Oval Definition:	oval:org.opensuse.security:def:55261
Revision Date: 2021-10-28 Version: 1 Title: Security update for qemu (Important) Description: This update for qemu fixes the following issues: Security issues fixed: - usbredir: free call on invalid pointer in bufp_alloc (bsc#1189145, CVE-2021-3682) - NULL pointer dereference in ESP (bsc#1180433, CVE-2020-35504) (bsc#1180434, CVE-2020-35505) (bsc#1180435, CVE-2020-35506) - NULL pointer dereference issue in megasas-gen2 host bus adapter (bsc#1180432, CVE-2020-35503) - eepro100: stack overflow via infinite recursion (bsc#1182651, CVE-2021-20255) - usb: unbounded stack allocation in usbredir (bsc#1186012, CVE-2021-3527) Family: unix Class: patch Status: Reference(s): 1014524 1015567 1029912 1037930 1043290 1050087 1051791 1056434 1058630 1059735 1060382 1060644 1066168 1066170 1069591 1073990 1074293 1079036 1082283 1082291 1082348 1082362 1082792 1082837 1083628 1083634 1086001 1086011 1088004 1088009 1090174 1100453 1101506 1109663 1109673 1120498 1120499 1120500 1120515 1120516 1120517 1180432 1180433 1180434 1180435 1182651 1186012 1189145 840485 853382 854343 935863 937339 940188 941939 955131 968483 975729 987527 989755 991444 991445 991872 CVE-2009-0368 CVE-2010-2529 CVE-2010-4523 CVE-2013-0262 CVE-2013-0263 CVE-2013-0269 CVE-2013-0276 CVE-2013-0277 CVE-2013-1430 CVE-2013-1705 CVE-2013-1718 CVE-2013-1722 CVE-2013-1725 CVE-2013-1726 CVE-2013-1730 CVE-2013-1732 CVE-2013-1735 CVE-2013-1736 CVE-2013-1737 CVE-2014-0578 CVE-2014-8964 CVE-2015-2325 CVE-2015-2327 CVE-2015-2328 CVE-2015-3114 CVE-2015-3115 CVE-2015-3116 CVE-2015-3117 CVE-2015-3118 CVE-2015-3119 CVE-2015-3120 CVE-2015-3121 CVE-2015-3122 CVE-2015-3123 CVE-2015-3124 CVE-2015-3125 CVE-2015-3126 CVE-2015-3127 CVE-2015-3128 CVE-2015-3129 CVE-2015-3130 CVE-2015-3131 CVE-2015-3132 CVE-2015-3133 CVE-2015-3134 CVE-2015-3135 CVE-2015-3136 CVE-2015-3137 CVE-2015-3210 CVE-2015-3217 CVE-2015-4428 CVE-2015-4429 CVE-2015-4430 CVE-2015-4431 CVE-2015-4432 CVE-2015-4433 CVE-2015-4734 CVE-2015-4803 CVE-2015-4805 CVE-2015-4806 CVE-2015-4810 CVE-2015-4835 CVE-2015-4840 CVE-2015-4842 CVE-2015-4843 CVE-2015-4844 CVE-2015-4860 CVE-2015-4871 CVE-2015-4872 CVE-2015-4882 CVE-2015-4883 CVE-2015-4893 CVE-2015-4902 CVE-2015-4903 CVE-2015-4911 CVE-2015-5006 CVE-2015-5073 CVE-2015-5116 CVE-2015-5117 CVE-2015-5118 CVE-2015-5119 CVE-2015-5621 CVE-2015-8380 CVE-2016-1283 CVE-2016-3191 CVE-2016-5008 CVE-2016-5010 CVE-2016-6491 CVE-2016-6520 CVE-2017-11524 CVE-2017-12132 CVE-2017-12692 CVE-2017-12693 CVE-2017-13768 CVE-2017-14314 CVE-2017-14505 CVE-2017-14739 CVE-2017-15016 CVE-2017-15017 CVE-2017-16352 CVE-2017-16353 CVE-2017-16927 CVE-2017-18209 CVE-2017-18211 CVE-2017-6967 CVE-2017-8804 CVE-2017-9500 CVE-2018-1000001 CVE-2018-1000802 CVE-2018-1060 CVE-2018-1061 CVE-2018-17407 CVE-2018-20363 CVE-2018-20364 CVE-2018-20365 CVE-2018-5817 CVE-2018-5818 CVE-2018-5819 CVE-2018-6485 CVE-2018-6551 CVE-2018-7443 CVE-2018-7470 CVE-2018-8804 CVE-2020-35503 CVE-2020-35504 CVE-2020-35505 CVE-2020-35506 CVE-2021-20255 CVE-2021-3527 CVE-2021-3682 SUSE-SU-2015:0446-1 SUSE-SU-2015:1524-1 SUSE-SU-2015:2268-1 SUSE-SU-2016:2053-1 SUSE-SU-2016:2076-1 SUSE-SU-2018:0451-1 SUSE-SU-2018:0857-1 SUSE-SU-2018:3033-1 SUSE-SU-2018:3554-2 SUSE-SU-2019:0127-1 SUSE-SU-2019:1847-1 SUSE-SU-2021:3575-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information cpio-2.12-lp150.1 is installed OR cpio-lang-2.12-lp150.1 is installed OR cpio-mt-2.12-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information dbus-1-1.12.2-lp151.4.3 is installed OR dbus-1-devel-1.12.2-lp151.4.3 is installed OR dbus-1-devel-32bit-1.12.2-lp151.4.3 is installed OR dbus-1-devel-doc-1.12.2-lp151.4.3 is installed OR dbus-1-x11-1.12.2-lp151.4.3 is installed OR libdbus-1-3-1.12.2-lp151.4.3 is installed OR libdbus-1-3-32bit-1.12.2-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-17.0.9esr-0.7 is installed OR MozillaFirefox-translations-17.0.9esr-0.7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information flash-player-11.2.202.481-0.8 is installed OR flash-player-gnome-11.2.202.481-0.8 is installed OR flash-player-kde4-11.2.202.481-0.8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libkpathsea6-6.2.0dev-22.3 is installed OR texlive-2013.20130620-22.