Oval Definition:oval:org.opensuse.security:def:50376
Revision Date:2020-12-01Version:1
Title:Security update for qemu (Important)
Description:

This update for qemu fixes the following issues:

Security issues fixed:

- CVE-2019-9824: Fixed an information leak in slirp (bsc#1129622) - CVE-2019-8934: Added method to specify whether or not to expose certain ppc64 host information, which can be considered a security issue (bsc#1126455) - CVE-2019-3812: Fixed OOB memory access and information leak in virtual monitor interface (bsc#1125721) - CVE-2018-20815: Fix DOS possibility in device tree processing (bsc#1130675) - Adjust fix for CVE-2019-8934 (bsc#1126455) to match the latest upstream adjustments for the same. Basically now the security fix is to provide a dummy host-model and host-serial value, which overrides getting that value from the host - CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091: Added x86 cpu feature 'md-clear' (bsc#1111331)

Other bugs fixed:

- Use a new approach to handling the file input to -smbios option, which accepts either legacy or per-spec formats regardless of the machine type.
Family:unixClass:patch
Status:Reference(s):1027519
1051510
1055117
1069904
1071995
1073313
1079730
1083647
1083710
1084300
1087289
1095242
1097521
1097522
1097523
1098403
1103991
1104139
1111331
1111388
1111666
1114845
1119222
1120470
1120502
1120503
1120504
1120584
1120589
1122842
1122895
1123080
1124729
1124734
1125721
1126284
1126455
1127034
1127315
1128378
1128525
1129622
1129770
1130675
1133021
1133512
1134097
1134390
1134399
1135335
1135642
1137458
1137534
1137535
1137584
1137609
1137827
1139358
1140133
1140139
1140322
1140652
1140887
1140888
1140889
1140891
1140893
1140903
1140945
1140948
1140954
1140955
1140956
1140957
1140958
1140959
1140960
1140961
1140962
1140964
1140971
1140972
1140992
1141132
1141401
1141402
1141452
1141453
1141454
1141478
1142023
1142112
1142220
1142221
1142265
1142350
1142351
1142354
1142359
1142450
1142701
1142868
1143003
1143105
1143185
1143189
1143191
1143194
1143273
1143507
1153163
1153164
1162224
1162367
1162825
1173274
1176590
CVE-2017-14804
CVE-2017-17740
CVE-2018-11803
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2018-12891
CVE-2018-12892
CVE-2018-12893
CVE-2018-15173
CVE-2018-20544
CVE-2018-20545
CVE-2018-20546
CVE-2018-20547
CVE-2018-20548
CVE-2018-20549
CVE-2018-20815
CVE-2018-20855
CVE-2018-3665
CVE-2018-7738
CVE-2019-11091
CVE-2019-1125
CVE-2019-11810
CVE-2019-13057
CVE-2019-13508
CVE-2019-13565
CVE-2019-13631
CVE-2019-13648
CVE-2019-14283
CVE-2019-14284
CVE-2019-17177
CVE-2019-17178
CVE-2019-3812
CVE-2019-6974
CVE-2019-7221
CVE-2019-8912
CVE-2019-8934
CVE-2019-8936
CVE-2019-9213
CVE-2019-9674
CVE-2019-9824
CVE-2020-14374
CVE-2020-14375
CVE-2020-14376
CVE-2020-14377
CVE-2020-14378
CVE-2020-14422
CVE-2020-8492
SUSE-SU-2018:1981-1
SUSE-SU-2018:2066-1
SUSE-SU-2019:0195-1
SUSE-SU-2019:0387-1
SUSE-SU-2019:0770-1
SUSE-SU-2019:0777-1
SUSE-SU-2019:1239-1
SUSE-SU-2019:1290-2
SUSE-SU-2019:2068-1
SUSE-SU-2019:2395-1
SUSE-SU-2019:3079-1
SUSE-SU-2020:0510-1
SUSE-SU-2020:1417-2
SUSE-SU-2020:1920-1
Platform(s):SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1
SUSE Linux Enterprise Module for Basesystem 15
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Python2 packages 15 SP2
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Workstation Extension 15
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • libxslt-1.1.24-19.23 is installed
  • OR libxslt-32bit-1.1.24-19.23 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • glibc-2.11.3-17.95 is installed
  • OR glibc-32bit-2.11.3-17.95 is installed
  • OR glibc-devel-2.11.3-17.95 is installed
  • OR glibc-devel-32bit-2.11.3-17.95 is installed
  • OR glibc-i18ndata-2.11.3-17.95 is installed
  • OR glibc-locale-2.11.3-17.95 is installed
  • OR glibc-locale-32bit-2.11.3-17.95 is installed
  • OR nscd-2.11.3-17.95 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • cron-4.2-55 is installed
  • OR cronie-1.4.11-55 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • cups-1.7.5-9 is installed
  • OR cups-client-1.7.5-9 is installed
