Oval Definition:	oval:org.opensuse.security:def:51090
Revision Date: 2020-12-10 Version: 1 Title: Security update for xen (Important) Description: This update for xen fixes the following issues: - bsc#1178963 - stack corruption from XSA-346 change (XSA-355) - bsc#1177409 - CVE-2020-27674: x86 PV guest INVLPG-like flushes may leave stale TLB entries (XSA-286) - bsc#1177412 - CVE-2020-27672: Race condition in Xen mapping code (XSA-345) - bsc#1177413 - CVE-2020-27671: undue deferral of IOMMU TLB flushes (XSA-346) - bsc#1177414 - CVE-2020-27670: unsafe AMD IOMMU page table updates (XSA-347) - bsc#1178591 - CVE-2020-28368: Intel RAPL sidechannel attack aka PLATYPUS attack aka XSA-351 Family: unix Class: patch Status: Reference(s): 1050549 1051510 1052904 1053043 1055117 1055121 1061840 1065600 1065729 1070872 1071995 1078216 1082555 1083647 1085030 1085535 1085536 1088804 1093777 1094120 1094244 1097583 1097584 1097585 1097586 1097587 1097588 1100132 1103186 1103259 1107937 1109663 1111331 1112128 1112178 1113399 1113722 1114279 1114542 1114638 1119086 1119680 1120163 1120318 1120902 1122767 1123105 1125342 1125431 1126221 1126356 1126704 1126740 1127175 1127371 1127372 1127374 1127378 1127445 1128415 1128544 1129276 1129770 1130130 1130154 1130195 1130335 1130336 1130337 1130338 1130425 1130427 1130518 1130527 1130567 1131062 1131107 1131167 1131168 1131169 1131170 1131171 1131172 1131173 1131174 1131175 1131176 1131177 1131178 1131179 1131180 1131290 1131335 1131336 1131416 1131427 1131442 1131467 1131574 1131587 1131659 1131673 1131847 1131848 1131851 1131900 1131934 1131935 1132083 1132219 1132226 1132227 1132365 1132368 1132369 1132370 1132372 1132373 1132384 1132397 1132402 1132403 1132404 1132405 1132407 1132411 1132412 1132413 1132414 1132426 1132527 1132531 1132555 1132558 1132561 1132562 1132563 1132564 1132570 1132571 1132572 1132589 1132618 1132681 1132726 1132828 1132943 1133005 1133021 1133041 1133043 1133094 1133095 1133115 1133149 1133191 1133486 1133529 1133584 1133667 1133668 1133672 1133674 1133675 1133698 1133702 1133731 1133769 1133772 1133774 1133778 1133779 1133780 1133825 1133850 1133851 1133852 1135280 1136446 1136935 1137597 1138529 1140709 1140868 1141322 1149032 1149296 1149297 1149298 1149299 1149303 1149304 1150939 1151455 1152375 1152472 1152489 1152856 1153095 1153245 1153274 1154212 1154353 1154460 1154464 1154488 1154492 1155518 1156146 1156395 1157179 1157888 1158003 1158004 1158005 1158006 1158007 1159058 1160634 1167773 1169790 1171634 1171688 1172108 1172197 1172247 1172418 1172871 1172963 1173468 1173485 1173798 1173813 1173954 1174002 1174003 1174026 1174205 1174247 1174362 1174387 1174415 1174484 1174625 1174645 1174689 1174699 1174737 1174757 1174762 1174770 1174771 1174777 1174805 1174824 1174825 1174852 1174865 1174880 1174897 1174906 1174969 1175009 1175010 1175011 1175012 1175013 1175014 1175015 1175016 1175017 1175018 1175019 1175020 1175021 1175052 1175112 1175116 1175128 1175149 1175175 1175176 1175180 1175181 1175182 1175183 1175184 1175185 1175186 1175187 1175188 1175189 1175190 1175191 1175192 1175195 1175199 1175213 1175232 1175263 1175284 1175296 1175344 1175345 1175346 1175347 1175367 1175377 1175440 1175493 1175546 1175550 1175654 1175691 1175768 1175769 1175770 1175771 1175772 1175774 1175775 1175834 1175873 1175992 1176012 1176072 1176382 1176896 1177409 1177412 1177413 1177414 1178591 1178593 1178963 CVE-2009-0163 CVE-2009-0946 CVE-2009-2820 CVE-2009-3553 CVE-2010-0393 CVE-2010-0540 CVE-2010-0542 CVE-2010-1748 CVE-2010-2497 CVE-2010-2805 CVE-2010-2941 CVE-2010-3053 CVE-2010-3054 CVE-2010-3311 CVE-2010-3814 CVE-2011-0226 CVE-2012-5519 CVE-2012-5668 CVE-2012-5669 CVE-2012-5670 CVE-2012-6094 CVE-2014-0250 CVE-2014-0791 CVE-2014-2856 CVE-2014-3537 CVE-2014-5029 CVE-2014-5030 CVE-2014-5031 CVE-2017-18926 CVE-2018-1000802 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-16880 CVE-2019-11085 CVE-2019-11091 CVE-2019-11460 CVE-2019-11461 CVE-2019-11477 CVE-2019-11478 CVE-2019-11487 CVE-2019-11709 CVE-2019-11710 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11714 CVE-2019-11715 CVE-2019-11716 CVE-2019-11717 CVE-2019-11719 CVE-2019-11720 CVE-2019-11721 