Oval Definition:oval:org.opensuse.security:def:55458
Revision Date:2020-12-01Version:1
Title:Security update for xen (Moderate)
Description:





This update fixes the following security issues:

- bsc#956832 - CVE-2015-8345: xen: qemu: net: eepro100: infinite loop in processing command block list

- bsc#956592 - xen: virtual PMU is unsupported (XSA-163)

- bsc#956408 - CVE-2015-8339, CVE-2015-8340: xen: XENMEM_exchange error handling issues (XSA-159)

- bsc#956409 - CVE-2015-8341: xen: libxl leak of pv kernel and initrd on error (XSA-160)

- bsc#956411 - CVE-2015-7504: xen: heap buffer overflow vulnerability in pcnet emulator (XSA-162)

- bsc#947165 - CVE-2015-7311: xen: libxl fails to honour readonly flag on disks with qemu-xen (xsa-142)

- bsc#954405 - CVE-2015-8104: Xen: guest to host DoS by triggering an infinite loop in microcode via #DB exception

- bsc#954018 - CVE-2015-5307: xen: x86: CPU lockup during fault delivery (XSA-156) CVE-2015-5307-xsa156.patch

- bsc#950704 - CVE-2015-7970: xen: x86: Long latency populate-on-demand operation is not preemptible (XSA-150) 563212c9-x86-PoD-Eager-sweep-for-zeroed-pages.patch

- bsc#951845 - CVE-2015-7972: xen: x86: populate-on-demand balloon size inaccuracy can crash guests (XSA-153) xsa153-libxl.patch xend-xsa153.patch - Drop 5604f239-x86-PV-properly-populate-descriptor-tables.patch

