OVAL Reference oval:org.opensuse.security:def:51788

Oval Definition:

oval:org.opensuse.security:def:51788

Revision Date:	2020-12-01	Version:	1
Title:	Security update for qemu (Important)
Description:	This update for qemu fixes the following issues: Security issues fixed: - CVE-2019-6778: Fixed a heap buffer overflow issue in the SLiRP networking implementation (bsc#1123156). - CVE-2018-16872: Fixed a host security vulnerability related to handling symlinks in usb-mtp (bsc#1119493). - CVE-2018-19489: Fixed a denial of service vulnerability in virtfs (bsc#1117275). - CVE-2018-19364: Fixed a use-after-free if the virtfs interface resulting in a denial of service (bsc#1116717). - CVE-2018-18954: Fixed a denial of service vulnerability related to PowerPC PowerNV memory operations (bsc#1114957). Non-security issues fixed: - Improved disk performance for qemu on xen (bsc#1100408). - Fixed xen offline migration (bsc#1079730, bsc#1101982, bsc#1063993). - Fixed pwrite64/pread64/write to return 0 over -1 for a zero length NULL buffer in qemu (bsc#1121600). - Use /bin/bash to echo value into sys fs for ksm control (bsc#1112646). - Return specification exception for unimplemented diag 308 subcodes rather than a hardware error (bsc#1123179).
Family:	unix	Class:	patch
Status:		Reference(s):	1027519 1063993 1079730 1085416 1087240 1100408 1101982 1103557 1104129 1104918 1112028 1112646 1114957 1116708 1116717 1117275 1117963 1117964 1117965 1117966 1117967 1119493 1120507 1121086 1121600 1122838 1122839 1123156 1123179 1126068 1126069 1133185 1138172 1138173 1160968 1172205 1173274 1173376 1173377 1173378 1173380 CVE-2009-0368 CVE-2009-2624 CVE-2010-0001 CVE-2010-2529 CVE-2010-4523 CVE-2011-4405 CVE-2012-2812 CVE-2012-2813 CVE-2012-2814 CVE-2012-2836 CVE-2012-2837 CVE-2012-2840 CVE-2012-2841 CVE-2014-1932 CVE-2014-2653 CVE-2015-5352 CVE-2015-5600 CVE-2015-6563 CVE-2015-6564 CVE-2015-8325 CVE-2016-0777 CVE-2016-0778 CVE-2016-1908 CVE-2016-3115 CVE-2016-6210 CVE-2016-6515 CVE-2018-0886 CVE-2018-1000852 CVE-2018-16872 CVE-2018-17189 CVE-2018-17199 CVE-2018-18954 CVE-2018-19364 CVE-2018-19489 CVE-2018-5740 CVE-2018-5743 CVE-2018-5745 CVE-2018-8784 CVE-2018-8785 CVE-2018-8786 CVE-2018-8787 CVE-2018-8788 CVE-2018-8789 CVE-2019-11039 CVE-2019-11040 CVE-2019-6465 CVE-2019-6778 CVE-2020-0543 CVE-2020-14422 CVE-2020-15563 CVE-2020-15565 CVE-2020-15566 CVE-2020-15567 CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2654 CVE-2020-2655 SUSE-SU-2019:0423-1 SUSE-SU-2019:0504-1 SUSE-SU-2019:0539-1 SUSE-SU-2019:1407-1 SUSE-SU-2019:1832-1 SUSE-SU-2020:0213-1 SUSE-SU-2020:1889-1 SUSE-SU-2020:1920-1
Platform(s):	openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND bubblewrap-0.2.0-lp150.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-17.0.10esr-0.7 is installed OR MozillaFirefox-branding-SLED-7-0.12 is installed OR MozillaFirefox-translations-17.0.10esr-0.7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND socat-1.7.0.0-1.18 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND gzip-1.6-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libexif12-0.6.21-6 is installed OR libexif12-32bit-0.6.21-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND iputils-s20121221-2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information java-1_8_0-openjdk-1.8.0.131-26 is installed OR java-1_8_0-openjdk-headless-1.8.0.131-26 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information finch-2.12.0-3.3 is installed OR libpurple-2.12.0-3.3 is installed OR libpurple-branding-upstream-2.12.0-3.3 is installed OR libpurple-lang-2.12.0-3.3 is installed OR libpurple-plugin-sametime-2.12.0-3.3 is installed OR libpurple-tcl-2.12.0-3.3 is installed OR pidgin-2.12.0-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information qemu-2.11.2-9.20 is installed OR qemu-block-dmg-2.11.2-9.20 