Oval Definition:	oval:org.opensuse.security:def:56451
Revision Date: 2020-12-01 Version: 1 Title: Security update for qemu (Important) Description: This update for qemu fixes the following issues: Security issues fixed: CVE-2017-10664: Fix DOS vulnerability in qemu-nbd (bsc#1046636) * CVE-2017-10806: Fix DOS from stack overflow in debug messages of usb redirection support (bsc#1047674) * CVE-2017-11334: Fix OOB access during DMA operation (bsc#1048902) * CVE-2017-11434: Fix OOB access parsing dhcp slirp options (bsc#1049381) Following non-security issues were fixed: - Postrequire acl for setfacl - Prerequire shadow for groupadd - The recent security fix for CVE-2017-11334 adversely affects Xen. Include two additional patches to make sure Xen is going to be OK. - Pre-add group kvm for qemu-tools (bsc#1011144) - Fixed a few more inaccuracies in the support docs. - Fix support docs to indicate ARM64 is now fully L3 supported in SLES 12 SP3. Apply a few additional clarifications in the support docs. (bsc#1050268) - Adjust to libvdeplug-devel package naming changes. - Fix migration with xhci (bsc#1048296) - Increase VNC delay to fix missing keyboard input events (bsc#1031692) - Remove build dependency package iasl used for seabios Family: unix Class: patch Status: Reference(s): 1000394 1000399 1000434 1000436 1000686 1000688 1000689 1000690 1000691 1000692 1000693 1000694 1000695 1000696 1000697 1000698 1000699 1000700 1000701 1000702 1000703 1000704 1000706 1000707 1000708 1000709 1000711 1000712 1000713 1000714 1000715 1001066 1001221 1002206 1002209 1002421 1002422 1003629 1005123 1005125 1005127 1005328 1011144 1012075 1013721 1013877 1019948 1026652 1028391 1031692 1031702 1037396 1039034 1040039 1041764 1041891 1042632 1043328 1045315 1046636 1047184 1047218 1047674 1048296 1048902 1049381 1050268 1055165 1055268 1055962 1057342 1058374 1058729 1060110 1062583 1065083 1067443 1068906 1069401 1073313 1076118 1080891 1082318 1083087 1088681 1092544 1093130 1097158 1097624 1098592 1106989 1106996 1107609 1120381 1122033 1124365 1124366 1124368 1128649 1130330 1131317 1132053 1132054 1132060 1143194 1143273 1170771 968849 993302 993313 CVE-2010-1205 CVE-2010-2800 CVE-2010-2801 CVE-2011-2501 CVE-2011-2690 CVE-2011-2691 CVE-2011-2692 CVE-2011-3026 CVE-2011-3048 CVE-2011-3328 CVE-2011-3464 CVE-2012-3386 CVE-2012-6706 CVE-2013-6418 CVE-2014-3686 CVE-2014-9556 CVE-2014-9907 CVE-2015-0210 CVE-2015-1863 CVE-2015-8126 CVE-2015-8957 CVE-2015-8958 CVE-2015-8959 CVE-2016-2098 CVE-2016-6316 CVE-2016-6317 CVE-2016-6823 CVE-2016-7101 CVE-2016-7513 CVE-2016-7514 CVE-2016-7515 CVE-2016-7516 CVE-2016-7517 CVE-2016-7518 CVE-2016-7519 CVE-2016-7520 CVE-2016-7521 CVE-2016-7522 CVE-2016-7523 CVE-2016-7524 CVE-2016-7525 CVE-2016-7526 CVE-2016-7527 CVE-2016-7528 CVE-2016-7529 CVE-2016-7530 CVE-2016-7531 CVE-2016-7532 CVE-2016-7533 CVE-2016-7534 CVE-2016-7535 CVE-2016-7537 CVE-2016-7538 CVE-2016-7539 CVE-2016-7540 CVE-2016-7799 CVE-2016-7800 CVE-2016-7837 CVE-2016-7996 CVE-2016-7997 CVE-2016-8677 CVE-2016-8682 CVE-2016-8683 CVE-2016-8684 CVE-2016-9800 CVE-2016-9804 CVE-2017-1000250 CVE-2017-10268 CVE-2017-10286 CVE-2017-10320 CVE-2017-10365 CVE-2017-10378 CVE-2017-10379 CVE-2017-10384 CVE-2017-10664 CVE-2017-10806 CVE-2017-11334 CVE-2017-11434 CVE-2017-15365 CVE-2017-17740 CVE-2017-3145 CVE-2017-3257 CVE-2017-3302 CVE-2017-3308 CVE-2017-3309 CVE-2017-3313 CVE-2017-3453 CVE-2017-3456 CVE-2017-3464 CVE-2017-3636 CVE-2017-3641 CVE-2017-3653 CVE-2017-5398 CVE-2017-5400 CVE-2017-5401 CVE-2017-5402 CVE-2017-5404 CVE-2017-5405 CVE-2017-5407 CVE-2017-5408 CVE-2017-5409 CVE-2017-5410 CVE-2017-9287 CVE-2018-0732 CVE-2018-16412 CVE-2018-16413 CVE-2018-16644 CVE-2018-20467 CVE-2018-2562 CVE-2018-2612 CVE-2018-2622 CVE-2018-2640 CVE-2018-2665 CVE-2018-2668 CVE-2018-2755 CVE-2018-2759 CVE-2018-2761 CVE-2018-2766 CVE-2018-2767 CVE-2018-2771 CVE-2018-2777 CVE-2018-2781 CVE-2018-2782 CVE-2018-2784 CVE-2018-2786 CVE-2018-2787 CVE-2018-2810 CVE-2018-2813 CVE-2018-2817 CVE-2018-2819 CVE-2019-10650 CVE-2019-11007 CVE-2019-11008 CVE-2019-11009 CVE-2019-13057 CVE-2019-13565 CVE-2019-7175 CVE-2019-7395 CVE-2019-7397 CVE-2019-7398 CVE-2019-9956 CVE-2020-12243 SUSE-SU-2016:2667-1 SUSE-SU-2017:0714-1 SUSE-SU-2017:1745-1 SUSE-SU-2017:2416-1 