OVAL Reference oval:org.opensuse.security:def:53201

Oval Definition:

oval:org.opensuse.security:def:53201

Revision Date:	2020-12-01	Version:	1
Title:	Security update for qemu (Important)
Description:	This update for qemu fixes the following issues: Security issues fixed: - CVE-2019-9824: Fixed an information leak in slirp (bsc#1129622) - CVE-2019-8934: Added method to specify whether or not to expose certain ppc64 host information, which can be considered a security issue (bsc#1126455) - CVE-2019-3812: Fixed OOB memory access and information leak in virtual monitor interface (bsc#1125721) - CVE-2018-20815: Fix DOS possibility in device tree processing (bsc#1130675) - Adjust fix for CVE-2019-8934 (bsc#1126455) to match the latest upstream adjustments for the same. Basically now the security fix is to provide a dummy host-model and host-serial value, which overrides getting that value from the host - CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091: Added x86 cpu feature 'md-clear' (bsc#1111331) Other bugs fixed: - Use a new approach to handling the file input to -smbios option, which accepts either legacy or per-spec formats regardless of the machine type.
Family:	unix	Class:	patch
Status:		Reference(s):	1002981 1002998 1010735 1010740 1010752 1010754 1010911 1012964 1021739 1025913 1026507 1027692 1027998 1033936 1033937 1033938 1033939 1033940 1033941 1033942 1033943 1033944 1033945 1111331 1125721 1126455 1129622 1130675 1142721 1142743 865241 915545 921753 964845 964847 964849 990856 998761 998762 998763 998800 998963 998964 CVE-2004-2771 CVE-2006-2607 CVE-2010-0424 CVE-2010-0624 CVE-2013-2062 CVE-2014-7844 CVE-2015-2265 CVE-2015-7236 CVE-2015-8803 CVE-2015-8804 CVE-2015-8805 CVE-2016-10163 CVE-2016-10214 CVE-2016-1521 CVE-2016-1523 CVE-2016-1526 CVE-2016-6321 CVE-2016-6354 CVE-2016-7175 CVE-2016-7176 CVE-2016-7177 CVE-2016-7178 CVE-2016-7179 CVE-2016-7180 CVE-2016-7945 CVE-2016-7946 CVE-2016-9079 CVE-2016-9373 CVE-2016-9374 CVE-2016-9375 CVE-2016-9376 CVE-2017-5580 CVE-2017-5596 CVE-2017-5597 CVE-2017-5937 CVE-2017-5956 CVE-2017-5957 CVE-2017-5993 CVE-2017-5994 CVE-2017-6014 CVE-2017-6209 CVE-2017-6210 CVE-2017-6317 CVE-2017-6355 CVE-2017-6386 CVE-2017-7700 CVE-2017-7701 CVE-2017-7702 CVE-2017-7703 CVE-2017-7704 CVE-2017-7705 CVE-2017-7745 CVE-2017-7746 CVE-2017-7747 CVE-2017-7748 CVE-2018-11782 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-17407 CVE-2018-20815 CVE-2019-0203 CVE-2019-11091 CVE-2019-3812 CVE-2019-8934 CVE-2019-9824 SUSE-SU-2015:0805-1 SUSE-SU-2016:0455-1 SUSE-SU-2016:3047-1 SUSE-SU-2016:3048-1 SUSE-SU-2017:1442-1 SUSE-SU-2019:1239-1 SUSE-SU-2019:2031-1 SUSE-SU-403
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information PackageKit-1.1.10-lp150.2 is installed OR PackageKit-backend-zypp-1.1.10-lp150.2 is installed OR PackageKit-gstreamer-plugin-1.1.10-lp150.2 is installed OR PackageKit-gtk3-module-1.1.10-lp150.2 is installed OR PackageKit-lang-1.1.10-lp150.2 is installed OR libpackagekit-glib2-18-1.1.10-lp150.2 is installed OR typelib-1_0-PackageKitGlib-1_0-1.1.10-lp150.2 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND ucode-intel-20191112a-lp151.2.12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information xorg-x11-libXext-7.4-1.18 is installed OR xorg-x11-libXext-32bit-7.4-1.18 is installed OR xorg-x11-libXext-devel-7.4-1.18 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information flash-player-11.2.202.481-0.8 is