Oval Definition:	oval:org.opensuse.security:def:50651
Revision Date: 2020-12-01 Version: 1 Title: Security update for qemu (Important) Description: This update for qemu fixes the following issues: Security issues fixed: - CVE-2019-14378: Security fix for heap overflow in ip_reass on big packet input (bsc#1143794). - CVE-2019-12155: Security fix for null pointer dereference while releasing spice resources (bsc#1135902). - CVE-2019-13164: Security fix for qemu-bridge-helper ACL can be bypassed when names are too long (bsc#1140402). - CVE-2019-5008: Fix DoS (NULL pointer dereference) in sparc64 virtual machine possible through guest device driver (bsc#1133031). Bug fixes and enhancements: - Upstream tweaked SnowRidge-Server vcpu model to now be simply Snowridge (jsc#SLE-4883) - Add SnowRidge-Server vcpu model (jsc#SLE-4883) - Add in documentation about md-clear feature (bsc#1138534) - Fix SEV issue where older machine type is not processed correctly (bsc#1144087) - Fix case of a bad pointer in Xen PV usb support code (bsc#1128106) - Further refine arch-capabilities handling to help with security and performance in Intel hosts (bsc#1134883, bsc#1135210) (fate#327764) - Add support for one more security/performance related vcpu feature (bsc#1136778) (fate#327796) - Ignore csske for expanding the cpu model (bsc#1136540) Family: unix Class: patch Status: Reference(s): 1050244 1051510 1051858 1055186 1058115 1061840 1065600 1065729 1071995 1085030 1086301 1086313 1086314 1089895 1094244 1109911 1112178 1113956 1114279 1115375 1118338 1120386 1128106 1129452 1133031 1134883 1134973 1135210 1135902 1136540 1136778 1138534 1140402 1141780 1141782 1141783 1141784 1141785 1141786 1141787 1141789 1143794 1143959 1144087 1144333 1144504 1146569 1146571 1146572 1146702 1148987 1149458 1149792 1149954 1150711 1151839 1151910 1151927 1153917 1154243 1154366 1154824 1155338 1155339 1155690 1156202 1156286 1157155 1157157 1157692 1158013 1158021 1158026 1158265 1158819 1159028 1159198 1159271 1159285 1159352 1159394 1159483 1159484 1159569 1159588 1159841 1159908 1159909 1159910 1159911 1159955 1160195 1160210 1160211 1160218 1160433 1160442 1160452 1160476 1160560 1160682 1160755 1160756 1160784 1160787 1160802 1160803 1160804 1160917 1160966 1161087 1161514 1161518 1161522 1161523 1161549 1161552 1161555 1161674 1161931 1161933 1161934 1161935 1161936 1161937 1161951 1162067 1162109 1162139 1162928 1162929 1162931 1163971 1164051 1164069 1164078 1164705 1164712 1164727 1164728 1164729 1164730 1164731 1164732 1164733 1164734 1164735 1164871 1165111 1165741 1165873 1165881 1165984 1165985 1166066 1166969 1167421 1167423 1167527 1167629 1168075 1168276 1168295 1168424 1168468 1168670 1168829 1168854 1169365 1169390 1169514 1169625 1169679 1169748 1169972 1170056 1170345 1170595 1170617 1170618 1170621 1170778 1170901 1171098 1171189 1171191 1171195 1171202 1171205 1171217 1171218 1171219 1171220 1171441 1171443 1171444 1171445 1171446 1171447 1171474 1171675 1171688 1171689 1171742 1171746 1171982 1171983 1172140 1172221 1172317 1172437 1172453 1172458 1173115 1173247 1173605 1174200 1174899 1175228 1175749 1175882 1176011 1176022 1176038 1176235 1176242 1176278 1176316 1176317 1176318 1176319 1176320 1176321 1176381 1176395 1176410 1176423 1176482 1176507 1176536 1176544 1176545 1176546 1176548 1176659 1176698 1176699 1176700 1176721 1176722 1176725 1176732 1176788 1176789 1176869 1176877 1176935 1176950 1176962 1176966 1176990 1177027 1177030 1177041 1177042 1177043 1177044 1177121 1177206 1177258 