SUSE-SU-2017:2716-1 SUSE-SU-2018:0303-1 SUSE-SU-2018:1778-1 SUSE-SU-2018:1853-1 SUSE-SU-2018:1887-1 SUSE-SU-2019:1033-1 SUSE-SU-2020:1210-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information colord-1.4.2-lp150.1 is installed OR colord-color-profiles-1.4.2-lp150.1 is installed OR colord-gtk-lang-0.1.26-lp150.1 is installed OR colord-lang-1.4.2-lp150.1 is installed OR libcolord-gtk1-0.1.26-lp150.1 is installed OR libcolord2-1.4.2-lp150.1 is installed OR libcolorhug2-1.4.2-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information djvulibre-3.5.27-lp151.3.3 is installed OR djvulibre-doc-3.5.27-lp151.3.3 is installed OR libdjvulibre-devel-3.5.27-lp151.3.3 is installed OR libdjvulibre21-3.5.27-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information qemu-2.9.0-6.3 is installed OR qemu-block-curl-2.9.0-6.3 is installed OR qemu-ipxe-1.0.0-6.3 is installed OR qemu-kvm-2.9.0-6.3 is installed OR qemu-seabios-1.10.2-6.3 is installed OR qemu-sgabios-8-6.3 is installed OR qemu-tools-2.9.0-6.3 is installed OR qemu-vgabios-1.10.2-6.3 is installed OR qemu-x86-2.9.0-6.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND libmspack0-0.4-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information bind-9.9.9P1-63.7 is installed OR bind-chrootenv-9.9.9P1-63.7 is installed OR bind-devel-9.9.9P1-63.7 is installed OR bind-doc-9.9.9P1-63.7 is installed OR bind-libs-9.9.9P1-63.7 is installed OR bind-libs-32bit-9.9.9P1-63.7 is installed OR bind-utils-9.9.9P1-63.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND libpng15-15-1.5.22-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information freeradius-server-3.0.3-17.12 is installed OR freeradius-server-doc-3.0.3-17.12 is installed OR freeradius-server-krb5-3.0.3-17.12 is installed OR freeradius-server-ldap-3.0.3-17.12 is installed OR freeradius-server-libs-3.0.3-17.12 is installed OR freeradius-server-mysql-3.0.3-17.12 is installed OR freeradius-server-perl-3.0.3-17.12 is installed OR freeradius-server-postgresql-3.0.3-17.12 is installed OR freeradius-server-python-3.0.3-17.12 is installed OR freeradius-server-sqlite-3.0.3-17.12 is installed OR freeradius-server-utils-3.0.3-17.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information xen-4.7.5_04-43.33 is installed OR xen-doc-html-4.7.5_04-43.33 is installed OR xen-libs-4.7.5_04-43.33 is installed OR xen-libs-32bit-4.7.5_04-43.33 is installed OR xen-tools-4.7.5_04-43.33 is installed OR xen-tools-domU-4.7.5_04-43.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_103-92_53-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_16-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_156-94_64-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_20-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND ucode-intel-20190312-13.38 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND apache2-mod_nss-1.0.14-19.3 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND unrar-5.0.14-3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information ruby2.1-rubygem-actionmailer-4_2-4.2.9-3.3 is installed OR ruby2.1-rubygem-actionpack-4_2-4.2.9-7.3 is installed OR ruby2.1-rubygem-actionview-4_2-4.2.9-9.3 is installed OR ruby2.1-rubygem-activejob-4_2-4.2.9-3.3 is installed OR ruby2.1-rubygem-activemodel-4_2-4.2.9-6.3 is installed OR ruby2.1-rubygem-activerecord-4_2-4.2.9-6.3 is installed OR ruby2.1-rubygem-activesupport-4_2-4.2.9-7.3 is installed OR ruby2.1-rubygem-rails-4_2-4.2.9-3.3 is installed OR ruby2.1-rubygem-rails-html-sanitizer-1.0.3-8.3 is installed OR ruby2.1-rubygem-railties-4_2-4.2.9-3.3 is installed OR rubygem-actionmailer-4_2-4.2.9-3.3 is installed OR rubygem-actionpack-4_2-4.2.9-7.3 is installed OR rubygem-actionview-4_2-4.2.9-9.3 is installed OR rubygem-activejob-4_2-4.2.9-3.3 is installed OR rubygem-activemodel-4_2-4.2.9-6.3 is installed OR rubygem-activerecord-4_2-4.2.9-6.3 is installed OR rubygem-activesupport-4_2-4.2.9-7.3 is installed OR rubygem-rails-4_2-4.2.9-3.3 is installed OR rubygem-rails-html-sanitizer-1.0.3-8.3 is installed OR rubygem-railties-4_2-4.2.9-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information git-2.12.3-27.22 is installed OR git-core-2.12.3-27.22 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND mutt-1.10.1-55.11 is installed
BACK