Oval Definition:oval:org.opensuse.security:def:55786
Revision Date:2020-12-22Version:1
Title:Security update for xen (Moderate)
Description:

This update for xen fixes the following issues:

- CVE-2020-29480: Fixed an issue which could have allowed leak of non-sensitive data to administrator guests (bsc#117949 XSA-115). - CVE-2020-29481: Fixed an issue which could have allowd to new domains to inherit existing node permissions (bsc#1179498 XSA-322). - CVE-2020-29483: Fixed an issue where guests could disturb domain cleanup (bsc#1179502 XSA-325). - CVE-2020-29484: Fixed an issue where guests could crash xenstored via watchs (bsc#1179501 XSA-324). - CVE-2020-29566: Fixed an undue recursion in x86 HVM context switch code (bsc#1179506 XSA-348). - CVE-2020-29570: Fixed an issue where FIFO event channels control block related ordering (bsc#1179514 XSA-358). - CVE-2020-29571: Fixed an issue where FIFO event channels control structure ordering (bsc#1179516 XSA-359). - CVE-2020-29130: Fixed an out-of-bounds access while processing ARP packets (bsc#1179477). - Fixed an issue where dump-core shows missing nr_pages during core (bsc#1176782). - Multiple other bugs (bsc#1027519)
Family:unixClass:patch
Status:Reference(s):1002991
1020983
1027519
1031702
1033466
1033467
1033468
1037396
1041764
1065083
1073313
1083424
1098531
1102682
1103203
1104199
1104202
1105323
1111853
1112767
1122198
1122475
1127027
1176782
1179477
1179496
1179498
1179501
1179502
1179506
1179514
1179516
795826
796628
854367
868603
927220
954980
967087
984802
987866
988729
989196
989528
990628
990856
991809
CVE-2012-5668
CVE-2012-5669
CVE-2013-7439
CVE-2014-1493
CVE-2014-1494
CVE-2014-1496
CVE-2014-1497
CVE-2014-1498
CVE-2014-1499
CVE-2014-1500
CVE-2014-1501
CVE-2014-1502
CVE-2014-1504
CVE-2014-1505
CVE-2014-1508
CVE-2014-1509
CVE-2014-1510
CVE-2014-1511
CVE-2014-1512
CVE-2014-1513
CVE-2014-1514
CVE-2014-3970
CVE-2015-8126
CVE-2016-1523
CVE-2016-2775
CVE-2016-2830
CVE-2016-2835
CVE-2016-2836
CVE-2016-2837
CVE-2016-2838
CVE-2016-2839
CVE-2016-4985
CVE-2016-5252
CVE-2016-5254
CVE-2016-5258
CVE-2016-5259
CVE-2016-5262
CVE-2016-5263
CVE-2016-5264
CVE-2016-5265
CVE-2016-6170
CVE-2016-6354
CVE-2016-7942
CVE-2017-17740
CVE-2017-3136
CVE-2017-3137
CVE-2017-3138
CVE-2017-9287
CVE-2018-10902
CVE-2018-10915
CVE-2018-10925
CVE-2018-12327
CVE-2018-5390
CVE-2018-7170
CVE-2019-2510
CVE-2019-2537
CVE-2020-29130
CVE-2020-29480
CVE-2020-29481
CVE-2020-29483
CVE-2020-29484
CVE-2020-29566
CVE-2020-29570
CVE-2020-29571
SUSE-SU-2015:1334-1
SUSE-SU-2016:0061-1
SUSE-SU-2016:0554-1
SUSE-SU-2016:1966-1
SUSE-SU-2016:2131-1
SUSE-SU-2016:3001-1
SUSE-SU-2017:0998-1
SUSE-SU-2018:3342-1
SUSE-SU-2018:3377-1
SUSE-SU-2019:0609-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • MozillaThunderbird-52.7-lp150.2 is installed
  • OR MozillaThunderbird-translations-common-52.7-lp150.2 is installed
  • OR MozillaThunderbird-translations-other-52.7-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • MozillaThunderbird-60.7.0-lp151.2.4 is installed
  • OR MozillaThunderbird-buildsymbols-60.7.0-lp151.2.4 is installed
  • OR MozillaThunderbird-translations-common-60.7.0-lp151.2.4 is installed
  • OR MozillaThunderbird-translations-other-60.7.0-lp151.2.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • freetype2-2.3.7-25.32 is installed
  • OR freetype2-32bit-2.3.7-25.32 is installed
  • OR freetype2-devel-2.3.7-25.32 is installed
  • OR ft2demos-2.3.7-25.32 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-24.4.0esr-0.8 is installed
  • OR MozillaFirefox-branding-SLED-24-0.7 is installed
  • OR MozillaFirefox-translations-24.4.0esr-0.8 is installed
  • OR mozilla-nspr-4.10.4-0.3 is installed
  • OR mozilla-nspr-32bit-4.10.4-0.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • MozillaFirefox-45.3.0esr-78 is installed
  • OR MozillaFirefox-translations-45.3.0esr-78 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • mariadb-10.2.22-3.14 is installed
  • OR mariadb-client-10.2.22-3.14 is installed
  • OR mariadb-errormessages-10.2.22-3.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libpulse-mainloop-glib0-5.0-2 is installed
  • OR libpulse-mainloop-glib0-32bit-5.0-2 is installed
  • OR libpulse0-5.0-2 is installed
  • OR libpulse0-32bit-5.0-2 is installed
  • OR pulseaudio-5.0-2 is installed
  • OR pulseaudio-esound-compat-5.0-2 is installed
  • OR pulseaudio-gdm-hooks-5.0-2 is installed
  • OR pulseaudio-lang-5.0-2 is installed
