Oval Definition:oval:org.opensuse.security:def:55126
Revision Date:2020-12-10Version:1
Title:Security update for xen (Important)
Description:

This update for xen fixes the following issues:

- bsc#1178963 - stack corruption from XSA-346 change (XSA-355) - bsc#1177409 - CVE-2020-27674: x86 PV guest INVLPG-like flushes may leave stale TLB entries (XSA-286) - bsc#1177412 - CVE-2020-27672: Race condition in Xen mapping code (XSA-345) - bsc#1177413 - CVE-2020-27671: undue deferral of IOMMU TLB flushes (XSA-346) - bsc#1177414 - CVE-2020-27670: unsafe AMD IOMMU page table updates (XSA-347) - bsc#1178591 - CVE-2020-28368: Intel RAPL sidechannel attack aka PLATYPUS attack aka XSA-351
Family:unixClass:patch
Status:Reference(s):1032138
1032230
1040643
1046856
1047873
1048715
1050879
1050887
1050888
1050889
1050891
1051184
1052825
1057247
1068032
1100365
1103367
1103511
1120946
1124799
1124800
1124802
1124803
1124805
1124806
1124824
1124825
1124826
1124827
1125099
1177409
1177412
1177413
1177414
1178591
1178963
900214
900218
920057
920160
962052
963041
CVE-2013-1992
CVE-2013-2064
CVE-2014-3514
CVE-2014-3591
CVE-2014-3693
CVE-2014-9687
CVE-2015-0837
CVE-2015-9262
CVE-2016-10219
CVE-2016-10317
CVE-2016-1572
CVE-2017-1000083
CVE-2017-11108
CVE-2017-11541
CVE-2017-11542
CVE-2017-11543
CVE-2017-11714
CVE-2017-12893
CVE-2017-12894
CVE-2017-12895
CVE-2017-12896
CVE-2017-12897
CVE-2017-12898
CVE-2017-12899
CVE-2017-12900
CVE-2017-12901
CVE-2017-12902
CVE-2017-12985
CVE-2017-12986
CVE-2017-12987
CVE-2017-12988
CVE-2017-12989
CVE-2017-12990
CVE-2017-12991
CVE-2017-12992
CVE-2017-12993
CVE-2017-12994
CVE-2017-12995
CVE-2017-12996
CVE-2017-12997
CVE-2017-12998
CVE-2017-12999
CVE-2017-13000
CVE-2017-13001
CVE-2017-13002
CVE-2017-13003
CVE-2017-13004
CVE-2017-13005
CVE-2017-13006
CVE-2017-13007
CVE-2017-13008
CVE-2017-13009
CVE-2017-13010
CVE-2017-13011
CVE-2017-13012
CVE-2017-13013
CVE-2017-13014
CVE-2017-13015
CVE-2017-13016
CVE-2017-13017
CVE-2017-13018
CVE-2017-13019
CVE-2017-13020
CVE-2017-13021
CVE-2017-13022
CVE-2017-13023
CVE-2017-13024
CVE-2017-13025
CVE-2017-13026
CVE-2017-13027
CVE-2017-13028
CVE-2017-13029
CVE-2017-13030
CVE-2017-13031
CVE-2017-13032
CVE-2017-13033
CVE-2017-13034
CVE-2017-13035
CVE-2017-13036
CVE-2017-13037
CVE-2017-13038
CVE-2017-13039
CVE-2017-13040
CVE-2017-13041
CVE-2017-13042
CVE-2017-13043
CVE-2017-13044
CVE-2017-13045
CVE-2017-13046
CVE-2017-13047
CVE-2017-13048
CVE-2017-13049
CVE-2017-13050
CVE-2017-13051
CVE-2017-13052
CVE-2017-13053
CVE-2017-13054
CVE-2017-13055
CVE-2017-13687
CVE-2017-13688
CVE-2017-13689
CVE-2017-13690
CVE-2017-13725
CVE-2017-14604
CVE-2017-3308
CVE-2017-3309
CVE-2017-3453
CVE-2017-3456
CVE-2017-3464
CVE-2017-5715
CVE-2017-9216
CVE-2017-9612
CVE-2017-9726
CVE-2017-9727
CVE-2017-9739
CVE-2017-9835
CVE-2018-10916
CVE-2018-14348
CVE-2019-7572
CVE-2019-7573
CVE-2019-7574
CVE-2019-7575
CVE-2019-7576
CVE-2019-7577
CVE-2019-7578
CVE-2019-7635
CVE-2019-7636
CVE-2019-7637
CVE-2019-7638
CVE-2020-27670
CVE-2020-27671
CVE-2020-27672
CVE-2020-27674
CVE-2020-28368
SUSE-SU-2015:1626-1
SUSE-SU-2016:0290-1
SUSE-SU-2017:1894-1
SUSE-SU-2017:2035-1
SUSE-SU-2017:2854-1
SUSE-SU-2018:0007-1
SUSE-SU-2018:0407-1
SUSE-SU-2018:2143-1
SUSE-SU-2018:2841-1
SUSE-SU-2019:0642-1
SUSE-SU-2019:0899-1
SUSE-SU-2020:3742-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
openSUSE Leap 15.1 NonFree
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • cron-4.2-lp150.2 is installed
  • OR cronie-1.5.1-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libipa_hbac-devel-1.16.1-lp151.7.3 is installed
  • OR libipa_hbac0-1.16.1-lp151.7.3 is installed