  • OR cups-libs-1.7.5-9 is installed
  • OR cups-libs-32bit-1.7.5-9 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND dosfstools-3.0.26-6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • coreutils-8.25-12 is installed
  • OR coreutils-lang-8.25-12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • at-3.1.14-8.6 is installed
  • OR libQtWebKit4-4.8.7+2.3.4-4.7 is installed
  • OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed
  • OR libbonobo-2.32.1-16 is installed
  • OR libbonobo-32bit-2.32.1-16 is installed
  • OR libbonobo-lang-2.32.1-16 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed
  • AND Package Information
  • freetds-1.1.36-3.3 is installed
  • OR libsybdb5-1.1.36-3.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 is installed
  • AND Package Information
  • qemu-2.11.2-9.25 is installed
  • OR qemu-tools-2.11.2-9.25 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 is installed
  • AND ntp-4.2.8p13-4.6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-25_16-default-5-2 is installed
  • OR kernel-livepatch-SLE15_Update_4-5-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • libldap-data-2.4.46-9.19 is installed
  • OR openldap2-2.4.46-9.19 is installed
  • OR openldap2-back-sock-2.4.46-9.19 is installed
  • OR openldap2-back-sql-2.4.46-9.19 is installed
  • OR openldap2-contrib-2.4.46-9.19 is installed
  • OR openldap2-doc-2.4.46-9.19 is installed
  • OR openldap2-ppolicy-check-password-1.2-9.19 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • ncat-7.70-3.5 is installed
  • OR ndiff-7.70-3.5 is installed
  • OR nmap-7.70-3.5 is installed
  • OR nping-7.70-3.5 is installed
  • OR zenmap-7.70-3.5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • dpdk-18.11.9-4.12 is installed
  • OR libdpdk-18_11-18.11.9-4.12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Python2 packages 15 SP2 is installed
  • AND python-ipaddress-1.0.18-3.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • xen-4.10.1_06-3.3 is installed
  • OR xen-devel-4.10.1_06-3.3 is installed
  • OR xen-tools-4.10.1_06-3.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND squid-4.13-5.23 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND Package Information
  • tomcat-9.0.12-3.8 is installed
  • OR tomcat-admin-webapps-9.0.12-3.8 is installed
  • OR tomcat-el-3_0-api-9.0.12-3.8 is installed
  • OR tomcat-jsp-2_3-api-9.0.12-3.8 is installed
  • OR tomcat-lib-9.0.12-3.8 is installed
  • OR tomcat-servlet-4_0-api-9.0.12-3.8 is installed
  • OR tomcat-webapps-9.0.12-3.8 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libecpg6-9.4.5-4 is installed
  • OR libpq5-9.4.5-4 is installed
  • OR libpq5-32bit-9.4.5-4 is installed
  • OR postgresql94-9.4.5-4 is installed
  • OR postgresql94-contrib-9.4.5-4 is installed
  • OR postgresql94-docs-9.4.5-4 is installed
  • OR postgresql94-server-9.4.5-4 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_67-60_64_18-default-9-2 is installed
  • OR kgraft-patch-3_12_67-60_64_18-xen-9-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_9-9-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • grub2-2.02~beta2-104 is installed
  • OR grub2-arm64-efi-2.02~beta2-104 is installed
  • OR grub2-i386-pc-2.02~beta2-104 is installed
  • OR grub2-powerpc-ieee1275-2.02~beta2-104 is installed
  • OR grub2-s390x-emu-2.02~beta2-104 is installed
  • OR grub2-snapper-plugin-2.02~beta2-104 is installed
  • OR grub2-systemd-sleep-plugin-2.02~beta2-104 is installed
  • OR grub2-x86_64-efi-2.02~beta2-104 is installed
  • OR grub2-x86_64-xen-2.02~beta2-104 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • MozillaFirefox-52.9.0esr-109.38 is installed
  • OR MozillaFirefox-devel-52.9.0esr-109.38 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • qemu-2.6.2-41.43 is installed
  • OR qemu-block-curl-2.6.2-41.43 is installed
  • OR qemu-block-rbd-2.6.2-41.43 is installed
  • OR qemu-block-ssh-2.6.2-41.43 is installed
  • OR qemu-guest-agent-2.6.2-41.43 is installed
  • OR qemu-ipxe-1.0.0-41.43 is installed
  • OR qemu-kvm-2.6.2-41.43 is installed
