Oval Definition:	oval:org.opensuse.security:def:53285
Revision Date: 2020-12-01 Version: 1 Title: Security update for qemu (Important) Description: This update for qemu fixes the following issues: * qemu was updated to v3.1.1.1, a stable, bug-fix-only release, which includes 2 fixes we already carry, as well as one additional use- after-free fix in slirp. (CVE-2018-20126 bsc#1119991, CVE-2019-14378 bsc#1143794, and CVE-2019-15890 bsc#1149811 respectively) Security issues fixed: - CVE-2019-12068: Fixed potential DOS in lsi scsi controller emulation (bsc#1146873) - CVE-2019-11135: Expose taa-no 'feature', indicating CPU does not have the TSX Async Abort vulnerability. (bsc#1152506) - CVE-2018-12207: Expose pschange-mc-no 'feature', indicating CPU does not have the page size change machine check vulnerability (bsc#1117665) Other issues fixed: - Change how this bug gets fixed (bsc#1144087) - Disable file locking in the Xen PV disk backend to avoid locking issues with PV domUs during migration. The issues triggered by the locking can not be properly handled in libxl. The locking introduced in qemu-2.10 was removed again in qemu-4.0. (bsc#1079730, bsc#1098403, bsc#1111025, bsc#1145427, bsc#1145774) - Feature support for vfio-ccw dasd ipl (bsc#1145379 jira-SLE-6132) - Additional hardware instruction support for s390, also update qemu linux headers to 5.2-rc1 (bsc#1145436 jira-SLE-6237) Family: unix Class: patch Status: Reference(s): 1005410 1005480 1005893 1006118 1006221 1007925 1008340 1016366 1016368 1016369 1016370 1017695 1039209 1039210 1039379 1039380 1042802 1045719 1045721 1079730 1098403 1111025 1117665 1119991 1123156 1143794 1144087 1145379 1145427 1145436 1145774 1146873 1149811 1152506 1154790 1161066 1162729 1163018 1165776 1166240 1166379 855676 895129 901902 906878 908362 908372 912014 912015 912018 912292 912293 912294 912296 919648 920236 922488 922496 922499 922500 930683 947165 954018 954405 956408 956409 956411 956592 956832 957517 986734 986838 CVE-2009-1892 CVE-2010-2156 CVE-2010-3611 CVE-2010-3616 CVE-2011-0413 CVE-2011-0997 CVE-2011-2748 CVE-2011-2749 CVE-2011-4539 CVE-2011-4868 CVE-2012-0037 CVE-2012-3570 CVE-2012-3571 CVE-2012-3954 CVE-2012-3955 CVE-2013-1981 CVE-2013-1997 CVE-2013-2004 CVE-2013-2064 CVE-2013-2266 CVE-2014-0467 CVE-2014-2977 CVE-2014-2978 CVE-2014-3570 CVE-2014-3571 CVE-2014-3572 CVE-2014-8275 CVE-2014-9116 CVE-2015-0204 CVE-2015-0205 CVE-2015-0206 CVE-2015-0209 CVE-2015-0286 CVE-2015-0287 CVE-2015-0288 CVE-2015-0289 CVE-2015-0293 CVE-2015-0840 CVE-2015-3259 CVE-2015-3885 CVE-2015-4106 CVE-2015-5154 CVE-2015-5239 CVE-2015-5307 CVE-2015-6815 CVE-2015-7311 CVE-2015-7504 CVE-2015-7835 CVE-2015-8104 CVE-2015-8339 CVE-2015-8340 CVE-2015-8341 CVE-2015-8345 CVE-2015-8367 CVE-2015-8605 CVE-2016-10009 CVE-2016-10010 CVE-2016-10011 CVE-2016-10012 CVE-2016-7942 CVE-2016-8637 CVE-2016-8858 CVE-2017-6886 CVE-2017-6887 CVE-2017-6889 CVE-2017-6890 CVE-2017-6899 CVE-2017-9408 CVE-2017-9775 CVE-2017-9776 CVE-2018-12207 CVE-2018-20126 CVE-2019-11135 CVE-2019-12068 CVE-2019-14378 CVE-2019-15034 CVE-2019-15890 CVE-2019-20382 CVE-2019-6778 CVE-2020-1711 CVE-2020-7039 CVE-2020-8608 SUSE-SU-2015:0541-1 SUSE-SU-2015:2324-1 SUSE-SU-2017:0264-1 SUSE-SU-2017:0641-1 SUSE-SU-2017:1998-1 SUSE-SU-2017:2300-1 SUSE-SU-2019:2955-1 SUSE-SU-2020:0844-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information elfutils-0.168-lp150.2 is installed OR elfutils-lang-0.168-lp150.2 is installed OR libasm1-0.168-lp150.2 is installed OR libdw1-0.168-lp150.2 is installed OR libdw1-32bit-0.168-lp150.2 is installed OR libebl-plugins-0.168-lp150.2 is installed OR libebl-plugins-32bit-0.168-lp150.2 is installed OR libelf1-0.168-lp150.2 is installed OR libelf1-32bit-0.168-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information python-Twisted-17.9.0-lp151.3.3 is installed OR python-Twisted-doc-17.9.0-lp151.3.3 is installed OR python2-Twisted-17.9.0-lp151.3.3 is installed OR python3-Twisted-17.9.0-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information coreutils-8.12-6.25.29 is installed OR coreutils-lang-8.12-6.25.29 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information krb5-1.6.3-133.49.68 is installed OR krb5-32bit-1.6.3-133.49.68 is installed OR krb5-client-1.6.3-133.49.68 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libopenssl1_0_0-1.0.1i-20 is installed OR libopenssl1_0_0-32bit-1.0.1i-20 is installed OR openssl-1.0.1i-20 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information xen-4.5.2_02-4 is installed OR xen-kmp-default-4.5.2_02_k3.12.49_11-4 is installed OR xen-libs-4.5.2_02-4 is installed OR