Oval Definition:oval:org.opensuse.security:def:50295
Revision Date:2020-12-01Version:1
Title:Security update for xen (Important)
Description:

This update for xen fixes the following security issues:

- CVE-2018-3646: Systems with microprocessors utilizing speculative execution and address translations may have allowed unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis (bsc#1091107, bsc#1027519). - Incorrect MSR_DEBUGCTL handling let guests enable BTS allowing a malicious or buggy guest administrator can lock up the entire host (bsc#1103276)
Family:unixClass:patch
Status:Reference(s):1005023
1027519
1045723
1046299
1046303
1046305
1050244
1050536
1050545
1051510
1051979
1055186
1058115
1061840
1064802
1065600
1065729
1066110
1066129
1071995
1073513
1076696
1077761
1080919
1081917
1082635
1083548
1083647
1085030
1086274
1086288
1086314
1086315
1086317
1086323
1086327
1086331
1086906
1087081
1087092
1089343
1089644
1090631
1090888
1091107
1093205
1093753
1096254
1097104
1097577
1097583
1097584
1097585
1097586
1097587
1097588
1097808
1098291
1099358
1099811
1099813
1099844
1099845
1099846
1099849
1099858
1099863
1099864
1100132
1101116
1101331
1101591
1101669
1101674
1101822
1101828
1101832
1101833
1101837
1101839
1101841
1101843
1101844
1101845
1101847
1101852
1101853
1101867
1101872
1101874
1101875
1101882
1101883
1101885
1101887
1101890
1101891
1101893
1101895
1101896
1101900
1101902
1101903
1102633
1102658
1103097
1103269
1103276
1103277
1103320
1103356
1103363
1103421
1103445
1103517
1103723
1103724
1103725
1103726
1103727
1103728
1103729
1103730
1103886
1103917
1103920
1103948
1103949
1104066
1104111
1104174
1104211
1104319
1104353
1104365
1104427
1104494
1104495
1104708
1104777
1104897
1107832
1109158
1110233
1111498
1111666
1112142
1112143
1112144
1112146
1112147
1112148
1112152
1112153
1112178
1113956
1113994
1114279
1114933
1115722
1115723
1115724
1115929
1117063
1117665
1119461
1119465
1119971
1120163
1120323
1122193
1123034
1123080
1129124
1133021
1133140
1134303
1135642
1135854
1135873
1135967
1136440
1136666
1137040
1137799
1137861
1138190
1140090
1140729
1140845
1140883
1141600
1141688
1142635
1142667
1142988
1143706
1144333
1144338
1144363
1144375
1144449
1144903
1145099
1146111
1146115
1146123
1146612
1148410
1149119
1149853
1150452
1150457
1150465
1150875
1151488
1151508
1151807
1152033
1152148
1152624
1152665
1152685
1152696
1152697
1152788
1152790
1152791
1153112
1153158
1153236
1153263
1153332
1153476
1153509
1153607
1153646
1153681
1153713
1153717
1153718
1153719
1153811
1153969
1154092
1154108
1154189
1154242
1154268
1154354
1154372
1154521
1154578
1154607
1154608
1154610
1154611
1154651
1154737
1154747
1154848
1154858
1154905
1154956
1155061
1155178
1155179
1155184
1155186
1155671
1158809
1163524
1165629
1165631
1166965
1169790
1170232
1171558
1171688
1171988
1172073
1172108
1172175
1172176
1172247
1172418
1172428
1172871
1172872
1172873
1172963
1173060
1173485
1173786
1173798
1173954
1174003
1174026
1174070
1174205
1174247
1174387
1174484
1174547
1174549
1174550
1174625
1174658
1174685
1174689
1174699
1174734
1174757
1174771
1174840
1174841
1174843
1174844
1174845
1174852
1174873
1174904
1174926
1174968
1175062
1175063
1175064
1175065
1175066
1175067
1175112
1175127
1175128
1175149
1175199
1175213
1175228
1175232
1175284
1175393
1175394
1175396
1175397
1175398
1175399
1175400
1175401
1175402
1175403
1175404
1175405
1175406
1175407
1175408
1175409
1175410
1175411
1175412
1175413
1175414
1175415
1175416
1175417
1175418
1175419
1175420
1175421
1175422
1175423
1175440
1175493
