Oval Definition:	oval:org.opensuse.security:def:4923
Revision Date: 2020-12-02 Version: 1 Title: Security update for qemu (Important) Description: This update for qemu fixes the following issues: - CVE-2020-7039: Fixed a heap buffer overflow in tcp_emu() routine while emulating IRC and other protocols (bsc#1161066). - CVE-2019-15034: Fixed a buffer overflow in hw/display/bochs-display.c due to improper PCI config space allocation (bsc#1166379). - CVE-2020-1711: Fixed an out of bounds heap buffer access iscsi_co_block_status() routine which could have allowed a remote denial of service or arbitrary code with privileges of the QEMU process on the host (bsc#1166240). - CVE-2019-6778: Fixed a heap buffer overflow in tcp_emu() routine while emulating the identification protocol and copying message data to a socket buffer (bsc#1123156). - CVE-2020-8608: Fixed a heap buffer overflow in tcp_emu() routine while emulating IRC and other protocols (bsc#1163018). - CVE-2019-20382: Fixed a memory leak in the VNC display driver which could have led to exhaustion of the host memory leading to a potential Denial of service (bsc#1165776). - Fixed a live migration error (bsc#1154790). - Fixed an issue where migrating VMs on KVM gets missing features:ospke error (bsc#1162729). Family: unix Class: patch Status: Reference(s): 1012382 1013721 1013732 1050242 1051510 1053043 1054914 1055117 1055186 1056787 1058115 1061840 1063638 1064802 1065600 1065729 1066129 1068546 1071995 1075020 1082387 1082555 1083647 1085535 1099658 1103992 1104353 1104427 1104967 1106011 1106284 1108193 1108838 1108937 1109158 1110946 1111696 1112063 1113722 1114279 1114427 1115688 1117158 1117561 1118139 1119086 1119843 1120091 1120423 1120566 1120843 1120902 1122776 1123034 1123156 1123454 1123663 1124503 1124839 1126356 1127616 1127988 1128052 1128904 1128979 1129138 1129273 1129497 1129693 1129770 1130579 1130699 1130972 1131304 1131326 1131451 1131488 1131565 1131673 1132044 1133176 1133188 1133190 1133320 1133612 1133616 1134160 1134162 1134199 1134200 1134201 1134202 1134203 1134204 1134205 1134354 1134393 1134459 1134460 1134461 1134537 1134597 1134651 1134671 1134760 1134806 1134810 1134813 1134848 1134936 1135006 1135007 1135008 1135056 1135100 1135120 1135278 1135281 1135309 1135312 1135314 1135315 1135316 1135320 1135323 1135330 1135492 1135542 1135556 1135603 1135642 1135661 1135758 1136206 1136424 1136428 1136430 1136432 1136434 1136435 1136438 1136439 1136477 1136478 1136573 1136586 1136881 1136935 1136990 1137069 1137151 1137152 1137153 1137162 1137372 1137444 1137586 1137595 1137739 1137752 1137865 1137959 1138872 1140155 1141013 1142076 1142635 1142825 1142832 1142835 1146042 1146519 1146540 1146664 1148133 1148712 1148868 1149313 1149446 1149555 1149651 1150381 1150423 1151350 1151610 1151667 1151680 1151891 1151955 1152024 1152025 1152026 1152161 1152325 1152457 1152460 1152466 1152972 1152974 1152975 1154790 1155419 1160471 1161066 1162729 1163018 1165776 1166240 1166379 1170441 1173157 1174139 1174955 1175465 1176430 1177155 CVE-2007-4129 CVE-2008-1420 CVE-2009-2473 CVE-2009-2474 CVE-2009-3379 CVE-2011-2054 CVE-2012-0444 CVE-2012-4453 CVE-2013-2003 CVE-2014-0105 CVE-2016-9800 CVE-2016-9801 CVE-2017-18595 CVE-2018-7191 CVE-2019-10124 CVE-2019-10181 CVE-2019-10182 CVE-2019-10185 CVE-2019-11085 CVE-2019-11477 CVE-2019-11478 CVE-2019-11479 CVE-2019-11486 CVE-2019-11487 CVE-2019-11703 CVE-2019-11704 CVE-2019-11705 CVE-2019-11706 CVE-2019-11707 CVE-2019-11708 CVE-2019-11815 CVE-2019-11833 CVE-2019-11884 CVE-2019-12382 CVE-2019-14821 CVE-2019-15034 CVE-2019-15291 CVE-2019-15681 CVE-2019-15690 CVE-2019-20382 CVE-2019-20788 CVE-2019-3846 CVE-2019-5489 CVE-2019-6778 CVE-2019-9506 CVE-2020-15708 CVE-2020-1711 CVE-2020-25637 CVE-2020-7039 CVE-2020-8608 SUSE-SU-2018:4189-1 SUSE-SU-2019:1529-1 SUSE-SU-2019:1683-1 SUSE-SU-2019:2033-1 SUSE-SU-2019:2706-1 SUSE-SU-2020:0844-1 SUSE-SU-2020:1164-1 SUSE-SU-2020:2970-1 Platform(s): SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 5 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information python-keystoneclient-1.0.0-14 is installed OR python-keystoneclient-doc-1.0.0-14 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND cabextract-1.2-2.12.