Oval Definition:oval:org.opensuse.security:def:53370
Revision Date:2020-12-01Version:1
Title:Security update for ovmf (Moderate)
Description:

This update for ovmf fixes the following issues:

- CVE-2019-14562: Fixed an overflow in DxeImageVerificationHandler (bsc#1175476). - Support more SCSI drivers (PvScsi, MptScsi and LsiScsi). (bsc#1119454) - Enable LsiScsi explicitly since it's disabled by default
Family:unixClass:patch
Status:Reference(s):1003846
1009217
1013533
1013604
1021315
1022263
1022264
1022265
1022283
1022284
1022553
1025282
1029907
1029908
1029909
1029995
1030296
1030297
1030298
1030583
1030584
1030585
1030588
1030589
1031590
1031593
1031595
1031638
1031644
1031656
1033122
1037052
1037057
1037061
1037062
1037066
1037070
1037072
1037273
1038874
1038875
1038876
1038877
1038878
1038880
1038881
1044891
1044897
1044901
1044909
1044925
1044927
1046094
1052061
1052496
1052503
1052507
1052509
1052511
1052514
1052518
1053347
1056312
1056437
1057139
1057144
1057149
1058480
1059050
1060599
1060621
1061241
1119454
1172686
1173937
1175476
437293
445037
546106
561142
578249
590820
691290
698346
713504
776968
863764
907809
934333
936676
938658
962983
962996
970239
CVE-2007-6746
CVE-2009-0799
CVE-2009-0800
CVE-2009-1179
CVE-2009-1180
CVE-2009-1181
CVE-2009-1182
CVE-2009-1183
CVE-2009-1187
CVE-2009-1188
CVE-2009-3607
CVE-2009-3608
CVE-2011-0461
CVE-2011-1097
CVE-2013-1788
CVE-2013-1789
CVE-2013-1790
CVE-2013-1987
CVE-2013-4473
CVE-2013-4474
CVE-2013-7447
CVE-2014-2497
CVE-2014-2855
CVE-2014-8242
CVE-2014-9130
CVE-2014-9512
CVE-2014-9709
CVE-2014-9939
CVE-2016-0755
CVE-2016-10164
CVE-2016-10166
CVE-2016-10166
CVE-2016-10167
CVE-2016-10167
CVE-2016-10168
CVE-2016-10168
CVE-2016-5116
CVE-2016-6128
CVE-2016-6132
CVE-2016-6161
CVE-2016-6207
CVE-2016-6214
CVE-2016-6905
CVE-2016-6906
CVE-2016-6906
CVE-2016-6911
CVE-2016-6912
CVE-2016-6912
CVE-2016-7568
CVE-2016-7857
CVE-2016-7858
CVE-2016-7859
CVE-2016-7860
CVE-2016-7861
CVE-2016-7862
CVE-2016-7863
CVE-2016-7864
CVE-2016-7865
CVE-2016-7949
CVE-2016-7950
CVE-2016-8670
CVE-2016-9317
CVE-2016-9317
CVE-2016-9576
CVE-2016-9794
CVE-2016-9933
CVE-2017-12448
CVE-2017-12450
CVE-2017-12452
CVE-2017-12453
CVE-2017-12454
CVE-2017-12456
CVE-2017-12799
CVE-2017-13757
CVE-2017-14128
CVE-2017-14129
CVE-2017-14130
CVE-2017-14333
CVE-2017-14529
CVE-2017-14729
CVE-2017-14745
CVE-2017-14974
CVE-2017-6362
CVE-2017-6965
CVE-2017-6966
CVE-2017-6969
CVE-2017-7209
CVE-2017-7210
CVE-2017-7223
CVE-2017-7224
CVE-2017-7225
CVE-2017-7226
CVE-2017-7227
CVE-2017-7299
CVE-2017-7300
CVE-2017-7301
CVE-2017-7302
CVE-2017-7303
CVE-2017-7304
CVE-2017-7614
CVE-2017-8392
CVE-2017-8393
CVE-2017-8394
CVE-2017-8395
CVE-2017-8396
CVE-2017-8397
CVE-2017-8398
CVE-2017-8421
CVE-2017-9038
CVE-2017-9039
CVE-2017-9040
CVE-2017-9041
CVE-2017-9042
CVE-2017-9043
CVE-2017-9044
CVE-2017-9746
CVE-2017-9747
CVE-2017-9748
CVE-2017-9750
CVE-2017-9755
CVE-2017-9756
CVE-2017-9954
CVE-2017-9955
CVE-2018-1000222
CVE-2018-5711
CVE-2019-14562
CVE-2020-15095
SUSE-SU-2016:0340-1
SUSE-SU-2016:2778-1
SUSE-SU-2016:3146-1
SUSE-SU-2017:0467-1
SUSE-SU-2017:0468-1
SUSE-SU-2017:3170-1
SUSE-SU-2020:2691-1
SUSE-SU-2020:2870-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Module for Web Scripting 15 SP1
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • cyrus-sasl-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-32bit-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-crammd5-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-crammd5-32bit-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-digestmd5-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-digestmd5-32bit-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-gssapi-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-gssapi-32bit-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-plain-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-plain-32bit-2.1.26-lp150.3 is installed
