu-ppc-3.1.1-9.3 is installed OR qemu-s390-3.1.1-9.3 is installed OR qemu-seabios-1.12.0-9.3 is installed OR qemu-sgabios-8-9.3 is installed OR qemu-ui-curses-3.1.1-9.3 is installed OR qemu-ui-gtk-3.1.1-9.3 is installed OR qemu-vgabios-1.12.0-9.3 is installed OR qemu-x86-3.1.1-9.3 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed AND Package Information postgresql96-9.6.15-3.29 is installed OR postgresql96-contrib-9.6.15-3.29 is installed OR postgresql96-docs-9.6.15-3.29 is installed OR postgresql96-libs-9.6.15-3.29 is installed OR postgresql96-plperl-9.6.15-3.29 is installed OR postgresql96-plpython-9.6.15-3.29 is installed OR postgresql96-pltcl-9.6.15-3.29 is installed OR postgresql96-server-9.6.15-3.29 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information libapr1-1.3.3-11.18.17.1 is installed OR libapr1-32bit-1.3.3-11.18.17.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND glibc-2.11.3-17.95.2 is installed OR glibc-32bit-2.11.3-17.95.2 is installed OR glibc-devel-2.11.3-17.95.2 is installed OR glibc-devel-32bit-2.11.3-17.95.2 is installed OR glibc-html-2.11.3-17.95.2 is installed OR glibc-i18ndata-2.11.3-17.95.2 is installed OR glibc-info-2.11.3-17.95.2 is installed OR glibc-locale-2.11.3-17.95.2 is installed OR glibc-locale-32bit-2.11.3-17.95.2 is installed OR glibc-locale-x86-2.11.3-17.95.2 is installed OR glibc-profile-2.11.3-17.95.2 is installed OR glibc-profile-32bit-2.11.3-17.95.2 is installed OR glibc-profile-x86-2.11.3-17.95.2 is installed OR glibc-x86-2.11.3-17.95.2 is installed OR nscd-2.11.3-17.95.2 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND glibc-2.11.3-17.95.2 is installed OR glibc-32bit-2.11.3-17.95.2 is installed OR glibc-devel-2.11.3-17.95.2 is installed OR glibc-devel-32bit-2.11.3-17.95.2 is installed OR glibc-html-2.11.3-17.95.2 is installed OR glibc-i18ndata-2.11.3-17.95.2 is installed OR glibc-info-2.11.3-17.95.2 is installed OR glibc-locale-2.11.3-17.95.2 is installed OR glibc-locale-32bit-2.11.3-17.95.2 is installed OR glibc-locale-x86-2.11.3-17.95.2 is installed OR glibc-profile-2.11.3-17.95.2 is installed OR glibc-profile-32bit-2.11.3-17.95.2 is installed OR glibc-profile-x86-2.11.3-17.95.2 is installed OR glibc-x86-2.11.3-17.95.2 is installed OR nscd-2.11.3-17.95.2 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information MozillaFirefox-17.0.4esr-0.10.42 is installed OR MozillaFirefox-translations-17.0.4esr-0.10.42 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information cpio-2.11-29.1 is installed OR cpio-lang-2.11-29.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information opie-2.4-724 is installed OR opie-32bit-2.4-724 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information MozillaFirefox-45.4.0esr-81 is installed OR MozillaFirefox-translations-45.4.0esr-81 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache2-2.4.23-28 is installed OR apache2-doc-2.4.23-28 is installed OR apache2-example-pages-2.4.23-28 is installed OR apache2-prefork-2.4.23-28 is installed OR apache2-utils-2.4.23-28 is installed OR apache2-worker-2.4.23-28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND apache2-mod_nss-1.0.14-19.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information libmysqlclient-devel-10.0.26-20.10.2 is installed OR libmysqlclient18-10.0.26-20.10.2 is installed OR libmysqlclient18-32bit-10.0.26-20.10.2 is installed OR libmysqlclient_r18-10.0.26-20.10.2 is installed OR libmysqld-devel-10.0.26-20.10.2 is installed OR libmysqld18-10.0.26-20.10.2 is installed OR mariadb-10.0.26-20.10.2 is installed OR mariadb-client-10.0.26-20.10.2 is installed OR mariadb-errormessages-10.0.26-20.10.2 is installed OR mariadb-tools-10.0.26-20.10.2 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information MozillaFirefox-45.5.1esr-93 is installed OR MozillaFirefox-translations-45.5.1esr-93 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information wicked-0.6.60-3.21 is installed OR wicked-service-0.6.60-3.21 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information mozilla-nspr-devel-4.10.2-0.3.1 is installed OR mozilla-nss-devel-3.15.3-0.8.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information glibc-2.11.3-17.95.2 is installed OR glibc-html-2.11.3-17.95.2 is installed OR glibc-info-2.11.3-17.95.2 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information libpacemaker-devel-1.1.12-7 is installed OR pacemaker-cts-1.1.12-7 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND alsa-devel-1.0.27.2-11 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND alsa-devel-1.0.27.2-11 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-150.17 is installed OR kernel-default-extra-4.12.14-150.17 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information ffmpeg-3.4.2-4.27 is installed OR libavcodec-devel-3.4.2-4.27 is installed OR libavformat-devel-3.4.2-4.27 is installed OR libavformat57-3.4.2-4.27 is installed OR libavresample-devel-3.4.2-4.27 is installed OR libavresample3-3.4.2-4.27 is installed
BACK