OVAL Reference oval:org.opensuse.security:def:4854

Oval Definition:

oval:org.opensuse.security:def:4854

Revision Date:	2020-12-02	Version:	1
Title:	Security update for qemu (Important)
Description:	This update for qemu fixes the following issues: * qemu was updated to v3.1.1.1, a stable, bug-fix-only release, which includes 2 fixes we already carry, as well as one additional use- after-free fix in slirp. (CVE-2018-20126 bsc#1119991, CVE-2019-14378 bsc#1143794, and CVE-2019-15890 bsc#1149811 respectively) Security issues fixed: - CVE-2019-12068: Fixed potential DOS in lsi scsi controller emulation (bsc#1146873) - CVE-2019-11135: Expose taa-no 'feature', indicating CPU does not have the TSX Async Abort vulnerability. (bsc#1152506) - CVE-2018-12207: Expose pschange-mc-no 'feature', indicating CPU does not have the page size change machine check vulnerability (bsc#1117665) Other issues fixed: - Change how this bug gets fixed (bsc#1144087) - Disable file locking in the Xen PV disk backend to avoid locking issues with PV domUs during migration. The issues triggered by the locking can not be properly handled in libxl. The locking introduced in qemu-2.10 was removed again in qemu-4.0. (bsc#1079730, bsc#1098403, bsc#1111025, bsc#1145427, bsc#1145774) - Feature support for vfio-ccw dasd ipl (bsc#1145379 jira-SLE-6132) - Additional hardware instruction support for s390, also update qemu linux headers to 5.2-rc1 (bsc#1145436 jira-SLE-6237)
Family:	unix	Class:	patch
Status:		Reference(s):	1073627 1079730 1098403 1098447 1098649 1104036 1111025 1117665 1119991 1134157 1134853 1137595 1138872 1143463 1143777 1143794 1143817 1143818 1143819 1143820 1143821 1143823 1143824 1143825 1143827 1143828 1143830 1143831 1144087 1145379 1145427 1145436 1145774 1146873 1149811 1152506 1160305 1160498 1162198 1167209 1171550 1172177 1172182 1172184 1172186 1172402 1173351 1176733 1177950 1178591 CVE-2013-0240 CVE-2013-1799 CVE-2013-1986 CVE-2013-1988 CVE-2014-2524 CVE-2014-6271 CVE-2014-7169 CVE-2014-7186 CVE-2014-7187 CVE-2017-17789 CVE-2018-12207 CVE-2018-20126 CVE-2019-11059 CVE-2019-11135 CVE-2019-11690 CVE-2019-11703 CVE-2019-11704 CVE-2019-11705 CVE-2019-11706 CVE-2019-11707 CVE-2019-11708 CVE-2019-12068 CVE-2019-13103 CVE-2019-14192 CVE-2019-14193 CVE-2019-14194 CVE-2019-14195 CVE-2019-14196 CVE-2019-14197 CVE-2019-14198 CVE-2019-14199 CVE-2019-14200 CVE-2019-14201 CVE-2019-14202 CVE-2019-14203 CVE-2019-14204 CVE-2019-14378 CVE-2019-15890 CVE-2019-16770 CVE-2019-17015 CVE-2019-17016 CVE-2019-17017 CVE-2019-17021 CVE-2019-17022 CVE-2019-17024 CVE-2019-17026 CVE-2019-5418 CVE-2019-5419 CVE-2019-5420 CVE-2020-10648 CVE-2020-11076 CVE-2020-11077 CVE-2020-12398 CVE-2020-12405 CVE-2020-12406 CVE-2020-12410 CVE-2020-13249 CVE-2020-15169 CVE-2020-26117 CVE-2020-28368 CVE-2020-5247 CVE-2020-5249 CVE-2020-5267 CVE-2020-8164 CVE-2020-8165 CVE-2020-8166 CVE-2020-8167 CVE-2020-8184 CVE-2020-8185 CVE-2020-8432 SUSE-SU-2018:2641-1 SUSE-SU-2019:1683-1 SUSE-SU-2019:2955-1 SUSE-SU-2020:0142-1 SUSE-SU-2020:1423-1 SUSE-SU-2020:1591-2 SUSE-SU-2020:2604-1 SUSE-SU-2020:2882-1 SUSE-SU-2020:3147-1 SUSE-SU-2020:3283-1 SUSE-SU-2020:3416-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Toolchain 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 5	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libtiff3-3.8.2-141.154.1 is installed OR libtiff3-32bit-3.8.2-141.154.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information bash-4.2-75 is installed OR bash-doc-4.2-75 is installed OR bash-lang-4.2-75 is installed OR libreadline6-6.2-75 is installed OR libreadline6-32bit-6.2-75 is installed OR readline-doc-6.2-75 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND dnsmasq-2.71-8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND clamav-0.99.2-25 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 is installed AND Package Information ctdb-4.2.4-18.35.1 is installed OR samba-4.2.4-18.35.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP1 is installed AND Package Information libpacemaker3-1.1.13-20.1 is installed OR pacemaker-1.1.13-20.1 is installed OR pacemaker-cli-1.1.13-20.1 is installed OR pacemaker-cts-1.1.13-20.1 is installed OR pacemaker-remote-1.1.13-20.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND Package Information cluster-md-kmp-default-4.4.21-84.1 is installed OR cluster-network-kmp-default-4.4.21-84.1 is installed OR dlm-kmp-default-4.4.21-84.1 is installed OR gfs2-kmp-default-4.4.21-84.1 is installed OR kernel-default-4.4.21-84.1 is installed OR ocfs2-kmp-default-4.4.21-84.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND ctdb-4.6.5+git.27.6afd48b1083-2 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP4 is installed AND Package Information libpacemaker3-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-cli-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-cts-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-remote-1.1.19+20180928.0d2680780-1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP5 is installed AND libpcreposix0-8.39-8.3 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_38-44-default-2-7.1 is installed OR kgraft-patch-3_12_38-44-xen-2-7.1 is installed OR kgraft-patch-SLE12_Update_3-2-7.