  • OR libnfsidmap-sss-1.16.1-lp151.7.3 is installed
  • OR libsss_certmap-devel-1.16.1-lp151.7.3 is installed
  • OR libsss_certmap0-1.16.1-lp151.7.3 is installed
  • OR libsss_idmap-devel-1.16.1-lp151.7.3 is installed
  • OR libsss_idmap0-1.16.1-lp151.7.3 is installed
  • OR libsss_nss_idmap-devel-1.16.1-lp151.7.3 is installed
  • OR libsss_nss_idmap0-1.16.1-lp151.7.3 is installed
  • OR libsss_simpleifp-devel-1.16.1-lp151.7.3 is installed
  • OR libsss_simpleifp0-1.16.1-lp151.7.3 is installed
  • OR python3-ipa_hbac-1.16.1-lp151.7.3 is installed
  • OR python3-sss-murmur-1.16.1-lp151.7.3 is installed
  • OR python3-sss_nss_idmap-1.16.1-lp151.7.3 is installed
  • OR python3-sssd-config-1.16.1-lp151.7.3 is installed
  • OR sssd-1.16.1-lp151.7.3 is installed
  • OR sssd-32bit-1.16.1-lp151.7.3 is installed
  • OR sssd-ad-1.16.1-lp151.7.3 is installed
  • OR sssd-dbus-1.16.1-lp151.7.3 is installed
  • OR sssd-ipa-1.16.1-lp151.7.3 is installed
  • OR sssd-krb5-1.16.1-lp151.7.3 is installed
  • OR sssd-krb5-common-1.16.1-lp151.7.3 is installed
  • OR sssd-ldap-1.16.1-lp151.7.3 is installed
  • OR sssd-proxy-1.16.1-lp151.7.3 is installed
  • OR sssd-tools-1.16.1-lp151.7.3 is installed
  • OR sssd-wbclient-1.16.1-lp151.7.3 is installed
  • OR sssd-wbclient-devel-1.16.1-lp151.7.3 is installed
  • OR sssd-winbind-idmap-1.16.1-lp151.7.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 NonFree is installed
  • AND opera-63.0.3368.66-lp151.2.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • ecryptfs-utils-61-1.35 is installed
  • OR ecryptfs-utils-32bit-61-1.35 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • libgcrypt-1.5.0-0.19 is installed
  • OR libgcrypt11-1.5.0-0.19 is installed
  • OR libgcrypt11-32bit-1.5.0-0.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND tcpdump-4.9.2-14.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • gnome-shell-search-provider-nautilus-3.20.3-23.6 is installed
  • OR libnautilus-extension1-3.20.3-23.6 is installed
  • OR libnautilus-extension1-32bit-3.20.3-23.6 is installed
  • OR nautilus-3.20.3-23.6 is installed
  • OR nautilus-lang-3.20.3-23.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libxcb-dri2-0-1.10-1 is installed
  • OR libxcb-dri2-0-32bit-1.10-1 is installed
  • OR libxcb-glx0-1.10-1 is installed
  • OR libxcb-glx0-32bit-1.10-1 is installed
  • OR libxcb-randr0-1.10-1 is installed
  • OR libxcb-render0-1.10-1 is installed
  • OR libxcb-render0-32bit-1.10-1 is installed
  • OR libxcb-shape0-1.10-1 is installed
  • OR libxcb-shm0-1.10-1 is installed
  • OR libxcb-shm0-32bit-1.10-1 is installed
  • OR libxcb-sync1-1.10-1 is installed
  • OR libxcb-xf86dri0-1.10-1 is installed
  • OR libxcb-xfixes0-1.10-1 is installed
  • OR libxcb-xfixes0-32bit-1.10-1 is installed
  • OR libxcb-xkb1-1.10-1 is installed
  • OR libxcb-xkb1-32bit-1.10-1 is installed
  • OR libxcb-xv0-1.10-1 is installed
  • OR libxcb1-1.10-1 is installed
  • OR libxcb1-32bit-1.10-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_45-default-7-2 is installed
  • OR kgraft-patch-3_12_74-60_64_45-xen-7-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_16-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • bash-4.3-78 is installed
  • OR bash-doc-4.3-78 is installed
  • OR libreadline6-6.3-78 is installed
  • OR libreadline6-32bit-6.3-78 is installed
  • OR readline-doc-6.3-78 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • xen-4.7.6_12-43.70.1 is installed
  • OR xen-doc-html-4.7.6_12-43.70.1 is installed
  • OR xen-libs-4.7.6_12-43.70.1 is installed
  • OR xen-libs-32bit-4.7.6_12-43.70.1 is installed
  • OR xen-tools-4.7.6_12-43.70.1 is installed
