OVAL Reference oval:org.opensuse.security:def:4855

Oval Definition:

oval:org.opensuse.security:def:4855

Revision Date:	2020-12-02	Version:	1
Title:	Security update for xen (Important)
Description:	This update for xen fixes the following issues: - CVE-2018-12207: Untrusted virtual machines on Intel CPUs could exploit a race condition in the Instruction Fetch Unit of the Intel CPU to cause a Machine Exception during Page Size Change, causing the CPU core to be non-functional. (bsc#1155945) - CVE-2019-11135: Aborting an asynchronous TSX operation on Intel CPUs with Transactional Memory support could be used to facilitate sidechannel information leaks out of microarchitectural buffers, similar to the previously described 'Microarchitectural Data Sampling' attack. (bsc#1152497). - CVE-2019-18423: A malicious guest administrator may cause a hypervisor crash, resulting in a Denial of Service (DoS). (bsc#1154460). - CVE-2019-18422: A malicious ARM guest might contrive to arrange for critical Xen code to run with interrupts erroneously enabled. This could lead to data corruption, denial of service, or possibly even privilege escalation. However a precise attack technique has not been identified. (bsc#1154464) - CVE-2019-18424: An untrusted domain with access to a physical device can DMA into host memory, leading to privilege escalation. (bsc#1154461). - CVE-2019-18421: A malicious PV guest administrator may have been able to escalate their privilege to that of the host. (bsc#1154458). - CVE-2019-18425: 32-bit PV guest user mode could elevate its privileges to that of the guest kernel. (bsc#1154456). - CVE-2019-18420: Malicious x86 PV guests may have caused a hypervisor crash, resulting in a Denial of Service (Dos). (bsc#1154448) - Upstream bug fixes (bsc#1027519)
Family:	unix	Class:	patch
Status:		Reference(s):	1012382 1027519 1043912 1044189 1046302 1046306 1046307 1046543 1050244 1051510 1054914 1055014 1055117 1058659 1060463 1061840 1064232 1065600 1065729 1068032 1069138 1071995 1077761 1077989 1078720 1080157 1082555 1083647 1083663 1084332 1085042 1085262 1086282 1088047 1089663 1090528 1092903 1093389 1094244 1094555 1095344 1096748 1097105 1098459 1098633 1098822 1099922 1099999 1100000 1100001 1100132 1101557 1101669 1102346 1102870 1102875 1102877 1102879 1102882 1102896 1103363 1103387 1103421 1103948 1103949 1103961 1104172 1104353 1104824 1105247 1105524 1105536 1105597 1105603 1105672 1105907 1106007 1106016 1106105 1106121 1106170 1106178 1106191 1106229 1106230 1106231 1106233 1106235 1106236 1106237 1106238 1106240 1106291 1106297 1106333 1106369 1106383 1106426 1106427 1106464 1106509 1106511 1106594 1106636 1106688 1106697 1106743 1106751 1106779 1106800 1106890 1106891 1106892 1106893 1106894 1106896 1106897 1106898 1106899 1106900 1106901 1106902 1106903 1106905 1106906 1106948 1106995 1107008 1107060 1107061 1107065 1107073 1107074 1107078 1107265 1107319 1107320 1107522 1107535 1107689 1107735 1107756 1107870 1107924 1107945 1107966 1108010 1108093 1108243 1108520 1108870 1109137 1109269 1109511 1114279 1119532 1120423 1124167 1127155 1128432 1128902 1128910 1131645 1132154 1132390 1133401 1133738 1134303 1134395 1135296 1135556 1135642 1136157 1136598 1136922 1136935 1137103 1137194 1137429 1137625 1137728 1137884 1137995 1137996 1137998 1137999 1138000 1138002 1138003 1138005 1138006 1138007 1138008 1138009 1138010 1138011 1138012 1138013 1138014 1138015 1138016 1138017 1138018 1138019 1138291 1138293 1138374 1138375 1138589 1138719 1139751 1139771 1139782 1139865 1140133 1140328 1140405 1140424 1140428 1140575 1140577 1140637 1140658 1140715 1140719 1140726 1140727 1140728 1140814 1152497 1154448 1154456 1154458 1154460 1154461 1154464 1155945 1158880 1160687 1165870 