Oval Definition:oval:org.opensuse.security:def:4842
Revision Date:2020-12-02Version:1
Title:Security update for qemu (Important)
Description:

This update for qemu fixes the following issues:

Security issues fixed:

- CVE-2019-14378: Security fix for heap overflow in ip_reass on big packet input (bsc#1143794). - CVE-2019-12155: Security fix for null pointer dereference while releasing spice resources (bsc#1135902). - CVE-2019-13164: Security fix for qemu-bridge-helper ACL can be bypassed when names are too long (bsc#1140402). - CVE-2019-5008: Fix DoS (NULL pointer dereference) in sparc64 virtual machine possible through guest device driver (bsc#1133031).

Bug fixes and enhancements:

- Upstream tweaked SnowRidge-Server vcpu model to now be simply Snowridge (jsc#SLE-4883) - Add SnowRidge-Server vcpu model (jsc#SLE-4883) - Add in documentation about md-clear feature (bsc#1138534) - Fix SEV issue where older machine type is not processed correctly (bsc#1144087) - Fix case of a bad pointer in Xen PV usb support code (bsc#1128106) - Further refine arch-capabilities handling to help with security and performance in Intel hosts (bsc#1134883, bsc#1135210) (fate#327764) - Add support for one more security/performance related vcpu feature (bsc#1136778) (fate#327796) - Ignore csske for expanding the cpu model (bsc#1136540)
Family:unixClass:patch
Status:Reference(s):1027519
1050549
1051510
1052904
1053043
1055117
1055121
1061840
1065600
1065729
1070872
1082555
1083647
1085535
1085536
1088804
1094244
1097583
1097584
1097585
1097586
1097587
1097588
1100132
1100352
1103259
1111331
1112128
1112178
1113399
1113722
1114279
1114542
1114638
1119086
1119680
1120318
1120902
1122767
1123105
1125342
1126221
1126356
1126704
1126740
1127175
1127371
1127372
1127374
1127378
1127445
1128106
1128415
1128544
1129276
1129715
1129770
1130130
1130154
1130195
1130335
1130336
1130337
1130338
1130425
1130427
1130518
1130527
1130567
1131062
1131107
1131167
1131168
1131169
1131170
1131171
1131172
1131173
1131174
1131175
1131176
1131177
1131178
1131179
1131180
1131290
1131335
1131336
1131416
1131427
1131442
1131467
1131574
1131587
1131659
1131673
1131847
1131848
1131851
1131900
1131934
1131935
1132083
1132219
1132226
1132227
1132365
1132368
1132369
1132370
1132372
1132373
1132384
1132397
1132402
1132403
1132404
1132405
1132407
1132411
1132412
1132413
1132414
1132426
1132527
1132531
1132555
1132558
1132561
1132562
1132563
1132564
1132570
1132571
1132572
1132589
1132618
1132681
1132726
1132828
1132943
1133005
1133031
1133094
1133095
1133115
1133149
1133486
1133529
1133584
1133667
1133668
1133672
1133674
1133675
1133698
1133702
1133731
1133769
1133772
1133774
1133778
1133779
1133780
1133825
1133850
1133851
1133852
1134506
1134883
1135210
1135902
1136540
1136778
1137526
1138534
1140402
1143650
1143794
1144087
1154064
1155200
1157490
1160903
1160905
1160932
1165206
1166844
1167007
1167152
1168140
1168142
1168143
1169392
1172686
1173477
1173691
1173694
1173700
1173701
1173743
1173874
1173875
1173876
1173880
1173937
1176086
1176181
1176589
1176671
1178171
945190
CVE-2009-0793
CVE-2013-4276
CVE-2013-4509
CVE-2014-0105
CVE-2014-0250
CVE-2014-0791
CVE-2014-3577
CVE-2015-5262
CVE-2017-18922
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2018-13301
CVE-2018-16880
CVE-2018-21247
CVE-2019-11091
CVE-2019-12155
CVE-2019-12730
CVE-2019-13164
CVE-2019-14275
CVE-2019-14378
CVE-2019-17542
CVE-2019-18902
CVE-2019-20839
CVE-2019-20840