is installed OR qemu-extra-2.11.2-9.20 is installed OR qemu-linux-user-2.11.2-9.20 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND python-ipaddress-1.0.18-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information bind-9.11.2-12.11 is installed OR bind-chrootenv-9.11.2-12.11 is installed OR bind-doc-9.11.2-12.11 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information xen-4.12.3_04-3.22 is installed OR xen-devel-4.12.3_04-3.22 is installed OR xen-tools-4.12.3_04-3.22 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information apache2-mod_php7-7.2.5-4.35 is installed OR php7-7.2.5-4.35 is installed OR php7-bcmath-7.2.5-4.35 is installed OR php7-bz2-7.2.5-4.35 is installed OR php7-calendar-7.2.5-4.35 is installed OR php7-ctype-7.2.5-4.35 is installed OR php7-curl-7.2.5-4.35 is installed OR php7-dba-7.2.5-4.35 is installed OR php7-devel-7.2.5-4.35 is installed OR php7-dom-7.2.5-4.35 is installed OR php7-enchant-7.2.5-4.35 is installed OR php7-exif-7.2.5-4.35 is installed OR php7-fastcgi-7.2.5-4.35 is installed OR php7-fileinfo-7.2.5-4.35 is installed OR php7-fpm-7.2.5-4.35 is installed OR php7-ftp-7.2.5-4.35 is installed OR php7-gd-7.2.5-4.35 is installed OR php7-gettext-7.2.5-4.35 is installed OR php7-gmp-7.2.5-4.35 is installed OR php7-iconv-7.2.5-4.35 is installed OR php7-intl-7.2.5-4.35 is installed OR php7-json-7.2.5-4.35 is installed OR php7-ldap-7.2.5-4.35 is installed OR php7-mbstring-7.2.5-4.35 is installed OR php7-mysql-7.2.5-4.35 is installed OR php7-odbc-7.2.5-4.35 is installed OR php7-opcache-7.2.5-4.35 is installed OR php7-openssl-7.2.5-4.35 is installed OR php7-pcntl-7.2.5-4.35 is installed OR php7-pdo-7.2.5-4.35 is installed OR php7-pear-7.2.5-4.35 is installed OR php7-pear-Archive_Tar-7.2.5-4.35 is installed OR php7-pgsql-7.2.5-4.35 is installed OR php7-phar-7.2.5-4.35 is installed OR php7-posix-7.2.5-4.35 is installed OR php7-shmop-7.2.5-4.35 is installed OR php7-snmp-7.2.5-4.35 is installed OR php7-soap-7.2.5-4.35 is installed OR php7-sockets-7.2.5-4.35 is installed OR php7-sodium-7.2.5-4.35 is installed OR php7-sqlite-7.2.5-4.35 is installed OR php7-sysvmsg-7.2.5-4.35 is installed OR php7-sysvsem-7.2.5-4.35 is installed OR php7-sysvshm-7.2.5-4.35 is installed OR php7-tokenizer-7.2.5-4.35 is installed OR php7-wddx-7.2.5-4.35 is installed OR php7-xmlreader-7.2.5-4.35 is installed OR php7-xmlrpc-7.2.5-4.35 is installed OR php7-xmlwriter-7.2.5-4.35 is installed OR php7-xsl-7.2.5-4.35 is installed OR php7-zip-7.2.5-4.35 is installed OR php7-zlib-7.2.5-4.35 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libXcursor1-1.1.14-3 is installed OR libXcursor1-32bit-1.1.14-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information MozillaFirefox-60.2.2esr-109.46 is installed OR MozillaFirefox-branding-SLE-60-32.3 is installed OR MozillaFirefox-devel-60.2.2esr-109.46 is installed OR MozillaFirefox-translations-common-60.2.2esr-109.46 is installed OR apache2-mod_nss-1.0.14-19.6 is installed OR libfreebl3-3.36.4-58.15 is installed OR libfreebl3-32bit-3.36.4-58.15 is installed OR libfreebl3-hmac-3.36.4-58.15 is installed OR libfreebl3-hmac-32bit-3.36.4-58.15 is installed OR libsoftokn3-3.36.4-58.15 is installed OR libsoftokn3-32bit-3.36.4-58.15 is installed OR libsoftokn3-hmac-3.36.4-58.15 is installed OR libsoftokn3-hmac-32bit-3.36.4-58.15 is installed OR mozilla-nspr-4.19-19.3 is installed OR mozilla-nspr-32bit-4.19-19.3 is installed OR mozilla-nspr-devel-4.19-19.3 is installed OR mozilla-nss-3.36.4-58.15 is installed OR mozilla-nss-32bit-3.36.4-58.15 is installed OR mozilla-nss-certs-3.36.4-58.15 is installed OR mozilla-nss-certs-32bit-3.36.4-58.15 is installed OR mozilla-nss-devel-3.36.4-58.15 is installed OR mozilla-nss-sysinit-3.36.4-58.15 is installed OR mozilla-nss-sysinit-32bit-3.36.4-58.15 is installed OR mozilla-nss-tools-3.36.4-58.