Oval Definition:oval:org.opensuse.security:def:56079
Revision Date:2021-10-07Version:1
Title:Security update for xen (Moderate)
Description:

This update for xen fixes the following issues:

- CVE-2021-28701: Fixed race condition in XENMAPSPACE_grant_table handling (XSA-384) (bsc#1189632).

- CVE-2021-28694,CVE-2021-28695,CVE-2021-28696: Fixed IOMMU page mapping issues on x86 (XSA-378)(bsc#1189373). - CVE-2021-28697: Fixed grant table v2 status pages that may remain accessible after de-allocation (XSA-379)(bsc#1189376). - CVE-2021-28698: Fixed long running loops in grant table handling (XSA-380)(bsc#1189378). - CVE-2021-20255: Fixed eepro100 stack overflow via infinite recursion (bsc#1182654). - CVE-2021-3592: Fixed invalid pointer initialization may lead to information disclosure (bootp) (bsc#1187369). - CVE-2021-3594: Fixed invalid pointer initialization may lead to information disclosure (udp) (bsc#1187378). - CVE-2021-3595: Fixed invalid pointer initialization may lead to information disclosure (tftp) (bsc#1187376). - CVE-2021-28692: Fixed inappropriate x86 IOMMU timeout detection / handling (XSA-373)(bsc#1186429). - CVE-2021-0089: Fixed Speculative Code Store Bypass (XSA-375)(bsc#1186433). - CVE-2021-28690: Fixed x86 TSX Async Abort protections not restored after S3 (XSA-377)(bsc#1186434).

