Oval Definition:oval:org.opensuse.security:def:56576
Revision Date:2020-12-01Version:1
Title:Security update for xen (Important)
Description:

This update for xen fixes the following security issues:

- CVE-2018-3646: Systems with microprocessors utilizing speculative execution and address translations may have allowed unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis (bsc#1091107, bsc#1027519). - Incorrect MSR_DEBUGCTL handling let guests enable BTS allowing a malicious or buggy guest administrator can lock up the entire host (bsc#1103276)
Family:unixClass:patch
Status:Reference(s):1000189
1000287
1000304
1000776
1001419
1001486
1002165
1003079
1003153
1003400
1003568
1003866
1003925
1003964
1004252
1004462
1004517
1004520
1005666
1006691
1007615
1007886
1027519
1039348
1042292
1053431
1069708
1071471
1091107
1103276
1111647
1119947
1121571
1121816
1121818
1121821
1133375
1135170
1136976
744692
772786
789311
857397
860441
865545
866130
868923
874131
876463
886378
898675
904489
909994
911687
915183
921338
921784
922064
922634
924381
924384
929414
930399
931454
934067
937086
937888
940545
940929
941420
946309
955446
956514
958491
958917
959005
959386
959463
960334
960708
960725
960835
961257
961332
961333
961358
961491
961556
961691
962320
962846
963782
964411
964413
966864
967640
967969
969121
969122
969350
970036
970037
970943
971975
971989
974406
974620
975128
975136
975596
975700
975772
976109
976195
977687
978094
978158
978160
979451
979928
980711
980723
981266
982779
982783
983619
984194
984419
984779
984992
985562
986445
987192
987333
987542
987565
987621
987805
988440
988617
988715
989152
989953
990245
991247
991608
991665
992244
992555
992591
992593
992712
993392
993841
993890
993891
994296
994438
994520
994748
995153
995968
996664
997059
997299
997708
997896
998689
998795
998825
999577
999584
999600
999779
999907
999932
CVE-2011-0465
CVE-2013-4143
CVE-2015-3228
CVE-2015-3622
CVE-2015-5745
CVE-2015-7549
CVE-2015-8504
CVE-2015-8558
CVE-2015-8567
CVE-2015-8568
CVE-2015-8613
CVE-2015-8619
CVE-2015-8743
CVE-2015-8744
CVE-2015-8745
CVE-2015-8817
CVE-2015-8818
CVE-2015-8956
CVE-2016-1568
CVE-2016-1714
CVE-2016-1922
CVE-2016-1981
CVE-2016-2197
CVE-2016-2198
CVE-2016-2538
CVE-2016-2841
CVE-2016-2857
CVE-2016-2858
CVE-2016-3710
CVE-2016-3712
CVE-2016-4001
CVE-2016-4002
CVE-2016-4008
CVE-2016-4020
CVE-2016-4037
CVE-2016-4439
CVE-2016-4441
CVE-2016-4952
CVE-2016-5696
CVE-2016-6130
CVE-2016-6327
CVE-2016-6480
CVE-2016-6828
CVE-2016-7042
CVE-2016-7097
CVE-2016-7425
CVE-2016-8658
CVE-2016-8666
CVE-2017-1000364
CVE-2017-10053
CVE-2017-10067
CVE-2017-10074
CVE-2017-10081
CVE-2017-10087
CVE-2017-10089
CVE-2017-10090
CVE-2017-10096
CVE-2017-10101
CVE-2017-10102
CVE-2017-10105
CVE-2017-10107
CVE-2017-10108
CVE-2017-10109
CVE-2017-10110
CVE-2017-10111
CVE-2017-10115
CVE-2017-10116
CVE-2017-10125
CVE-2017-10243
CVE-2017-15868
CVE-2017-16939
CVE-2018-12086
CVE-2018-16884
CVE-2018-18227
CVE-2018-20685
CVE-2018-3646
CVE-2019-5436
CVE-2019-6109
CVE-2019-6110
CVE-2019-6111
CVE-2019-8457
CVE-2019-9928
SUSE-SU-2016:1601-1
SUSE-SU-2016:1703-1
SUSE-SU-2016:2912-1
SUSE-SU-2017:1615-1
SUSE-SU-2017:2280-1
SUSE-SU-2018:0253-1
SUSE-SU-2018:2401-1
SUSE-SU-2018:3590-1
SUSE-SU-2019:0132-1
SUSE-SU-2019:1363-1
SUSE-SU-2019:1601-1
SUSE-SU-2019:1602-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • apache2-2.4.33-lp150.1 is installed
  • OR apache2-doc-2.4.33-lp150.1 is installed
  • OR apache2-example-pages-2.4.33-lp150.1 is installed
  • OR apache2-prefork-2.4.33-lp150.1 is installed
  • OR apache2-utils-2.4.33-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • bluez-5.48-lp151.8.3 is installed
  • OR bluez-auto-enable-devices-5.48-lp151.8.3 is installed
  • OR bluez-cups-5.48-lp151.8.3 is installed
  • OR bluez-devel-5.48-lp151.8.3 is installed
  • OR bluez-devel-32bit-5.48-lp151.8.3 is installed
  • OR bluez-test-5.48-lp151.8.3 is installed
  • OR libbluetooth3-5.48-lp151.8.3 is installed
  • OR libbluetooth3-32bit-5.48-lp151.8.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • xen-4.9.2_10-3.41 is installed
  • OR xen-libs-4.9.2_10-3.41 is installed
  • OR xen-libs-32bit-4.9.2_10-3.41 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND xlockmore-5.43-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_48-default-7-2 is installed
  • OR kgraft-patch-3_12_74-60_64_48-xen-7-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_17-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • ghostscript-9.15-6 is installed