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libpcre1-8.39-8.3 is installed OR libpcre1-32bit-8.39-8.3 is installed OR libpcre16-0-8.39-8.3 is installed OR libpcrecpp0-8.39-8.3 is installed OR libpcrecpp0-32bit-8.39-8.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND iputils-s20121221-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_67-60_64_18-default-9-2 is installed OR kgraft-patch-3_12_67-60_64_18-xen-9-2 is installed OR kgraft-patch-SLE12-SP1_Update_9-9-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information qemu-2.6.2-41.73.1 is installed OR qemu-block-curl-2.6.2-41.73.1 is installed OR qemu-block-rbd-2.6.2-41.73.1 is installed OR qemu-block-ssh-2.6.2-41.73.1 is installed OR qemu-guest-agent-2.6.2-41.73.1 is installed OR qemu-ipxe-1.0.0-41.73.1 is installed OR qemu-kvm-2.6.2-41.73.1 is installed OR qemu-lang-2.6.2-41.73.1 is installed OR qemu-seabios-1.9.1_0_gb3ef39f-41.73.1 is installed OR qemu-sgabios-8-41.73.1 is installed OR qemu-tools-2.6.2-41.73.1 is installed OR qemu-vgabios-1.9.1_0_gb3ef39f-41.73.1 is installed OR qemu-x86-2.6.2-41.73.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_109-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_29-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND shadow-4.2.1-27.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information gdm-3.10.0.1-52 is installed OR gdm-lang-3.10.0.1-52 is installed OR gdmflexiserver-3.10.0.1-52 is installed OR libgdm1-3.10.0.1-52 is installed OR typelib-1_0-Gdm-1_0-3.10.0.1-52 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information LibVNCServer-0.9.9-17.19 is installed OR libvncclient0-0.9.9-17.19 is installed OR libvncserver0-0.9.9-17.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_156-94_61-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_19-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libQt5Concurrent5-5.6.2-6.15 is installed OR libQt5Core5-5.6.2-6.15 is installed OR libQt5DBus5-5.6.2-6.15 is installed OR libQt5Gui5-5.6.2-6.15 is installed OR libQt5Network5-5.6.2-6.15 is installed OR libQt5OpenGL5-5.6.2-6.15 is installed OR libQt5PrintSupport5-5.6.2-6.15 is installed OR libQt5Sql5-5.6.2-6.15 is installed OR libQt5Sql5-mysql-5.6.2-6.15 is installed OR libQt5Sql5-postgresql-5.6.2-6.15 is installed OR libQt5Sql5-sqlite-5.6.2-6.15 is installed OR libQt5Sql5-unixODBC-5.6.2-6.15 is installed OR libQt5Test5-5.6.2-6.15 is installed OR libQt5Widgets5-5.6.2-6.15 is installed OR libQt5Xml5-5.6.2-6.15 is installed OR libqt5-qtbase-5.6.2-6.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND ant-1.9.4-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information ruby2.1-rubygem-chef-10.32.2-3 is installed OR ruby2.1-rubygem-chef-expander-10.32.2-1 is installed OR ruby2.1-rubygem-chef-server-10.32.2-1 is installed OR ruby2.1-rubygem-chef-server-api-10.32.2-4 is installed OR ruby2.1-rubygem-chef-solr-10.32.2-1 is installed OR rubygem-chef-10.32.2-3 is installed OR rubygem-chef-expander-10.32.2-1 is installed OR rubygem-chef-server-api-10.32.2-4 is installed OR rubygem-chef-solr-10.32.2-1 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND clamav-0.100.3-33.21 is installed
BACK