- bsc#950703 - CVE-2015-7969: xen: leak of main per-domain vcpu pointer array (DoS) (XSA-149) - bsc#950705 - CVE-2015-7969: xen: x86: leak of per-domain profiling-related vcpu pointer array (DoS) (XSA-151) - bsc#950706 - CVE-2015-7971: xen: x86: some pmu and profiling hypercalls log without rate limiting (XSA-152)
Family:unixClass:patch
Status:Reference(s):1000362
1014136
1017693
1026236
1027519
1031460
1034845
1036470
1037243
1042160
1042863
1042882
1042893
1042915
1042923
1042924
1042931
1042938
1043074
1043297
1046779
1054594
1091203
1104289
1110720
1115717
1117001
1117260
1122456
1128292
1131493
1132303
1136334
1136498
1139073
1139383
1141035
1155988
796243
798538
798541
843759
864391
864655
864673
864678
864682
864769
864805
864811
877642
897654
901508
902737
905959
916897
916914
924018
928393
945404
945989
947165
950703
950704
950705
950706
951845
954018
954405
954872
956408
956409
956411
956592
956829
956832
957162
957988
958007
958009
958491
958523
958917
959005
959387
959695
959928
960334
960707
960725
960835
960861
960862
961332
961358
961691
962320
963782
963923
964413
965315
965317
967012
967013
967630
967969
969121
969122
969350
980670
990460
CVE-2011-2483
CVE-2011-3177
CVE-2013-0221
CVE-2013-0222
CVE-2013-0223
CVE-2013-1633
CVE-2013-1986
CVE-2013-4527
CVE-2013-4529
CVE-2013-4530
CVE-2013-4533
CVE-2013-4534
CVE-2013-4537
CVE-2013-4538
CVE-2013-4539
CVE-2014-0222
CVE-2014-3640
CVE-2014-3689
CVE-2014-7815
CVE-2014-9718
CVE-2015-1545
CVE-2015-1546
CVE-2015-1779
CVE-2015-5278
CVE-2015-5307
CVE-2015-6855
CVE-2015-7311
CVE-2015-7504
CVE-2015-7512
CVE-2015-7549
CVE-2015-7835
CVE-2015-7969
CVE-2015-7970
CVE-2015-7971
CVE-2015-7972
CVE-2015-8104
CVE-2015-8339
CVE-2015-8340
CVE-2015-8341
CVE-2015-8345
CVE-2015-8345
CVE-2015-8504
CVE-2015-8550
CVE-2015-8554
CVE-2015-8555
CVE-2015-8558
CVE-2015-8567
CVE-2015-8568
CVE-2015-8613
CVE-2015-8619
CVE-2015-8743
CVE-2015-8744
CVE-2015-8745
CVE-2015-8817
CVE-2015-8818
CVE-2016-10092
CVE-2016-10093
CVE-2016-10094
CVE-2016-1568
CVE-2016-1570
CVE-2016-1571
CVE-2016-1602
CVE-2016-1714
CVE-2016-1922
CVE-2016-1981
CVE-2016-2198
CVE-2016-2270
CVE-2016-2271
CVE-2016-2391
CVE-2016-2392
CVE-2016-2538
CVE-2016-2776
CVE-2016-2841
CVE-2016-6223
CVE-2017-10911
CVE-2017-10912
CVE-2017-10913
CVE-2017-10914
CVE-2017-10915
CVE-2017-10916
CVE-2017-10917
CVE-2017-10918
CVE-2017-10920
CVE-2017-10921
CVE-2017-10922
CVE-2017-12944
CVE-2017-7506
CVE-2017-8112
CVE-2017-8309
CVE-2017-8905
CVE-2017-9330
CVE-2017-9374
CVE-2017-9503
CVE-2018-19210
CVE-2018-19416
CVE-2018-19517
CVE-2019-11135
CVE-2019-11139
CVE-2019-5953
CVE-2019-9836
SUSE-SU-2015:1077-1
SUSE-SU-2015:2328-1
SUSE-SU-2016:0955-1
SUSE-SU-2016:1507-1
SUSE-SU-2016:2399-1
SUSE-SU-2017:1812-1
SUSE-SU-2017:1832-1
SUSE-SU-2018:4191-1
SUSE-SU-2019:0956-1
SUSE-SU-2019:1326-1
SUSE-SU-2019:1802-1
SUSE-SU-2019:2988-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • MozillaThunderbird-52.7-lp150.2 is installed
  • OR MozillaThunderbird-translations-common-52.7-lp150.2 is installed
  • OR MozillaThunderbird-translations-other-52.7-lp150.2 is installed
  • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • gnome-shell-3.26.2+20180130.0d9c74212-lp151.7.3 is installed
  • OR gnome-shell-browser-plugin-3.26.2+20180130.0d9c74212-lp151.7.3 is installed
  • OR gnome-shell-calendar-3.26.2+20180130.0d9c74212-lp151.7.3 is installed
  • OR gnome-shell-devel-3.26.2+20180130.0d9c74212-lp151.7.3 is installed
  • OR gnome-shell-lang-3.26.2+20180130.0d9c74212-lp151.7.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • coreutils-8.12-6.25.29 is installed
  • OR coreutils-lang-8.12-6.25.29 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND python-setuptools-0.6c8-10.19.6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • xen-4.4.4_02-32 is installed
  • OR xen-doc-html-4.4.4_02-32 is installed
  • OR xen-kmp-default-4.4.4_02_3.0.101_68-32 is installed
  • OR xen-kmp-pae-4.4.4_02_3.0.101_68-32 is installed
  • OR xen-libs-4.4.4_02-32 is installed
  • OR xen-libs-32bit-4.4.4_02-32 is installed
  • OR xen-tools-4.4.4_02-32 is installed
  • OR xen-tools-domU-4.4.4_02-32 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • xen-4.4.3_06-22.15 is installed
  • OR xen-kmp-default-4.4.3_06_k3.12.48_52.27-22.15 is installed
  • OR xen-libs-4.4.3_06-22.15 is installed
  • OR xen-libs-32bit-4.4.3_06-22.15 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND sysstat-12.0.2-10.18 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • libtiff5-4.0.9-44.30 is installed
  • OR libtiff5-32bit-4.0.9-44.30 is installed
  • OR tiff-4.0.9-44.30 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libXrandr2-1.4.2-3 is installed
  • OR libXrandr2-32bit-1.4.2-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • xen-4.5.5_12-22.18 is installed
  • OR xen-doc-html-4.5.5_12-22.18 is installed
  • OR xen-kmp-default-4.5.5_12_k3.12.74_60.64.45-22.18 is installed
  • OR xen-libs-4.5.5_12-22.18 is installed
  • OR xen-libs-32bit-4.5.5_12-22.18 is installed
  • OR xen-tools-4.5.5_12-22.18 is installed
  • OR xen-tools-domU-4.5.5_12-22.18 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • cyrus-sasl-2.1.26-7 is installed
  • OR cyrus-sasl-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-crammd5-2.1.26-7 is installed
  • OR cyrus-sasl-crammd5-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-digestmd5-2.1.26-7 is installed
  • OR cyrus-sasl-gssapi-2.1.26-7 is installed
  • OR cyrus-sasl-gssapi-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-otp-2.1.26-7 is installed
