Oval Definition:	oval:org.opensuse.security:def:50694
Revision Date: 2020-12-01 Version: 1 Title: Security update for qemu (Important) Description: This update for qemu fixes the following issues: * qemu was updated to v3.1.1.1, a stable, bug-fix-only release, which includes 2 fixes we already carry, as well as one additional use- after-free fix in slirp. (CVE-2018-20126 bsc#1119991, CVE-2019-14378 bsc#1143794, and CVE-2019-15890 bsc#1149811 respectively) Security issues fixed: - CVE-2019-12068: Fixed potential DOS in lsi scsi controller emulation (bsc#1146873) - CVE-2019-11135: Expose taa-no 'feature', indicating CPU does not have the TSX Async Abort vulnerability. (bsc#1152506) - CVE-2018-12207: Expose pschange-mc-no 'feature', indicating CPU does not have the page size change machine check vulnerability (bsc#1117665) Other issues fixed: - Change how this bug gets fixed (bsc#1144087) - Disable file locking in the Xen PV disk backend to avoid locking issues with PV domUs during migration. The issues triggered by the locking can not be properly handled in libxl. The locking introduced in qemu-2.10 was removed again in qemu-4.0. (bsc#1079730, bsc#1098403, bsc#1111025, bsc#1145427, bsc#1145774) - Feature support for vfio-ccw dasd ipl (bsc#1145379 jira-SLE-6132) - Additional hardware instruction support for s390, also update qemu linux headers to 5.2-rc1 (bsc#1145436 jira-SLE-6237) Family: unix Class: patch Status: Reference(s): 1055186 1058115 1065600 1065729 1079730 1082318 1094244 1098403 1111025 1117665 1119991 1132091 1133297 1136446 1136666 1138264 1140095 1140101 1143794 1144087 1145379 1145427 1145436 1145774 1146873 1149811 1152148 1152472 1152489 1152506 1153274 1154353 1154609 1155217 1155518 1155798 1156395 1156402 1157268 1157465 1159284 1159913 1160460 1160682 1160878 1160883 1160895 1160912 1162327 1162388 1164390 1165572 1165631 1167437 1167527 1168340 1169604 1169800 1170104 1170232 1170288 1170595 1170774 1171000 1171068 1171073 1171558 1171688 1171742 1171889 1171906 1172075 1172419 1172461 1172506 1172757 1172873 1173017 1173060 1173072 1173115 1173267 1173746 1173998 1174029 1174110 1174111 1174154 1174165 1174358 1174484 1174486 1174899 1175263 1175667 1175718 1175749 1175787 1175882 1175952 1175996 1175997 1175998 1175999 1176000 1176001 1176019 1176022 1176038 1176063 1176137 1176235 1176236 1176237 1176242 1176278 1176357 1176358 1176359 1176360 1176361 1176362 1176363 1176364 1176365 1176366 1176367 1176381 1176423 1176449 1176482 1176486 1176507 1176536 1176537 1176538 1176539 1176540 1176541 1176542 1176544 1176545 1176546 1176548 1176558 1176559 1176587 1176588 1176659 1176698 1176699 1176700 1176721 1176722 1176725 1176732 1176763 1176775 1176788 1176789 1176833 1176869 1176877 1176925 1176962 1176980 1176990 1177021 1177030 CVE-2018-12207 CVE-2018-20126 CVE-2019-11023 CVE-2019-11135 CVE-2019-12068 CVE-2019-12817 CVE-2019-13117 CVE-2019-13118 CVE-2019-14378 CVE-2019-15890 CVE-2019-18197 CVE-2019-18466 CVE-2019-18897 CVE-2019-18901 CVE-2019-18934 CVE-2019-20372 CVE-2019-2201 CVE-2019-3846 CVE-2019-5108 CVE-2020-0404 CVE-2020-0427 CVE-2020-0431 CVE-2020-0432 CVE-2020-11651 CVE-2020-11652 CVE-2020-12662 CVE-2020-12663 CVE-2020-13753 CVE-2020-13777 CVE-2020-14385 CVE-2020-14390 CVE-2020-15719 CVE-2020-1749 CVE-2020-25212 CVE-2020-25284 CVE-2020-2574 CVE-2020-26088 CVE-2020-9802 CVE-2020-9803 CVE-2020-9805 CVE-2020-9806 CVE-2020-9807 CVE-2020-9843 CVE-2020-9850 SUSE-SU-2019:1765-1 SUSE-SU-2019:2955-1 SUSE-SU-2019:2971-1 SUSE-SU-2020:0348-1 SUSE-SU-2020:0496-1 SUSE-SU-2020:0697-1 SUSE-SU-2020:1396-1 SUSE-SU-2020:1584-1 SUSE-SU-2020:1973-1 SUSE-SU-2020:1990-1 SUSE-SU-2020:2879-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6-LTSS SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information flash-player-11.2.202.554-0.29 is installed OR flash-player-gnome-11.2.202.554-0.29 is installed OR flash-player-kde4-11.2.202.554-0.29 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND libaugeas0-1.2.0-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND libdmx1-1.1.3-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information ImageMagick-6.8.8.1-33 is installed OR libMagick++-6_Q16-3-6.8.8.1-33 is installed OR libMagickCore-6_Q16-1-6.8.8.1-33 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-33 is installed OR libMagickWand-6_Q16-1-6.8.8.1-33 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND rsync-3.1.0-12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information apparmor-docs-2.8.2-49 is installed OR apparmor-parser-2.8.2-49 is installed OR apparmor-profiles-2.8.2-49 is installed OR apparmor-utils-2.8.2-49 is installed OR libapparmor1-2.8.2-49 is installed OR libapparmor1-32bit-2.8.2-49 is installed OR pam_apparmor-2.8.2-49 is installed OR pam_apparmor-32bit-2.8.2-49 is installed OR perl-apparmor-2.8.2-49 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information qemu-3.1.1.1-9.6 is installed OR qemu-tools-3.1.1.1-9.