  • OR xen-tools-domU-4.7.6_12-43.70.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • libssh2-1-1.4.3-20.6 is installed
  • OR libssh2-1-32bit-1.4.3-20.6 is installed
  • OR libssh2_org-1.4.3-20.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_114-92_67-default-5-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_19-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • emacs-24.3-19 is installed
  • OR emacs-el-24.3-19 is installed
  • OR emacs-info-24.3-19 is installed
  • OR emacs-nox-24.3-19 is installed
  • OR emacs-x11-24.3-19 is installed
  • OR etags-24.3-19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libsolv-0.6.36-2.27.19 is installed
  • OR libsolv-tools-0.6.36-2.27.19 is installed
  • OR libzypp-16.20.2-27.60 is installed
  • OR perl-solv-0.6.36-2.27.19 is installed
  • OR python-solv-0.6.36-2.27.19 is installed
  • OR zypper-1.13.54-18.40 is installed
  • OR zypper-log-1.13.54-18.40 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libvirt-3.3.0-5.40 is installed
  • OR libvirt-admin-3.3.0-5.40 is installed
  • OR libvirt-client-3.3.0-5.40 is installed
  • OR libvirt-daemon-3.3.0-5.40 is installed
  • OR libvirt-daemon-config-network-3.3.0-5.40 is installed
  • OR libvirt-daemon-config-nwfilter-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-interface-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-libxl-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-lxc-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-network-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-nodedev-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-nwfilter-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-qemu-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-secret-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-core-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-disk-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-iscsi-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-logical-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-mpath-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-rbd-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-scsi-3.3.0-5.40 is installed
  • OR libvirt-daemon-hooks-3.3.0-5.40 is installed
  • OR libvirt-daemon-lxc-3.3.0-5.40 is installed
  • OR libvirt-daemon-qemu-3.3.0-5.40 is installed
  • OR libvirt-daemon-xen-3.3.0-5.40 is installed
  • OR libvirt-doc-3.3.0-5.40 is installed
  • OR libvirt-libs-3.3.0-5.40 is installed
  • OR libvirt-lock-sanlock-3.3.0-5.40 is installed
  • OR libvirt-nss-3.3.0-5.40 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_113-default-4-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_30-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • curl-7.37.0-37.31 is installed
  • OR libcurl4-7.37.0-37.31 is installed
  • OR libcurl4-32bit-7.37.0-37.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libXrandr2-1.5.0-6 is installed
  • OR libXrandr2-32bit-1.5.0-6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND ruby2.1-rubygem-railties-4_2-4.2.2-2 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.35-38.29 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.35-38.29 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.35-38.29 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.35-38.29 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.35-38.29 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND slf4j-1.7.12-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND python-requests-2.20.1-4.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Twisted-15.2.1-9.5 is installed
    • BACK