Oval Definition:	oval:org.opensuse.security:def:56171
Revision Date: 2020-12-01 Version: 1 Title: Security update for xen (Important) Description: This update for xen fixes several issues. These security issues were fixed: - CVE-2017-14316: Missing bound check in function `alloc_heap_pages` for an internal array allowed attackers using crafted hypercalls to execute arbitrary code within Xen (XSA-231, bsc#1056278) - CVE-2017-14318: The function __gnttab_cache_flush missed a check for grant tables, allowing a malicious guest to crash the host or for x86 PV guests to potentially escalate privileges (XSA-232, bsc#1056280) - CVE-2017-14317: A race in cxenstored may have cause a double-free allowind for DoS of the xenstored daemon (XSA-233, bsc#1056281). - CVE-2017-14319: An error while handling grant mappings allowed malicious or buggy x86 PV guest to escalate its privileges or crash the hypervisor (XSA-234, bsc#1056282). These non-security issues were fixed: - bsc#1055695: Fixed restoring updates for HVM guests for ballooned domUs Family: unix Class: patch Status: Reference(s): 1000195 1002496 1013657 1013668 1014490 1014507 1015169 1016340 1022627 1022871 1023004 1024183 1024186 1024307 1024834 1025188 1027519 1051684 1051685 1053259 1055695 1056278 1056280 1056281 1056282 1104301 1108308 798770 833483 842006 858178 862608 864801 865682 867910 878841 880751 881900 882092 891539 895798 895799 895802 897657 927841 942628 969785 992537 CVE-2009-0688 CVE-2009-3297 CVE-2011-0020 CVE-2011-0064 CVE-2011-0541 CVE-2011-0904 CVE-2011-0905 CVE-2011-1164 CVE-2011-1709 CVE-2013-4344 CVE-2013-4540 CVE-2014-2497 CVE-2014-2599 CVE-2014-3967 CVE-2014-3968 CVE-2014-4021 CVE-2014-7154 CVE-2014-7155 CVE-2014-7156 CVE-2014-7188 CVE-2014-9709 CVE-2015-3202 CVE-2015-3310 CVE-2015-5185 CVE-2016-10155 CVE-2016-2851 CVE-2016-3485 CVE-2016-3511 CVE-2016-3598 CVE-2016-5116 CVE-2016-6128 CVE-2016-6132 CVE-2016-6161 CVE-2016-6207 CVE-2016-6214 CVE-2016-6905 CVE-2016-9101 CVE-2016-9776 CVE-2016-9907 CVE-2016-9911 CVE-2016-9921 CVE-2016-9922 CVE-2017-14316 CVE-2017-14317 CVE-2017-14318 CVE-2017-14319 CVE-2017-2615 CVE-2017-2620 CVE-2017-5579 CVE-2017-5856 CVE-2017-5898 CVE-2017-5973 CVE-2017-7546 CVE-2017-7547 CVE-2017-7548 CVE-2018-5383 SUSE-SU-2015:2218-1 SUSE-SU-2016:0706-1 SUSE-SU-2016:2726-1 SUSE-SU-2017:0474-1 SUSE-SU-2017:0570-1 SUSE-SU-2017:2355-1 SUSE-SU-2017:2519-1 SUSE-SU-2018:3074-1 SUSE-SU-2019:0427-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information ft2demos-2.9-lp150.2 is installed OR ftbench-2.9-lp150.2 is installed OR ftdiff-2.9-lp150.2 is installed OR ftdump-2.9-lp150.2 is installed OR ftgamma-2.9-lp150.2 is installed OR ftgrid-2.9-lp150.2 is installed OR ftinspect-2.9-lp150.2 is installed OR ftlint-2.9-lp150.2 is installed OR ftmulti-2.9-lp150.2 is installed OR ftstring-2.9-lp150.2 is installed OR ftvalid-2.9-lp150.2 is installed OR ftview-2.9-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information elfutils-0.168-lp151.4.3 is installed OR elfutils-lang-0.168-lp151.4.3 is installed OR libasm-devel-0.168-lp151.4.3 is installed OR libasm1-0.168-lp151.4.3 is installed OR libasm1-32bit-0.168-lp151.4.3 is installed OR libdw-devel-0.168-lp151.4.3 is installed OR libdw1-0.168-lp151.4.3 is installed OR libdw1-32bit-0.168-lp151.4.3 is installed OR libebl-devel-0.168-lp151.4.3 is installed OR libebl-plugins-0.168-lp151.4.3 is installed OR libebl-plugins-32bit-0.168-lp151.4.3 is installed OR libelf-devel-0.168-lp151.4.3 is installed OR libelf-devel-32bit-0.168-lp151.4.3 is installed OR libelf1-0.168-lp151.4.3 is installed OR libelf1-32bit-0.168-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information xen-4.2.4_04-0.9 is installed OR xen-doc-html-4.2.4_04-0.9 is installed OR xen-doc-pdf-4.2.4_04-0.9 is installed OR xen-kmp-default-4.2.4_04_3.0.101_0.40-0.9 is installed OR xen-kmp-pae-4.2.4_04_3.0.101_0.40-0.9 is installed OR xen-libs-4.2.4_04-0.9 is installed OR xen-libs-32bit-4.2.4_04-0.9 is installed OR xen-tools-4.2.4_04-0.9 is installed OR xen-tools-domU-4.2.4_04-0.9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information libotr-3.2.0-10.5 is installed OR libotr2-3.2.0-10.5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information xen-4.7.3_04-43.12 is installed OR xen-libs-4.7.3_04-43.12 is installed OR xen-libs-32bit-4.7.3_04-43.