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP2 is installed AND Package Information kernel-default-5.3.18-24.24 is installed OR reiserfs-kmp-default-5.3.18-24.24 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-195-default-3-7 is installed OR kernel-livepatch-SLE15-SP1_Update_0-3-7 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libjpeg-turbo-1.5.3-5.12 is installed OR libjpeg62-32bit-62.2.0-5.12 is installed OR libjpeg62-devel-32bit-62.2.0-5.12 is installed OR libjpeg62-turbo-1.5.3-5.12 is installed OR libjpeg8-devel-32bit-8.1.2-5.12 is installed OR libturbojpeg0-32bit-8.1.2-5.12 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information graphviz-addons-2.40.1-6.3 is installed OR graphviz-doc-2.40.1-6.3 is installed OR graphviz-gnome-2.40.1-6.3 is installed OR graphviz-guile-2.40.1-6.3 is installed OR graphviz-gvedit-2.40.1-6.3 is installed OR graphviz-java-2.40.1-6.3 is installed OR graphviz-lua-2.40.1-6.3 is installed OR graphviz-php-2.40.1-6.3 is installed OR graphviz-ruby-2.40.1-6.3 is installed OR graphviz-smyrna-2.40.1-6.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information cni-0.7.1-3.3 is installed OR cni-plugins-0.8.4-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information libmysqld-devel-10.2.31-3.26 is installed OR libmysqld19-10.2.31-3.26 is installed OR mariadb-10.2.31-3.26 is installed OR mariadb-client-10.2.31-3.26 is installed OR mariadb-errormessages-10.2.31-3.26 is installed OR mariadb-tools-10.2.31-3.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND cifs-utils-6.4-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND wpa_supplicant-2.2-15.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information apache-commons-daemon-1.0.15-4 is installed OR apache-commons-daemon-javadoc-1.0.15-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libopenssl-devel-1.0.2j-60.30 is installed OR libopenssl1_0_0-1.0.2j-60.30 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.30 is installed OR openssl-1.0.2j-60.30 is installed OR openssl-doc-1.0.2j-60.30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND binutils-2.31-9.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_45-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_14-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND coolkey-1.1.0-147 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libpcap-1.8.1-10.3 is installed OR libpcap1-1.8.1-10.3 is installed OR tcpdump-4.9.2-14.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_97-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_26-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information gdm-3.10.0.1-54.6 is installed OR gdm-lang-3.10.0.1-54.6 is installed OR gdmflexiserver-3.10.0.1-54.6 is installed OR libgdm1-3.10.0.1-54.6 is installed OR typelib-1_0-Gdm-1_0-3.10.0.1-54.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libQt5WebKit5-5.6.2-1 is installed OR libQt5WebKit5-imports-5.6.2-1 is installed OR libQt5WebKitWidgets5-5.6.2-1 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information gnutls-3.6.7-6.29 is installed OR libgnutls-devel-3.6.7-6.29 is installed OR libgnutls30-3.6.7-6.29 is installed OR libgnutls30-32bit-3.6.7-6.29 is installed OR libgnutls30-hmac-3.6.7-6.29 is installed OR libgnutls30-hmac-32bit-3.6.7-6.29 is installed OR libgnutlsxx-devel-3.6.7-6.29 is installed OR libgnutlsxx28-3.6.7-6.29 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information wicked-0.6.60-3.21 is installed OR wicked-service-0.6.60-3.21 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information bluez-5.48-5.8 is installed OR bluez-cups-5.48-5.8 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information openconnect-7.08-6.3 is installed OR openconnect-devel-7.08-6.3 is installed OR openconnect-lang-7.08-6.3 is installed Definition Synopsis SUSE OpenStack Cloud 6-LTSS is installed AND Package Information containerd-1.2.2-16.14 is installed OR docker-18.09.1_ce-98.34 is installed OR docker-libnetwork-0.7.0.1+gitr2711_2cfbf9b1f981-16 is installed OR docker-runc-1.0.0rc6+gitr3748_96ec2177ae84-1.17 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2711_2cfbf9b1f981-16 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information postgresql94-9.4.19-21.22 is installed OR postgresql94-contrib-9.4.19-21.22 is installed OR postgresql94-docs-9.4.19-21.22 is installed OR postgresql94-server-9.4.19-21.22 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND squid-3.5.21-26.17 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information dovecot22-2.2.31-19.17 is installed OR dovecot22-backend-mysql-2.2.31-19.17 is installed OR dovecot22-backend-pgsql-2.2.31-19.17 is installed OR dovecot22-backend-sqlite-2.2.31-19.17 is installed
BACK