Oval Definition:	oval:org.opensuse.security:def:50613
Revision Date: 2020-12-01 Version: 1 Title: Security update for libvirt (Important) Description: This update for libvirt fixes the following issues: Four new speculative execution information leak issues have been identified in Intel CPUs. (bsc#1111331) - CVE-2018-12126: Microarchitectural Store Buffer Data Sampling (MSBDS) - CVE-2018-12127: Microarchitectural Fill Buffer Data Sampling (MFBDS) - CVE-2018-12130: Microarchitectural Load Port Data Sampling (MLPDS) - CVE-2019-11091: Microarchitectural Data Sampling Uncacheable Memory (MDSUM) These updates contain the libvirt adjustments, that pass through the new 'md-clear' CPU flag (bsc#1135273). For more information on this set of vulnerabilities, check out https://www.suse.com/support/kb/doc/?id=7023736 Security issues fixed: - CVE-2019-10132: Reject clients unless their UID matches the server UID (bsc#1134348) Non security issues fixed: - delay global firewall setup if no networks are running (bsc#1133229) - add systemd-container dependency to qemu and lxc drivers (bsc#1136109) Family: unix Class: patch Status: Reference(s): 1012382 1031392 1046299 1046303 1046305 1048942 1050244 1050536 1050545 1051510 1054914 1055117 1055120 1055186 1058115 1061840 1064802 1065600 1065729 1066129 1071995 1073513 1082023 1082519 1082555 1082635 1083647 1085030 1086323 1087092 1089644 1089895 1090078 1090631 1091041 1093205 1094244 1096254 1097583 1097584 1097585 1097586 1097587 1097588 1098291 1098782 1101669 1101674 1102495 1103269 1103405 1103587 1103636 1103990 1103991 1103992 1104745 1104888 1104967 1105190 1105795 1106105 1106240 1106948 1107783 1107829 1107928 1107947 1108096 1108170 1108281 1108323 1108399 1108823 1109158 1109244 1109333 1109336 1109337 1109603 1109806 1109837 1109859 1109979 1109992 1110006 1110301 1110363 1110639 1110642 1110643 1110644 1110645 1110646 1110647 1110649 1110650 1111331 1111666 1112178 1112374 1113722 1113956 1113994 1114279 1117665 1119086 1119461 1119465 1123034 1123080 1124278 1127354 1127355 1127371 1127988 1129180 1129186 1131107 1131304 1133021 1133140 1133229 1134156 1134303 1134348 1135273 1135642 1135854 1135873 1135966 1135967 1136109 1137040 1137069 1137799 1137861 1137865 1137959 1137982 1138190 1139073 1140090 1140155 1140359 1140729 1140845 1140883 1141013 1141122 1141600 1141619 1142076 1142635 1142667 1142685 1143706 1144333 1144338 1144375 1144449 1144903 1145099 1146042 1146065 1146068 1146090 1146091 1146093 1146094 1146095 1146097 1146099 1146100 1146211 1146212 1146213 1146519 1146540 1146612 1146664 1146882 1146884 1148133 1148410 1148712 1148868 1149119 1149313 1149446 1149448 1149555 1149651 1149792 1149841 1149853 1150305 1150381 1150423 1150452 1150457 1150465 1150466 1150846 1150875 1151067 1151192 1151350 1151508 1151610 1151661 1151662 1151667 1151680 1151781 1151782 1151783 1151784 1151785 1151786 1151794 1151807 1151891 1151955 1152024 1152025 1152026 1152033 1152161 1152187 1152243 1152325 1152457 1152460 1152466 1152489 1152497 1152505 1152506 1152525 1152624 1152665 1152685 1152696 1152697 1152782 1152788 1152790 1152791 1152972 1152974 1152975 1153108 1153112 1153158 1153161 1153236 1153263 1153476 1153509 1153607 1153646 1153681 1153713 1153717 1153718 1153719 1153811 1153969 1154108 1154124 1154189 1154242 1154268 1154354 1154372 1154401 1154521 1154526 1154578 1154601 1154607 1154608 1154610 1154611 1154651 1154737 1154747 1154824 1154848 1154858 1154905 1154956 1155021 1155061 1155178 1155179 1155184 1155186 1155671 1155692 1155812 1155817 1155836 1155945 1155982 1156187 1156188 1156429 1156466 1156494 1156609 1156700 1156729 1156882 1157119 1157169 1158265 1158785 1158787 1158788 