1175515
1175518
1175526
1175550
1175654
1175666
1175667
1175668
1175669
1175670
1175691
1175767
1175768
1175769
1175770
1175771
1175772
1175786
1175873
1176069
1177351
1177352
CVE-2018-10853
CVE-2018-10876
CVE-2018-10877
CVE-2018-10878
CVE-2018-10879
CVE-2018-10880
CVE-2018-10881
CVE-2018-10882
CVE-2018-10883
CVE-2018-12207
CVE-2018-13785
CVE-2018-14633
CVE-2018-16301
CVE-2018-16435
CVE-2018-16864
CVE-2018-16865
CVE-2018-16866
CVE-2018-17182
CVE-2018-19198
CVE-2018-19199
CVE-2018-19200
CVE-2018-19211
CVE-2018-20721
CVE-2018-3136
CVE-2018-3139
CVE-2018-3149
CVE-2018-3169
CVE-2018-3180
CVE-2018-3183
CVE-2018-3214
CVE-2018-3620
CVE-2018-3646
CVE-2018-3646
CVE-2018-5391
CVE-2018-6954
CVE-2019-0816
CVE-2019-10220
CVE-2019-11135
CVE-2019-14809
CVE-2019-15165
CVE-2019-1551
CVE-2019-16232
CVE-2019-16233
CVE-2019-16234
CVE-2019-16995
CVE-2019-17056
CVE-2019-17133
CVE-2019-17666
CVE-2019-9512
CVE-2019-9514
CVE-2020-10135
CVE-2020-11076
CVE-2020-11077
CVE-2020-14314
CVE-2020-14331
CVE-2020-14331
CVE-2020-14356
CVE-2020-14386
CVE-2020-16166
CVE-2020-1749
CVE-2020-1749
CVE-2020-24394
CVE-2020-7069
CVE-2020-7070
SUSE-SU-2018:2409-1
SUSE-SU-2018:2450-1
SUSE-SU-2018:3272-1
SUSE-SU-2018:4000-1
SUSE-SU-2019:0058-1
SUSE-SU-2019:0137-1
SUSE-SU-2019:0228-1
SUSE-SU-2019:2213-1
SUSE-SU-2019:2673-1
SUSE-SU-2019:2952-1
SUSE-SU-2019:3096-1
SUSE-SU-2020:0064-1
SUSE-SU-2020:2534-1
Platform(s):SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Basesystem 15
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Public Cloud 15
SUSE Linux Enterprise Module for Public Cloud 15 SP1
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE Linux Enterprise Workstation Extension 15 SP2
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • compat-openssl097g-0.9.7g-146.22 is installed
  • OR compat-openssl097g-32bit-0.9.7g-146.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • flash-player-11.2.202.521-0.17 is installed
  • OR flash-player-gnome-11.2.202.521-0.17 is installed
  • OR flash-player-kde4-11.2.202.521-0.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • avahi-0.6.31-20 is installed
  • OR avahi-lang-0.6.31-20 is installed
  • OR libavahi-client3-0.6.31-20 is installed
  • OR libavahi-client3-32bit-0.6.31-20 is installed
  • OR libavahi-common3-0.6.31-20 is installed
  • OR libavahi-common3-32bit-0.6.31-20 is installed
  • OR libavahi-core7-0.6.31-20 is installed
  • OR libdns_sd-0.6.31-20 is installed
  • OR libdns_sd-32bit-0.6.31-20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • cpio-2.11-29 is installed
  • OR cpio-lang-2.11-29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • cpio-2.11-29 is installed
  • OR cpio-lang-2.11-29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • empathy-3.12.12-7 is installed
  • OR empathy-lang-3.12.12-7 is installed
  • OR telepathy-mission-control-plugin-goa-3.12.12-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • colord-1.3.3-12 is installed
  • OR colord-gtk-lang-0.1.26-6 is installed
  • OR colord-lang-1.3.3-12 is installed
  • OR libcolord-gtk1-0.1.26-6 is installed
  • OR libcolord2-1.3.3-12 is installed
  • OR libcolord2-32bit-1.3.3-12 is installed
  • OR libcolorhug2-1.3.3-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 is installed
  • AND Package Information
  • xen-4.10.1_08-3.6 is installed
  • OR xen-libs-4.10.1_08-3.6 is installed
  • OR xen-tools-domU-4.10.1_08-3.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-25_3-default-5-2 is installed
