Oval Definition:oval:org.opensuse.security:def:50565
Revision Date:2020-12-01Version:1
Title:Security update for libvirt (Important)
Description:

This update for libvirt provides the following fixes:

Security issue fixed:

- CVE-2019-3840: Fixed a null pointer dereference vulnerability in virJSONValueObjectHasKey function which could have resulted in a remote denial of service via the guest agent (bsc#1127458).

Other issues addressed:

- apparmor: reintroduce upstream lxc mount rules (bsc#1130129). - hook: encode incoming XML to UTF-8 before passing to lxml etree from string method (bsc#1123642). - supportconfig: collect rotated logs in /var/log/libvirt/* (bsc#1124667). - libxl: support Xen's max_grant_frames setting with maxGrantFrames attribute on the xenbus controller (bsc#1126325). - conf: added new 'xenbus' controller type - util: skip RDMA detection for non-PCI network devices (bsc#1112182). - qemu: don't use CAP_DAC_OVERRIDE capability if non-root (bsc#1125665). - qemu: fix issues related to restricted permissions on /dev/sev(bsc#1102604). - apparmor: add support for named profiles (bsc#1118952). - libxl: save current memory value after successful balloon (bsc#1120813). - apparmor: Fix ptrace rules. (bsc#1117058) - libxl: Add support for soft reset. (bsc#1081516) - libxl: Fix VM migration on busy hosts. (bsc#1108086) - qemu: Add support for SEV guests. (fate#325817) - util: Don't check for parallel iteration in hash-related functions. (bsc#1106420) - spec: Don't restart libvirt-guests when updating libvirt-client. (bsc#1104662) - Fix virNodeGetSEVInfo API crashing libvirtd on AMD SEV enabled hosts. (bsc#1108395)
Family:unixClass:patch
Status:Reference(s):1051510
1063412
1065729
1071995
1081516
1095218
1095219
1100369
1102604
1103098
1104662
1104967
1106420
1108086
1108395
1109160
1110949
1112182
1112230
1114225
1117058
1118367
1118368
1118952
1120813
1123642
1124667
1125665
1126325
1127458
1128220
1130129
1132350
1133204
1133205
1133498
1133501
1134689
1136021
1136183
1136732
1138034
1145092
1149495
1149496
1149792
1151867
1152107
1156205
1156651
1157051
1158755
1158785
1158787
1158788
1158789
1158790
1158791
1158792
1158793
1158795
1161168
1162002
1164459
1167890
1168930
1169605
1169786
1169936
1170011
1170667
1170713
1171078
1171313
1171673
1171732
1171740
1171868
1172257
1172698
1172704
1172775
1172781
1172782
1172783
1172958
1172999
1173265
1173280
1173307
1173311
1173514
1173567
1173573
1173659
1173902
1173983
1173994
1173999
1174000
1174115
1174386
1174462
1174543
1174641
1174863
1175370
1175441
1175443
1176092
1176494
1176674
1177613
906079
CVE-2017-15298
CVE-2017-3136
CVE-2018-11233
CVE-2018-11235
CVE-2018-17456
CVE-2018-5391
CVE-2018-5741
CVE-2019-10130
CVE-2019-10164
CVE-2019-10208
CVE-2019-11470
CVE-2019-11472
CVE-2019-11505
CVE-2019-11506
CVE-2019-11598
CVE-2019-1348
CVE-2019-1349
CVE-2019-1350
CVE-2019-1351
CVE-2019-1352
CVE-2019-1353
CVE-2019-1354
CVE-2019-1387
CVE-2019-16707
CVE-2019-16746
CVE-2019-19604
CVE-2019-20479
CVE-2019-20908
CVE-2019-3840
CVE-2019-5481
CVE-2019-5482
CVE-2019-6477
CVE-2020-0305
CVE-2020-10766
CVE-2020-10767
CVE-2020-10768
CVE-2020-10769
CVE-2020-10773
CVE-2020-11008
CVE-2020-12771
CVE-2020-12888
CVE-2020-13974
CVE-2020-14318
CVE-2020-14323
CVE-2020-14364
CVE-2020-14383
CVE-2020-14416
CVE-2020-15393
CVE-2020-15780
CVE-2020-15863
CVE-2020-16092
CVE-2020-24352
CVE-2020-5260
CVE-2020-8023
CVE-2020-8616
CVE-2020-8617
CVE-2020-8618
CVE-2020-8619
CVE-2020-8620
CVE-2020-8621
CVE-2020-8622
CVE-2020-8623
CVE-2020-8624
SUSE-SU-2019:0936-1
SUSE-SU-2019:1523-1
SUSE-SU-2019:1607-1
SUSE-SU-2019:1810-1
SUSE-SU-2019:2373-1
SUSE-SU-2019:2707-1
SUSE-SU-2020:0705-1
SUSE-SU-2020:1121-1
