Oval Definition:	oval:org.opensuse.security:def:55194
Revision Date: 2021-06-02 Version: 1 Title: Security update for qemu (Important) Description: This update for qemu fixes the following issues: - Fix OOB access during mmio operations (CVE-2020-13754, bsc#1172382) - Fix sPAPR emulator leaks the host hardware identity (CVE-2019-8934, bsc#1126455) - Fix out-of-bounds read information disclosure in icmp6_send_echoreply (CVE-2020-10756, bsc#1172380) - Fix out-of-bound heap buffer access via an interrupt ID field (CVE-2021-20221, bsc#1181933) - For the record, these issues are fixed in this package already. Most are alternate references to previously mentioned issues: (CVE-2019-15890, bsc#1149813, CVE-2020-8608, bsc#1163019, CVE-2020-14364, bsc#1175534, CVE-2020-25723, bsc#1178935, CVE-2020-29130, bsc#1179477, CVE-2021-20257, bsc#1182846, CVE-2021-3419, bsc#1182975, bsc#1031692, bsc#1094725) Family: unix Class: patch Status: Reference(s): 1031692 1039348 1042292 1054986 1058722 1064101 1064115 1065237 1067018 1070615 1074293 1076505 1079869 1080042 1082041 1082161 1083625 1085757 1086038 1086730 1090671 1094725 1108020 1119183 1121816 1121821 1126455 1130103 1131709 1133528 1149813 1163019 1172380 1172382 1175534 1178935 1179477 1181933 1182846 1182975 702028 762735 777565 814440 900610 904348 904965 920016 923002 926007 926709 926774 930145 930788 932350 932805 933721 935053 935393 935757 936118 938706 939826 939926 939955 940017 940925 941202 942204 942305 942367 942605 942628 942688 942938 943786 944296 944831 944837 944989 944993 945691 945825 945827 946078 946309 947957 948330 948347 948521 949100 949298 949502 949706 949744 949981 951440 952084 952384 952579 953527 953980 954404 CVE-2008-5519 CVE-2009-2911 CVE-2009-4273 CVE-2010-0411 CVE-2010-0412 CVE-2010-0750 CVE-2011-1485 CVE-2011-2485 CVE-2012-2370 CVE-2013-4288 CVE-2014-8111 CVE-2015-0272 CVE-2015-3218 CVE-2015-3243 CVE-2015-3255 CVE-2015-3256 CVE-2015-4625 CVE-2015-5157 CVE-2015-5185 CVE-2015-5307 CVE-2015-6252 CVE-2015-6937 CVE-2015-7872 CVE-2015-7990 CVE-2015-8104 CVE-2016-7969 CVE-2016-7972 CVE-2017-1000364 CVE-2017-10268 CVE-2017-10378 CVE-2017-5715 CVE-2018-1000001 CVE-2018-1000140 CVE-2018-1064 CVE-2018-10933 CVE-2018-1116 CVE-2018-6764 CVE-2019-15890 CVE-2019-3859 CVE-2019-6109 CVE-2019-6111 CVE-2019-8934 CVE-2020-10756 CVE-2020-13754 CVE-2020-14364 CVE-2020-25723 CVE-2020-29130 CVE-2020-8608 CVE-2021-20221 CVE-2021-20257 CVE-2021-3419 SUSE-SU-2015:2108-1 SUSE-SU-2015:2218-1 SUSE-SU-2017:1615-1 SUSE-SU-2018:0071-1 SUSE-SU-2018:0384-1 SUSE-SU-2018:0828-1 SUSE-SU-2018:0920-1 SUSE-SU-2018:2038-1 SUSE-SU-2018:3253-1 SUSE-SU-2019:1060-1 SUSE-SU-2019:1524-1 SUSE-SU-2021:1829-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information kio-extras5-17.12.3-lp150.1 is installed OR kio-extras5-lang-17.12.3-lp150.1 is installed OR libkioarchive5-17.12.3-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information aubio-0.4.6-lp151.6.3 is installed OR aubio-tools-0.4.6-lp151.6.3 is installed OR libaubio-devel-0.4.6-lp151.6.3 is installed OR libaubio5-0.4.6-lp151.6.3 is installed OR libaubio5-32bit-0.4.6-lp151.6.3 is installed OR python-aubio-0.4.6-lp151.6.3 is installed OR python2-aubio-0.4.6-lp151.6.3 is installed OR python3-aubio-0.4.6-lp151.6.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information gtk2-2.18.9-0.23 is installed OR gtk2-32bit-2.18.9-0.23 is installed OR gtk2-devel-2.18.9-0.23 is installed OR gtk2-lang-2.18.9-0.23 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information kernel-bigsmp-3.0.101-0.47.71 is installed OR kernel-bigsmp-devel-3.0.101-0.47.71 is installed OR kernel-default-3.0.101-0.47.71 is installed OR kernel-default-base-3.0.101-0.47.71 is installed OR kernel-default-devel-3.0.101-0.47.71 is installed OR kernel-default-extra-3.0.101-0.47.71 is installed OR kernel-pae-3.0.101-0.47.71 is installed