installed OR flash-player-gnome-11.2.202.481-0.8 is installed OR flash-player-kde4-11.2.202.481-0.8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information flash-player-11.2.202.535-0.20 is installed OR flash-player-gnome-11.2.202.535-0.20 is installed OR flash-player-kde4-11.2.202.535-0.20 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information cups-filters-1.0.58-5 is installed OR cups-filters-cups-browsed-1.0.58-5 is installed OR cups-filters-foomatic-rip-1.0.58-5 is installed OR cups-filters-ghostscript-1.0.58-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libqt4-4.8.6-7 is installed OR libqt4-32bit-4.8.6-7 is installed OR libqt4-qt3support-4.8.6-7 is installed OR libqt4-qt3support-32bit-4.8.6-7 is installed OR libqt4-sql-4.8.6-7 is installed OR libqt4-sql-32bit-4.8.6-7 is installed OR libqt4-sql-mysql-4.8.6-7 is installed OR libqt4-sql-mysql-32bit-4.8.6-7 is installed OR libqt4-sql-plugins-4.8.6-7 is installed OR libqt4-sql-postgresql-4.8.6-7 is installed OR libqt4-sql-postgresql-32bit-4.8.6-7 is installed OR libqt4-sql-sqlite-4.8.6-7 is installed OR libqt4-sql-sqlite-32bit-4.8.6-7 is installed OR libqt4-sql-unixODBC-4.8.6-7 is installed OR libqt4-sql-unixODBC-32bit-4.8.6-7 is installed OR libqt4-x11-4.8.6-7 is installed OR libqt4-x11-32bit-4.8.6-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libgraphite2-3-1.3.1-6 is installed OR libgraphite2-3-32bit-1.3.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND libkpathsea6-6.2.0dev-22.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information qemu-2.11.2-9.25 is installed OR qemu-arm-2.11.2-9.25 is installed OR qemu-block-curl-2.11.2-9.25 is installed OR qemu-block-iscsi-2.11.2-9.25 is installed OR qemu-block-rbd-2.11.2-9.25 is installed OR qemu-block-ssh-2.11.2-9.25 is installed OR qemu-guest-agent-2.11.2-9.25 is installed OR qemu-ipxe-1.0.0+-9.25 is installed OR qemu-kvm-2.11.2-9.25 is installed OR qemu-lang-2.11.2-9.25 is installed OR qemu-ppc-2.11.2-9.25 is installed OR qemu-s390-2.11.2-9.25 is installed OR qemu-seabios-1.11.0-9.25 is installed OR qemu-sgabios-8-9.25 is installed OR qemu-vgabios-1.11.0-9.25 is installed OR qemu-x86-2.11.2-9.25 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information subversion-1.10.6-3.6 is installed OR subversion-server-1.10.6-3.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information augeas-1.2.0-3 is installed OR augeas-lenses-1.2.0-3 is installed OR libaugeas0-1.2.0-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_40-default-10-2 is installed OR kgraft-patch-3_12_74-60_64_40-xen-10-2 is installed OR kgraft-patch-SLE12-SP1_Update_15-10-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information gpg2-2.0.24-3 is installed OR gpg2-lang-2.0.24-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information qemu-2.6.2-41.40 is installed OR qemu-block-curl-2.6.2-41.40 is installed OR qemu-block-rbd-2.6.2-41.40 is installed OR qemu-block-ssh-2.6.2-41.40 is installed OR qemu-guest-agent-2.6.2-41.40 is installed OR qemu-ipxe-1.0.0-41.40 is installed OR qemu-kvm-2.6.2-41.40 is installed OR qemu-lang-2.6.2-41.40 is installed OR qemu-seabios-1.9.1-41.40 is installed OR qemu-sgabios-8-41.40 is installed OR qemu-tools-2.6.2-41.40 is installed OR qemu-vgabios-1.9.1-41.40 is installed OR qemu-x86-2.6.2-41.40 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kernel-default-4.4.121-92.80 is installed OR kernel-default-base-4.4.121-92.80 is installed OR kernel-default-devel-4.4.121-92.80 is installed OR kernel-devel-4.4.121-92.80 is installed OR kernel-macros-4.4.121-92.80 is installed OR kernel-source-4.4.121-92.80 is installed OR kernel-syms-4.4.121-92.80 is installed OR kgraft-patch-4_4_121-92_80-default-1-3.5 is installed OR kgraft-patch-SLE12-SP2_Update_22-1-3.