  • OR kernel-livepatch-SLE15_Update_1-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-197_48-default-2-2 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_13-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • libsystemd0-mini-234-24.20 is installed
  • OR libudev-mini-devel-234-24.20 is installed
  • OR libudev-mini1-234-24.20 is installed
  • OR nss-myhostname-234-24.20 is installed
  • OR nss-mymachines-234-24.20 is installed
  • OR nss-systemd-234-24.20 is installed
  • OR systemd-234-24.20 is installed
  • OR systemd-logger-234-24.20 is installed
  • OR systemd-mini-234-24.20 is installed
  • OR systemd-mini-bash-completion-234-24.20 is installed
  • OR systemd-mini-container-mini-234-24.20 is installed
  • OR systemd-mini-coredump-mini-234-24.20 is installed
  • OR systemd-mini-devel-234-24.20 is installed
  • OR systemd-mini-sysvinit-234-24.20 is installed
  • OR udev-mini-234-24.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • go1.11-1.11.13-1.18 is installed
  • OR go1.11-doc-1.11.13-1.18 is installed
  • OR go1.11-race-1.11.13-1.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • ruby2.5-rubygem-puma-doc-4.3.5-3.3 is installed
  • OR rubygem-puma-4.3.5-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 is installed
  • AND Package Information
  • kernel-azure-4.12.14-5.13 is installed
  • OR kernel-azure-base-4.12.14-5.13 is installed
  • OR kernel-azure-devel-4.12.14-5.13 is installed
  • OR kernel-devel-azure-4.12.14-5.13 is installed
  • OR kernel-source-azure-4.12.14-5.13 is installed
  • OR kernel-syms-azure-4.12.14-5.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed
  • AND Package Information
  • kernel-azure-4.12.14-8.19 is installed
  • OR kernel-azure-base-4.12.14-8.19 is installed
  • OR kernel-azure-devel-4.12.14-8.19 is installed
  • OR kernel-devel-azure-4.12.14-8.19 is installed
  • OR kernel-source-azure-4.12.14-8.19 is installed
  • OR kernel-syms-azure-4.12.14-8.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND yast2-rmt-1.2.2-3.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND squid-4.11-5.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND Package Information
  • xen-4.13.1_08-3.10 is installed
  • OR xen-devel-4.13.1_08-3.10 is installed
  • OR xen-tools-4.13.1_08-3.10 is installed
  • OR xen-tools-xendomains-wait-disk-4.13.1_08-3.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND Package Information
  • nodejs8-8.15.1-3.14 is installed
  • OR nodejs8-devel-8.15.1-3.14 is installed
  • OR nodejs8-docs-8.15.1-3.14 is installed
  • OR npm8-8.15.1-3.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • cyrus-sasl-2.1.26-7 is installed
  • OR cyrus-sasl-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-crammd5-2.1.26-7 is installed
  • OR cyrus-sasl-crammd5-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-digestmd5-2.1.26-7 is installed
  • OR cyrus-sasl-gssapi-2.1.26-7 is installed
  • OR cyrus-sasl-gssapi-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-otp-2.1.26-7 is installed
  • OR cyrus-sasl-otp-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-plain-2.1.26-7 is installed
  • OR cyrus-sasl-plain-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-saslauthd-2.1.26-7 is installed
  • OR cyrus-sasl-sqlauxprop-2.1.26-7 is installed
  • OR cyrus-sasl-sqlauxprop-32bit-2.1.26-7 is installed
  • OR libsasl2-3-2.1.26-7 is installed
  • OR libsasl2-3-32bit-2.1.26-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • xen-4.5.5_24-22.49 is installed
  • OR xen-doc-html-4.5.5_24-22.49 is installed
  • OR xen-kmp-default-4.5.5_24_k3.12.74_60.64.93-22.49 is installed
  • OR xen-libs-4.5.5_24-22.49 is installed