1177291 1177293 1177294 1177295 1177296 1177351 1177352 CVE-2018-1000199 CVE-2019-12155 CVE-2019-12625 CVE-2019-12900 CVE-2019-13164 CVE-2019-13627 CVE-2019-14378 CVE-2019-14615 CVE-2019-14896 CVE-2019-14897 CVE-2019-15142 CVE-2019-15143 CVE-2019-15144 CVE-2019-15145 CVE-2019-15666 CVE-2019-16775 CVE-2019-16776 CVE-2019-16777 CVE-2019-16994 CVE-2019-19036 CVE-2019-19045 CVE-2019-19054 CVE-2019-19318 CVE-2019-19319 CVE-2019-19447 CVE-2019-19462 CVE-2019-19768 CVE-2019-19770 CVE-2019-19921 CVE-2019-19965 CVE-2019-19966 CVE-2019-20054 CVE-2019-20095 CVE-2019-20096 CVE-2019-20372 CVE-2019-20810 CVE-2019-20812 CVE-2019-2745 CVE-2019-2762 CVE-2019-2766 CVE-2019-2769 CVE-2019-2786 CVE-2019-2816 CVE-2019-2842 CVE-2019-3701 CVE-2019-5008 CVE-2019-7317 CVE-2019-9455 CVE-2019-9458 CVE-2020-0034 CVE-2020-0404 CVE-2020-0427 CVE-2020-0431 CVE-2020-0432 CVE-2020-0543 CVE-2020-10690 CVE-2020-10711 CVE-2020-10720 CVE-2020-10732 CVE-2020-10751 CVE-2020-10757 CVE-2020-10942 CVE-2020-11017 CVE-2020-11018 CVE-2020-11019 CVE-2020-11038 CVE-2020-11039 CVE-2020-11040 CVE-2020-11041 CVE-2020-11043 CVE-2020-11085 CVE-2020-11086 CVE-2020-11087 CVE-2020-11088 CVE-2020-11089 CVE-2020-11095 CVE-2020-11096 CVE-2020-11097 CVE-2020-11098 CVE-2020-11099 CVE-2020-11494 CVE-2020-11521 CVE-2020-11522 CVE-2020-11523 CVE-2020-11524 CVE-2020-11525 CVE-2020-11526 CVE-2020-11608 CVE-2020-11609 CVE-2020-11651 CVE-2020-11652 CVE-2020-11669 CVE-2020-12114 CVE-2020-12464 CVE-2020-12652 CVE-2020-12653 CVE-2020-12654 CVE-2020-12655 CVE-2020-12656 CVE-2020-12657 CVE-2020-12769 CVE-2020-13143 CVE-2020-13396 CVE-2020-13397 CVE-2020-13398 CVE-2020-14381 CVE-2020-14390 CVE-2020-25212 CVE-2020-25284 CVE-2020-25641 CVE-2020-25643 CVE-2020-26088 CVE-2020-2732 CVE-2020-4030 CVE-2020-4031 CVE-2020-4032 CVE-2020-4033 CVE-2020-7053 CVE-2020-7069 CVE-2020-7070 CVE-2020-8428 CVE-2020-8647 CVE-2020-8648 CVE-2020-8649 CVE-2020-8834 CVE-2020-8992 CVE-2020-9383 SUSE-SU-2019:2021-1 SUSE-SU-2019:2192-1 SUSE-SU-2019:2452-1 SUSE-SU-2019:3053-1 SUSE-SU-2019:3392-1 SUSE-SU-2020:0043-1 SUSE-SU-2020:0944-1 SUSE-SU-2020:1150-1 SUSE-SU-2020:1171-1 SUSE-SU-2020:1177-1 SUSE-SU-2020:1297-1 SUSE-SU-2020:2941-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND xfsprogs-3.1.8-0.7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND fetchmail-6.3.8.90-13.20.21 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information gdm-3.10.0.1-13 is installed OR gdm-branding-upstream-3.10.0.1-13 is installed OR gdm-lang-3.10.0.1-13 is installed OR gdmflexiserver-3.10.0.1-13 is installed OR libgdm1-3.10.0.1-13 is installed OR typelib-1_0-Gdm-1_0-3.10.0.1-13 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information gstreamer-0_10-plugins-bad-0.10.23-17 is installed OR gstreamer-0_10-plugins-bad-lang-0.10.23-17 is installed OR libgstbasecamerabinsrc-0_10-23-0.10.23-17 is installed OR libgstbasecamerabinsrc-0_10-23-32bit-0.10.23-17 is installed OR libgstbasevideo-0_10-23-0.10.23-17 is installed OR libgstbasevideo-0_10-23-32bit-0.10.23-17 is installed OR libgstcodecparsers-0_10-23-0.10.23-17 is installed OR libgstphotography-0_10-23-0.10.23-17 is installed OR libgstphotography-0_10-23-32bit-0.10.23-17 is installed OR libgstsignalprocessor-0_10-23-0.10.23-17 is installed OR libgstsignalprocessor-0_10-23-32bit-0.10.23-17 is installed OR libgstvdp-0_10-23-0.10.23-17 is installed OR libgstvdp-0_10-23-32bit-0.10.23-17 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information cyrus-sasl-2.1.26-7 is installed OR cyrus-sasl-32bit-2.1.26-7 is installed OR