Oval Definition:	oval:org.opensuse.security:def:56409
Revision Date: 2020-12-01 Version: 1 Title: Security update for xen (Important) Description: This update for xen fixes the following issues: Update to Xen 4.7.5 bug fix only release (bsc#1027519) Security issues fixed: - CVE-2018-7540: Fixed DoS via non-preemptable L3/L4 pagetable freeing (XSA-252) (bsc#1080635) - CVE-2018-7541: A grant table v2 -> v1 transition may crash Xen (XSA-255) (bsc#1080662) - CVE-2017-5753,CVE-2017-5715,CVE-2017-5754 Fixed information leaks via side effects of speculative execution (XSA-254). Includes Spectre v2 mitigation. (bsc#1074562) - Preserve xen-syms from xen-dbg.gz to allow processing vmcores with crash(1) (bsc#1087251) - Xen HVM: Fixed unchecked MSR access error (bsc#1072834) - Add script, udev rule and systemd service to watch for vcpu online/offline events in a HVM domU They are triggered via xl vcpu-set domU N (fate#324965) - Make sure tools and tools-domU require libs from the very same build Family: unix Class: patch Status: Reference(s): 1027519 1038690 1039357 1039567 1055047 1055123 1056336 1061075 1061081 1061086 1061832 1063123 1068187 1068191 1069708 1071471 1072834 1074562 1078431 1080635 1080662 1087251 1104301 984858 985217 986251 986858 991616 CVE-2009-0946 CVE-2010-1163 CVE-2010-1646 CVE-2010-2497 CVE-2010-2805 CVE-2010-3053 CVE-2010-3054 CVE-2010-3311 CVE-2010-3814 CVE-2010-3855 CVE-2011-0010 CVE-2011-0226 CVE-2011-1898 CVE-2011-3256 CVE-2011-3439 CVE-2011-4405 CVE-2012-0029 CVE-2012-0217 CVE-2012-1126 CVE-2012-1127 CVE-2012-1128 CVE-2012-1129 CVE-2012-1130 CVE-2012-1131 CVE-2012-1132 CVE-2012-1133 CVE-2012-1134 CVE-2012-1135 CVE-2012-1136 CVE-2012-1137 CVE-2012-1138 CVE-2012-1139 CVE-2012-1140 CVE-2012-1141 CVE-2012-1142 CVE-2012-1143 CVE-2012-1144 CVE-2012-2337 CVE-2012-2625 CVE-2012-3432 CVE-2012-3433 CVE-2012-4406 CVE-2012-4411 CVE-2012-4535 CVE-2012-4536 CVE-2012-4537 CVE-2012-4538 CVE-2012-4539 CVE-2012-4544 CVE-2012-5510 CVE-2012-5511 CVE-2012-5513 CVE-2012-5514 CVE-2012-5515 CVE-2012-5525 CVE-2012-5634 CVE-2012-5668 CVE-2012-5669 CVE-2012-5670 CVE-2012-6075 CVE-2013-0151 CVE-2013-0152 CVE-2013-0153 CVE-2013-1442 CVE-2013-1775 CVE-2013-1776 CVE-2013-1917 CVE-2013-1918 CVE-2013-1919 CVE-2013-1922 CVE-2013-1952 CVE-2013-1987 CVE-2013-2007 CVE-2013-3495 CVE-2013-4355 CVE-2013-4356 CVE-2013-4361 CVE-2013-4375 CVE-2013-4416 CVE-2013-4494 CVE-2013-4533 CVE-2013-4534 CVE-2013-4537 CVE-2013-4538 CVE-2013-4539 CVE-2013-4540 CVE-2013-4551 CVE-2013-4553 CVE-2013-4554 CVE-2013-6393 CVE-2014-0222 CVE-2014-2240 CVE-2014-2241 CVE-2014-2525 CVE-2014-3124 CVE-2014-3640 CVE-2014-3672 CVE-2014-4910 CVE-2014-5146 CVE-2014-5149 CVE-2014-6268 CVE-2014-7154 CVE-2014-7155 CVE-2014-7156 CVE-2014-7188 CVE-2014-7815 CVE-2014-7960 CVE-2014-9130 CVE-2014-9656 CVE-2014-9657 CVE-2014-9658 CVE-2014-9659 CVE-2014-9660 CVE-2014-9661 CVE-2014-9662 CVE-2014-9663 CVE-2014-9664 CVE-2014-9665 CVE-2014-9666 CVE-2014-9667 CVE-2014-9668 CVE-2014-9669 CVE-2014-9670 CVE-2014-9671 CVE-2014-9672 CVE-2014-9673 CVE-2014-9674 CVE-2014-9675 CVE-2014-9680 CVE-2015-1779 CVE-2015-1856 CVE-2015-3259 CVE-2015-3340 CVE-2015-3456 CVE-2015-4037 CVE-2015-4103 CVE-2015-4104 CVE-2015-4105 CVE-2015-4106 CVE-2015-5154 CVE-2015-5223 CVE-2015-5239 CVE-2015-5278 CVE-2015-5307 CVE-2015-6815 CVE-2015-6855 CVE-2015-7311 CVE-2015-7504 CVE-2015-7512 CVE-2015-7549 CVE-2015-7835 CVE-2015-7969 CVE-2015-7970 CVE-2015-7971 CVE-2015-7972 CVE-2015-8104 CVE-2015-8339 CVE-2015-8340 CVE-2015-8341 CVE-2015-8345 CVE-2015-8504 CVE-2015-8550 CVE-2015-8554 CVE-2015-8555 CVE-2015-8558 CVE-2015-8567 CVE-2015-8568 CVE-2015-8613 CVE-2015-8615 CVE-2015-8619 CVE-2015-8743 CVE-2015-8744 CVE-2015-8745 CVE-2016-1568 CVE-2016-1570 CVE-2016-1571 CVE-2016-1714 CVE-2016-1922 CVE-2016-1981 CVE-2016-2198 CVE-2016-2270 CVE-2016-2271 CVE-2016-2391 CVE-2016-2392 CVE-2016-2538 CVE-2016-2841 CVE-2016-3477 CVE-2016-3521 