1158789 1158790 1158791 1158792 1158793 1158795 1159352 1159812 1159922 1159923 1159924 1159927 1160388 1160673 1160922 1160947 1164780 1164871 1165183 1165478 1165741 1166969 1166978 1167574 1167851 1167867 1168332 1168670 1168789 1169020 1169514 1169525 1169762 1170056 1170125 1170145 1170284 1170345 1170457 1170522 1170592 1170617 1170618 1170620 1170621 1170770 1170778 1170791 1170901 1171078 1171098 1171118 1171189 1171191 1171195 1171202 1171205 1171214 1171217 1171218 1171219 1171220 1171244 1171293 1171417 1171527 1171599 1171600 1171601 1171602 1171604 1171605 1171606 1171607 1171608 1171609 1171610 1171611 1171612 1171613 1171614 1171615 1171616 1171617 1171618 1171619 1171620 1171621 1171622 1171623 1171624 1171625 1171626 1171662 1171679 1171691 1171692 1171694 1171695 1171736 1171817 1171948 1171949 1171951 1171952 1171979 1171982 1171983 1172017 1172096 1172097 1172098 1172099 1172101 1172102 1172103 1172104 1172127 1172130 1172185 1172188 1172199 1172201 1172202 1172221 1172249 1172251 1172317 1172342 1172343 1172344 1172366 1172378 1172391 1172397 1172453 1175109 CVE-2017-18595 CVE-2017-18595 CVE-2018-1000199 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-12207 CVE-2018-14633 CVE-2018-17182 CVE-2019-0154 CVE-2019-0155 CVE-2019-1010006 CVE-2019-10132 CVE-2019-10220 CVE-2019-10220 CVE-2019-11045 CVE-2019-11046 CVE-2019-11047 CVE-2019-11050 CVE-2019-11091 CVE-2019-11135 CVE-2019-12973 CVE-2019-1348 CVE-2019-1349 CVE-2019-1350 CVE-2019-1351 CVE-2019-1352 CVE-2019-1353 CVE-2019-1354 CVE-2019-1387 CVE-2019-14811 CVE-2019-14812 CVE-2019-14813 CVE-2019-14817 CVE-2019-14821 CVE-2019-14821 CVE-2019-14980 CVE-2019-14981 CVE-2019-15139 CVE-2019-15140 CVE-2019-15141 CVE-2019-15291 CVE-2019-15291 CVE-2019-15916 CVE-2019-16231 CVE-2019-16232 CVE-2019-16233 CVE-2019-16234 CVE-2019-16708 CVE-2019-16709 CVE-2019-16710 CVE-2019-16711 CVE-2019-16712 CVE-2019-16713 CVE-2019-16775 CVE-2019-16776 CVE-2019-16777 CVE-2019-16995 CVE-2019-17055 CVE-2019-17056 CVE-2019-17133 CVE-2019-17133 CVE-2019-17666 CVE-2019-18804 CVE-2019-18805 CVE-2019-18904 CVE-2019-19462 CVE-2019-19604 CVE-2019-20806 CVE-2019-20812 CVE-2019-3835 CVE-2019-3839 CVE-2019-9455 CVE-2019-9506 CVE-2019-9506 CVE-2019-9511 CVE-2019-9512 CVE-2019-9513 CVE-2019-9514 CVE-2019-9515 CVE-2019-9516 CVE-2019-9517 CVE-2019-9518 CVE-2020-0543 CVE-2020-10690 CVE-2020-10711 CVE-2020-10720 CVE-2020-10732 CVE-2020-10751 CVE-2020-10757 CVE-2020-12114 CVE-2020-12464 CVE-2020-12652 CVE-2020-12653 CVE-2020-12654 CVE-2020-12655 CVE-2020-12656 CVE-2020-12657 CVE-2020-12659 CVE-2020-12768 CVE-2020-12769 CVE-2020-13143 CVE-2020-8231 SUSE-SU-2018:3159-1 SUSE-SU-2019:1490-1 SUSE-SU-2019:2052-1 SUSE-SU-2019:2259-1 SUSE-SU-2019:2460-1 SUSE-SU-2019:2706-1 SUSE-SU-2019:2859-1 SUSE-SU-2019:2896-1 SUSE-SU-2019:3033-2 SUSE-SU-2019:3295-1 SUSE-SU-2020:0045-1 SUSE-SU-2020:0101-1 SUSE-SU-2020:0104-1 SUSE-SU-2020:0260-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND python-setuptools-0.6c11-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND kvm-1.4.2-35 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information bzip2-1.0.6-27 is installed OR libbz2-1-1.0.6-27 is installed OR libbz2-1-32bit-1.0.6-27 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND cvs-1.12.12-181 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information emacs-24.3-16 is installed OR emacs-info-24.3-16 is installed OR emacs-x11-24.3-16 is installed OR etags-24.3-16 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND dnsmasq-2.76-17 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND ctags-5.8-7 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND djvulibre-3.5.27-3.8 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information libvirt-5.1.0-8.3 is installed OR libvirt-libs-5.1.0-8.