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND coolkey-1.1.0-147 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information dia-0.97.2-13 is installed OR dia-lang-0.97.2-13 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND argyllcms-1.6.3-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information cracklib-2.9.0-7 is installed OR libcrack2-2.9.0-7 is installed OR libcrack2-32bit-2.9.0-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information cups-1.7.5-20.17 is installed OR cups-client-1.7.5-20.17 is installed OR cups-libs-1.7.5-20.17 is installed OR cups-libs-32bit-1.7.5-20.17 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 is installed AND Package Information conntrack-tools-1.4.2-5.2 is installed OR libnetfilter_cthelper-1.0.0-7.1 is installed OR libnetfilter_cthelper0-1.0.0-7.1 is installed OR libnetfilter_cttimeout-1.0.0-9.1 is installed OR libnetfilter_cttimeout1-1.0.0-9.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP1 is installed AND hawk2-1.0.1+git.1456406635.49e230d-12.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND ruby2.1-rubygem-bundler-1.7.3-3 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND conntrack-tools-1.4.2-5 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP5 is installed AND conntrack-tools-1.4.2-5 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information apache-commons-beanutils-1.9.2-3.3 is installed OR apache-commons-beanutils-javadoc-1.9.2-3.3 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_38-44-default-1-2.2 is installed OR kgraft-patch-3_12_38-44-xen-1-2.2 is installed OR kgraft-patch-SLE12_Update_3-1-2.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND Package Information salt-2016.11.4-45.2 is installed OR salt-api-2016.11.4-45.2 is installed OR salt-bash-completion-2016.11.4-45.2 is installed OR salt-cloud-2016.11.4-45.2 is installed OR salt-doc-2016.11.4-45.2 is installed OR salt-master-2016.11.4-45.2 is installed OR salt-minion-2016.11.4-45.2 is installed OR salt-proxy-2016.11.4-45.2 is installed OR salt-ssh-2016.11.4-45.2 is installed OR salt-syndic-2016.11.4-45.2 is installed OR salt-zsh-completion-2016.11.4-45.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 12 is installed AND Package Information ruby2.1-rubygem-rack-1_4-1.4.5-8.10 is installed OR rubygem-rack-1_4-1.4.5-8.10 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information compat-openssl098-0.9.8j-87.1 is installed OR libopenssl0_9_8-0.9.8j-87.1 is installed OR libopenssl0_9_8-32bit-0.9.8j-87.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.48-52.27.1 is installed OR kernel-ec2-devel-3.12.48-52.27.1 is installed OR kernel-ec2-extra-3.12.48-52.27.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information qemu-3.1.1.1-9.14 is installed OR qemu-arm-3.1.1.1-9.14 is installed OR qemu-audio-alsa-3.1.1.1-9.14 is installed OR qemu-audio-oss-3.1.1.1-9.14 is installed OR qemu-audio-pa-3.1.1.1-9.14 is installed OR qemu-block-curl-3.1.1.1-9.14 is installed OR qemu-block-iscsi-3.1.1.1-9.14 is installed OR qemu-block-rbd-3.1.1.1-9.14 is installed OR qemu-block-ssh-3.1.1.1-9.14 is installed OR qemu-guest-agent-3.1.1.1-9.14 is installed OR qemu-ipxe-1.0.0+-9.14 is installed OR qemu-kvm-3.1.1.1-9.14 is installed OR qemu-lang-3.1.1.1-9.14 is installed OR qemu-ppc-3.1.1.1-9.14 is installed OR qemu-s390-3.1.1.1-9.14 is installed OR qemu-seabios-1.12.0-9.14 is installed OR qemu-sgabios-8-9.14 is installed OR qemu-ui-curses-3.1.1.1-9.14 is installed OR qemu-ui-gtk-3.1.1.1-9.14 is installed OR qemu-vgabios-1.12.0-9.14 is installed OR qemu-x86-3.1.1.1-9.14 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information libvirt-6.0.0-13.8 is installed OR libvirt-admin-6.0.0-13.8 is installed OR libvirt-bash-completion-6.0.0-13.8 is installed OR libvirt-client-6.0.0-13.8 is installed OR libvirt-daemon-6.0.0-13.8 is installed OR libvirt-daemon-config-network-6.0.0-13.8 is installed OR libvirt-daemon-config-nwfilter-6.0.0-13.8 is installed OR libvirt-daemon-driver-interface-6.0.0-13.8 is installed OR libvirt-daemon-driver-libxl-6.0.0-13.8 is installed OR libvirt-daemon-driver-lxc-6.0.0-13.8 is installed OR libvirt-daemon-driver-network-6.0.0-13.8 is installed OR libvirt-daemon-driver-nodedev-6.0.0-13.8 is installed OR libvirt-daemon-driver-nwfilter-6.0.0-13.8 is installed OR libvirt-daemon-driver-qemu-6.0.0-13.8 is installed OR libvirt-daemon-driver-secret-6.0.0-13.8 