cyrus-sasl-crammd5-2.1.26-7 is installed OR cyrus-sasl-crammd5-32bit-2.1.26-7 is installed OR cyrus-sasl-digestmd5-2.1.26-7 is installed OR cyrus-sasl-digestmd5-32bit-2.1.26-7 is installed OR cyrus-sasl-gssapi-2.1.26-7 is installed OR cyrus-sasl-gssapi-32bit-2.1.26-7 is installed OR cyrus-sasl-plain-2.1.26-7 is installed OR cyrus-sasl-plain-32bit-2.1.26-7 is installed OR cyrus-sasl-saslauthd-2.1.26-7 is installed OR libsasl2-3-2.1.26-7 is installed OR libsasl2-3-32bit-2.1.26-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information avahi-0.6.32-30 is installed OR avahi-lang-0.6.32-30 is installed OR libavahi-client3-0.6.32-30 is installed OR libavahi-client3-32bit-0.6.32-30 is installed OR libavahi-common3-0.6.32-30 is installed OR libavahi-common3-32bit-0.6.32-30 is installed OR libavahi-core7-0.6.32-30 is installed OR libdns_sd-0.6.32-30 is installed OR libdns_sd-32bit-0.6.32-30 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information glib2-lang-2.48.2-10 is installed OR glib2-tools-2.48.2-10 is installed OR libgio-2_0-0-2.48.2-10 is installed OR libgio-2_0-0-32bit-2.48.2-10 is installed OR libgio-fam-2.48.2-10 is installed OR libglib-2_0-0-2.48.2-10 is installed OR libglib-2_0-0-32bit-2.48.2-10 is installed OR libgmodule-2_0-0-2.48.2-10 is installed OR libgmodule-2_0-0-32bit-2.48.2-10 is installed OR libgobject-2_0-0-2.48.2-10 is installed OR libgobject-2_0-0-32bit-2.48.2-10 is installed OR libgthread-2_0-0-2.48.2-10 is installed OR libgthread-2_0-0-32bit-2.48.2-10 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed AND Package Information php7-7.4.6-3.11 is installed OR php7-embed-7.4.6-3.11 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information qemu-3.1.1-9.3 is installed OR qemu-tools-3.1.1-9.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-3.24 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-3.24 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-3.24 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-3.24 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-150.52 is installed OR kernel-default-livepatch-4.12.14-150.52 is installed OR kernel-livepatch-4_12_14-150_52-default-1-1.5 is installed OR kernel-livepatch-SLE15_Update_18-1-1.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_10-default-8-2 is installed OR kernel-livepatch-SLE15-SP1_Update_3-8-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information djvulibre-3.5.27-3.3 is installed OR djvulibre-doc-3.5.27-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information salt-2019.2.0-6.27 is installed OR salt-api-2019.2.0-6.27 is installed OR salt-cloud-2019.2.0-6.27 is installed OR salt-fish-completion-2019.2.0-6.27 is installed OR salt-master-2019.2.0-6.27 is installed OR salt-proxy-2019.2.0-6.27 is installed OR salt-ssh-2019.2.0-6.27 is installed OR salt-standalone-formulas-configuration-2019.2.0-6.27 is installed OR salt-syndic-2019.2.0-6.27 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs8-8.17.0-3.25 is installed OR nodejs8-devel-8.17.0-3.25 is installed OR nodejs8-docs-8.17.0-3.25 is installed OR npm8-8.17.0-3.25 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information emacs-24.3-14 is installed OR emacs-el-24.3-14 is installed OR emacs-info-24.3-14 is installed OR emacs-nox-24.3-14 is installed OR emacs-x11-24.3-14 is installed OR etags-24.3-14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_67-60_64_24-default-7-2 is installed OR kgraft-patch-3_12_67-60_64_24-xen-7-2 is installed OR kgraft-patch-SLE12-SP1_Update_11-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information