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information kernel-default-4.12.14-25.22 is installed OR reiserfs-kmp-default-4.12.14-25.22 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-150.38 is installed OR kernel-default-livepatch-4.12.14-150.38 is installed OR kernel-livepatch-4_12_14-150_38-default-1-1.3 is installed OR kernel-livepatch-SLE15_Update_15-1-1.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_18-default-2-2 is installed OR kernel-livepatch-SLE15-SP1_Update_5-2-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information evince-3.26.0+20180128.1bd86963-4.10 is installed OR evince-plugin-comicsdocument-3.26.0+20180128.1bd86963-4.10 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information rmt-server-2.5.2-3.26 is installed OR rmt-server-config-2.5.2-3.26 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs10-10.16.3-1.12 is installed OR nodejs10-devel-10.16.3-1.12 is installed OR nodejs10-docs-10.16.3-1.12 is installed OR npm10-10.16.3-1.12 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information apache2-mod_php7-7.2.5-4.49 is installed OR php7-7.2.5-4.49 is installed OR php7-bcmath-7.2.5-4.49 is installed OR php7-bz2-7.2.5-4.49 is installed OR php7-calendar-7.2.5-4.49 is installed OR php7-ctype-7.2.5-4.49 is installed OR php7-curl-7.2.5-4.49 is installed OR php7-dba-7.2.5-4.49 is installed OR php7-devel-7.2.5-4.49 is installed OR php7-dom-7.2.5-4.49 is installed OR php7-enchant-7.2.5-4.49 is installed OR php7-exif-7.2.5-4.49 is installed OR php7-fastcgi-7.2.5-4.49 is installed OR php7-fileinfo-7.2.5-4.49 is installed OR php7-fpm-7.2.5-4.49 is installed OR php7-ftp-7.2.5-4.49 is installed OR php7-gd-7.2.5-4.49 is installed OR php7-gettext-7.2.5-4.49 is installed OR php7-gmp-7.2.5-4.49 is installed OR php7-iconv-7.2.5-4.49 is installed OR php7-intl-7.2.5-4.49 is installed OR php7-json-7.2.5-4.49 is installed OR php7-ldap-7.2.5-4.49 is installed OR php7-mbstring-7.2.5-4.49 is installed OR php7-mysql-7.2.5-4.49 is installed OR php7-odbc-7.2.5-4.49 is installed OR php7-opcache-7.2.5-4.49 is installed OR php7-openssl-7.2.5-4.49 is installed OR php7-pcntl-7.2.5-4.49 is installed OR php7-pdo-7.2.5-4.49 is installed OR php7-pear-7.2.5-4.49 is installed OR php7-pear-Archive_Tar-7.2.5-4.49 is installed OR php7-pgsql-7.2.5-4.49 is installed OR php7-phar-7.2.5-4.49 is installed OR php7-posix-7.2.5-4.49 is installed OR php7-shmop-7.2.5-4.49 is installed OR php7-snmp-7.2.5-4.49 is installed OR php7-soap-7.2.5-4.49 is installed OR php7-sockets-7.2.5-4.49 is installed OR php7-sodium-7.2.5-4.49 is installed OR php7-sqlite-7.2.5-4.49 is installed OR php7-sysvmsg-7.2.5-4.49 is installed OR php7-sysvsem-7.2.5-4.49 is installed OR php7-sysvshm-7.2.5-4.49 is installed OR php7-tokenizer-7.2.5-4.49 is installed OR php7-wddx-7.2.5-4.49 is installed OR php7-xmlreader-7.2.5-4.49 is installed OR php7-xmlrpc-7.2.5-4.49 is installed OR php7-xmlwriter-7.2.5-4.49 is installed OR php7-xsl-7.2.5-4.49 is installed OR php7-zip-7.2.5-4.49 is installed OR php7-zlib-7.2.5-4.49 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND apache-commons-httpclient-3.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_40-default-5-4 is installed OR kgraft-patch-3_12_74-60_64_40-xen-5-4 is installed OR kgraft-patch-SLE12-SP1_Update_15-5-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information cyrus-sasl-2.1.26-7 is installed OR cyrus-sasl-32bit-2.1.26-7 is installed OR cyrus-sasl-crammd5-2.1.26-7 is installed OR cyrus-sasl-crammd5-32bit-2.1.26-7 is installed OR cyrus-sasl-digestmd5-2.1.26-7 is installed OR cyrus-sasl-gssapi-2.1.26-7 is installed OR cyrus-sasl-gssapi-32bit-2.1.26-7 is installed OR cyrus-sasl-otp-2.1.26-7 is installed OR cyrus-sasl-otp-32bit-2.1.26-7 is installed OR cyrus-sasl-plain-2.1.26-7 is installed OR cyrus-sasl-plain-32bit-2.1.26-7 is installed OR cyrus-sasl-saslauthd-2.1.26-7 is installed OR cyrus-sasl-sqlauxprop-2.1.26-7 is installed OR cyrus-sasl-sqlauxprop-32bit-2.1.26-7 is installed OR libsasl2-3-2.1.26-7 is installed OR libsasl2-3-32bit-2.1.26-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.30-38.