CVE-2019-3882
CVE-2019-5008
CVE-2019-9003
CVE-2019-9500
CVE-2019-9503
CVE-2019-9718
CVE-2020-10531
CVE-2020-11739
CVE-2020-11740
CVE-2020-11741
CVE-2020-11742
CVE-2020-11743
CVE-2020-14397
CVE-2020-14398
CVE-2020-14399
CVE-2020-14400
CVE-2020-14401
CVE-2020-14402
CVE-2020-15095
CVE-2020-24659
CVE-2020-7216
CVE-2020-8252
SUSE-SU-2019:2192-1
SUSE-SU-2019:3184-1
SUSE-SU-2020:0263-1
SUSE-SU-2020:0819-1
SUSE-SU-2020:1124-1
SUSE-SU-2020:1922-1
SUSE-SU-2020:2829-1
SUSE-SU-2020:2951-1
SUSE-SU-2020:2988-1
SUSE-SU-2020:3151-1
Platform(s):SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Availability 12
SUSE Linux Enterprise High Availability 12 SP1
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 12 SP5
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE OpenStack Cloud 5
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND Package Information
  • python-keystoneclient-1.0.0-14 is installed
  • OR python-keystoneclient-doc-1.0.0-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • libecpg6-9.1.9-0.3.1 is installed
  • OR libpq5-9.1.9-0.3.1 is installed
  • OR libpq5-32bit-9.1.9-0.3.1 is installed
  • OR postgresql91-9.1.9-0.3.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • freerdp-1.0.2-7 is installed
  • OR libfreerdp-1_0-1.0.2-7 is installed
  • OR libfreerdp-1_0-plugins-1.0.2-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • cpp48-4.8.5-24 is installed
  • OR gcc48-4.8.5-24 is installed
  • OR gcc48-32bit-4.8.5-24 is installed
  • OR gcc48-c++-4.8.5-24 is installed
  • OR gcc48-gij-4.8.5-24 is installed
  • OR gcc48-gij-32bit-4.8.5-24 is installed
  • OR gcc48-info-4.8.5-24 is installed
  • OR libasan0-4.8.5-24 is installed
  • OR libasan0-32bit-4.8.5-24 is installed
  • OR libgcj48-4.8.5-24 is installed
  • OR libgcj48-32bit-4.8.5-24 is installed
  • OR libgcj48-jar-4.8.5-24 is installed
  • OR libgcj_bc1-4.8.5-24 is installed
  • OR libstdc++48-devel-4.8.5-24 is installed
  • OR libstdc++48-devel-32bit-4.8.5-24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND argyllcms-1.6.3-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND busybox-1.21.1-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • avahi-0.6.32-30 is installed
  • OR avahi-lang-0.6.32-30 is installed
  • OR libavahi-client3-0.6.32-30 is installed
  • OR libavahi-client3-32bit-0.6.32-30 is installed
  • OR libavahi-common3-0.6.32-30 is installed
  • OR libavahi-common3-32bit-0.6.32-30 is installed
  • OR libavahi-core7-0.6.32-30 is installed
  • OR libdns_sd-0.6.32-30 is installed
  • OR libdns_sd-32bit-0.6.32-30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 is installed
  • AND python-PyYAML-3.10-15.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP1 is installed
  • AND Package Information
  • ctdb-4.2.4-26.2 is installed
  • OR samba-4.2.4-26.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.4.21-69 is installed
  • OR cluster-network-kmp-default-4.4.21-69 is installed
  • OR dlm-kmp-default-4.4.21-69 is installed
  • OR gfs2-kmp-default-4.4.21-69 is installed
  • OR ocfs2-kmp-default-4.4.21-69 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND haproxy-1.6.11-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND Package Information
  • libpacemaker3-1.1.19+20180928.0d2680780-1 is installed
  • OR pacemaker-1.1.19+20180928.0d2680780-1 is installed
  • OR pacemaker-cli-1.1.19+20180928.0d2680780-1 is installed
  • OR pacemaker-cts-1.1.19+20180928.0d2680780-1 is installed
