Oval Definition:	oval:org.opensuse.security:def:51097
Revision Date: 2020-12-22 Version: 1 Title: Security update for xen (Moderate) Description: This update for xen fixes the following issues: - CVE-2020-29480: Fixed an issue which could have allowed leak of non-sensitive data to administrator guests (bsc#117949 XSA-115). - CVE-2020-29481: Fixed an issue which could have allowd to new domains to inherit existing node permissions (bsc#1179498 XSA-322). - CVE-2020-29483: Fixed an issue where guests could disturb domain cleanup (bsc#1179502 XSA-325). - CVE-2020-29484: Fixed an issue where guests could crash xenstored via watchs (bsc#1179501 XSA-324). - CVE-2020-29566: Fixed an undue recursion in x86 HVM context switch code (bsc#1179506 XSA-348). - CVE-2020-29570: Fixed an issue where FIFO event channels control block related ordering (bsc#1179514 XSA-358). - CVE-2020-29571: Fixed an issue where FIFO event channels control structure ordering (bsc#1179516 XSA-359). - CVE-2020-29130: Fixed an out-of-bounds access while processing ARP packets (bsc#1179477). - Fixed an issue where dump-core shows missing nr_pages during core (bsc#1176782). - Multiple other bugs (bsc#1027519) Family: unix Class: patch Status: Reference(s): 1013882 1027519 1065600 1101676 1101677 1101678 1103342 1111586 1111858 1111859 1112368 1112377 1112384 1112386 1112391 1112397 1112404 1112415 1112417 1112421 1112432 1112767 1116686 1117507 1117508 1118754 1120041 1122198 1122475 1127027 1136446 1136666 1137597 1140747 1141025 1151317 1152148 1153165 1154217 1155798 1156395 1159530 1160968 1165715 1169511 1170232 1171000 1171073 1171352 1171558 1172277 1172419 1172873 1173060 1173267 1174029 1174110 1174111 1174484 1174486 1174628 1175263 1175667 1175787 1175952 1175996 1175997 1175998 1175999 1176000 1176001 1176022 1176063 1176069 1176782 1177513 1177729 1177950 1178003 1178591 1178890 1178891 1179477 1179496 1179498 1179501 1179502 1179506 1179514 1179516 CVE-2010-1172 CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543 CVE-2011-1709 CVE-2011-2896 CVE-2012-3236 CVE-2012-5576 CVE-2013-0292 CVE-2016-9843 CVE-2018-17095 CVE-2018-19540 CVE-2018-19541 CVE-2018-3058 CVE-2018-3060 CVE-2018-3063 CVE-2018-3064 CVE-2018-3066 CVE-2018-3143 CVE-2018-3156 CVE-2018-3162 CVE-2018-3173 CVE-2018-3174 CVE-2018-3185 CVE-2018-3200 CVE-2018-3251 CVE-2018-3277 CVE-2018-3282 CVE-2018-3284 CVE-2019-10214 CVE-2019-11477 CVE-2019-11478 CVE-2019-14853 CVE-2019-14859 CVE-2019-2510 CVE-2019-2537 CVE-2019-2949 CVE-2019-3846 CVE-2020-0430 CVE-2020-12351 CVE-2020-14344 CVE-2020-14386 CVE-2020-25645 CVE-2020-2654 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-27745 CVE-2020-27746 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 CVE-2020-28368 CVE-2020-29130 CVE-2020-29480 CVE-2020-29481 CVE-2020-29483 CVE-2020-29484 CVE-2020-29566 CVE-2020-29570 CVE-2020-29571 SUSE-SU-2018:3506-1 SUSE-SU-2019:0555-1 SUSE-SU-2019:2512-1 SUSE-SU-2019:2891-1 SUSE-SU-2019:2982-1 SUSE-SU-2020:0712-1 SUSE-SU-2020:1684-1 SUSE-SU-2020:2197-1 SUSE-SU-2020:3505-1 SUSE-SU-2020:3913-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-31.8.0esr-0.13 is installed OR MozillaFirefox-translations-31.8.0esr-0.13 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information flash-player-11.2.202.569-0.35 is installed OR flash-player-gnome-11.2.202.569-0.35 is installed OR flash-player-kde4-11.2.202.569-0.35 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information dbus-1-glib-0.100.2-3 is installed OR dbus-1-glib-32bit-0.100.2-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND dnsmasq-2.71-8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information ImageMagick-6.8.8.1-33 is installed OR libMagick++-6_Q16-3-6.8.8.1-33 is installed OR libMagickCore-6_Q16-1-6.8.8.1-33 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-33 is installed OR libMagickWand-6_Q16-1-6.8.8.1-33 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information bash-4.3-82 is installed OR bash-doc-4.3-82 is installed OR bash-lang-4.3-82 is installed OR libreadline6-6.3-82 is installed OR libreadline6-32bit-6.3-82 is installed OR readline-doc-6.3-82 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information alsa-1.0.27.2-15 is installed OR libasound2-1.0.27.2-15 is installed OR libasound2-32bit-1.0.27.2-15 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information audiofile-0.3.6-3.3 is installed OR audiofile-devel-0.3.6-3.3 is installed OR libaudiofile1-0.3.6-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information libpmi0-18.08.9-3.16 is installed OR libslurm33-18.08.9-3.16 is installed OR perl-slurm-18.08.9-3.16 is installed OR slurm-18.08.9-3.16 is installed OR slurm-auth-none-18.08.9-3.16 is installed OR slurm-config-18.08.9-3.16 is installed OR slurm-config-man-18.08.9-3.16 is installed OR slurm-devel-18.08.9-3.16 is installed OR slurm-doc-18.08.9-3.16 is installed OR slurm-lua-18.08.9-3.16 is installed OR slurm-munge-18.08.9-3.16 is installed OR slurm-node-18.08.9-3.16 is installed OR