1167463 1167816 1170940 1171496 1171497 1171498 1171499 1171997 1176410 1177143 1178171 1178387 1178666 1178667 1178668 920344 945190 CVE-2009-0696 CVE-2009-4022 CVE-2010-3613 CVE-2010-3614 CVE-2010-3615 CVE-2010-4000 CVE-2011-0414 CVE-2011-1907 CVE-2011-1910 CVE-2011-2464 CVE-2011-4313 CVE-2012-1667 CVE-2012-3817 CVE-2012-3868 CVE-2012-4244 CVE-2012-5166 CVE-2012-5688 CVE-2012-5689 CVE-2013-1987 CVE-2013-2003 CVE-2013-2266 CVE-2013-4854 CVE-2014-0591 CVE-2014-3577 CVE-2015-5262 CVE-2018-10938 CVE-2018-10940 CVE-2018-1128 CVE-2018-1129 CVE-2018-12207 CVE-2018-12896 CVE-2018-13093 CVE-2018-13094 CVE-2018-13095 CVE-2018-14613 CVE-2018-14617 CVE-2018-16658 CVE-2018-16871 CVE-2018-20836 CVE-2018-6554 CVE-2018-6555 CVE-2019-10126 CVE-2019-10638 CVE-2019-10639 CVE-2019-11135 CVE-2019-11478 CVE-2019-11599 CVE-2019-12380 CVE-2019-12456 CVE-2019-12614 CVE-2019-12818 CVE-2019-12819 CVE-2019-18420 CVE-2019-18421 CVE-2019-18422 CVE-2019-18423 CVE-2019-18424 CVE-2019-18425 CVE-2020-11863 CVE-2020-11864 CVE-2020-11865 CVE-2020-11866 CVE-2020-12801 CVE-2020-1983 CVE-2020-25219 CVE-2020-25219 CVE-2020-25692 CVE-2020-25694 CVE-2020-25695 CVE-2020-25696 CVE-2020-26154 CVE-2020-26154 SUSE-SU-2018:2980-1 SUSE-SU-2019:1855-1 SUSE-SU-2019:2961-1 SUSE-SU-2020:1502-1 SUSE-SU-2020:1530-1 SUSE-SU-2020:1621-2 SUSE-SU-2020:2901-1 SUSE-SU-2020:3151-1 SUSE-SU-2020:3313-1 SUSE-SU-2020:3455-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for Rasperry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 5	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libvirt-0.9.6-0.29.1 is installed OR libvirt-client-0.9.6-0.29.1 is installed OR libvirt-client-32bit-0.9.6-0.29.1 is installed OR libvirt-doc-0.9.6-0.29.1 is installed OR libvirt-python-0.9.6-0.29.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information bind-libs-9.9.5P1-1 is installed OR bind-libs-32bit-9.9.5P1-1 is installed OR bind-utils-9.9.5P1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND dracut-037-66 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information colord-1.3.3-10 is installed OR colord-gtk-lang-0.1.26-6 is installed OR colord-lang-1.3.3-10 is installed OR libcolord-gtk1-0.1.26-6 is installed OR libcolord2-1.3.3-10 is installed OR libcolord2-32bit-1.3.3-10 is installed OR libcolorhug2-1.3.3-10 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information NetworkManager-1.0.12-12 is installed OR NetworkManager-lang-1.0.12-12 is installed OR libnm-glib-vpn1-1.0.12-12 is installed OR libnm-glib4-1.0.12-12 is installed OR libnm-util2-1.0.12-12 is installed OR libnm0-1.0.12-12 is installed OR typelib-1_0-NM-1_0-1.0.12-12 is installed OR typelib-1_0-NMClient-1_0-1.0.12-12 is installed OR typelib-1_0-NetworkManager-1_0-1.0.12-12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information augeas-1.2.0-17.3 is installed OR augeas-lenses-1.2.0-17.3 is installed OR libaugeas0-1.2.0-17.3 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP1 is installed AND hawk2-1.0.1+git.1456406635.49e230d-12.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND Package Information cluster-md-kmp-default-4.4.21-90.1 is installed OR cluster-network-kmp-default-4.4.21-90.1 is installed OR dlm-kmp-default-4.4.21-90.1 is installed OR gfs2-kmp-default-4.4.21-90.1 is installed OR kernel-default-4.4.21-90.1 is installed OR ocfs2-kmp-default-4.4.21-90.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND fence-agents-4.0.25+git.1485179354.eb43835-2 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP4 is installed AND libpcreposix0-8.39-8.3 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP5 is installed AND libqb0-1.0.3+20171226.6d62b64-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_39-47-default-2-10.1 is installed OR kgraft-patch-3_12_39-47-xen-2-10.1 is installed OR kgraft-patch-SLE12_Update_4-2-10.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND python-setuptools-1.1.7-7.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information xen-4.12.1_04-3.6 is installed OR xen-devel-4.12.1_04-3.6 is installed OR xen-tools-4.12.1_04-3.6 is installed
