OVAL Reference oval:org.opensuse.security:def:50299

Oval Definition:

oval:org.opensuse.security:def:50299

Revision Date:	2020-12-01	Version:	1
Title:	Security update for qemu (Moderate)
Description:	This update for qemu fixes the following issues: This security issue was fixed: - CVE-2018-12617: qmp_guest_file_read had an integer overflow that could have been exploited by sending a crafted QMP command (including guest-file-read with a large count value) to the agent via the listening socket causing DoS (bsc#1098735) These non-security issues were fixed: - Allow kvm group access to /dev/sev (bsc#1102604). - Fix for the value used for reduced_phys_bits. Please update the reduced_phys_bits value used on the commandline or in libvirt XML to the value 1 (explicitly set now in QEMU code). (bsc#1103628) - Fix (again) the qemu guest agent udev rule file, which got unfixed in a series of unfortunate events (bsc#1094898 and now bsc#1105279)
Family:	unix	Class:	patch
Status:		Reference(s):	1012382 1050242 1051510 1053043 1055186 1056787 1058115 1061840 1063638 1064802 1065600 1065729 1066129 1068546 1071995 1075020 1076530 1082387 1082555 1083647 1085535 1089895 1094898 1096368 1098735 1099658 1100687 1102604 1103628 1103990 1103991 1103992 1104353 1104427 1104745 1105279 1105606 1106011 1106284 1106699 1107832 1108193 1108474 1108838 1108937 1109837 1110233 1110946 1111666 1111696 1112063 1112178 1112374 1113722 1113956 1114279 1114427 1114529 1115688 1117158 1117561 1118139 1119069 1119843 1120091 1120374 1120423 1120566 1120843 1120902 1121624 1122776 1122983 1123454 1123663 1124211 1124278 1124503 1124839 1125410 1126356 1127354 1127355 1127371 1127616 1128052 1128904 1128979 1129138 1129273 1129497 1129693 1129770 1130579 1130699 1130972 1131326 1131451 1131488 1131565 1131673 1132044 1133021 1133176 1133188 1133190 1133320 1133612 1133616 1134160 1134162 1134199 1134200 1134201 1134202 1134203 1134204 1134205 1134354 1134393 1134459 1134460 1134461 1134537 1134597 1134651 1134671 1134760 1134806 1134810 1134813 1134848 1134936 1135006 1135007 1135008 1135056 1135100 1135120 1135278 1135281 1135309 1135312 1135314 1135315 1135316 1135320 1135323 1135330 1135492 1135542 1135556 1135603 1135642 1135661 1135758 1136206 1136424 1136428 1136430 1136432 1136434 1136435 1136438 1136439 1136477 1136478 1136573 1136586 1136881 1136935 1136990 1137151 1137152 1137153 1137162 1137372 1137444 1137586 1137739 1137752 1140683 1142685 1144333 1146657 1148987 1151794 1152489 1154824 1157169 1158265 1160388 1160947 1164780 1164871 1165183 1165478 1165548 1165741 1166969 1166978 1167574 1167851 1167867 1168332 1168670 1168789 1169020 1169514 1169525 1169762 1169978 1170056 1170125 1170145 1170284 1170345 1170457 1170522 1170592 1170617 1170618 1170620 1170621 1170770 1170778 1170791 1170901 1171078 1171098 1171118 1171189 1171191 1171195 1171202 1171205 1171214 1171217 1171218 1171219 1171220 1171244 1171293 1171417 1171527 1171599 1171600 1171601 1171602 1171604 1171605 1171606 1171607 1171608 1171609 1171610 1171611 1171612 1171613 1171614 1171615 1171616 1171617 1171618 1171619 1171620 1171621 1171622 1171623 1171624 1171625 1171626 1171662 1171679 1171691 1171692 1171694 1171695 1171736 1171817 1171948 1171949 1171951 1171952 1171979 1171982 1171983 1172004 1172017 1172096 1172097 1172098 1172099 1172101 1172102 1172103 1172104 1172127 1172130 