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kernel-default-4.4.121-92.95 is installed OR kernel-default-base-4.4.121-92.95 is installed OR kernel-default-devel-4.4.121-92.95 is installed OR kernel-default-man-4.4.121-92.95 is installed OR kernel-devel-4.4.121-92.95 is installed OR kernel-macros-4.4.121-92.95 is installed OR kernel-source-4.4.121-92.95 is installed OR kernel-syms-4.4.121-92.95 is installed OR kgraft-patch-4_4_121-92_95-default-1-3.4 is installed OR kgraft-patch-SLE12-SP2_Update_25-1-3.4 is installed OR lttng-modules-2.7.1-9.6 is installed OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.95-9.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND cifs-utils-6.5-8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libpython3_4m1_0-3.4.6-25.29 is installed OR python3-3.4.6-25.29 is installed OR python3-base-3.4.6-25.29 is installed OR python3-curses-3.4.6-25.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_97-default-3-2 is installed OR kgraft-patch-SLE12-SP3_Update_26-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libblkid1-2.29.2-3.12 is installed OR libblkid1-32bit-2.29.2-3.12 is installed OR libfdisk1-2.29.2-3.12 is installed OR libmount1-2.29.2-3.12 is installed OR libmount1-32bit-2.29.2-3.12 is installed OR libsmartcols1-2.29.2-3.12 is installed OR libuuid1-2.29.2-3.12 is installed OR libuuid1-32bit-2.29.2-3.12 is installed OR python-libmount-2.29.2-3.12 is installed OR util-linux-2.29.2-3.12 is installed OR util-linux-lang-2.29.2-3.12 is installed OR util-linux-systemd-2.29.2-3.12 is installed OR uuidd-2.29.2-3.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information crash-7.2.1-2 is installed OR crash-kmp-default-7.2.1_k4.12.14_94.41-2 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information openstack-ceilometer-5.0.4~a0~dev6-6 is installed OR openstack-ceilometer-agent-central-5.0.4~a0~dev6-6 is installed OR openstack-ceilometer-agent-compute-5.0.4~a0~dev6-6 is installed OR openstack-ceilometer-agent-ipmi-5.0.4~a0~dev6-6 is installed OR openstack-ceilometer-agent-notification-5.0.4~a0~dev6-6 is installed OR openstack-ceilometer-alarm-evaluator-5.0.4~a0~dev6-6 is installed OR openstack-ceilometer-alarm-notifier-5.0.4~a0~dev6-6 is installed OR openstack-ceilometer-api-5.0.4~a0~dev6-6 is installed OR openstack-ceilometer-collector-5.0.4~a0~dev6-6 is installed OR openstack-ceilometer-doc-5.0.4~a0~dev6-6 is installed OR openstack-ceilometer-polling-5.0.4~a0~dev6-6 is installed OR openstack-cinder-7.0.3~a0~dev2-7 is installed OR openstack-cinder-api-7.0.3~a0~dev2-7 is installed OR openstack-cinder-backup-7.0.3~a0~dev2-7 is installed OR openstack-cinder-doc-7.0.3~a0~dev2-7 is installed OR openstack-cinder-scheduler-7.0.3~a0~dev2-7 is installed OR openstack-cinder-volume-7.0.3~a0~dev2-7 is installed OR openstack-dashboard-8.0.2~a0~dev34-8 is installed OR openstack-glance-11.0.2~a0~dev13-7 is installed OR openstack-glance-doc-11.0.2~a0~dev13-7 is installed OR openstack-heat-5.0.2~a0~dev93-9 is installed OR openstack-heat-api-5.0.2~a0~dev93-9 is installed OR openstack-heat-api-cfn-5.0.2~a0~dev93-9 is installed OR