OVAL Reference oval:org.opensuse.security:def:53627

Oval Definition:

oval:org.opensuse.security:def:53627

Revision Date:	2020-12-01	Version:	1
Title:	Security update for qemu (Moderate)
Description:	This update for qemu fixes the following issues: Security issues fixed: - CVE-2020-1983: Fixed a use-after-free in the ip_reass function of slirp (bsc#1170940). - CVE-2019-20382: Fixed a potential DoS due to a memory leak in VNC disconnect (bsc#1165776). - CVE-2020-1711: Fixed a potential OOB access in the iSCSI client code (bsc#1166240). - CVE-2020-8608: Fixed a potential OOB access in slirp (bsc#1163018). - CVE-2020-7039: Fixed a potential OOB access in slirp (bsc#1161066). - Fixed multiple potential DoS issues in SLIRP, similar to CVE-2019-6778 (bsc#1123156). Non-security issue fixed: - Miscellaneous fixes to the in-package support documentation.
Family:	unix	Class:	patch
Status:		Reference(s):	1002991 1002995 1002998 1003000 1003002 1003012 1003017 1003023 1006166 1022917 1022918 1022919 1044947 1048367 1064715 1064716 1065000 1068310 1069509 1071905 1071906 1123156 1161066 1163018 1165776 1166240 1170940 1171701 1174955 1177155 758040 902606 924919 935087 937261 943959 945649 949440 951155 951199 951392 951615 951638 952579 952976 956708 956801 956876 957395 957546 957988 957990 958463 958504 958510 958647 958886 958951 959190 959364 959399 959436 959705 960300 973790 CVE-2008-1483 CVE-2010-0407 CVE-2010-4531 CVE-2010-4651 CVE-2015-0247 CVE-2015-1196 CVE-2015-1395 CVE-2015-1396 CVE-2015-1572 CVE-2015-7550 CVE-2015-8539 CVE-2015-8543 CVE-2015-8550 CVE-2015-8551 CVE-2015-8552 CVE-2015-8569 CVE-2015-8575 CVE-2016-10109 CVE-2016-10195 CVE-2016-10196 CVE-2016-10197 CVE-2016-2347 CVE-2016-5407 CVE-2016-7942 CVE-2016-7944 CVE-2016-7945 CVE-2016-7946 CVE-2016-7947 CVE-2016-7948 CVE-2016-7949 CVE-2016-7950 CVE-2016-7951 CVE-2016-7952 CVE-2016-7953 CVE-2017-13089 CVE-2017-13090 CVE-2017-15906 CVE-2017-3737 CVE-2017-3738 CVE-2017-6507 CVE-2017-7508 CVE-2017-7520 CVE-2017-7521 CVE-2018-0739 CVE-2018-1000223 CVE-2019-20382 CVE-2019-6778 CVE-2020-15708 CVE-2020-1711 CVE-2020-1983 CVE-2020-25637 CVE-2020-7039 CVE-2020-8608 SUSE-SU-2016:0168-1 SUSE-SU-2016:1091-1 SUSE-SU-2016:2505-1 SUSE-SU-2017:1635-1 SUSE-SU-2017:2871-2 SUSE-SU-2017:3230-1 SUSE-SU-2017:3343-1 SUSE-SU-2018:0200-1 SUSE-SU-2020:1523-1 SUSE-SU-2020:2969-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND dnsmasq-2.78-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information bzip2-1.0.6-lp151.5.3 is installed OR bzip2-doc-1.0.6-lp151.5.3 is installed OR libbz2-1-1.0.6-lp151.5.3 is installed OR libbz2-1-32bit-1.0.6-lp151.5.3 is installed OR libbz2-devel-1.0.6-lp151.5.3 is installed OR libbz2-devel-32bit-1.0.6-lp151.5.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information ImageMagick-6.4.3.6-7.26 is installed OR libMagick++1-6.4.3.6-7.26 is installed OR libMagickCore1-6.4.3.6-7.26 is installed OR libMagickCore1-32bit-6.4.3.6-7.26 is installed OR libMagickWand1-6.4.3.6-7.26 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-24.4.0esr-0.8 is installed OR MozillaFirefox-branding-SLED-24-0.7 is installed OR MozillaFirefox-translations-24.4.0esr-0.8 is installed OR mozilla-nspr-4.10.4-0.3 is installed OR mozilla-nspr-32bit-4.10.4-0.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information augeas-0.9.0-3.17 is installed OR libaugeas0-0.9.0-3.17 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information kernel-default-3.12.51-52.34 is installed OR kernel-default-devel-3.12.51-52.34 is installed OR kernel-default-extra-3.12.51-52.34 is installed OR kernel-devel-3.12.51-52.34 is installed OR kernel-macros-3.12.51-52.34 is installed OR kernel-source-3.12.51-52.34 is installed OR kernel-syms-3.12.51-52.34 is installed OR kernel-xen-3.12.51-52.34 is installed OR kernel-xen-devel-3.12.51-52.34 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libX11-1.6.2-6 is installed OR libX11-6-1.6.2-6 is installed OR libX11-6-32bit-1.6.2-6 is installed OR libX11-data-1.6.2-6 is installed OR libX11-xcb1-1.6.2-6 is installed OR libX11-xcb1-32bit-1.6.2-6 is installed OR libXfixes-5.0.1-5 is installed OR libXfixes3-5.0.1-5 is installed OR libXfixes3-32bit-5.0.1-5 is installed OR libXi-1.7.4-12 is installed OR libXi6-1.7.4-12 is installed OR libXi6-32bit-1.7.4-12 is installed OR libXrandr-1.4.2-5 is