SUSE-SU-2020:2106-1
SUSE-SU-2020:2877-1
SUSE-SU-2020:2914-1
Platform(s):SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for additional PackageHub packages 15
SUSE Linux Enterprise Module for Basesystem 15
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND libwmf-0.2.8.4-206.29.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • compat-openssl097g-0.9.7g-146.22.36 is installed
  • OR compat-openssl097g-32bit-0.9.7g-146.22.36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • avahi-0.6.31-20 is installed
  • OR avahi-lang-0.6.31-20 is installed
  • OR libavahi-client3-0.6.31-20 is installed
  • OR libavahi-client3-32bit-0.6.31-20 is installed
  • OR libavahi-common3-0.6.31-20 is installed
  • OR libavahi-common3-32bit-0.6.31-20 is installed
  • OR libavahi-core7-0.6.31-20 is installed
  • OR libdns_sd-0.6.31-20 is installed
  • OR libdns_sd-32bit-0.6.31-20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • coreutils-8.22-9 is installed
  • OR coreutils-lang-8.22-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • cracklib-2.9.0-7 is installed
  • OR libcrack2-2.9.0-7 is installed
  • OR libcrack2-32bit-2.9.0-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND krb5-appl-clients-1.0.3-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • bind-utils-9.11.2-1 is installed
  • OR libbind9-160-9.11.2-1 is installed
  • OR libdns169-9.11.2-1 is installed
  • OR libirs160-9.11.2-1 is installed
  • OR libisc166-9.11.2-1 is installed
  • OR libisc166-32bit-9.11.2-1 is installed
  • OR libisccc160-9.11.2-1 is installed
  • OR libisccfg160-9.11.2-1 is installed
  • OR liblwres160-9.11.2-1 is installed
  • OR python-bind-9.11.2-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed
  • AND Package Information
  • postgresql10-10.9-4.13 is installed
  • OR postgresql10-test-10.9-4.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 is installed
  • AND Package Information
  • libvirt-4.0.0-9.16 is installed
  • OR libvirt-libs-4.0.0-9.16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • libwireshark9-2.4.15-3.28 is installed
  • OR libwiretap7-2.4.15-3.28 is installed
  • OR libwscodecs1-2.4.15-3.28 is installed
  • OR libwsutil8-2.4.15-3.28 is installed
  • OR wireshark-2.4.15-3.28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-25_6-default-6-2 is installed
  • OR kernel-livepatch-SLE15_Update_2-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • ImageMagick-7.0.7.34-3.61 is installed
  • OR ImageMagick-config-7-upstream-7.0.7.34-3.61 is installed
  • OR ImageMagick-devel-32bit-7.0.7.34-3.61 is installed
  • OR ImageMagick-doc-7.0.7.34-3.61 is installed
  • OR ImageMagick-extra-7.0.7.34-3.61 is installed
  • OR libMagick++-7_Q16HDRI4-32bit-7.0.7.34-3.61 is installed
  • OR libMagick++-devel-32bit-7.0.7.34-3.61 is installed
  • OR libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-3.61 is installed
  • OR libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-3.61 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • libsamba-policy-python-devel-4.9.5+git.383.7b7f8f14df8-3.47 is installed
  • OR libsamba-policy0-4.9.5+git.383.7b7f8f14df8-3.47 is installed
  • OR libsamba-policy0-32bit-4.9.5+git.383.7b7f8f14df8-3.47 is installed
  • OR samba-4.9.5+git.383.7b7f8f14df8-3.47 is installed
  • OR samba-libs-python-4.9.5+git.383.7b7f8f14df8-3.47 is installed
  • OR samba-libs-python-32bit-4.9.5+git.383.7b7f8f14df8-3.47 is installed
  • OR samba-python-4.9.5+git.383.7b7f8f14df8-3.47 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • libecpg6-10.9-4.13 is installed
  • OR postgresql10-10.9-4.13 is installed
  • OR postgresql10-contrib-10.9-4.13 is installed
  • OR postgresql10-devel-10.9-4.13 is installed