1172185 1172188 1172199 1172201 1172202 1172221 1172249 1172251 1172317 1172342 1172343 1172344 1172366 1172378 1172391 1172397 1172453 1172538 1173258 1174748 1175520 1176400 1176946 1177027 1177340 1177409 1177412 1177413 1177414 1177511 1177685 1177724 1177725 CVE-2017-15134 CVE-2017-15135 CVE-2018-1000199 CVE-2018-10850 CVE-2018-10935 CVE-2018-12404 CVE-2018-12617 CVE-2018-13785 CVE-2018-14624 CVE-2018-14633 CVE-2018-16847 CVE-2018-17182 CVE-2018-18500 CVE-2018-18501 CVE-2018-18505 CVE-2018-7191 CVE-2019-10086 CVE-2019-10124 CVE-2019-11085 CVE-2019-11477 CVE-2019-11478 CVE-2019-11479 CVE-2019-11486 CVE-2019-11487 CVE-2019-11815 CVE-2019-11833 CVE-2019-11884 CVE-2019-12382 CVE-2019-13627 CVE-2019-19462 CVE-2019-19727 CVE-2019-20806 CVE-2019-20812 CVE-2019-3824 CVE-2019-3846 CVE-2019-5489 CVE-2019-7317 CVE-2019-9455 CVE-2020-0543 CVE-2020-10690 CVE-2020-10711 CVE-2020-10720 CVE-2020-10732 CVE-2020-10751 CVE-2020-10757 CVE-2020-12114 CVE-2020-12351 CVE-2020-12352 CVE-2020-12464 CVE-2020-12652 CVE-2020-12653 CVE-2020-12654 CVE-2020-12655 CVE-2020-12656 CVE-2020-12657 CVE-2020-12659 CVE-2020-12693 CVE-2020-12768 CVE-2020-12769 CVE-2020-13143 CVE-2020-25645 CVE-2020-27670 CVE-2020-27671 CVE-2020-27672 CVE-2020-27673 CVE-2020-8903 CVE-2020-8907 CVE-2020-8933 SUSE-SU-2018:2679-1 SUSE-SU-2018:4086-1 SUSE-SU-2019:0273-1 SUSE-SU-2019:0639-1 SUSE-SU-2019:1207-2 SUSE-SU-2019:1398-1 SUSE-SU-2019:1535-1 SUSE-SU-2019:2245-1 SUSE-SU-2019:2349-1 SUSE-SU-2020:1213-1 SUSE-SU-2020:1604-1 SUSE-SU-2020:2972-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Public Cloud 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information dhcp-4.2.4.P2-0.11.13 is installed OR dhcp-client-4.2.4.P2-0.11.13 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information flash-player-11.2.202.554-0.29 is installed OR flash-player-gnome-11.2.202.554-0.29 is installed OR flash-player-kde4-11.2.202.554-0.29 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information bzip2-1.0.6-27 is installed OR libbz2-1-1.0.6-27 is installed OR libbz2-1-32bit-1.0.6-27 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information cups-filters-1.0.58-8 is installed OR cups-filters-cups-browsed-1.0.58-8 is installed OR cups-filters-foomatic-rip-1.0.58-8 is installed OR cups-filters-ghostscript-1.0.58-8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND ctags-5.8-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND facter-2.4.6-11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information cpp48-4.8.5-31.17 is installed OR gcc48-4.8.5-31.17 is installed OR gcc48-32bit-4.8.5-31.17 is installed OR gcc48-c++-4.8.5-31.17 is installed OR gcc48-gij-4.8.5-31.17 is installed OR gcc48-gij-32bit-4.8.5-31.17 is installed OR gcc48-info-4.8.5-31.17 is installed OR libasan0-4.8.5-31.17 is installed OR libasan0-32bit-4.8.5-31.17 is installed OR libgcj48-4.8.5-31.17 is installed OR libgcj48-32bit-4.8.5-31.17 is installed OR libgcj48-jar-4.8.5-31.17 is installed OR libgcj_bc1-4.8.5-31.17 is installed OR libstdc++48-devel-4.8.5-31.17 is installed OR libstdc++48-devel-32bit-4.8.5-31.17 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information qemu-2.11.2-9.9 is installed OR qemu-tools-2.11.2-9.