CVE-2016-3615 CVE-2016-4439 CVE-2016-4441 CVE-2016-5238 CVE-2016-5338 CVE-2016-5440 CVE-2016-6258 CVE-2016-6259 CVE-2016-6351 CVE-2016-7092 CVE-2016-7093 CVE-2016-7094 CVE-2017-1000366 CVE-2017-12173 CVE-2017-13672 CVE-2017-15289 CVE-2017-15592 CVE-2017-15595 CVE-2017-15597 CVE-2017-15868 CVE-2017-16939 CVE-2017-5715 CVE-2017-5753 CVE-2017-5754 CVE-2018-2562 CVE-2018-2612 CVE-2018-2622 CVE-2018-2640 CVE-2018-2665 CVE-2018-2668 CVE-2018-5383 CVE-2018-7540 CVE-2018-7541 SUSE-SU-2016:2218-1 SUSE-SU-2017:1614-1 SUSE-SU-2017:2937-1 SUSE-SU-2017:3236-1 SUSE-SU-2018:0237-1 SUSE-SU-2018:0697-1 SUSE-SU-2018:0909-1 SUSE-SU-2019:0427-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information kernel-firmware-20180416-lp150.1 is installed OR ucode-amd-20180416-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information python-Twisted-17.9.0-lp151.3.6 is installed OR python-Twisted-doc-17.9.0-lp151.3.6 is installed OR python2-Twisted-17.9.0-lp151.3.6 is installed OR python3-Twisted-17.9.0-lp151.3.6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information xen-4.7.5_02-43.27 is installed OR xen-libs-4.7.5_02-43.27 is installed OR xen-libs-32bit-4.7.5_02-43.27 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libipa_hbac0-1.13.4-34.7 is installed OR libsss_idmap0-1.13.4-34.7 is installed OR libsss_nss_idmap0-1.13.4-34.7 is installed OR libsss_sudo-1.13.4-34.7 is installed OR python-sssd-config-1.13.4-34.7 is installed OR sssd-1.13.4-34.7 is installed OR sssd-32bit-1.13.4-34.7 is installed OR sssd-ad-1.13.4-34.7 is installed OR sssd-ipa-1.13.4-34.7 is installed OR sssd-krb5-1.13.4-34.7 is installed OR sssd-krb5-common-1.13.4-34.7 is installed OR sssd-ldap-1.13.4-34.7 is installed OR sssd-proxy-1.13.4-34.7 is installed OR sssd-tools-1.13.4-34.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libXrender1-0.9.8-3 is installed OR libXrender1-32bit-0.9.8-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information xen-4.5.5_20-22.36 is installed OR xen-doc-html-4.5.5_20-22.36 is installed OR xen-kmp-default-4.5.5_20_k3.12.74_60.64.63-22.36 is installed OR xen-libs-4.5.5_20-22.36 is installed OR xen-libs-32bit-4.5.5_20-22.36 is installed OR xen-tools-4.5.5_20-22.36 is installed OR xen-tools-domU-4.5.5_20-22.36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libfreetype6-2.6.3-7.8 is installed OR libfreetype6-32bit-2.6.3-7.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information openssh-7.2p2-74.35 is installed OR openssh-askpass-gnome-7.2p2-74.35 is installed OR openssh-fips-7.2p2-74.35 is installed OR openssh-helpers-7.2p2-74.35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND coolkey-1.1.0-147 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_156-94_61-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_19-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libsqlite3-0-3.8.10.2-9.15 is installed OR libsqlite3-0-32bit-3.8.10.2-9.15 is installed OR sqlite3-3.8.10.2-9.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information dpdk-17.11.4-3 is installed OR dpdk-kmp-default-17.11.4_k4.12.14_94.41-3 is installed OR dpdk-thunderx-17.11.4-3 is installed OR dpdk-thunderx-kmp-default-17.11.4_k4.12.14_94.41-3 is installed OR dpdk-tools-17.11.4-3 is installed OR libdpdk-17_11-17.11.4-3 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information openstack-swift-2.1.0-4 is installed OR openstack-swift-account-2.1.0-4 is installed OR openstack-swift-container-2.1.0-4 is installed OR openstack-swift-object-2.1.0-4 is installed OR openstack-swift-proxy-2.1.0-4 is installed OR python-swift-2.1.0-4 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND python-XStatic-jquery-ui-1.11.0.1-2.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND python-urllib3-1.22-5.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information pam_radius-1.3.16-239.4 is installed OR pam_radius-32bit-1.3.16-239.4 is installed
BACK