  • OR qemu-lang-2.6.2-41.43 is installed
  • OR qemu-seabios-1.9.1-41.43 is installed
  • OR qemu-sgabios-8-41.43 is installed
  • OR qemu-tools-2.6.2-41.43 is installed
  • OR qemu-vgabios-1.9.1-41.43 is installed
  • OR qemu-x86-2.6.2-41.43 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND ucode-intel-20180703-13.25 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND coolkey-1.1.0-147 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libpolkit0-0.113-5.18 is installed
  • OR polkit-0.113-5.18 is installed
  • OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • gnome-shell-3.20.4-77.23 is installed
  • OR gnome-shell-browser-plugin-3.20.4-77.23 is installed
  • OR gnome-shell-lang-3.20.4-77.23 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND nginx-1.16.1-3.12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • libldap-2_4-2-2.4.46-9.31 is installed
  • OR libldap-2_4-2-32bit-2.4.46-9.31 is installed
  • OR libldap-data-2.4.46-9.31 is installed
  • OR openldap2-2.4.46-9.31 is installed
  • OR openldap2-back-meta-2.4.46-9.31 is installed
  • OR openldap2-back-perl-2.4.46-9.31 is installed
  • OR openldap2-client-2.4.46-9.31 is installed
  • OR openldap2-devel-2.4.46-9.31 is installed
  • OR openldap2-devel-32bit-2.4.46-9.31 is installed
  • OR openldap2-devel-static-2.4.46-9.31 is installed
  • OR openldap2-ppolicy-check-password-1.2-9.31 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.16 is installed
  • OR kernel-default-extra-4.12.14-25.16 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND python-Beaker-1.6.4-0.7 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • openstack-dashboard-10.0.6~dev4-4.15 is installed
  • OR openstack-heat-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-api-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-api-cfn-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-api-cloudwatch-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-doc-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-engine-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-plugin-heat_docker-7.0.7~dev10-5.12 is installed
  • OR openstack-heat-test-7.0.7~dev10-5.12 is installed
  • OR openstack-horizon-plugin-designate-ui-3.0.2~dev1-3.6 is installed
  • OR openstack-keystone-10.0.3~dev9-7.12 is installed
  • OR openstack-keystone-doc-10.0.3~dev9-7.12 is installed
  • OR openstack-nova-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-api-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-cells-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-cert-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-compute-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-conductor-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-console-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-consoleauth-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-doc-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-novncproxy-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-placement-api-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-scheduler-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-serialproxy-14.0.11~dev13-4.25 is installed
  • OR openstack-nova-vncproxy-14.0.11~dev13-4.25 is installed
  • OR python-heat-7.0.7~dev10-5.12 is installed
  • OR python-horizon-10.0.6~dev4-4.15 is installed
  • OR python-horizon-plugin-designate-ui-3.0.2~dev1-3.6 is installed
  • OR python-keystone-10.0.3~dev9-7.12 is installed
  • OR python-nova-14.0.11~dev13-4.25 is installed
  • OR python-os-vif-1.2.1-3.3 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libssh2-1-1.4.3-20.9 is installed
  • OR libssh2-1-32bit-1.4.3-20.9 is installed
  • OR libssh2_org-1.4.3-20.9 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libmariadb3-3.0.3-3.3 is installed
  • OR mariadb-10.2.15-4.3 is installed
  • OR mariadb-client-10.2.15-4.3 is installed
  • OR mariadb-connector-c-3.0.3-3.3 is installed
  • OR mariadb-errormessages-10.2.15-4.3 is installed
  • OR mariadb-galera-10.2.15-4.3 is installed
  • OR mariadb-tools-10.2.15-4.3 is installed
  • OR xtrabackup-2.4.10-4.3 is installed
  • BACK