CVE-2019-11723 CVE-2019-11724 CVE-2019-11725 CVE-2019-11727 CVE-2019-11728 CVE-2019-11729 CVE-2019-11730 CVE-2019-11739 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11752 CVE-2019-11755 CVE-2019-12838 CVE-2019-14818 CVE-2019-18422 CVE-2019-18423 CVE-2019-19577 CVE-2019-19578 CVE-2019-19579 CVE-2019-19580 CVE-2019-19581 CVE-2019-19582 CVE-2019-19583 CVE-2019-2894 CVE-2019-2933 CVE-2019-2945 CVE-2019-2949 CVE-2019-2958 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2975 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2987 CVE-2019-2988 CVE-2019-2989 CVE-2019-2992 CVE-2019-2999 CVE-2019-3846 CVE-2019-3882 CVE-2019-8308 CVE-2019-9003 CVE-2019-9500 CVE-2019-9503 CVE-2020-0431 CVE-2020-14314 CVE-2020-14331 CVE-2020-14356 CVE-2020-14381 CVE-2020-14386 CVE-2020-15900 CVE-2020-16166 CVE-2020-24394 CVE-2020-25212 CVE-2020-27670 CVE-2020-27671 CVE-2020-27672 CVE-2020-27674 CVE-2020-28368 SUSE-SU-2018:3002-1 SUSE-SU-2019:1240-1 SUSE-SU-2019:2185-1 SUSE-SU-2019:2515-1 SUSE-SU-2019:2989-1 SUSE-SU-2019:3238-1 SUSE-SU-2019:3309-1 SUSE-SU-2020:0439-1 SUSE-SU-2020:2095-1 SUSE-SU-2020:3180-1 SUSE-SU-2020:3742-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information xorg-x11-libXt-7.4-1.19 is installed OR xorg-x11-libXt-32bit-7.4-1.19 is installed OR xorg-x11-libXt-devel-7.4-1.19 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information flash-player-11.2.202.508-0.14 is installed OR flash-player-gnome-11.2.202.508-0.14 is installed OR flash-player-kde4-11.2.202.508-0.14 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information cups-1.7.5-2 is installed OR cups-client-1.7.5-2 is installed OR cups-libs-1.7.5-2 is installed OR cups-libs-32bit-1.7.5-2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information curl-7.37.0-15 is installed OR libcurl4-7.37.0-15 is installed OR libcurl4-32bit-7.37.0-15 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND dnsmasq-2.71-10 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information apparmor-docs-2.8.2-49 is installed OR apparmor-parser-2.8.2-49 is installed OR apparmor-profiles-2.8.2-49 is installed OR apparmor-utils-2.8.2-49 is installed OR libapparmor1-2.8.2-49 is installed OR libapparmor1-32bit-2.8.2-49 is installed OR pam_apparmor-2.8.2-49 is installed OR pam_apparmor-32bit-2.8.2-49 is installed OR perl-apparmor-2.8.2-49 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information python-2.7.14-7.3 is installed OR python-tk-2.7.14-7.3 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information libslurm32-17.11.13-6.18 is installed OR slurm-17.11.13-6.18 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information java-1_8_0-openjdk-1.8.0.232-3.27 is installed OR java-1_8_0-openjdk-demo-1.8.0.232-3.27 is installed OR java-1_8_0-openjdk-devel-1.8.0.232-3.27 is installed OR java-1_8_0-openjdk-headless-1.8.0.232-3.27 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_16-default-6-2 is installed OR kernel-livepatch-SLE15_Update_4-6-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information cluster-md-kmp-preempt-5.3.18-24.12 is installed OR dlm-kmp-preempt-5.3.18-24.12 is installed OR gfs2-kmp-preempt-5.3.18-24.12 is installed OR kernel-debug-5.3.18-24.12 is installed OR kernel-debug-devel-5.3.18-24.12 is installed OR kernel-debug-livepatch-devel-5.3.18-24.12 is installed OR kernel-default-5.3.18-24.12 is installed OR kernel-default-base-5.3.18-24.12.1.9.4 is installed OR kernel-default-base-rebuild-5.3.18-24.12.1.9.4 is installed OR kernel-default-livepatch-5.3.18-24.12 is installed OR kernel-docs-5.3.18-24.12 is installed OR kernel-docs-html-5.3.18-24.12 is installed OR kernel-kvmsmall-5.3.18-24.12 is installed OR kernel-kvmsmall-devel-5.3.18-24.12 is installed OR kernel-kvmsmall-livepatch-devel-5.3.18-24.12 is installed OR kernel-obs-qa-5.3.18-24.12 is installed OR kernel-preempt-5.3.18-24.12 is installed OR kernel-preempt-extra-5.3.18-24.12 is installed OR kernel-preempt-livepatch-devel-5.3.18-24.12 is installed OR kernel-source-5.3.18-24.12 is installed OR kernel-source-vanilla-5.3.18-24.12 is installed OR kselftests-kmp-default-5.3.18-24.12 is installed OR kselftests-kmp-preempt-5.3.18-24.12 is installed OR