Definition Synopsis
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed AND Package Information dovecot22-2.2.31-19.17 is installed OR dovecot22-backend-mysql-2.2.31-19.17 is installed OR dovecot22-backend-pgsql-2.2.31-19.17 is installed OR dovecot22-backend-sqlite-2.2.31-19.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2 is installed AND libmusicbrainz4-2.1.5-5.18 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND libicu-4.0-7.28.1 is installed OR libicu-32bit-4.0-7.28.1 is installed OR libicu-doc-4.0-7.28.1 is installed OR libicu-x86-4.0-7.28.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND libicu-4.0-7.28.1 is installed OR libicu-32bit-4.0-7.28.1 is installed OR libicu-doc-4.0-7.28.1 is installed OR libicu-x86-4.0-7.28.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND LibVNCServer-0.9.1-154.24 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information tigervnc-1.3.0-22.3 is installed OR xorg-x11-Xvnc-1.3.0-22.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND perl-Tk-804.031-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND ant-1.9.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND binutils-2.26.1-9.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information alsa-1.0.27.2-15 is installed OR alsa-docs-1.0.27.2-15 is installed OR libasound2-1.0.27.2-15 is installed OR libasound2-32bit-1.0.27.2-15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_55-52_45-default-2-2.3 is installed OR kgraft-patch-3_12_55-52_45-xen-2-2.3 is installed OR kgraft-patch-SLE12_Update_13-2-2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND sudo-1.8.10p3-8 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libproxy-0.4.15-4.3 is installed OR libproxy-devel-0.4.15-4.3 is installed OR libproxy-plugins-0.4.15-4.3 is installed OR libproxy1-0.4.15-4.3 is installed OR perl-Net-Libproxy-0.4.15-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND postgresql91-devel-9.1.15-0.3.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr3.30-9.1 is installed OR java-1_7_1-ibm-devel-1.7.1_sr3.30-9.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND libserf-1-1-1.3.7-1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information DirectFB-devel-1.7.1-4 is installed OR lib++dfb-devel-1.7.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information FastCGI-2.4.0-167 is installed OR perl-FastCGI-2.4.0-167 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information DirectFB-devel-1.7.1-6 is installed OR lib++dfb-devel-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.19 is installed OR kernel-default-extra-4.12.14-25.19 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information libreoffice-6.4.4.2-8.19 is installed OR libreoffice-base-6.4.4.2-8.19 is installed OR libreoffice-base-drivers-postgresql-6.4.4.2-8.19 is installed OR libreoffice-branding-upstream-6.4.4.2-8.19 is installed OR libreoffice-calc-6.4.4.2-8.19 is installed OR libreoffice-calc-extensions-6.4.4.2-8.19 is installed OR libreoffice-draw-6.4.4.2-8.19 is installed OR libreoffice-filters-optional-6.4.4.2-8.19 is installed OR libreoffice-gnome-6.4.4.2-8.19 is installed OR libreoffice-gtk3-6.4.4.2-8.19 is installed OR libreoffice-icon-themes-6.4.4.2-8.19 is installed OR libreoffice-impress-6.4.4.2-8.19 is installed OR libreoffice-l10n-af-6.4.4.2-8.19 is installed OR libreoffice-l10n-ar-6.4.4.2-8.19 is installed OR libreoffice-l10n-as-6.4.4.2-8.19 is installed OR