slurm-pam_slurm-18.08.9-3.16 is installed OR slurm-plugins-18.08.9-3.16 is installed OR slurm-slurmdbd-18.08.9-3.16 is installed OR slurm-sql-18.08.9-3.16 is installed OR slurm-sview-18.08.9-3.16 is installed OR slurm-torque-18.08.9-3.16 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.10-3.38 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.10-3.38 is installed OR java-1_8_0-ibm-devel-1.8.0_sr6.10-3.38 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.10-3.38 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_13-default-8-2 is installed OR kernel-livepatch-SLE15_Update_3-8-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information cluster-md-kmp-azure-5.3.18-18.18 is installed OR dlm-kmp-azure-5.3.18-18.18 is installed OR gfs2-kmp-azure-5.3.18-18.18 is installed OR kernel-azure-5.3.18-18.18 is installed OR kernel-azure-extra-5.3.18-18.18 is installed OR kernel-azure-livepatch-devel-5.3.18-18.18 is installed OR kselftests-kmp-azure-5.3.18-18.18 is installed OR ocfs2-kmp-azure-5.3.18-18.18 is installed OR reiserfs-kmp-azure-5.3.18-18.18 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information python-ecdsa-0.13.3-3.3 is installed OR python3-ecdsa-0.13.3-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libmysqld-devel-10.2.22-3.14 is installed OR libmysqld19-10.2.22-3.14 is installed OR mariadb-10.2.22-3.14 is installed OR mariadb-client-10.2.22-3.14 is installed OR mariadb-errormessages-10.2.22-3.14 is installed OR mariadb-tools-10.2.22-3.14 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND skopeo-0.1.41-4.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND wget-1.14-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_93-default-2-2 is installed OR kgraft-patch-3_12_74-60_64_93-xen-2-2 is installed OR kgraft-patch-SLE12-SP1_Update_28-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information eog-3.20.4-7 is installed OR eog-lang-3.20.4-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libzypp-16.17.20-27.52 is installed OR zypper-1.13.45-18.33 is installed OR zypper-log-1.13.45-18.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kernel-default-4.4.121-92.85 is installed OR kernel-default-base-4.4.121-92.85 is installed OR kernel-default-devel-4.4.121-92.85 is installed OR kernel-devel-4.4.121-92.85 is installed OR kernel-macros-4.4.121-92.85 is installed OR kernel-source-4.4.121-92.85 is installed OR kernel-syms-4.4.121-92.85 is installed OR kgraft-patch-4_4_121-92_85-default-1-3.5 is installed OR kgraft-patch-SLE12-SP2_Update_23-1-3.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND ucode-intel-20180425-13.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information bash-4.3-82 is installed OR bash-doc-4.3-82 is installed OR libreadline6-6.3-82 is installed OR libreadline6-32bit-6.3-82 is installed OR readline-doc-6.3-82 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_162-94_69-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_21-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_162-94_72-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_22-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information xen-4.9.2_10-3.41 is installed OR xen-doc-html-4.9.2_10-3.41 is installed OR xen-libs-4.9.2_10-3.41 is installed OR xen-libs-32bit-4.9.2_10-3.41 is installed OR xen-tools-4.9.2_10-3.41 is installed OR xen-tools-domU-4.9.2_10-3.41 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information evince-3.20.2-6.22 is installed OR evince-browser-plugin-3.20.2-6.22 is installed OR evince-lang-3.20.2-6.22 is installed OR evince-plugin-djvudocument-3.20.2-6.22 is installed OR evince-plugin-dvidocument-3.20.2-6.22 is installed OR evince-plugin-pdfdocument-3.20.2-6.22 is installed OR evince-plugin-psdocument-3.20.2-6.22 is installed OR evince-plugin-tiffdocument-3.20.2-6.22 is installed OR evince-plugin-xpsdocument-3.20.2-6.22 is installed OR libevdocument3-4-3.20.2-6.22 is installed OR libevview3-3-3.20.2-6.22 is installed OR nautilus-evince-3.20.2-6.22 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libX11-1.6.5-3.9 is installed OR libX11-6-1.6.5-3.9 is installed OR libX11-6-32bit-1.6.5-3.9 is installed OR libX11-data-1.6.5-3.9 is installed OR libX11-devel-1.6.5-3.9 is installed OR libX11-xcb1-1.6.5-3.9 is installed OR libX11-xcb1-32bit-1.6.5-3.9 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND Package Information xen-4.7.6_14-43.73.1 is installed OR xen-doc-html-4.7.6_14-43.73.1 is installed OR xen-libs-4.7.6_14-43.73.1 is installed OR xen-libs-32bit-4.7.6_14-43.73.1 is installed OR xen-tools-4.7.6_14-43.73.1 is installed OR xen-tools-domU-4.7.6_14-43.73.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND enigmail-2.1.2-3.19 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND ruby2.1-rubygem-bundler-1.7.3-3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND python-PyJWT-1.4.2-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND python-Django-1.11.11-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND ansible-2.4.6.0-3.3 is installed
BACK