Oval Definition:oval:org.opensuse.security:def:56185
Revision Date:2020-12-01Version:1
Title:Security update for libvirt (Moderate)
Description:

This update for libvirt fixes several issues.

This security issue was fixed:

- bsc#1053600: Escape ssh commed line to prevent interpreting malicious hostname as arguments, allowing for command execution

These non-security issues were fixed:

- bsc#1049505, bsc#1051017: Security manager: Don't autogenerate seclabels of type 'none' when AppArmor is inactive - bsc#1052151: Moved /usr/share/libvirt/libvirtLogo.png symlink from client to doc subpackage, where its target resides - bsc#1048783: Ignore newlines in libvirt-guests.sh guest list - bsc#1031056: Add default controllers for USB devices - bsc#1012143: Define path to parted using autoconf cache variable. parted is used for management of disk-based storage pools - bsc#1036785: Prevent output of null target in domxml-to-native
Family:unixClass:patch
Status:Reference(s):1001367
1003800
1004477
1005555
1005558
1005562
1005564
1005566
1005569
1005581
1005582
1006539
1006796
1007600
1008318
1011057
1012143
1012422
1013496
1017189
1024200
1028301
1031056
1036785
1038564
1042892
1045205
1048783
1049505
1050231
1051017
1052151
1052311
1052368
1053600
1066569
1066693
1067678
1068032
1068671
1070771
1070781
1071074
1071470
1071693
1071694
1071695
1072561
1072876
1103098
1124729
1124734
1128378
815451
821671
911866
939367
946744
971031
990890
994598
CVE-2009-2624
CVE-2010-0001
CVE-2010-2547
CVE-2011-2895
CVE-2012-2150
CVE-2013-1989
CVE-2013-2066
CVE-2013-4351
CVE-2013-4402
CVE-2013-7447
CVE-2014-3564
CVE-2014-4617
CVE-2014-8080
CVE-2014-8090
CVE-2015-1335
CVE-2015-1606
CVE-2015-1607
CVE-2015-5191
CVE-2016-3492
CVE-2016-5584
CVE-2016-5624
CVE-2016-5626
CVE-2016-5629
CVE-2016-6663
CVE-2016-6855
CVE-2016-7440
CVE-2016-8283
CVE-2017-1000112
CVE-2017-11600
CVE-2017-13167
CVE-2017-15115
CVE-2017-15868
CVE-2017-16534
CVE-2017-16538
CVE-2017-17448
CVE-2017-17449
CVE-2017-17450
CVE-2017-17558
CVE-2017-5715
CVE-2017-5753
CVE-2017-5754
CVE-2017-6508
CVE-2017-8824
CVE-2017-8890
CVE-2017-9242
CVE-2018-5391
CVE-2019-6974
CVE-2019-7221
CVE-2019-9213
SUSE-SU-2015:1829-1
SUSE-SU-2015:2383-1
SUSE-SU-2016:2933-1
SUSE-SU-2017:0702-1
SUSE-SU-2017:0800-1
SUSE-SU-2017:2447-1
SUSE-SU-2017:2697-1
SUSE-SU-2018:0031-1
SUSE-SU-2019:0672-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • gnome-settings-daemon-3.26.2-lp150.5 is installed
  • OR gnome-settings-daemon-lang-3.26.2-lp150.5 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libwireshark9-2.4.15-lp151.2.3 is installed
  • OR libwiretap7-2.4.15-lp151.2.3 is installed
  • OR libwscodecs1-2.4.15-lp151.2.3 is installed
  • OR libwsutil8-2.4.15-lp151.2.3 is installed
  • OR wireshark-2.4.15-lp151.2.3 is installed
  • OR wireshark-devel-2.4.15-lp151.2.3 is installed
  • OR wireshark-ui-qt-2.4.15-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • xorg-x11-libXv-7.4-1.16 is installed
  • OR xorg-x11-libXv-32bit-7.4-1.16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND lxc-0.8.0-0.25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • libvirt-2.0.0-27.20 is installed
  • OR libvirt-client-2.0.0-27.20 is installed
  • OR libvirt-client-32bit-2.0.0-27.20 is installed
  • OR libvirt-daemon-2.0.0-27.20 is installed
  • OR libvirt-daemon-config-network-2.0.0-27.20 is installed
  • OR libvirt-daemon-config-nwfilter-2.0.0-27.20 is installed
  • OR libvirt-daemon-driver-interface-2.0.0-27.20 is installed
  • OR libvirt-daemon-driver-libxl-2.0.0-27.20 is installed