  • OR postgresql10-docs-10.9-4.13 is installed
  • OR postgresql10-plperl-10.9-4.13 is installed
  • OR postgresql10-plpython-10.9-4.13 is installed
  • OR postgresql10-pltcl-10.9-4.13 is installed
  • OR postgresql10-server-10.9-4.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND apache2-mod_auth_openidc-2.3.8-3.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND Package Information
  • qemu-4.2.1-11.10 is installed
  • OR qemu-arm-4.2.1-11.10 is installed
  • OR qemu-audio-alsa-4.2.1-11.10 is installed
  • OR qemu-audio-pa-4.2.1-11.10 is installed
  • OR qemu-block-curl-4.2.1-11.10 is installed
  • OR qemu-block-iscsi-4.2.1-11.10 is installed
  • OR qemu-block-rbd-4.2.1-11.10 is installed
  • OR qemu-block-ssh-4.2.1-11.10 is installed
  • OR qemu-guest-agent-4.2.1-11.10 is installed
  • OR qemu-ipxe-1.0.0+-11.10 is installed
  • OR qemu-kvm-4.2.1-11.10 is installed
  • OR qemu-lang-4.2.1-11.10 is installed
  • OR qemu-microvm-4.2.1-11.10 is installed
  • OR qemu-ppc-4.2.1-11.10 is installed
  • OR qemu-s390-4.2.1-11.10 is installed
  • OR qemu-seabios-1.12.1+-11.10 is installed
  • OR qemu-sgabios-8-11.10 is installed
  • OR qemu-ui-curses-4.2.1-11.10 is installed
  • OR qemu-ui-gtk-4.2.1-11.10 is installed
  • OR qemu-ui-spice-app-4.2.1-11.10 is installed
  • OR qemu-vgabios-1.12.1+-11.10 is installed
  • OR qemu-x86-4.2.1-11.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND Package Information
  • tomcat-9.0.12-3.8 is installed
  • OR tomcat-admin-webapps-9.0.12-3.8 is installed
  • OR tomcat-el-3_0-api-9.0.12-3.8 is installed
  • OR tomcat-jsp-2_3-api-9.0.12-3.8 is installed
  • OR tomcat-lib-9.0.12-3.8 is installed
  • OR tomcat-servlet-4_0-api-9.0.12-3.8 is installed
  • OR tomcat-webapps-9.0.12-3.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • bash-4.2-75 is installed
  • OR bash-doc-4.2-75 is installed
  • OR libreadline6-6.2-75 is installed
  • OR libreadline6-32bit-6.2-75 is installed
  • OR readline-doc-6.2-75 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_45-default-3-2 is installed
  • OR kgraft-patch-3_12_74-60_64_45-xen-3-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_16-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • bind-9.9.9P1-46 is installed
  • OR bind-chrootenv-9.9.9P1-46 is installed
  • OR bind-doc-9.9.9P1-46 is installed
  • OR bind-libs-9.9.9P1-46 is installed
  • OR bind-libs-32bit-9.9.9P1-46 is installed
  • OR bind-utils-9.9.9P1-46 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libdcerpc-binding0-4.4.2-38.20 is installed
  • OR libdcerpc-binding0-32bit-4.4.2-38.20 is installed
  • OR libdcerpc0-4.4.2-38.20 is installed
  • OR libdcerpc0-32bit-4.4.2-38.20 is installed
  • OR libndr-krb5pac0-4.4.2-38.20 is installed
  • OR libndr-krb5pac0-32bit-4.4.2-38.20 is installed
  • OR libndr-nbt0-4.4.2-38.20 is installed
  • OR libndr-nbt0-32bit-4.4.2-38.20 is installed
  • OR libndr-standard0-4.4.2-38.20 is installed
  • OR libndr-standard0-32bit-4.4.2-38.20 is installed
  • OR libndr0-4.4.2-38.20 is installed
  • OR libndr0-32bit-4.4.2-38.20 is installed
  • OR libnetapi0-4.4.2-38.20 is installed
  • OR libnetapi0-32bit-4.4.2-38.20 is installed
  • OR libsamba-credentials0-4.4.2-38.20 is installed
  • OR libsamba-credentials0-32bit-4.4.2-38.20 is installed
  • OR libsamba-errors0-4.4.2-38.20 is installed
  • OR libsamba-errors0-32bit-4.4.2-38.20 is installed
  • OR libsamba-hostconfig0-4.4.2-38.20 is installed
  • OR libsamba-hostconfig0-32bit-4.4.2-38.20 is installed
  • OR libsamba-passdb0-4.4.2-38.20 is installed
  • OR libsamba-passdb0-32bit-4.4.2-38.20 is installed
  • OR libsamba-util0-4.4.2-38.20 is installed