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libmysqlclient18-10.0.35-29.20 is installed OR libmysqlclient18-32bit-10.0.35-29.20 is installed OR mariadb-10.0.35-29.20 is installed OR mariadb-client-10.0.35-29.20 is installed OR mariadb-errormessages-10.0.35-29.20 is installed OR mariadb-tools-10.0.35-29.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_50-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_15-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information jakarta-taglibs-standard-1.1.1-255 is installed OR jakarta-taglibs-standard-javadoc-1.1.1-255 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_103-default-2-2 is installed OR kgraft-patch-SLE12-SP3_Update_28-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ghostscript-9.25-23.13 is installed OR ghostscript-x11-9.25-23.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information curl-7.60.0-2 is installed OR libcurl4-7.60.0-2 is installed OR libcurl4-32bit-7.60.0-2 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information gmp-6.1.2-4.3 is installed OR gmp-devel-6.1.2-4.3 is installed OR gmp-devel-32bit-6.1.2-4.3 is installed OR gnutls-3.6.7-6.14 is installed OR libgmp10-6.1.2-4.3 is installed OR libgmp10-32bit-6.1.2-4.3 is installed OR libgmpxx4-6.1.2-4.3 is installed OR libgmpxx4-32bit-6.1.2-4.3 is installed OR libgnutls-devel-3.6.7-6.14 is installed OR libgnutls30-3.6.7-6.14 is installed OR libgnutls30-32bit-3.6.7-6.14 is installed OR libgnutls30-hmac-3.6.7-6.14 is installed OR libgnutls30-hmac-32bit-3.6.7-6.14 is installed OR libgnutlsxx-devel-3.6.7-6.14 is installed OR libgnutlsxx28-3.6.7-6.14 is installed OR libhogweed4-3.4.1-4.12 is installed OR libhogweed4-32bit-3.4.1-4.12 is installed OR libnettle-3.4.1-4.12 is installed OR libnettle-devel-3.4.1-4.12 is installed OR libnettle6-3.4.1-4.12 is installed OR libnettle6-32bit-3.4.1-4.12 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information kernel-default-4.12.14-150.55 is installed OR kernel-default-base-4.12.14-150.55 is installed OR kernel-default-devel-4.12.14-150.55 is installed OR kernel-devel-4.12.14-150.55 is installed OR kernel-docs-4.12.14-150.55 is installed OR kernel-macros-4.12.14-150.55 is installed OR kernel-obs-build-4.12.14-150.55 is installed OR kernel-source-4.12.14-150.55 is installed OR kernel-syms-4.12.14-150.55 is installed OR kernel-vanilla-4.12.14-150.55 is installed OR kernel-vanilla-base-4.12.14-150.55 is installed OR reiserfs-kmp-default-4.12.14-150.55 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.16 is installed OR kernel-default-extra-4.12.14-25.16 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information python-paramiko-1.15.2-2.3 is installed OR python-pycrypto-2.6.1-10.3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND python-XStatic-jquery-ui-1.11.0.1-2.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information strongswan-5.1.3-26.13 is installed OR strongswan-doc-5.1.3-26.13 is installed OR strongswan-hmac-5.1.3-26.13 is installed OR strongswan-ipsec-5.1.3-26.13 is installed OR strongswan-libs0-5.1.3-26.13 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libmysqlclient18-10.0.38-29.27 is installed OR mariadb-10.0.38-29.27 is installed
BACK