  • OR libsasl2-3-2.1.26-lp150.3 is installed
  • OR libsasl2-3-32bit-2.1.26-lp150.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • fence-agents-4.4.0+git.1558595666.5f79f9e9-lp151.2.3 is installed
  • OR fence-agents-amt_ws-4.4.0+git.1558595666.5f79f9e9-lp151.2.3 is installed
  • OR fence-agents-devel-4.4.0+git.1558595666.5f79f9e9-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • flash-player-11.2.202.336-0.3 is installed
  • OR flash-player-gnome-11.2.202.336-0.3 is installed
  • OR flash-player-kde4-11.2.202.336-0.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-24.7.0esr-0.8 is installed
  • OR MozillaFirefox-translations-24.7.0esr-0.8 is installed
  • OR libfreebl3-3.16.2-0.8 is installed
  • OR libfreebl3-32bit-3.16.2-0.8 is installed
  • OR libsoftokn3-3.16.2-0.8 is installed
  • OR libsoftokn3-32bit-3.16.2-0.8 is installed
  • OR mozilla-nss-3.16.2-0.8 is installed
  • OR mozilla-nss-32bit-3.16.2-0.8 is installed
  • OR mozilla-nss-tools-3.16.2-0.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • libsnmp15-5.4.2.1-8.12.24 is installed
  • OR libsnmp15-32bit-5.4.2.1-8.12.24 is installed
  • OR net-snmp-5.4.2.1-8.12.24 is installed
  • OR perl-SNMP-5.4.2.1-8.12.24 is installed
  • OR snmp-mibs-5.4.2.1-8.12.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • libyaml-0.1.6-4 is installed
  • OR libyaml-0-2-0.1.6-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • flash-player-11.2.202.644-149 is installed
  • OR flash-player-gnome-11.2.202.644-149 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • kernel-default-4.4.21-90 is installed
  • OR kernel-default-devel-4.4.21-90 is installed
  • OR kernel-default-extra-4.4.21-90 is installed
  • OR kernel-devel-4.4.21-90 is installed
  • OR kernel-macros-4.4.21-90 is installed
  • OR kernel-source-4.4.21-90 is installed
  • OR kernel-syms-4.4.21-90 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-36 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • gd-2.1.0-24.9 is installed
  • OR gd-32bit-2.1.0-24.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND Package Information
  • ovmf-201911-7.5 is installed
  • OR ovmf-tools-201911-7.5 is installed
  • OR qemu-ovmf-x86_64-201911-7.5 is installed
  • OR qemu-uefi-aarch64-201911-7.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed
  • AND Package Information
  • nodejs8-8.17.0-3.38 is installed
  • OR nodejs8-devel-8.17.0-3.38 is installed
  • OR nodejs8-docs-8.17.0-3.38 is installed
  • OR npm8-8.17.0-3.38 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • colord-gtk-lang-0.1.25-3 is installed
  • OR libcolord-gtk1-0.1.25-3 is installed
  • OR libcolord2-1.1.7-5 is installed
  • OR libcolord2-32bit-1.1.7-5 is installed
  • OR libcolorhug2-1.1.7-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_62-60_64_8-default-9-3 is installed
  • OR kgraft-patch-3_12_62-60_64_8-xen-9-3 is installed
  • OR kgraft-patch-SLE12-SP1_Update_8-9-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND perl-Tk-804.031-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • kernel-default-4.4.121-92.135 is installed
  • OR kernel-default-base-4.4.121-92.135 is installed
  • OR kernel-default-devel-4.4.121-92.135 is installed
  • OR kernel-devel-4.4.121-92.135 is installed