groff-1.22.2-5 is installed OR groff-full-1.22.2-5 is installed OR gxditview-1.22.2-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information glibc-2.22-62.13 is installed OR glibc-32bit-2.22-62.13 is installed OR glibc-devel-2.22-62.13 is installed OR glibc-devel-32bit-2.22-62.13 is installed OR glibc-html-2.22-62.13 is installed OR glibc-i18ndata-2.22-62.13 is installed OR glibc-info-2.22-62.13 is installed OR glibc-locale-2.22-62.13 is installed OR glibc-locale-32bit-2.22-62.13 is installed OR glibc-profile-2.22-62.13 is installed OR glibc-profile-32bit-2.22-62.13 is installed OR nscd-2.22-62.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libopenssl-devel-1.0.2j-60.30 is installed OR libopenssl1_0_0-1.0.2j-60.30 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.30 is installed OR openssl-1.0.2j-60.30 is installed OR openssl-doc-1.0.2j-60.30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information libvirt-2.0.0-27.42 is installed OR libvirt-client-2.0.0-27.42 is installed OR libvirt-daemon-2.0.0-27.42 is installed OR libvirt-daemon-config-network-2.0.0-27.42 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed OR libvirt-daemon-driver-network-2.0.0-27.42 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed OR libvirt-daemon-hooks-2.0.0-27.42 is installed OR libvirt-daemon-lxc-2.0.0-27.42 is installed OR libvirt-daemon-qemu-2.0.0-27.42 is installed OR libvirt-daemon-xen-2.0.0-27.42 is installed OR libvirt-doc-2.0.0-27.42 is installed OR libvirt-lock-sanlock-2.0.0-27.42 is installed OR libvirt-nss-2.0.0-27.42 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cpp48-4.8.5-30 is installed OR gcc48-4.8.5-30 is installed OR gcc48-32bit-4.8.5-30 is installed OR gcc48-c++-4.8.5-30 is installed OR gcc48-info-4.8.5-30 is installed OR gcc48-locale-4.8.5-30 is installed OR libasan0-4.8.5-30 is installed OR libasan0-32bit-4.8.5-30 is installed OR libstdc++48-devel-4.8.5-30 is installed OR libstdc++48-devel-32bit-4.8.5-30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.0-30.60 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.0-30.60 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.0-30.60 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_103-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_28-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libSoundTouch0-1.7.1-5.6 is installed OR soundtouch-1.7.1-5.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information gnome-shell-3.20.4-77.17 is installed OR gnome-shell-browser-plugin-3.20.4-77.17 is installed OR gnome-shell-lang-3.20.4-77.17 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND nginx-1.16.1-3.12 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libssh2-1-1.8.0-4.10 is installed OR libssh2-1-32bit-1.8.0-4.10 is installed OR libssh2-devel-1.8.0-4.10 is installed OR libssh2_org-1.8.0-4.10 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-150.38 is installed OR kernel-default-extra-4.12.14-150.38 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information gnome-shell-3.26.2+20180130.0d9c74212-4.19 is installed OR gnome-shell-calendar-3.26.2+20180130.0d9c74212-4.19 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND clamav-0.99.3-33.5 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information libdcerpc-atsvc0-4.2.4-28.29 is installed OR samba-4.2.4-28.29 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND slf4j-1.7.12-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND ansible-2.4.6.0-3.3 is installed
BACK