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-23-default-5-13 is installed OR kernel-livepatch-SLE15_Update_0-5-13 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.64 is installed OR kernel-default-livepatch-4.12.14-197.64 is installed OR kernel-default-livepatch-devel-4.12.14-197.64 is installed OR kernel-livepatch-4_12_14-197_64-default-1-3.3 is installed OR kernel-livepatch-SLE15-SP1_Update_17-1-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information libpng16-1.6.34-3.9 is installed OR libpng16-tools-1.6.34-3.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information 389-ds-1.4.0.3-4.7 is installed OR 389-ds-snmp-1.4.0.3-4.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information google-compute-engine-20190801-4.38 is installed OR google-compute-engine-oslogin-32bit-20190801-4.38 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.30 is installed OR kernel-azure-base-4.12.14-5.30 is installed OR kernel-azure-devel-4.12.14-5.30 is installed OR kernel-devel-azure-4.12.14-5.30 is installed OR kernel-source-azure-4.12.14-5.30 is installed OR kernel-syms-azure-4.12.14-5.30 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information rmt-server-2.5.7-3.15 is installed OR rmt-server-pubcloud-2.5.7-3.15 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 SP2 is installed AND Package Information kernel-azure-5.3.18-18.12 is installed OR kernel-azure-devel-5.3.18-18.12 is installed OR kernel-devel-azure-5.3.18-18.12 is installed OR kernel-source-azure-5.3.18-18.12 is installed OR kernel-syms-azure-5.3.18-18.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information sysstat-12.0.2-3.6 is installed OR sysstat-isag-12.0.2-3.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information dovecot23-2.3.10-11 is installed OR dovecot23-backend-mysql-2.3.10-11 is installed OR dovecot23-backend-pgsql-2.3.10-11 is installed OR dovecot23-backend-sqlite-2.3.10-11 is installed OR dovecot23-devel-2.3.10-11 is installed OR dovecot23-fts-2.3.10-11 is installed OR dovecot23-fts-lucene-2.3.10-11 is installed OR dovecot23-fts-solr-2.3.10-11 is installed OR dovecot23-fts-squat-2.3.10-11 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information rmt-server-2.6.5-3.3 is installed OR rmt-server-config-2.6.5-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs8-8.17.0-3.25 is installed OR nodejs8-devel-8.17.0-3.25 is installed OR nodejs8-docs-8.17.0-3.25 is installed OR npm8-8.17.0-3.25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information dhcp-4.3.3-2 is installed OR dhcp-client-4.3.3-2 is installed OR dhcp-relay-4.3.3-2 is installed OR dhcp-server-4.3.3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information libxml2-2.9.1-26.15 is installed OR libxml2-2-2.9.1-26.15 is installed OR libxml2-2-32bit-2.9.1-26.15 is installed OR libxml2-doc-2.9.1-26.15 is installed OR libxml2-tools-2.9.1-26.15 is installed OR python-libxml2-2.9.1-26.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information MozillaFirefox-45.4.0esr-81 is installed OR MozillaFirefox-translations-45.4.0esr-81 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information openslp-2.0.0-18.15 is installed OR openslp-32bit-2.0.0-18.15 is installed OR openslp-server-2.0.0-18.