  • OR kernel-macros-4.4.121-92.135 is installed
  • OR kernel-source-4.4.121-92.135 is installed
  • OR kernel-syms-4.4.121-92.135 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • qemu-2.6.2-41.43 is installed
  • OR qemu-block-curl-2.6.2-41.43 is installed
  • OR qemu-block-rbd-2.6.2-41.43 is installed
  • OR qemu-block-ssh-2.6.2-41.43 is installed
  • OR qemu-guest-agent-2.6.2-41.43 is installed
  • OR qemu-ipxe-1.0.0-41.43 is installed
  • OR qemu-kvm-2.6.2-41.43 is installed
  • OR qemu-lang-2.6.2-41.43 is installed
  • OR qemu-seabios-1.9.1-41.43 is installed
  • OR qemu-sgabios-8-41.43 is installed
  • OR qemu-tools-2.6.2-41.43 is installed
  • OR qemu-vgabios-1.9.1-41.43 is installed
  • OR qemu-x86-2.6.2-41.43 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kernel-default-4.4.121-92.80 is installed
  • OR kernel-default-base-4.4.121-92.80 is installed
  • OR kernel-default-devel-4.4.121-92.80 is installed
  • OR kernel-default-man-4.4.121-92.80 is installed
  • OR kernel-devel-4.4.121-92.80 is installed
  • OR kernel-macros-4.4.121-92.80 is installed
  • OR kernel-source-4.4.121-92.80 is installed
  • OR kernel-syms-4.4.121-92.80 is installed
  • OR kgraft-patch-4_4_121-92_80-default-1-3.5 is installed
  • OR kgraft-patch-SLE12-SP2_Update_22-1-3.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • ibus-chewing-1.4.14-4 is installed
  • OR ibus-pinyin-1.5.0-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • kernel-default-4.4.180-94.103 is installed
  • OR kernel-default-base-4.4.180-94.103 is installed
  • OR kernel-default-devel-4.4.180-94.103 is installed
  • OR kernel-devel-4.4.180-94.103 is installed
  • OR kernel-macros-4.4.180-94.103 is installed
  • OR kernel-source-4.4.180-94.103 is installed
  • OR kernel-syms-4.4.180-94.103 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND squid-3.5.21-26.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND squid-3.5.21-26.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • MozillaFirefox-52.9.0esr-109.38 is installed
  • OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • cron-4.2-58 is installed
  • OR cronie-1.4.11-58 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • kernel-firmware-20160516git-10.8 is installed
  • OR ucode-amd-20160516git-10.8 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • kernel-default-4.4.121-92.92 is installed
  • OR kernel-default-base-4.4.121-92.92 is installed
  • OR kernel-default-devel-4.4.121-92.92 is installed
  • OR kernel-default-man-4.4.121-92.92 is installed
  • OR kernel-devel-4.4.121-92.92 is installed
  • OR kernel-macros-4.4.121-92.92 is installed
  • OR kernel-source-4.4.121-92.92 is installed
  • OR kernel-syms-4.4.121-92.92 is installed
  • OR kgraft-patch-4_4_121-92_92-default-1-3.7 is installed
  • OR kgraft-patch-SLE12-SP2_Update_24-1-3.7 is installed
  • OR lttng-modules-2.7.1-9.4 is installed
  • OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.92-9.4 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.28.1-2.50 is installed
  • OR libwebkit2gtk-4_0-37-2.28.1-2.50 is installed
  • OR libwebkit2gtk3-lang-2.28.1-2.50 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.28.1-2.50 is installed
  • OR typelib-1_0-WebKit2-4_0-2.28.1-2.50 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.28.1-2.50 is installed
  • OR webkit2gtk3-2.28.1-2.50 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ruby2.1-rubygem-sprockets-2_12-2.12.5-1.4 is installed
  • OR rubygem-sprockets-2_12-2.12.5-1.4 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-requests-2.20.1-4.3 is installed
    • BACK