ocfs2-kmp-preempt-5.3.18-24.12 is installed OR reiserfs-kmp-preempt-5.3.18-24.12 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.27 is installed OR kernel-azure-base-4.12.14-5.27 is installed OR kernel-azure-devel-4.12.14-5.27 is installed OR kernel-devel-azure-4.12.14-5.27 is installed OR kernel-source-azure-4.12.14-5.27 is installed OR kernel-syms-azure-4.12.14-5.27 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information xen-4.10.4_08-3.28 is installed OR xen-devel-4.10.4_08-3.28 is installed OR xen-tools-4.10.4_08-3.28 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information dpdk-18.11.3-4.3 is installed OR dpdk-devel-18.11.3-4.3 is installed OR dpdk-kmp-default-18.11.3_k4.12.14_197.29-4.3 is installed OR dpdk-tools-18.11.3-4.3 is installed OR libdpdk-18_11-18.11.3-4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND rsync-3.1.0-9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND ucode-intel-20180703-13.25 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information dovecot22-2.2.13-2 is installed OR dovecot22-backend-mysql-2.2.13-2 is installed OR dovecot22-backend-pgsql-2.2.13-2 is installed OR dovecot22-backend-sqlite-2.2.13-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libdcerpc-atsvc0-4.2.4-28.29 is installed OR samba-4.2.4-28.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information gpg2-2.0.24-9.3 is installed OR gpg2-lang-2.0.24-9.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_73-default-2-2 is installed OR kgraft-patch-SLE12-SP2_Update_21-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_perl-2.0.8-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information MozillaFirefox-60.9.0-109.86 is installed OR MozillaFirefox-translations-common-60.9.0-109.86 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information MozillaFirefox-60.9.0-109.86 is installed OR MozillaFirefox-translations-common-60.9.0-109.86 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libblkid1-2.29.2-3.12 is installed OR libblkid1-32bit-2.29.2-3.12 is installed OR libfdisk1-2.29.2-3.12 is installed OR libmount1-2.29.2-3.12 is installed OR libmount1-32bit-2.29.2-3.12 is installed OR libsmartcols1-2.29.2-3.12 is installed OR libuuid1-2.29.2-3.12 is installed OR libuuid1-32bit-2.29.2-3.12 is installed OR python-libmount-2.29.2-3.12 is installed OR util-linux-2.29.2-3.12 is installed OR util-linux-lang-2.29.2-3.12 is installed OR util-linux-systemd-2.29.2-3.12 is installed OR uuidd-2.29.2-3.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information dracut-044.1-9 is installed OR dracut-fips-044.1-9 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information ghostscript-9.52-3.32 is installed OR ghostscript-devel-9.52-3.32 is installed OR ghostscript-x11-9.52-3.32 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND Package Information xen-4.7.6_12-43.70.1 is installed OR xen-doc-html-4.7.6_12-43.70.1 is installed OR xen-libs-4.7.6_12-43.70.1 is installed OR xen-libs-32bit-4.7.6_12-43.70.1 is installed OR xen-tools-4.7.6_12-43.70.1 is installed OR xen-tools-domU-4.7.6_12-43.70.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-68.1.1-3.51 is installed OR MozillaThunderbird-translations-common-68.1.1-3.51 is installed OR MozillaThunderbird-translations-other-68.1.1-3.51 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information rabbitmq-server-3.4.4-2 is installed OR rabbitmq-server-plugins-3.4.4-2 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information dnsmasq-2.78-18.3 is installed OR dnsmasq-utils-2.78-18.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND slf4j-1.7.12-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information crowbar-5.0+git.1528696845.81a7b5d0-3.3 is installed OR crowbar-core-5.0+git.1533887407.6e9b0412d-3.8 is installed OR crowbar-core-branding-upstream-5.0+git.1533887407.6e9b0412d-3.8 is installed OR crowbar-devel-5.0+git.1528696845.81a7b5d0-3.3 is installed OR crowbar-ha-5.0+git.1530177874.35b9099-3.3 is installed OR crowbar-init-5.0+git.1520420379.d5bbb35-3.3 is installed OR crowbar-openstack-5.0+git.1534167599.d325ef804-4.8 is installed OR crowbar-ui-1.2.0+git.1533844061.4ac8e723-3.3 is installed
BACK