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-30.33 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_120-92_70-default-3-2 is installed OR kgraft-patch-SLE12-SP2_Update_20-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache2-mod_apparmor-2.8.2-49 is installed OR apparmor-docs-2.8.2-49 is installed OR apparmor-parser-2.8.2-49 is installed OR apparmor-profiles-2.8.2-49 is installed OR apparmor-utils-2.8.2-49 is installed OR libapparmor1-2.8.2-49 is installed OR libapparmor1-32bit-2.8.2-49 is installed OR pam_apparmor-2.8.2-49 is installed OR pam_apparmor-32bit-2.8.2-49 is installed OR perl-apparmor-2.8.2-49 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_156-94_57-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_18-8-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information apache2-2.4.23-29.27 is installed OR apache2-doc-2.4.23-29.27 is installed OR apache2-example-pages-2.4.23-29.27 is installed OR apache2-prefork-2.4.23-29.27 is installed OR apache2-utils-2.4.23-29.27 is installed OR apache2-worker-2.4.23-29.27 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information dpdk-18.11.9-3.25 is installed OR dpdk-devel-18.11.9-3.25 is installed OR dpdk-kmp-default-18.11.9_k4.12.14_150.58-3.25 is installed OR dpdk-thunderx-18.11.9-3.25 is installed OR dpdk-thunderx-devel-18.11.9-3.25 is installed OR dpdk-thunderx-kmp-default-18.11.9_k4.12.14_150.58-3.25 is installed OR dpdk-tools-18.11.9-3.25 is installed OR libdpdk-18_11-18.11.9-3.25 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.2-3.54 is installed OR libwebkit2gtk-4_0-37-2.28.2-3.54 is installed OR libwebkit2gtk3-lang-2.28.2-3.54 is installed OR webkit2gtk-4_0-injected-bundles-2.28.2-3.54 is installed OR webkit2gtk3-2.28.2-3.54 is installed OR webkit2gtk3-devel-2.28.2-3.54 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information freerdp-2.0.0~rc4-10.4 is installed OR freerdp-devel-2.0.0~rc4-10.4 is installed OR libfreerdp2-2.0.0~rc4-10.4 is installed OR libwinpr2-2.0.0~rc4-10.4 is installed OR winpr2-devel-2.0.0~rc4-10.4 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information MozillaThunderbird-68.9.0-3.85 is installed OR MozillaThunderbird-translations-common-68.9.0-3.85 is installed OR MozillaThunderbird-translations-other-68.9.0-3.85 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information bind-9.9.9P1-62 is installed OR bind-chrootenv-9.9.9P1-62 is installed OR bind-devel-9.9.9P1-62 is installed OR bind-doc-9.9.9P1-62 is installed OR bind-libs-9.9.9P1-62 is installed OR bind-libs-32bit-9.9.9P1-62 is installed OR bind-utils-9.9.9P1-62 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information openstack-nova-14.0.10~dev13-4.11 is installed OR openstack-nova-api-14.0.10~dev13-4.11 is installed OR openstack-nova-cells-14.0.10~dev13-4.11 is installed OR openstack-nova-cert-14.0.10~dev13-4.11 is installed OR openstack-nova-compute-14.0.10~dev13-4.11 is installed OR openstack-nova-conductor-14.0.10~dev13-4.11 is installed OR openstack-nova-console-14.0.10~dev13-4.11 is installed OR openstack-nova-consoleauth-14.0.10~dev13-4.11 is installed OR openstack-nova-doc-14.0.10~dev13-4.11 is installed OR openstack-nova-novncproxy-14.0.10~dev13-4.11 is installed OR openstack-nova-placement-api-14.0.10~dev13-4.11 is installed OR openstack-nova-scheduler-14.0.10~dev13-4.11 is installed OR openstack-nova-serialproxy-14.0.10~dev13-4.11 is installed OR openstack-nova-vncproxy-14.0.10~dev13-4.11 is installed OR python-nova-14.0.10~dev13-4.11 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libmysqlclient18-10.0.38-29.27 is installed OR mariadb-10.0.38-29.27 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed

BACK