xen-libs-32bit-4.5.2_02-4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND mutt-1.6.0-54 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libxcb-dri2-0-1.10-4.3 is installed OR libxcb-dri2-0-32bit-1.10-4.3 is installed OR libxcb-dri3-0-1.10-4.3 is installed OR libxcb-dri3-0-32bit-1.10-4.3 is installed OR libxcb-glx0-1.10-4.3 is installed OR libxcb-glx0-32bit-1.10-4.3 is installed OR libxcb-present0-1.10-4.3 is installed OR libxcb-present0-32bit-1.10-4.3 is installed OR libxcb-randr0-1.10-4.3 is installed OR libxcb-render0-1.10-4.3 is installed OR libxcb-render0-32bit-1.10-4.3 is installed OR libxcb-shape0-1.10-4.3 is installed OR libxcb-shm0-1.10-4.3 is installed OR libxcb-shm0-32bit-1.10-4.3 is installed OR libxcb-sync1-1.10-4.3 is installed OR libxcb-sync1-32bit-1.10-4.3 is installed OR libxcb-xf86dri0-1.10-4.3 is installed OR libxcb-xfixes0-1.10-4.3 is installed OR libxcb-xfixes0-32bit-1.10-4.3 is installed OR libxcb-xinerama0-1.10-4.3 is installed OR libxcb-xkb1-1.10-4.3 is installed OR libxcb-xkb1-32bit-1.10-4.3 is installed OR libxcb-xv0-1.10-4.3 is installed OR libxcb1-1.10-4.3 is installed OR libxcb1-32bit-1.10-4.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information qemu-3.1.1.1-9.6 is installed OR qemu-arm-3.1.1.1-9.6 is installed OR qemu-audio-alsa-3.1.1.1-9.6 is installed OR qemu-audio-oss-3.1.1.1-9.6 is installed OR qemu-audio-pa-3.1.1.1-9.6 is installed OR qemu-block-curl-3.1.1.1-9.6 is installed OR qemu-block-iscsi-3.1.1.1-9.6 is installed OR qemu-block-rbd-3.1.1.1-9.6 is installed OR qemu-block-ssh-3.1.1.1-9.6 is installed OR qemu-guest-agent-3.1.1.1-9.6 is installed OR qemu-ipxe-1.0.0+-9.6 is installed OR qemu-kvm-3.1.1.1-9.6 is installed OR qemu-lang-3.1.1.1-9.6 is installed OR qemu-ppc-3.1.1.1-9.6 is installed OR qemu-s390-3.1.1.1-9.6 is installed OR qemu-seabios-1.12.0-9.6 is installed OR qemu-sgabios-8-9.6 is installed OR qemu-ui-curses-3.1.1.1-9.6 is installed OR qemu-ui-gtk-3.1.1.1-9.6 is installed OR qemu-vgabios-1.12.0-9.6 is installed OR qemu-x86-3.1.1.1-9.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND binutils-2.25.0-13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_93-default-3-2 is installed OR kgraft-patch-3_12_74-60_64_93-xen-3-2 is installed OR kgraft-patch-SLE12-SP1_Update_28-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information liblcms1-1.19-17 is installed OR liblcms1-32bit-1.19-17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND sudo-1.8.10p3-10.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libwireshark9-2.4.10-48.32 is installed OR libwiretap7-2.4.10-48.32 is installed OR libwscodecs1-2.4.10-48.32 is installed OR libwsutil8-2.4.10-48.32 is installed OR wireshark-2.4.10-48.32 is installed OR wireshark-gtk-2.4.10-48.32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information bind-9.9.9P1-63.12 is installed OR bind-chrootenv-9.9.9P1-63.12 is installed OR bind-doc-9.9.9P1-63.12 is installed OR bind-libs-9.9.9P1-63.12 is installed OR bind-utils-9.9.9P1-63.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache2-mod_apparmor-2.8.2-49 is installed OR apparmor-docs-2.8.2-49 is installed OR apparmor-parser-2.8.2-49 is installed OR apparmor-profiles-2.8.2-49 is installed OR apparmor-utils-2.8.2-49 is installed OR libapparmor1-2.8.2-49 is installed OR libapparmor1-32bit-2.8.2-49 is installed OR pam_apparmor-2.8.2-49 is installed OR pam_apparmor-32bit-2.8.2-49 is installed OR perl-apparmor-2.8.2-49 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libopenssl-devel-1.0.2j-60.55 is installed OR libopenssl1_0_0-1.0.2j-60.55 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed OR openssl-1.0.2j-60.55 is installed OR openssl-doc-1.0.2j-60.55 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND sudo-1.8.20p2-3.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libpython3_4m1_0-3.4.6-25.16 is installed OR python3-3.4.6-25.16 is installed OR python3-base-3.4.6-25.16 is installed OR python3-curses-3.4.6-25.16 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND apache2-mod_nss-1.0.14-19.3 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND ruby2.1-rubygem-activesupport-4_2-4.2.2-2 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information java-1_8_0-openjdk-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-demo-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-devel-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-headless-1.8.0.181-27.26 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND git-2.12.3-27.17 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information MozillaFirefox-68.2.0-109.95 is installed OR MozillaFirefox-translations-common-68.2.0-109.95 is installed
BACK