  • OR libvirt-daemon-driver-lxc-2.0.0-27.20 is installed
  • OR libvirt-daemon-driver-network-2.0.0-27.20 is installed
  • OR libvirt-daemon-driver-nodedev-2.0.0-27.20 is installed
  • OR libvirt-daemon-driver-nwfilter-2.0.0-27.20 is installed
  • OR libvirt-daemon-driver-qemu-2.0.0-27.20 is installed
  • OR libvirt-daemon-driver-secret-2.0.0-27.20 is installed
  • OR libvirt-daemon-driver-storage-2.0.0-27.20 is installed
  • OR libvirt-daemon-lxc-2.0.0-27.20 is installed
  • OR libvirt-daemon-qemu-2.0.0-27.20 is installed
  • OR libvirt-daemon-xen-2.0.0-27.20 is installed
  • OR libvirt-doc-2.0.0-27.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND gzip-1.6-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_51-default-2-2 is installed
  • OR kgraft-patch-3_12_74-60_64_51-xen-2-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_18-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • eog-3.20.4-7 is installed
  • OR eog-lang-3.20.4-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • gnutls-3.2.15-18.6 is installed
  • OR libgnutls-openssl27-3.2.15-18.6 is installed
  • OR libgnutls28-3.2.15-18.6 is installed
  • OR libgnutls28-32bit-3.2.15-18.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.20-30.36 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libjbig2-2.0-12 is installed
  • OR libjbig2-32bit-2.0-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libX11-1.6.2-12.5 is installed
  • OR libX11-6-1.6.2-12.5 is installed
  • OR libX11-6-32bit-1.6.2-12.5 is installed
  • OR libX11-data-1.6.2-12.5 is installed
  • OR libX11-xcb1-1.6.2-12.5 is installed
  • OR libX11-xcb1-32bit-1.6.2-12.5 is installed
  • OR libxcb-1.10-4.3 is installed
  • OR libxcb-dri2-0-1.10-4.3 is installed
  • OR libxcb-dri2-0-32bit-1.10-4.3 is installed
  • OR libxcb-dri3-0-1.10-4.3 is installed
  • OR libxcb-dri3-0-32bit-1.10-4.3 is installed
  • OR libxcb-glx0-1.10-4.3 is installed
  • OR libxcb-glx0-32bit-1.10-4.3 is installed
  • OR libxcb-present0-1.10-4.3 is installed
  • OR libxcb-present0-32bit-1.10-4.3 is installed
  • OR libxcb-randr0-1.10-4.3 is installed
  • OR libxcb-render0-1.10-4.3 is installed
  • OR libxcb-render0-32bit-1.10-4.3 is installed
  • OR libxcb-shape0-1.10-4.3 is installed
  • OR libxcb-shm0-1.10-4.3 is installed
  • OR libxcb-shm0-32bit-1.10-4.3 is installed
  • OR libxcb-sync1-1.10-4.3 is installed
  • OR libxcb-sync1-32bit-1.10-4.3 is installed
  • OR libxcb-xf86dri0-1.10-4.3 is installed
  • OR libxcb-xfixes0-1.10-4.3 is installed
  • OR libxcb-xfixes0-32bit-1.10-4.3 is installed
  • OR libxcb-xinerama0-1.10-4.3 is installed
  • OR libxcb-xkb1-1.10-4.3 is installed
  • OR libxcb-xkb1-32bit-1.10-4.3 is installed
  • OR libxcb-xv0-1.10-4.3 is installed
  • OR libxcb1-1.10-4.3 is installed
  • OR libxcb1-32bit-1.10-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libqt4-4.8.7-8.8 is installed
  • OR libqt4-32bit-4.8.7-8.8 is installed
  • OR libqt4-qt3support-4.8.7-8.8 is installed
  • OR libqt4-qt3support-32bit-4.8.7-8.8 is installed
  • OR libqt4-sql-4.8.7-8.8 is installed
  • OR libqt4-sql-32bit-4.8.7-8.8 is installed
  • OR libqt4-sql-mysql-4.8.7-8.8 is installed
  • OR libqt4-sql-sqlite-4.8.7-8.8 is installed
  • OR libqt4-x11-4.8.7-8.8 is installed
  • OR libqt4-x11-32bit-4.8.7-8.8 is installed
  • OR qt4-x11-tools-4.8.7-8.8 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND couchdb-1.7.2-2.8 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libsqlite3-0-3.8.10.2-9.15 is installed
  • OR libsqlite3-0-32bit-3.8.10.2-9.15 is installed
  • OR sqlite3-3.8.10.2-9.15 is installed
    • BACK