  • OR pulseaudio-module-x11-5.0-2 is installed
  • OR pulseaudio-module-zeroconf-5.0-2 is installed
  • OR pulseaudio-utils-5.0-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_66-default-8-2 is installed
  • OR kgraft-patch-3_12_74-60_64_66-xen-8-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_23-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND libXxf86dga1-1.1.4-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • hostinfo-1.0.1-19.5 is installed
  • OR supportutils-3.0-95.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • xen-4.7.6_14-43.73.1 is installed
  • OR xen-doc-html-4.7.6_14-43.73.1 is installed
  • OR xen-libs-4.7.6_14-43.73.1 is installed
  • OR xen-libs-32bit-4.7.6_14-43.73.1 is installed
  • OR xen-tools-4.7.6_14-43.73.1 is installed
  • OR xen-tools-domU-4.7.6_14-43.73.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_90-92_45-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_14-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND cifs-utils-6.5-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • MozillaFirefox-60.9.0-109.86 is installed
  • OR MozillaFirefox-translations-common-60.9.0-109.86 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_100-default-4-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_27-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • python-cffi-1.11.2-5.11 is installed
  • OR python-cryptography-2.1.4-7.28 is installed
  • OR python-xattr-0.7.5-6.3 is installed
  • OR python3-cffi-1.11.2-5.11 is installed
  • OR python3-cryptography-2.1.4-7.28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND clamav-0.100.3-33.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND dstat-0.7.3-1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • openstack-designate-1.0.3~a0~dev10-6 is installed
  • OR openstack-designate-agent-1.0.3~a0~dev10-6 is installed
  • OR openstack-designate-api-1.0.3~a0~dev10-6 is installed
  • OR openstack-designate-central-1.0.3~a0~dev10-6 is installed
  • OR openstack-designate-doc-1.0.3~a0~dev10-6 is installed
  • OR openstack-designate-sink-1.0.3~a0~dev10-6 is installed
  • OR openstack-ironic-4.2.5-6 is installed
  • OR openstack-ironic-api-4.2.5-6 is installed
  • OR openstack-ironic-conductor-4.2.5-6 is installed
  • OR openstack-ironic-doc-4.2.5-6 is installed
  • OR openstack-neutron-vpn-agent-7.0.5~a0~dev3-6 is installed
  • OR openstack-neutron-vpnaas-7.0.5~a0~dev3-6 is installed
  • OR openstack-neutron-vpnaas-doc-7.0.5~a0~dev3-6 is installed
  • OR openstack-nova-docker-0.0.1~a0~dev238-4 is installed
  • OR openstack-sahara-3.0.3~a0~dev1-6 is installed
  • OR openstack-sahara-api-3.0.3~a0~dev1-6 is installed
  • OR openstack-sahara-doc-3.0.3~a0~dev1-6 is installed
  • OR openstack-sahara-engine-3.0.3~a0~dev1-6 is installed
  • OR openstack-tempest-7.0.0-9 is installed
  • OR openstack-tempest-test-7.0.0-9 is installed
  • OR openstack-trove-4.0.1~a0~dev19-8 is installed
  • OR openstack-trove-api-4.0.1~a0~dev19-8 is installed
  • OR openstack-trove-conductor-4.0.1~a0~dev19-8 is installed
  • OR openstack-trove-doc-4.0.1~a0~dev19-8 is installed
  • OR openstack-trove-guestagent-4.0.1~a0~dev19-8 is installed
  • OR openstack-trove-taskmanager-4.0.1~a0~dev19-8 is installed
  • OR python-designate-1.0.3~a0~dev10-6 is installed
  • OR python-ironic-4.2.5-6 is installed
  • OR python-neutron-vpnaas-7.0.5~a0~dev3-6 is installed
  • OR python-sahara-3.0.3~a0~dev1-6 is installed
  • OR python-tempest-7.0.0-9 is installed
  • OR python-trove-4.0.1~a0~dev19-8 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • apache2-2.4.23-29.24 is installed
  • OR apache2-doc-2.4.23-29.24 is installed
  • OR apache2-example-pages-2.4.23-29.24 is installed
  • OR apache2-prefork-2.4.23-29.24 is installed
  • OR apache2-utils-2.4.23-29.24 is installed
  • OR apache2-worker-2.4.23-29.24 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • mariadb-10.2.22-4.11 is installed
  • OR mariadb-client-10.2.22-4.11 is installed
  • OR mariadb-errormessages-10.2.22-4.11 is installed
  • OR mariadb-galera-10.2.22-4.11 is installed
  • OR mariadb-tools-10.2.22-4.11 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • MozillaFirefox-60.9.0-109.86 is installed
  • OR MozillaFirefox-translations-common-60.9.0-109.86 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • ruby2.1-rubygem-loofah-2.0.2-3.8 is installed
  • OR rubygem-loofah-2.0.2-3.8 is installed
    • BACK