libreoffice-l10n-bg-6.4.4.2-8.19 is installed OR libreoffice-l10n-bn-6.4.4.2-8.19 is installed OR libreoffice-l10n-br-6.4.4.2-8.19 is installed OR libreoffice-l10n-ca-6.4.4.2-8.19 is installed OR libreoffice-l10n-cs-6.4.4.2-8.19 is installed OR libreoffice-l10n-cy-6.4.4.2-8.19 is installed OR libreoffice-l10n-da-6.4.4.2-8.19 is installed OR libreoffice-l10n-de-6.4.4.2-8.19 is installed OR libreoffice-l10n-dz-6.4.4.2-8.19 is installed OR libreoffice-l10n-el-6.4.4.2-8.19 is installed OR libreoffice-l10n-en-6.4.4.2-8.19 is installed OR libreoffice-l10n-eo-6.4.4.2-8.19 is installed OR libreoffice-l10n-es-6.4.4.2-8.19 is installed OR libreoffice-l10n-et-6.4.4.2-8.19 is installed OR libreoffice-l10n-eu-6.4.4.2-8.19 is installed OR libreoffice-l10n-fa-6.4.4.2-8.19 is installed OR libreoffice-l10n-fi-6.4.4.2-8.19 is installed OR libreoffice-l10n-fr-6.4.4.2-8.19 is installed OR libreoffice-l10n-ga-6.4.4.2-8.19 is installed OR libreoffice-l10n-gl-6.4.4.2-8.19 is installed OR libreoffice-l10n-gu-6.4.4.2-8.19 is installed OR libreoffice-l10n-he-6.4.4.2-8.19 is installed OR libreoffice-l10n-hi-6.4.4.2-8.19 is installed OR libreoffice-l10n-hr-6.4.4.2-8.19 is installed OR libreoffice-l10n-hu-6.4.4.2-8.19 is installed OR libreoffice-l10n-it-6.4.4.2-8.19 is installed OR libreoffice-l10n-ja-6.4.4.2-8.19 is installed OR libreoffice-l10n-kk-6.4.4.2-8.19 is installed OR libreoffice-l10n-kn-6.4.4.2-8.19 is installed OR libreoffice-l10n-ko-6.4.4.2-8.19 is installed OR libreoffice-l10n-lt-6.4.4.2-8.19 is installed OR libreoffice-l10n-lv-6.4.4.2-8.19 is installed OR libreoffice-l10n-mai-6.4.4.2-8.19 is installed OR libreoffice-l10n-ml-6.4.4.2-8.19 is installed OR libreoffice-l10n-mr-6.4.4.2-8.19 is installed OR libreoffice-l10n-nb-6.4.4.2-8.19 is installed OR libreoffice-l10n-nl-6.4.4.2-8.19 is installed OR libreoffice-l10n-nn-6.4.4.2-8.19 is installed OR libreoffice-l10n-nr-6.4.4.2-8.19 is installed OR libreoffice-l10n-nso-6.4.4.2-8.19 is installed OR libreoffice-l10n-or-6.4.4.2-8.19 is installed OR libreoffice-l10n-pa-6.4.4.2-8.19 is installed OR libreoffice-l10n-pl-6.4.4.2-8.19 is installed OR libreoffice-l10n-pt_BR-6.4.4.2-8.19 is installed OR libreoffice-l10n-pt_PT-6.4.4.2-8.19 is installed OR libreoffice-l10n-ro-6.4.4.2-8.19 is installed OR libreoffice-l10n-ru-6.4.4.2-8.19 is installed OR libreoffice-l10n-si-6.4.4.2-8.19 is installed OR libreoffice-l10n-sk-6.4.4.2-8.19 is installed OR libreoffice-l10n-sl-6.4.4.2-8.19 is installed OR libreoffice-l10n-sr-6.4.4.2-8.19 is installed OR libreoffice-l10n-ss-6.4.4.2-8.19 is installed OR libreoffice-l10n-st-6.4.4.2-8.19 is installed OR libreoffice-l10n-sv-6.4.4.2-8.19 is installed OR libreoffice-l10n-ta-6.4.4.2-8.19 is installed OR libreoffice-l10n-te-6.4.4.2-8.19 is installed OR libreoffice-l10n-th-6.4.4.2-8.19 is installed OR libreoffice-l10n-tn-6.4.4.2-8.19 is installed OR libreoffice-l10n-tr-6.4.4.2-8.19 is installed OR libreoffice-l10n-ts-6.4.4.2-8.19 is installed OR libreoffice-l10n-uk-6.4.4.2-8.19 is installed OR libreoffice-l10n-ve-6.4.4.2-8.19 is installed OR libreoffice-l10n-xh-6.4.4.2-8.19 is installed OR libreoffice-l10n-zh_CN-6.4.4.2-8.19 is installed OR libreoffice-l10n-zh_TW-6.4.4.2-8.19 is installed OR libreoffice-l10n-zu-6.4.4.2-8.19 is installed OR libreoffice-librelogo-6.4.4.2-8.19 is installed OR libreoffice-mailmerge-6.4.4.2-8.19 is installed OR libreoffice-math-6.4.4.2-8.19 is installed OR libreoffice-officebean-6.4.4.2-8.19 is installed OR libreoffice-pyuno-6.4.4.2-8.19 is installed OR libreoffice-writer-6.4.4.2-8.19 is installed OR libreoffice-writer-extensions-6.4.4.2-8.19 is installed OR libreofficekit-6.4.4.2-8.19 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information libEMF-1.0.7-3.3 is installed OR libEMF1-1.0.7-3.3 is installed

BACK