OR kernel-pae-base-3.0.101-0.47.71 is installed OR kernel-pae-devel-3.0.101-0.47.71 is installed OR kernel-pae-extra-3.0.101-0.47.71 is installed OR kernel-source-3.0.101-0.47.71 is installed OR kernel-syms-3.0.101-0.47.71 is installed OR kernel-trace-3.0.101-0.47.71 is installed OR kernel-trace-devel-3.0.101-0.47.71 is installed OR kernel-xen-3.0.101-0.47.71 is installed OR kernel-xen-base-3.0.101-0.47.71 is installed OR kernel-xen-devel-3.0.101-0.47.71 is installed OR kernel-xen-extra-3.0.101-0.47.71 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND rsyslog-8.24.0-3.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND libass5-0.10.2-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND apache2-mod_jk-1.2.40-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_67-60_64_21-default-8-2 is installed OR kgraft-patch-3_12_67-60_64_21-xen-8-2 is installed OR kgraft-patch-SLE12-SP1_Update_10-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND apache-commons-httpclient-3.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information qemu-2.6.2-41.65.1 is installed OR qemu-block-curl-2.6.2-41.65.1 is installed OR qemu-block-rbd-2.6.2-41.65.1 is installed OR qemu-block-ssh-2.6.2-41.65.1 is installed OR qemu-guest-agent-2.6.2-41.65.1 is installed OR qemu-ipxe-1.0.0-41.65.1 is installed OR qemu-kvm-2.6.2-41.65.1 is installed OR qemu-lang-2.6.2-41.65.1 is installed OR qemu-seabios-1.9.1_0_gb3ef39f-41.65.1 is installed OR qemu-sgabios-8-41.65.1 is installed OR qemu-tools-2.6.2-41.65.1 is installed OR qemu-vgabios-1.9.1_0_gb3ef39f-41.65.1 is installed OR qemu-x86-2.6.2-41.65.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libpython3_4m1_0-3.4.6-25.29 is installed OR python3-3.4.6-25.29 is installed OR python3-base-3.4.6-25.29 is installed OR python3-curses-3.4.6-25.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND yast2-smt-3.0.14-17.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information pam_radius-1.3.16-239.4 is installed OR pam_radius-32bit-1.3.16-239.4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_97-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_26-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND yast2-smt-3.0.14-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libnghttp2-14-1.7.1-1 is installed OR libnghttp2-14-32bit-1.7.1-1 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information kernel-default-3.12.74-60.64.45 is installed OR kernel-default-base-3.12.74-60.64.45 is installed OR kernel-default-devel-3.12.74-60.64.45 is installed OR kernel-devel-3.12.74-60.64.45 is installed OR kernel-macros-3.12.74-60.64.45 is installed OR kernel-source-3.12.74-60.64.45 is installed OR kernel-syms-3.12.74-60.64.45 is installed OR kernel-xen-3.12.74-60.64.45 is installed OR kernel-xen-base-3.12.74-60.64.45 is installed OR kernel-xen-devel-3.12.74-60.64.45 is installed OR kgraft-patch-3_12_74-60_64_45-default-1-4 is installed OR kgraft-patch-3_12_74-60_64_45-xen-1-4 is installed OR kgraft-patch-SLE12-SP1_Update_16-1-4 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information openssh-7.2p2-74.25 is installed OR openssh-askpass-gnome-7.2p2-74.25 is installed OR openssh-fips-7.2p2-74.25 is installed OR openssh-helpers-7.2p2-74.25 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information kernel-default-4.4.180-94.107 is installed OR kernel-default-base-4.4.180-94.107 is installed OR kernel-default-devel-4.4.180-94.107 is installed OR kernel-default-kgraft-4.4.180-94.107 is installed OR kernel-devel-4.4.180-94.107 is installed OR kernel-macros-4.4.180-94.107 is installed OR kernel-source-4.4.180-94.107 is installed OR kernel-syms-4.4.180-94.107 is installed OR kgraft-patch-4_4_180-94_107-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_29-1-4.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND python-Werkzeug-0.14.1-3.3 is installed
BACK