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libupsclient1-2.7.1-4 is installed OR nut-2.7.1-4 is installed OR nut-drivers-net-2.7.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information perl-5.18.2-12.14 is installed OR perl-32bit-5.18.2-12.14 is installed OR perl-base-5.18.2-12.14 is installed OR perl-doc-5.18.2-12.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND clamav-0.100.1-33.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_29-default-12-2 is installed OR kgraft-patch-SLE12-SP2_Update_10-12-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information at-3.1.14-7 is installed OR flex-2.5.37-8 is installed OR flex-32bit-2.5.37-8 is installed OR libQtWebKit4-4.8.6+2.3.3-3 is installed OR libQtWebKit4-32bit-4.8.6+2.3.3-3 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-doc-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND ucode-intel-20191112-13.53 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_162-94_69-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_21-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information openslp-2.0.0-18.15 is installed OR openslp-32bit-2.0.0-18.15 is installed OR openslp-server-2.0.0-18.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information avahi-0.6.32-30 is installed OR avahi-lang-0.6.32-30 is installed OR avahi-utils-0.6.32-30 is installed OR libavahi-client3-0.6.32-30 is installed OR libavahi-client3-32bit-0.6.32-30 is installed OR libavahi-common3-0.6.32-30 is installed OR libavahi-common3-32bit-0.6.32-30 is installed OR libavahi-core7-0.6.32-30 is installed OR libdns_sd-0.6.32-30 is installed OR libdns_sd-32bit-0.6.32-30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information xen-4.10.4_12-3.35 is installed OR xen-devel-4.10.4_12-3.35 is installed OR xen-libs-4.10.4_12-3.35 is installed OR xen-tools-4.10.4_12-3.35 is installed OR xen-tools-domU-4.10.4_12-3.35 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information freerdp-2.0.0~rc4-3.3 is installed OR freerdp-devel-2.0.0~rc4-3.3 is installed OR libfreerdp2-2.0.0~rc4-3.3 is installed OR libwinpr2-2.0.0~rc4-3.3 is installed OR winpr2-devel-2.0.0~rc4-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information openstack-ceilometer-5.0.4~a0~dev6-6 is installed OR openstack-ceilometer-agent-central-5.0.4~a0~dev6-6 is installed OR openstack-ceilometer-agent-compute-5.0.4~a0~dev6-6 is installed OR openstack-ceilometer-agent-ipmi-5.0.4~a0~dev6-6 is installed OR openstack-ceilometer-agent-notification-5.0.4~a0~dev6-6 is installed OR openstack-ceilometer-alarm-evaluator-5.0.4~a0~dev6-6 is installed OR openstack-ceilometer-alarm-notifier-5.0.4~a0~dev6-6 is installed OR openstack-ceilometer-api-5.0.4~a0~dev6-6 is installed OR openstack-ceilometer-collector-5.0.4~a0~dev6-6 is installed OR openstack-ceilometer-doc-5.0.4~a0~dev6-6 is installed OR openstack-ceilometer-polling-5.0.4~a0~dev6-6 is installed OR openstack-cinder-7.0.3~a0~dev2-7 is installed OR openstack-cinder-api-7.0.3~a0~dev2-7 is installed OR openstack-cinder-backup-7.0.3~a0~dev2-7 is installed OR openstack-cinder-doc-7.0.3~a0~dev2-7 is installed OR openstack-cinder-scheduler-7.0.3~a0~dev2-7 is installed OR openstack-cinder-volume-7.0.3~a0~dev2-7 is installed OR openstack-dashboard-8.0.2~a0~dev34-8 is installed OR openstack-glance-11.0.2~a0~dev13-7 is installed OR openstack-glance-doc-11.0.2~a0~dev13-7 is installed OR openstack-heat-5.0.2~a0~dev93-9 is installed OR openstack-heat-api-5.0.2~a0~dev93-9 is installed OR openstack-heat-api-cfn-5.0.2~a0~dev93-9 is installed OR openstack-heat-api-cloudwatch-5.0.2~a0~dev93-9 is installed OR openstack-heat-doc-5.0.2~a0~dev93-9 is installed OR openstack-heat-engine-5.0.2~a0~dev93-9 is installed OR openstack-heat-plugin-heat_docker-5.0.2~a0~dev93-9 is installed OR