  • OR xen-libs-32bit-4.5.5_24-22.49 is installed
  • OR xen-tools-4.5.5_24-22.49 is installed
  • OR xen-tools-domU-4.5.5_24-22.49 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • bzip2-1.0.6-29 is installed
  • OR bzip2-doc-1.0.6-29 is installed
  • OR libbz2-1-1.0.6-29 is installed
  • OR libbz2-1-32bit-1.0.6-29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libvirt-2.0.0-27.45 is installed
  • OR libvirt-client-2.0.0-27.45 is installed
  • OR libvirt-daemon-2.0.0-27.45 is installed
  • OR libvirt-daemon-config-network-2.0.0-27.45 is installed
  • OR libvirt-daemon-config-nwfilter-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-interface-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-libxl-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-lxc-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-network-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-nodedev-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-nwfilter-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-qemu-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-secret-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-storage-2.0.0-27.45 is installed
  • OR libvirt-daemon-hooks-2.0.0-27.45 is installed
  • OR libvirt-daemon-lxc-2.0.0-27.45 is installed
  • OR libvirt-daemon-qemu-2.0.0-27.45 is installed
  • OR libvirt-daemon-xen-2.0.0-27.45 is installed
  • OR libvirt-doc-2.0.0-27.45 is installed
  • OR libvirt-lock-sanlock-2.0.0-27.45 is installed
  • OR libvirt-nss-2.0.0-27.45 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_59-92_20-default-12-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_8-12-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • apache-commons-beanutils-1.9.2-1 is installed
  • OR apache-commons-beanutils-javadoc-1.9.2-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • ghostscript-9.27-23.28 is installed
  • OR ghostscript-x11-9.27-23.28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND perl-DBI-1.639-3.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND permissions-20180125-3.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • MozillaThunderbird-68.2.1-3.58 is installed
  • OR MozillaThunderbird-translations-common-68.2.1-3.58 is installed
  • OR MozillaThunderbird-translations-other-68.2.1-3.58 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
  • AND Package Information
  • freerdp-2.1.2-15.7 is installed
  • OR freerdp-devel-2.1.2-15.7 is installed
  • OR libfreerdp2-2.1.2-15.7 is installed
  • OR libwinpr2-2.1.2-15.7 is installed
  • OR winpr2-devel-2.1.2-15.7 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND sudo-1.8.10p3-2.16 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • openstack-aodh-3.0.4~a0~dev1-2.3 is installed
  • OR openstack-aodh-api-3.0.4~a0~dev1-2.3 is installed
  • OR openstack-aodh-doc-3.0.4~a0~dev1-2.3 is installed
  • OR openstack-aodh-evaluator-3.0.4~a0~dev1-2.3 is installed
  • OR openstack-aodh-expirer-3.0.4~a0~dev1-2.3 is installed
  • OR openstack-aodh-listener-3.0.4~a0~dev1-2.3 is installed
  • OR openstack-aodh-notifier-3.0.4~a0~dev1-2.3 is installed
  • OR python-aodh-3.0.4~a0~dev1-2.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libsolv-0.6.36-2.16 is installed
  • OR libsolv-tools-0.6.36-2.16 is installed
  • OR libzypp-16.20.0-2.39 is installed
  • OR perl-solv-0.6.36-2.16 is installed
  • OR python-solv-0.6.36-2.16 is installed
  • OR zypper-1.13.51-21.26 is installed
  • OR zypper-log-1.13.51-21.26 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.50-38.41 is installed
    • BACK