  • OR libsamba-util0-32bit-4.4.2-38.20 is installed
  • OR libsamdb0-4.4.2-38.20 is installed
  • OR libsamdb0-32bit-4.4.2-38.20 is installed
  • OR libsmbclient0-4.4.2-38.20 is installed
  • OR libsmbclient0-32bit-4.4.2-38.20 is installed
  • OR libsmbconf0-4.4.2-38.20 is installed
  • OR libsmbconf0-32bit-4.4.2-38.20 is installed
  • OR libsmbldap0-4.4.2-38.20 is installed
  • OR libsmbldap0-32bit-4.4.2-38.20 is installed
  • OR libtevent-util0-4.4.2-38.20 is installed
  • OR libtevent-util0-32bit-4.4.2-38.20 is installed
  • OR libwbclient0-4.4.2-38.20 is installed
  • OR libwbclient0-32bit-4.4.2-38.20 is installed
  • OR samba-4.4.2-38.20 is installed
  • OR samba-client-4.4.2-38.20 is installed
  • OR samba-client-32bit-4.4.2-38.20 is installed
  • OR samba-doc-4.4.2-38.20 is installed
  • OR samba-libs-4.4.2-38.20 is installed
  • OR samba-libs-32bit-4.4.2-38.20 is installed
  • OR samba-winbind-4.4.2-38.20 is installed
  • OR samba-winbind-32bit-4.4.2-38.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • xen-4.7.5_04-43.33 is installed
  • OR xen-doc-html-4.7.5_04-43.33 is installed
  • OR xen-libs-4.7.5_04-43.33 is installed
  • OR xen-libs-32bit-4.7.5_04-43.33 is installed
  • OR xen-tools-4.7.5_04-43.33 is installed
  • OR xen-tools-domU-4.7.5_04-43.33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_114-92_64-default-5-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_18-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND dstat-0.7.2-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND permissions-2015.09.28.1626-17.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • nfs-client-1.3.0-34.22 is installed
  • OR nfs-doc-1.3.0-34.22 is installed
  • OR nfs-kernel-server-1.3.0-34.22 is installed
  • OR nfs-utils-1.3.0-34.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • apache2-2.4.23-29.21 is installed
  • OR apache2-doc-2.4.23-29.21 is installed
  • OR apache2-example-pages-2.4.23-29.21 is installed
  • OR apache2-prefork-2.4.23-29.21 is installed
  • OR apache2-utils-2.4.23-29.21 is installed
  • OR apache2-worker-2.4.23-29.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • apache2-2.4.33-3.33 is installed
  • OR apache2-devel-2.4.33-3.33 is installed
  • OR apache2-doc-2.4.33-3.33 is installed
  • OR apache2-prefork-2.4.33-3.33 is installed
  • OR apache2-utils-2.4.33-3.33 is installed
  • OR apache2-worker-2.4.33-3.33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • rpmlint-1.10-7.12 is installed
  • OR rpmlint-mini-1.10-5.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • xorg-x11-server-1.20.3-14.5 is installed
  • OR xorg-x11-server-wayland-1.20.3-14.5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND python-pymongo-3.0.3-1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • libecpg6-10.5-1.3 is installed
  • OR libpq5-10.5-1.3 is installed
  • OR libpq5-32bit-10.5-1.3 is installed
  • OR postgresql-init-10-17.20 is installed
  • OR postgresql10-10.5-1.3 is installed
  • OR postgresql10-contrib-10.5-1.3 is installed
  • OR postgresql10-docs-10.5-1.3 is installed
  • OR postgresql10-libs-10.5-1.3 is installed
  • OR postgresql10-server-10.5-1.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • postgresql96-9.6.15-3.29 is installed
  • OR postgresql96-contrib-9.6.15-3.29 is installed
  • OR postgresql96-docs-9.6.15-3.29 is installed
  • OR postgresql96-libs-9.6.15-3.29 is installed
  • OR postgresql96-plperl-9.6.15-3.29 is installed
  • OR postgresql96-plpython-9.6.15-3.29 is installed
  • OR postgresql96-pltcl-9.6.15-3.29 is installed
  • OR postgresql96-server-9.6.15-3.29 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND squid-3.5.21-26.17 is installed
    • BACK