openstack-heat-api-cloudwatch-5.0.2~a0~dev93-9 is installed OR openstack-heat-doc-5.0.2~a0~dev93-9 is installed OR openstack-heat-engine-5.0.2~a0~dev93-9 is installed OR openstack-heat-plugin-heat_docker-5.0.2~a0~dev93-9 is installed OR openstack-keystone-8.1.1~a0~dev13-3 is installed OR openstack-keystone-doc-8.1.1~a0~dev13-3 is installed OR openstack-manila-1.0.2~a0~dev11-9 is installed OR openstack-manila-api-1.0.2~a0~dev11-9 is installed OR openstack-manila-doc-1.0.2~a0~dev11-9 is installed OR openstack-manila-scheduler-1.0.2~a0~dev11-9 is installed OR openstack-manila-share-1.0.2~a0~dev11-9 is installed OR openstack-neutron-7.1.2~a0~dev29-10 is installed OR openstack-neutron-dhcp-agent-7.1.2~a0~dev29-10 is installed OR openstack-neutron-doc-7.1.2~a0~dev29-10 is installed OR openstack-neutron-fwaas-7.1.2~a0~dev1-6 is installed OR openstack-neutron-fwaas-doc-7.1.2~a0~dev1-6 is installed OR openstack-neutron-ha-tool-7.1.2~a0~dev29-10 is installed OR openstack-neutron-l3-agent-7.1.2~a0~dev29-10 is installed OR openstack-neutron-lbaas-7.1.2~a0~dev1-6 is installed OR openstack-neutron-lbaas-agent-7.1.2~a0~dev1-6 is installed OR openstack-neutron-lbaas-doc-7.1.2~a0~dev1-6 is installed OR openstack-neutron-linuxbridge-agent-7.1.2~a0~dev29-10 is installed OR openstack-neutron-metadata-agent-7.1.2~a0~dev29-10 is installed OR openstack-neutron-metering-agent-7.1.2~a0~dev29-10 is installed OR openstack-neutron-mlnx-agent-7.1.2~a0~dev29-10 is installed OR openstack-neutron-nvsd-agent-7.1.2~a0~dev29-10 is installed OR openstack-neutron-openvswitch-agent-7.1.2~a0~dev29-10 is installed OR openstack-neutron-restproxy-agent-7.1.2~a0~dev29-10 is installed OR openstack-neutron-server-7.1.2~a0~dev29-10 is installed OR openstack-nova-12.0.5~a0~dev2-7 is installed OR openstack-nova-api-12.0.5~a0~dev2-7 is installed OR openstack-nova-cells-12.0.5~a0~dev2-7 is installed OR openstack-nova-cert-12.0.5~a0~dev2-7 is installed OR openstack-nova-compute-12.0.5~a0~dev2-7 is installed OR openstack-nova-conductor-12.0.5~a0~dev2-7 is installed OR openstack-nova-console-12.0.5~a0~dev2-7 is installed OR openstack-nova-consoleauth-12.0.5~a0~dev2-7 is installed OR openstack-nova-doc-12.0.5~a0~dev2-7 is installed OR openstack-nova-novncproxy-12.0.5~a0~dev2-7 is installed OR openstack-nova-objectstore-12.0.5~a0~dev2-7 is installed OR openstack-nova-scheduler-12.0.5~a0~dev2-7 is installed OR openstack-nova-serialproxy-12.0.5~a0~dev2-7 is installed OR openstack-nova-vncproxy-12.0.5~a0~dev2-7 is installed OR openstack-resource-agents-1.0+git.1467079370.4f2c49d-7 is installed OR python-ceilometer-5.0.4~a0~dev6-6 is installed OR python-cinder-7.0.3~a0~dev2-7 is installed OR python-glance-11.0.2~a0~dev13-7 is installed OR python-heat-5.0.2~a0~dev93-9 is installed OR python-horizon-8.0.2~a0~dev34-8 is installed OR python-keystone-8.1.1~a0~dev13-3 is installed OR python-manila-1.0.2~a0~dev11-9 is installed OR python-networking-cisco-2.1.1-6 is installed OR python-neutron-7.1.2~a0~dev29-10 is installed OR python-neutron-fwaas-7.1.2~a0~dev1-6 is installed OR python-neutron-lbaas-7.1.2~a0~dev1-6 is installed OR python-nova-12.0.5~a0~dev2-7 is installed OR python-openstackclient-1.7.2-4 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND nodejs6-6.14.1-11.12 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND ansible-2.4.6.0-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND python-Django1-1.11.20-3.6 is installed

BACK