- Prevent superpage allocation in the LAPIC and ACPI_INFO range (bsc#1189882).
Family:unixClass:patch
Status:Reference(s):1000106
1003030
1003032
1004981
1005004
1005005
1007157
1007941
1009100
1009103
1009104
1009105
1009107
1009108
1009109
1009111
1011652
1015203
1022804
1038564
1042892
1049302
1049305
1049306
1049307
1049308
1049309
1049310
1049311
1049312
1049313
1049314
1049315
1049316
1049317
1049318
1049319
1049320
1049321
1049322
1049323
1049324
1049325
1049326
1049327
1049328
1049329
1049330
1049331
1049332
1052311
1052368
1083125
1085447
1090368
1090646
1114592
1133191
1135254
1136446
1137597
1141897
1142649
1142654
1148517
1149145
1153451
1153459
1171252
1171254
1182654
1186429
1186433
1186434
1187369
1187376
1187378
1189373
1189376
1189378
1189632
1189882
865241
868937
900611
911796
941939
951391
952196
955131
970072
970073
CVE-2009-0186
CVE-2011-1709
CVE-2011-2696
CVE-2014-3686
CVE-2014-9496
CVE-2015-0204
CVE-2015-0286
CVE-2015-0288
CVE-2015-0458
CVE-2015-0459
CVE-2015-0469
CVE-2015-0477
CVE-2015-0478
CVE-2015-0480
CVE-2015-0488
CVE-2015-0491
CVE-2015-1789
CVE-2015-1793
CVE-2015-4730
CVE-2015-4734
CVE-2015-4766
CVE-2015-4792
CVE-2015-4800
CVE-2015-4802
CVE-2015-4803
CVE-2015-4805
CVE-2015-4806
CVE-2015-4810
CVE-2015-4815
CVE-2015-4816
CVE-2015-4819
CVE-2015-4826
CVE-2015-4830
CVE-2015-4833
CVE-2015-4835
CVE-2015-4836
CVE-2015-4840
CVE-2015-4842
CVE-2015-4843
CVE-2015-4844
CVE-2015-4858
CVE-2015-4860
CVE-2015-4861
CVE-2015-4862
CVE-2015-4864
CVE-2015-4866
CVE-2015-4870
CVE-2015-4871
CVE-2015-4872
CVE-2015-4879
CVE-2015-4882
CVE-2015-4883
CVE-2015-4890
CVE-2015-4893
CVE-2015-4895
CVE-2015-4902
CVE-2015-4903
CVE-2015-4904
CVE-2015-4905
CVE-2015-4910
CVE-2015-4911
CVE-2015-4913
CVE-2015-5006
CVE-2016-1285
CVE-2016-1286
CVE-2016-7777
CVE-2016-7908
CVE-2016-7909
CVE-2016-8667
CVE-2016-8669
CVE-2016-8910
CVE-2016-9377
CVE-2016-9378
CVE-2016-9379
CVE-2016-9380
CVE-2016-9381
CVE-2016-9382
CVE-2016-9383
CVE-2016-9384
CVE-2016-9385
CVE-2016-9386
CVE-2016-9637
CVE-2017-1000112
CVE-2017-10053
CVE-2017-10067
CVE-2017-10074
CVE-2017-10078
CVE-2017-10081
CVE-2017-10086
CVE-2017-10087
CVE-2017-10089
CVE-2017-10090
CVE-2017-10096
CVE-2017-10101
CVE-2017-10102
CVE-2017-10105
CVE-2017-10107
CVE-2017-10108
CVE-2017-10109
CVE-2017-10110
CVE-2017-10111
CVE-2017-10114
CVE-2017-10115
CVE-2017-10116
CVE-2017-10118
CVE-2017-10125
CVE-2017-10135
CVE-2017-10176
CVE-2017-10193
CVE-2017-10198
CVE-2017-10243
CVE-2017-13166
CVE-2017-8890
CVE-2017-9242
CVE-2018-8781
CVE-2018-8897
CVE-2019-11477
CVE-2019-11478
CVE-2019-11487
CVE-2019-14250
CVE-2019-15847
CVE-2019-17041
CVE-2019-17042
CVE-2019-3846
CVE-2020-12653
CVE-2020-12654
CVE-2021-0089
CVE-2021-20255
CVE-2021-28690
CVE-2021-28692
CVE-2021-28694
CVE-2021-28695
CVE-2021-28696
CVE-2021-28697
CVE-2021-28698
CVE-2021-28701
CVE-2021-3592
CVE-2021-3594
CVE-2021-3595
SUSE-SU-2015:2168-2
SUSE-SU-2015:2303-1
SUSE-SU-2016:0825-1
SUSE-SU-2016:3067-1
SUSE-SU-2017:2175-1
SUSE-SU-2017:2447-1
SUSE-SU-2018:1532-1
SUSE-SU-2020:0394-1
SUSE-SU-2020:0424-1
SUSE-SU-403
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP2-LTSS-SAP
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • emacs-25.3-lp150.1 is installed
  • OR emacs-info-25.3-lp150.1 is installed
  • OR emacs-nox-25.3-lp150.1 is installed
  • OR etags-25.3-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND transfig-3.2.6a-lp151.4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • libsndfile-1.0.20-2.6 is installed
  • OR libsndfile-32bit-1.0.20-2.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • bind-9.9.6P1-0.25 is installed
  • OR bind-libs-9.9.6P1-0.25 is installed
  • OR bind-libs-32bit-9.9.6P1-0.25 is installed
  • OR bind-utils-9.9.6P1-0.25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • xen-4.7.1_02-25 is installed
  • OR xen-libs-4.7.1_02-25 is installed
  • OR xen-libs-32bit-4.7.1_02-25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • gdm-3.10.0.1-23 is installed
  • OR gdm-branding-upstream-3.10.0.1-23 is installed
  • OR gdm-lang-3.10.0.1-23 is installed
  • OR gdmflexiserver-3.10.0.1-23 is installed
  • OR libgdm1-3.10.0.1-23 is installed
  • OR typelib-1_0-Gdm-1_0-3.10.0.1-23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_51-default-2-2 is installed
  • OR kgraft-patch-3_12_74-60_64_51-xen-2-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_18-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND libXxf86dga1-1.1.4-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libpython3_4m1_0-3.4.6-25.21 is installed
  • OR python3-3.4.6-25.21 is installed
  • OR python3-base-3.4.6-25.21 is installed
  • OR python3-curses-3.4.6-25.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND binutils-2.31-9.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • MozillaFirefox-52.8.1esr-109.34 is installed
  • OR MozillaFirefox-devel-52.8.1esr-109.34 is installed
  • OR MozillaFirefox-translations-52.8.1esr-109.34 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND ft2demos-2.6.3-7.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libdcerpc-binding0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libdcerpc-binding0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libdcerpc0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libdcerpc0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr-krb5pac0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr-krb5pac0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr-nbt0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr-nbt0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr-standard0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr-standard0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libndr0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libnetapi0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libnetapi0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-credentials0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-credentials0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-errors0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-errors0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-hostconfig0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-hostconfig0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-passdb0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-passdb0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-util0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamba-util0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamdb0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsamdb0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsmbclient0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsmbclient0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsmbconf0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsmbconf0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsmbldap0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libsmbldap0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libtevent-util0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libtevent-util0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libwbclient0-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR libwbclient0-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-client-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-client-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-doc-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-libs-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-libs-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-winbind-4.6.16+git.174.c2fd2e28c84-3.49 is installed
  • OR samba-winbind-32bit-4.6.16+git.174.c2fd2e28c84-3.49 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • python-cryptography-1.3.1-7.13 is installed
  • OR python-pyOpenSSL-16.0.0-4.11 is installed
  • OR python-setuptools-18.0.1-4.8 is installed
  • OR python3-cryptography-1.3.1-7.13 is installed
  • OR python3-pyOpenSSL-16.0.0-4.11 is installed
  • OR python3-setuptools-18.0.1-4.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND libSoundTouch0-1.7.1-5.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND python-Pillow-2.8.1-4.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • apache2-2.4.23-29.54 is installed
  • OR apache2-doc-2.4.23-29.54 is installed
  • OR apache2-example-pages-2.4.23-29.54 is installed
  • OR apache2-prefork-2.4.23-29.54 is installed
  • OR apache2-utils-2.4.23-29.54 is installed
  • OR apache2-worker-2.4.23-29.54 is installed
    • BACK