is installed OR libvirt-daemon-driver-storage-6.0.0-13.8 is installed OR libvirt-daemon-driver-storage-core-6.0.0-13.8 is installed OR libvirt-daemon-driver-storage-disk-6.0.0-13.8 is installed OR libvirt-daemon-driver-storage-iscsi-6.0.0-13.8 is installed OR libvirt-daemon-driver-storage-logical-6.0.0-13.8 is installed OR libvirt-daemon-driver-storage-mpath-6.0.0-13.8 is installed OR libvirt-daemon-driver-storage-rbd-6.0.0-13.8 is installed OR libvirt-daemon-driver-storage-scsi-6.0.0-13.8 is installed OR libvirt-daemon-hooks-6.0.0-13.8 is installed OR libvirt-daemon-lxc-6.0.0-13.8 is installed OR libvirt-daemon-qemu-6.0.0-13.8 is installed OR libvirt-daemon-xen-6.0.0-13.8 is installed OR libvirt-devel-6.0.0-13.8 is installed OR libvirt-doc-6.0.0-13.8 is installed OR libvirt-lock-sanlock-6.0.0-13.8 is installed OR libvirt-nss-6.0.0-13.8 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND squid-2.7.STABLE5-2.10.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND librsvg-2.26.0-2.5.1 is installed OR librsvg-32bit-2.26.0-2.5.1 is installed OR librsvg-x86-2.26.0-2.5.1 is installed OR rsvg-view-2.26.0-2.5.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND librsvg-2.26.0-2.5.1 is installed OR librsvg-32bit-2.26.0-2.5.1 is installed OR librsvg-x86-2.26.0-2.5.1 is installed OR rsvg-view-2.26.0-2.5.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information MozillaFirefox-17.0.4esr-0.10.42 is installed OR MozillaFirefox-translations-17.0.4esr-0.10.42 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information java-1_7_0-openjdk-1.7.0.71-6.2 is installed OR java-1_7_0-openjdk-demo-1.7.0.71-6.2 is installed OR java-1_7_0-openjdk-devel-1.7.0.71-6.2 is installed OR java-1_7_0-openjdk-headless-1.7.0.71-6.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr3.20-18.1 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr3.20-18.1 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr3.20-18.1 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr3.20-18.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information alsa-1.0.27.2-11 is installed OR alsa-docs-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-36 is installed OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache2-2.4.23-29.24 is installed OR apache2-doc-2.4.23-29.24 is installed OR apache2-example-pages-2.4.23-29.24 is installed OR apache2-prefork-2.4.23-29.24 is installed OR apache2-utils-2.4.23-29.24 is installed OR apache2-worker-2.4.23-29.24 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_55-52_42-default-2-2.2 is installed OR kgraft-patch-3_12_55-52_42-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_12-2-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information libX11-1.6.2-8 is installed OR libX11-6-1.6.2-8 is installed OR libX11-data-1.6.2-8 is installed OR libX11-xcb1-1.6.2-8 is installed OR libXfixes-5.0.1-7 is installed OR libXfixes3-5.0.1-7 is installed OR libXi-1.7.4-14 is installed OR libXi6-1.7.4-14 is installed OR libXrender-0.9.8-7 is installed OR libXrender1-0.9.8-7 is installed OR libXtst-1.2.2-7 is installed OR libXtst6-1.2.2-7 is installed OR libXv-1.0.10-7 is installed OR libXv1-1.0.10-7 is installed OR libXvMC-1.0.8-7 is installed OR libXvMC1-1.0.8-7 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information GraphicsMagick-1.2.5-4.35.1 is installed OR libGraphicsMagick2-1.2.5-4.35.1 is installed OR perl-GraphicsMagick-1.2.5-4.35.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information binutils-devel-2.25.0-13 is installed OR binutils-gold-2.25.0-13 is installed OR cross-ppc-binutils-2.25.0-13 is installed OR cross-spu-binutils-2.25.0-13 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information DirectFB-devel-1.7.1-6 is installed OR lib++dfb-devel-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information DirectFB-devel-1.7.1-6 is installed OR lib++dfb-devel-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information libssh-0.6.3-4.1 is installed OR libssh4-0.6.3-4.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information bluez-5.48-5.8 is installed OR bluez-cups-5.48-5.8 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-60.7.2-3.43 is installed OR MozillaThunderbird-translations-common-60.7.2-3.43 is installed OR MozillaThunderbird-translations-other-60.7.2-3.43 is installed
BACK