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information gdm-3.10.0.1-23 is installed OR gdm-branding-upstream-3.10.0.1-23 is installed OR gdm-lang-3.10.0.1-23 is installed OR gdmflexiserver-3.10.0.1-23 is installed OR libgdm1-3.10.0.1-23 is installed OR typelib-1_0-Gdm-1_0-3.10.0.1-23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information postgresql94-9.4.13-21.5 is installed OR postgresql94-contrib-9.4.13-21.5 is installed OR postgresql94-docs-9.4.13-21.5 is installed OR postgresql94-server-9.4.13-21.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information cyrus-sasl-2.1.26-7 is installed OR cyrus-sasl-32bit-2.1.26-7 is installed OR cyrus-sasl-crammd5-2.1.26-7 is installed OR cyrus-sasl-crammd5-32bit-2.1.26-7 is installed OR cyrus-sasl-digestmd5-2.1.26-7 is installed OR cyrus-sasl-gssapi-2.1.26-7 is installed OR cyrus-sasl-gssapi-32bit-2.1.26-7 is installed OR cyrus-sasl-otp-2.1.26-7 is installed OR cyrus-sasl-otp-32bit-2.1.26-7 is installed OR cyrus-sasl-plain-2.1.26-7 is installed OR cyrus-sasl-plain-32bit-2.1.26-7 is installed OR cyrus-sasl-saslauthd-2.1.26-7 is installed OR cyrus-sasl-sqlauxprop-2.1.26-7 is installed OR cyrus-sasl-sqlauxprop-32bit-2.1.26-7 is installed OR libsasl2-3-2.1.26-7 is installed OR libsasl2-3-32bit-2.1.26-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libdcerpc-binding0-4.4.2-38.20 is installed OR libdcerpc-binding0-32bit-4.4.2-38.20 is installed OR libdcerpc0-4.4.2-38.20 is installed OR libdcerpc0-32bit-4.4.2-38.20 is installed OR libndr-krb5pac0-4.4.2-38.20 is installed OR libndr-krb5pac0-32bit-4.4.2-38.20 is installed OR libndr-nbt0-4.4.2-38.20 is installed OR libndr-nbt0-32bit-4.4.2-38.20 is installed OR libndr-standard0-4.4.2-38.20 is installed OR libndr-standard0-32bit-4.4.2-38.20 is installed OR libndr0-4.4.2-38.20 is installed OR libndr0-32bit-4.4.2-38.20 is installed OR libnetapi0-4.4.2-38.20 is installed OR libnetapi0-32bit-4.4.2-38.20 is installed OR libsamba-credentials0-4.4.2-38.20 is installed OR libsamba-credentials0-32bit-4.4.2-38.20 is installed OR libsamba-errors0-4.4.2-38.20 is installed OR libsamba-errors0-32bit-4.4.2-38.20 is installed OR libsamba-hostconfig0-4.4.2-38.20 is installed OR libsamba-hostconfig0-32bit-4.4.2-38.20 is installed OR libsamba-passdb0-4.4.2-38.20 is installed OR libsamba-passdb0-32bit-4.4.2-38.20 is installed OR libsamba-util0-4.4.2-38.20 is installed OR libsamba-util0-32bit-4.4.2-38.20 is installed OR libsamdb0-4.4.2-38.20 is installed OR libsamdb0-32bit-4.4.2-38.20 is installed OR libsmbclient0-4.4.2-38.20 is installed OR libsmbclient0-32bit-4.4.2-38.20 is installed OR libsmbconf0-4.4.2-38.20 is installed OR libsmbconf0-32bit-4.4.2-38.20 is installed OR libsmbldap0-4.4.2-38.20 is installed OR libsmbldap0-32bit-4.4.2-38.20 is installed OR libtevent-util0-4.4.2-38.20 is installed OR libtevent-util0-32bit-4.4.2-38.20 is installed OR libwbclient0-4.4.2-38.20 is installed OR libwbclient0-32bit-4.4.2-38.20 is installed OR samba-4.4.2-38.20 is installed OR samba-client-4.4.2-38.20 is installed OR samba-client-32bit-4.4.2-38.20 is installed OR samba-doc-4.4.2-38.20 is installed OR samba-libs-4.4.2-38.20 is installed OR samba-libs-32bit-4.4.2-38.20 is installed OR samba-winbind-4.4.2-38.20 is installed OR samba-winbind-32bit-4.4.2-38.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-devel-52.9.0esr-109.38 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_67-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_19-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libgoa-1_0-0-3.20.5-9 is installed OR libgoa-backend-1_0-1-3.20.5-9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information res-signingkeys-3.0.37-52.23 is installed OR smt-3.0.37-52.23 is installed OR smt-support-3.0.37-52.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libpcre1-8.39-8.3 is installed OR libpcre1-32bit-8.39-8.3 is installed OR libpcre16-0-8.39-8.3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND ucode-intel-20180703-13.25 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information xen-4.9.4_04-3.56 is installed OR xen-doc-html-4.9.4_04-3.56 is installed OR xen-libs-4.9.4_04-3.56 is installed OR xen-libs-32bit-4.9.4_04-3.56 is installed OR xen-tools-4.9.4_04-3.56 is installed OR xen-tools-domU-4.9.4_04-3.56 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information dnsmasq-2.78-18.12 is installed OR dnsmasq-utils-2.78-18.12 is installed
BACK