openstack-keystone-8.1.1~a0~dev13-3 is installed OR openstack-keystone-doc-8.1.1~a0~dev13-3 is installed OR openstack-manila-1.0.2~a0~dev11-9 is installed OR openstack-manila-api-1.0.2~a0~dev11-9 is installed OR openstack-manila-doc-1.0.2~a0~dev11-9 is installed OR openstack-manila-scheduler-1.0.2~a0~dev11-9 is installed OR openstack-manila-share-1.0.2~a0~dev11-9 is installed OR openstack-neutron-7.1.2~a0~dev29-10 is installed OR openstack-neutron-dhcp-agent-7.1.2~a0~dev29-10 is installed OR openstack-neutron-doc-7.1.2~a0~dev29-10 is installed OR openstack-neutron-fwaas-7.1.2~a0~dev1-6 is installed OR openstack-neutron-fwaas-doc-7.1.2~a0~dev1-6 is installed OR openstack-neutron-ha-tool-7.1.2~a0~dev29-10 is installed OR openstack-neutron-l3-agent-7.1.2~a0~dev29-10 is installed OR openstack-neutron-lbaas-7.1.2~a0~dev1-6 is installed OR openstack-neutron-lbaas-agent-7.1.2~a0~dev1-6 is installed OR openstack-neutron-lbaas-doc-7.1.2~a0~dev1-6 is installed OR openstack-neutron-linuxbridge-agent-7.1.2~a0~dev29-10 is installed OR openstack-neutron-metadata-agent-7.1.2~a0~dev29-10 is installed OR openstack-neutron-metering-agent-7.1.2~a0~dev29-10 is installed OR openstack-neutron-mlnx-agent-7.1.2~a0~dev29-10 is installed OR openstack-neutron-nvsd-agent-7.1.2~a0~dev29-10 is installed OR openstack-neutron-openvswitch-agent-7.1.2~a0~dev29-10 is installed OR openstack-neutron-restproxy-agent-7.1.2~a0~dev29-10 is installed OR openstack-neutron-server-7.1.2~a0~dev29-10 is installed OR openstack-nova-12.0.5~a0~dev2-7 is installed OR openstack-nova-api-12.0.5~a0~dev2-7 is installed OR openstack-nova-cells-12.0.5~a0~dev2-7 is installed OR openstack-nova-cert-12.0.5~a0~dev2-7 is installed OR openstack-nova-compute-12.0.5~a0~dev2-7 is installed OR openstack-nova-conductor-12.0.5~a0~dev2-7 is installed OR openstack-nova-console-12.0.5~a0~dev2-7 is installed OR openstack-nova-consoleauth-12.0.5~a0~dev2-7 is installed OR openstack-nova-doc-12.0.5~a0~dev2-7 is installed OR openstack-nova-novncproxy-12.0.5~a0~dev2-7 is installed OR openstack-nova-objectstore-12.0.5~a0~dev2-7 is installed OR openstack-nova-scheduler-12.0.5~a0~dev2-7 is installed OR openstack-nova-serialproxy-12.0.5~a0~dev2-7 is installed OR openstack-nova-vncproxy-12.0.5~a0~dev2-7 is installed OR openstack-resource-agents-1.0+git.1467079370.4f2c49d-7 is installed OR python-ceilometer-5.0.4~a0~dev6-6 is installed OR python-cinder-7.0.3~a0~dev2-7 is installed OR python-glance-11.0.2~a0~dev13-7 is installed OR python-heat-5.0.2~a0~dev93-9 is installed OR python-horizon-8.0.2~a0~dev34-8 is installed OR python-keystone-8.1.1~a0~dev13-3 is installed OR python-manila-1.0.2~a0~dev11-9 is installed OR python-networking-cisco-2.1.1-6 is installed OR python-neutron-7.1.2~a0~dev29-10 is installed OR python-neutron-fwaas-7.1.2~a0~dev1-6 is installed OR python-neutron-lbaas-7.1.2~a0~dev1-6 is installed OR python-nova-12.0.5~a0~dev2-7 is installed OR python-openstackclient-1.7.2-4 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information res-signingkeys-3.0.38-52.26 is installed OR smt-3.0.38-52.26 is installed OR smt-support-3.0.38-52.26 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-60.7.2-109.80 is installed OR MozillaFirefox-translations-common-60.7.2-109.80 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information crowbar-5.0+git.1528696845.81a7b5d0-3.3 is installed OR crowbar-core-5.0+git.1533887407.6e9b0412d-3.8 is installed OR crowbar-core-branding-upstream-5.0+git.1533887407.6e9b0412d-3.8 is installed OR crowbar-devel-5.0+git.1528696845.81a7b5d0-3.3 is installed OR crowbar-ha-5.0+git.1530177874.35b9099-3.3 is installed OR crowbar-init-5.0+git.1520420379.d5bbb35-3.3 is installed OR crowbar-openstack-5.0+git.1534167599.d325ef804-4.8 is installed OR crowbar-ui-1.2.0+git.1533844061.4ac8e723-3.3 is installed

BACK