  • OR cyrus-sasl-otp-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-plain-2.1.26-7 is installed
  • OR cyrus-sasl-plain-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-saslauthd-2.1.26-7 is installed
  • OR cyrus-sasl-sqlauxprop-2.1.26-7 is installed
  • OR cyrus-sasl-sqlauxprop-32bit-2.1.26-7 is installed
  • OR libsasl2-3-2.1.26-7 is installed
  • OR libsasl2-3-32bit-2.1.26-7 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • kernel-default-4.4.121-92.125 is installed
  • OR kernel-default-base-4.4.121-92.125 is installed
  • OR kernel-default-devel-4.4.121-92.125 is installed
  • OR kernel-devel-4.4.121-92.125 is installed
  • OR kernel-macros-4.4.121-92.125 is installed
  • OR kernel-source-4.4.121-92.125 is installed
  • OR kernel-syms-4.4.121-92.125 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND wpa_supplicant-2.6-15.10 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • perl-5.18.2-12.20 is installed
  • OR perl-32bit-5.18.2-12.20 is installed
  • OR perl-base-5.18.2-12.20 is installed
  • OR perl-doc-5.18.2-12.20 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • crash-7.1.8-3 is installed
  • OR crash-kmp-default-7.1.8_k4.4.73_5-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • gcc9-9.2.1+r275327-1.3 is installed
  • OR libasan5-9.2.1+r275327-1.3 is installed
  • OR libasan5-32bit-9.2.1+r275327-1.3 is installed
  • OR libatomic1-9.2.1+r275327-1.3 is installed
  • OR libatomic1-32bit-9.2.1+r275327-1.3 is installed
  • OR libgcc_s1-9.2.1+r275327-1.3 is installed
  • OR libgcc_s1-32bit-9.2.1+r275327-1.3 is installed
  • OR libgfortran5-9.2.1+r275327-1.3 is installed
  • OR libgfortran5-32bit-9.2.1+r275327-1.3 is installed
  • OR libgo14-9.2.1+r275327-1.3 is installed
  • OR libgo14-32bit-9.2.1+r275327-1.3 is installed
  • OR libgomp1-9.2.1+r275327-1.3 is installed
  • OR libgomp1-32bit-9.2.1+r275327-1.3 is installed
  • OR libitm1-9.2.1+r275327-1.3 is installed
  • OR libitm1-32bit-9.2.1+r275327-1.3 is installed
  • OR liblsan0-9.2.1+r275327-1.3 is installed
  • OR libquadmath0-9.2.1+r275327-1.3 is installed
  • OR libquadmath0-32bit-9.2.1+r275327-1.3 is installed
  • OR libstdc++6-9.2.1+r275327-1.3 is installed
  • OR libstdc++6-32bit-9.2.1+r275327-1.3 is installed
  • OR libstdc++6-locale-9.2.1+r275327-1.3 is installed
  • OR libtsan0-9.2.1+r275327-1.3 is installed
  • OR libubsan1-9.2.1+r275327-1.3 is installed
  • OR libubsan1-32bit-9.2.1+r275327-1.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libgcrypt-1.6.1-16.68 is installed
  • OR libgcrypt20-1.6.1-16.68 is installed
  • OR libgcrypt20-32bit-1.6.1-16.68 is installed
  • OR libgcrypt20-hmac-1.6.1-16.68 is installed
  • OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libdcerpc-binding0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libdcerpc-binding0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libdcerpc0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libdcerpc0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr-krb5pac0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr-krb5pac0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr-nbt0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr-nbt0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr-standard0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr-standard0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libnetapi0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libnetapi0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-credentials0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-credentials0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-errors0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-errors0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-hostconfig0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-hostconfig0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-passdb0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-passdb0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-util0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-util0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamdb0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamdb0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsmbclient0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsmbclient0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsmbconf0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsmbconf0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsmbldap0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsmbldap0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libtevent-util0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libtevent-util0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libwbclient0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libwbclient0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-client-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-client-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-doc-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-libs-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-libs-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-winbind-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-winbind-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • gv-3.7.4-1 is installed
  • OR wdiff-1.2.1-3 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • storm-1.0.5-5 is installed
  • OR storm-nimbus-1.0.5-5 is installed
  • OR storm-supervisor-1.0.5-5 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND python-Django-1.11.23-3.12 is installed
  • BACK