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND Package Information ruby2.1-rubygem-passenger-5.0.18-6.1 is installed OR rubygem-passenger-5.0.18-6.1 is installed OR rubygem-passenger-apache2-5.0.18-6.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information qemu-3.1.1.1-9.6 is installed OR qemu-arm-3.1.1.1-9.6 is installed OR qemu-audio-alsa-3.1.1.1-9.6 is installed OR qemu-audio-oss-3.1.1.1-9.6 is installed OR qemu-audio-pa-3.1.1.1-9.6 is installed OR qemu-block-curl-3.1.1.1-9.6 is installed OR qemu-block-iscsi-3.1.1.1-9.6 is installed OR qemu-block-rbd-3.1.1.1-9.6 is installed OR qemu-block-ssh-3.1.1.1-9.6 is installed OR qemu-guest-agent-3.1.1.1-9.6 is installed OR qemu-ipxe-1.0.0+-9.6 is installed OR qemu-kvm-3.1.1.1-9.6 is installed OR qemu-lang-3.1.1.1-9.6 is installed OR qemu-ppc-3.1.1.1-9.6 is installed OR qemu-s390-3.1.1.1-9.6 is installed OR qemu-seabios-1.12.0-9.6 is installed OR qemu-sgabios-8-9.6 is installed OR qemu-ui-curses-3.1.1.1-9.6 is installed OR qemu-ui-gtk-3.1.1.1-9.6 is installed OR qemu-vgabios-1.12.0-9.6 is installed OR qemu-x86-3.1.1.1-9.6 is installed
Definition Synopsis
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed AND Package Information MozillaFirefox-60.9.0-109.86 is installed OR MozillaFirefox-devel-60.9.0-109.86 is installed OR MozillaFirefox-translations-common-60.9.0-109.86 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information libltdl7-2.2.6-2.131.1 is installed OR libltdl7-32bit-2.2.6-2.131.1 is installed OR libltdl7-x86-2.2.6-2.131.1 is installed OR libtool-2.2.6-2.131.1 is installed OR libtool-32bit-2.2.6-2.131.1 is installed OR libtool-x86-2.2.6-2.131.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND ibutils-1.5.7-0.9.1 is installed OR ibutils-32bit-1.5.7-0.9.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND ibutils-1.5.7-0.9.1 is installed OR ibutils-32bit-1.5.7-0.9.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information NetworkManager-0.7.1_git20090811-3.28.2 is installed OR NetworkManager-glib-0.7.1_git20090811-3.28.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND mailx-12.5-22.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND perl-LWP-Protocol-https-6.04-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information alsa-1.0.27.2-11 is installed OR alsa-docs-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information bind-9.9.9P1-62 is installed OR bind-chrootenv-9.9.9P1-62 is installed OR bind-doc-9.9.9P1-62 is installed OR bind-libs-9.9.9P1-62 is installed OR bind-libs-32bit-9.9.9P1-62 is installed OR bind-utils-9.9.9P1-62 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_60-52_49-default-2-2.2 is installed OR kgraft-patch-3_12_60-52_49-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_14-2-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information java-1_8_0-openjdk-1.8.0.111-17 is installed OR java-1_8_0-openjdk-demo-1.8.0.111-17 is installed OR java-1_8_0-openjdk-devel-1.8.0.111-17 is installed OR java-1_8_0-openjdk-headless-1.8.0.111-17 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libXvnc1-1.8.0-13.14 is installed OR tigervnc-1.8.0-13.14 is installed OR xorg-x11-Xvnc-1.8.0-13.14 is installed OR xorg-x11-Xvnc-novnc-1.8.0-13.14 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information postgresql94-devel-9.4.5-0.8.3 is installed OR postgresql94-libs-9.4.5-0.8.3 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr3.20-6.1 is installed OR java-1_7_1-ibm-devel-1.7.1_sr3.20-6.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information librsvg-devel-2.40.2-1 is installed OR typelib-1_0-Rsvg-2_0-2.40.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND ctdb-devel-2.5.5-1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information DirectFB-devel-1.7.1-6 is installed OR lib++dfb-devel-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information ImageMagick-6.8.8.1-70 is installed OR ImageMagick-devel-6.8.8.1-70 is installed OR libMagick++-6_Q16-3-6.8.8.1-70 is installed OR libMagick++-devel-6.8.8.1-70 is installed OR perl-PerlMagick-6.8.8.1-70 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND enigmail-2.0.8-3.10 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-68.4.1-3.66 is installed OR MozillaThunderbird-translations-common-68.4.1-3.66 is installed OR MozillaThunderbird-translations-other-68.4.1-3.66 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information MozillaThunderbird-68.9.0-3.85 is installed OR MozillaThunderbird-translations-common-68.9.0-3.85 is installed OR MozillaThunderbird-translations-other-68.9.0-3.85 is installed

BACK