installed OR libXrandr2-1.4.2-5 is installed OR libXrandr2-32bit-1.4.2-5 is installed OR libXrender-0.9.8-5 is installed OR libXrender1-0.9.8-5 is installed OR libXrender1-32bit-0.9.8-5 is installed OR libXtst-1.2.2-5 is installed OR libXtst6-1.2.2-5 is installed OR libXtst6-32bit-1.2.2-5 is installed OR libXv-1.0.10-5 is installed OR libXv1-1.0.10-5 is installed OR libXv1-32bit-1.0.10-5 is installed OR libXvMC-1.0.8-5 is installed OR libXvMC1-1.0.8-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND openvpn-2.3.8-16.17 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND patch-2.7.5-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information apparmor-docs-2.8.2-49 is installed OR apparmor-parser-2.8.2-49 is installed OR apparmor-profiles-2.8.2-49 is installed OR apparmor-utils-2.8.2-49 is installed OR libapparmor1-2.8.2-49 is installed OR libapparmor1-32bit-2.8.2-49 is installed OR pam_apparmor-2.8.2-49 is installed OR pam_apparmor-32bit-2.8.2-49 is installed OR perl-apparmor-2.8.2-49 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information expat-2.1.0-13 is installed OR libexpat1-2.1.0-13 is installed OR libexpat1-32bit-2.1.0-13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information openvpn-2.3.8-16.20 is installed OR openvpn-auth-pam-plugin-2.3.8-16.20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libpython2_7-1_0-2.7.9-24 is installed OR libpython2_7-1_0-32bit-2.7.9-24 is installed OR python-base-2.7.9-24 is installed OR python-base-32bit-2.7.9-24 is installed OR python-xml-2.7.9-24 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information MozillaFirefox-52.8.0esr-109.31 is installed OR MozillaFirefox-devel-52.8.0esr-109.31 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_101-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_27-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND clamav-0.100.2-33.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information colord-gtk-lang-0.1.26-6 is installed OR libcolord-gtk1-0.1.26-6 is installed OR libcolord2-1.3.3-12 is installed OR libcolord2-32bit-1.3.3-12 is installed OR libcolorhug2-1.3.3-12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libpolkit0-0.113-5.18 is installed OR polkit-0.113-5.18 is installed OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information liblouis-2.6.4-6.6 is installed OR liblouis-data-2.6.4-6.6 is installed OR liblouis9-2.6.4-6.6 is installed OR python-louis-2.6.4-6.6 is installed OR python3-louis-2.6.4-6.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information ceph-common-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR libcephfs2-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR librados2-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR libradosstriper1-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR librbd1-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR librgw2-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR python-cephfs-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR python-rados-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR python-rbd-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR python-rgw-12.2.8+git.1536505967.080f2248ff-2.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information qemu-2.11.2-9.36 is installed OR qemu-block-curl-2.11.2-9.36 is installed OR qemu-block-iscsi-2.11.2-9.36 is installed OR qemu-block-rbd-2.11.2-9.36 is installed OR qemu-block-ssh-2.11.2-9.36 is installed OR qemu-guest-agent-2.11.2-9.36 is installed OR qemu-ipxe-1.0.0+-9.36 is installed OR qemu-kvm-2.11.2-9.36 is installed OR qemu-lang-2.11.2-9.36 is installed OR qemu-ppc-2.11.2-9.36 is installed OR qemu-seabios-1.11.0-9.36 is installed OR qemu-sgabios-8-9.36 is installed OR qemu-tools-2.11.2-9.36 is installed OR qemu-vgabios-1.11.0-9.36 is installed OR qemu-x86-2.11.2-9.36 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND docker-1.9.1-58 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information ruby2.1-rubygem-rails-html-sanitizer-1.0.3-8.8 is installed OR rubygem-rails-html-sanitizer-1.0.3-8.8 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND cobbler-2.6.6-49.9 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND python-SQLAlchemy-1.2.10-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND python-requests-2.20.1-4.3 is installed

BACK