  • OR pacemaker-remote-1.1.19+20180928.0d2680780-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP5 is installed
  • AND Package Information
  • libpacemaker3-1.1.21+20190809.bf34b44fa-1 is installed
  • OR pacemaker-1.1.21+20190809.bf34b44fa-1 is installed
  • OR pacemaker-cli-1.1.21+20190809.bf34b44fa-1 is installed
  • OR pacemaker-cts-1.1.21+20190809.bf34b44fa-1 is installed
  • OR pacemaker-remote-1.1.21+20190809.bf34b44fa-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND Package Information
  • ImageMagick-config-6-SUSE-6.8.8.1-71.126 is installed
  • OR ImageMagick-config-6-upstream-6.8.8.1-71.126 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-71.126 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-71.126 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_38-44-default-1-2.2 is installed
  • OR kgraft-patch-3_12_38-44-xen-1-2.2 is installed
  • OR kgraft-patch-SLE12_Update_3-1-2.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • qemu-3.1.1-9.3 is installed
  • OR qemu-arm-3.1.1-9.3 is installed
  • OR qemu-audio-alsa-3.1.1-9.3 is installed
  • OR qemu-audio-oss-3.1.1-9.3 is installed
  • OR qemu-audio-pa-3.1.1-9.3 is installed
  • OR qemu-block-curl-3.1.1-9.3 is installed
  • OR qemu-block-iscsi-3.1.1-9.3 is installed
  • OR qemu-block-rbd-3.1.1-9.3 is installed
  • OR qemu-block-ssh-3.1.1-9.3 is installed
  • OR qemu-guest-agent-3.1.1-9.3 is installed
  • OR qemu-ipxe-1.0.0+-9.3 is installed
  • OR qemu-kvm-3.1.1-9.3 is installed
  • OR qemu-lang-3.1.1-9.3 is installed
  • OR qemu-ppc-3.1.1-9.3 is installed
  • OR qemu-s390-3.1.1-9.3 is installed
  • OR qemu-seabios-1.12.0-9.3 is installed
  • OR qemu-sgabios-8-9.3 is installed
  • OR qemu-ui-curses-3.1.1-9.3 is installed
  • OR qemu-ui-gtk-3.1.1-9.3 is installed
  • OR qemu-vgabios-1.12.0-9.3 is installed
  • OR qemu-x86-3.1.1-9.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed
  • AND Package Information
  • postgresql96-9.6.15-3.29 is installed
  • OR postgresql96-contrib-9.6.15-3.29 is installed
  • OR postgresql96-docs-9.6.15-3.29 is installed
  • OR postgresql96-libs-9.6.15-3.29 is installed
  • OR postgresql96-plperl-9.6.15-3.29 is installed
  • OR postgresql96-plpython-9.6.15-3.29 is installed
  • OR postgresql96-pltcl-9.6.15-3.29 is installed
  • OR postgresql96-server-9.6.15-3.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND Package Information
  • libapr1-1.3.3-11.18.17.1 is installed
  • OR libapr1-32bit-1.3.3-11.18.17.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • glibc-2.11.3-17.95.2 is installed
  • OR glibc-32bit-2.11.3-17.95.2 is installed
  • OR glibc-devel-2.11.3-17.95.2 is installed
  • OR glibc-devel-32bit-2.11.3-17.95.2 is installed
  • OR glibc-html-2.11.3-17.95.2 is installed
  • OR glibc-i18ndata-2.11.3-17.95.2 is installed
  • OR glibc-info-2.11.3-17.95.2 is installed
  • OR glibc-locale-2.11.3-17.95.2 is installed
  • OR glibc-locale-32bit-2.11.3-17.95.2 is installed
  • OR glibc-locale-x86-2.11.3-17.95.2 is installed
  • OR glibc-profile-2.11.3-17.95.2 is installed
  • OR glibc-profile-32bit-2.11.3-17.95.2 is installed
  • OR glibc-profile-x86-2.11.3-17.95.2 is installed
  • OR glibc-x86-2.11.3-17.95.2 is installed
  • OR nscd-2.11.3-17.95.2 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for VMWare 11 SP3 is installed
  • AND
  • glibc-2.11.3-17.95.2 is installed
  • OR glibc-32bit-2.11.3-17.95.2 is installed
  • OR glibc-devel-2.11.3-17.95.2 is installed
  • OR glibc-devel-32bit-2.11.3-17.95.2 is installed
  • OR glibc-html-2.11.3-17.95.2 is installed
  • OR glibc-i18ndata-2.11.3-17.95.2 is installed
  • OR glibc-info-2.11.3-17.95.2 is installed
  • OR glibc-locale-2.11.3-17.95.2 is installed
  • OR glibc-locale-32bit-2.11.3-17.95.2 is installed
  • OR glibc-locale-x86-2.11.3-17.95.2 is installed
  • OR glibc-profile-2.11.3-17.95.2 is installed
  • OR glibc-profile-32bit-2.11.3-17.95.2 is installed
  • OR glibc-profile-x86-2.11.3-17.95.2 is installed
  • OR glibc-x86-2.11.3-17.95.2 is installed
  • OR nscd-2.11.3-17.95.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-17.0.4esr-0.10.42 is installed
  • OR MozillaFirefox-translations-17.0.4esr-0.10.42 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • cpio-2.11-29.1 is installed
  • OR cpio-lang-2.11-29.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • opie-2.4-724 is installed
  • OR opie-32bit-2.4-724 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • MozillaFirefox-45.4.0esr-81 is installed
  • OR MozillaFirefox-translations-45.4.0esr-81 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • apache2-2.4.23-28 is installed
  • OR apache2-doc-2.4.23-28 is installed
  • OR apache2-example-pages-2.4.23-28 is installed
  • OR apache2-prefork-2.4.23-28 is installed
  • OR apache2-utils-2.4.23-28 is installed
  • OR apache2-worker-2.4.23-28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND apache2-mod_nss-1.0.14-19.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12-LTSS is installed
  • AND Package Information
  • libmysqlclient-devel-10.0.26-20.10.2 is installed
  • OR libmysqlclient18-10.0.26-20.10.2 is installed
  • OR libmysqlclient18-32bit-10.0.26-20.10.2 is installed
  • OR libmysqlclient_r18-10.0.26-20.10.2 is installed
  • OR libmysqld-devel-10.0.26-20.10.2 is installed
  • OR libmysqld18-10.0.26-20.10.2 is installed
  • OR mariadb-10.0.26-20.10.2 is installed
  • OR mariadb-client-10.0.26-20.10.2 is installed
  • OR mariadb-errormessages-10.0.26-20.10.2 is installed
  • OR mariadb-tools-10.0.26-20.10.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • MozillaFirefox-45.5.1esr-93 is installed
  • OR MozillaFirefox-translations-45.5.1esr-93 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • wicked-0.6.60-3.21 is installed
  • OR wicked-service-0.6.60-3.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
  • AND Package Information
  • mozilla-nspr-devel-4.10.2-0.3.1 is installed
  • OR mozilla-nss-devel-3.15.3-0.8.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND Package Information
  • glibc-2.11.3-17.95.2 is installed
  • OR glibc-html-2.11.3-17.95.2 is installed
  • OR glibc-info-2.11.3-17.95.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND Package Information
  • libpacemaker-devel-1.1.12-7 is installed
  • OR pacemaker-cts-1.1.12-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND alsa-devel-1.0.27.2-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND alsa-devel-1.0.27.2-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-150.17 is installed
  • OR kernel-default-extra-4.12.14-150.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • ffmpeg-3.4.2-4.27 is installed
  • OR libavcodec-devel-3.4.2-4.27 is installed
  • OR libavformat-devel-3.4.2-4.27 is installed
  • OR libavformat57-3.4.2-4.27 is installed
  • OR libavresample-devel-3.4.2-4.27 is installed
  • OR libavresample3-3.4.2-4.27 is installed
    • BACK