  • OR ghostscript-x11-9.15-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • xen-4.7.6_02-43.36 is installed
  • OR xen-doc-html-4.7.6_02-43.36 is installed
  • OR xen-libs-4.7.6_02-43.36 is installed
  • OR xen-libs-32bit-4.7.6_02-43.36 is installed
  • OR xen-tools-4.7.6_02-43.36 is installed
  • OR xen-tools-domU-4.7.6_02-43.36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • libdcerpc-binding0-4.4.2-38.20 is installed
  • OR libdcerpc-binding0-32bit-4.4.2-38.20 is installed
  • OR libdcerpc0-4.4.2-38.20 is installed
  • OR libdcerpc0-32bit-4.4.2-38.20 is installed
  • OR libndr-krb5pac0-4.4.2-38.20 is installed
  • OR libndr-krb5pac0-32bit-4.4.2-38.20 is installed
  • OR libndr-nbt0-4.4.2-38.20 is installed
  • OR libndr-nbt0-32bit-4.4.2-38.20 is installed
  • OR libndr-standard0-4.4.2-38.20 is installed
  • OR libndr-standard0-32bit-4.4.2-38.20 is installed
  • OR libndr0-4.4.2-38.20 is installed
  • OR libndr0-32bit-4.4.2-38.20 is installed
  • OR libnetapi0-4.4.2-38.20 is installed
  • OR libnetapi0-32bit-4.4.2-38.20 is installed
  • OR libsamba-credentials0-4.4.2-38.20 is installed
  • OR libsamba-credentials0-32bit-4.4.2-38.20 is installed
  • OR libsamba-errors0-4.4.2-38.20 is installed
  • OR libsamba-errors0-32bit-4.4.2-38.20 is installed
  • OR libsamba-hostconfig0-4.4.2-38.20 is installed
  • OR libsamba-hostconfig0-32bit-4.4.2-38.20 is installed
  • OR libsamba-passdb0-4.4.2-38.20 is installed
  • OR libsamba-passdb0-32bit-4.4.2-38.20 is installed
  • OR libsamba-util0-4.4.2-38.20 is installed
  • OR libsamba-util0-32bit-4.4.2-38.20 is installed
  • OR libsamdb0-4.4.2-38.20 is installed
  • OR libsamdb0-32bit-4.4.2-38.20 is installed
  • OR libsmbclient0-4.4.2-38.20 is installed
  • OR libsmbclient0-32bit-4.4.2-38.20 is installed
  • OR libsmbconf0-4.4.2-38.20 is installed
  • OR libsmbconf0-32bit-4.4.2-38.20 is installed
  • OR libsmbldap0-4.4.2-38.20 is installed
  • OR libsmbldap0-32bit-4.4.2-38.20 is installed
  • OR libtevent-util0-4.4.2-38.20 is installed
  • OR libtevent-util0-32bit-4.4.2-38.20 is installed
  • OR libwbclient0-4.4.2-38.20 is installed
  • OR libwbclient0-32bit-4.4.2-38.20 is installed
  • OR samba-4.4.2-38.20 is installed
  • OR samba-client-4.4.2-38.20 is installed
  • OR samba-client-32bit-4.4.2-38.20 is installed
  • OR samba-doc-4.4.2-38.20 is installed
  • OR samba-libs-4.4.2-38.20 is installed
  • OR samba-libs-32bit-4.4.2-38.20 is installed
  • OR samba-winbind-4.4.2-38.20 is installed
  • OR samba-winbind-32bit-4.4.2-38.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • xen-4.7.6_05-43.42 is installed
  • OR xen-doc-html-4.7.6_05-43.42 is installed
  • OR xen-libs-4.7.6_05-43.42 is installed
  • OR xen-libs-32bit-4.7.6_05-43.42 is installed
  • OR xen-tools-4.7.6_05-43.42 is installed
  • OR xen-tools-domU-4.7.6_05-43.42 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libdcerpc-binding0-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libdcerpc-binding0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libdcerpc0-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libdcerpc0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libndr-krb5pac0-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libndr-krb5pac0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libndr-nbt0-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libndr-nbt0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libndr-standard0-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libndr-standard0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libndr0-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libndr0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libnetapi0-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libnetapi0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libsamba-credentials0-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libsamba-credentials0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libsamba-errors0-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libsamba-errors0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libsamba-hostconfig0-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libsamba-hostconfig0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libsamba-passdb0-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libsamba-passdb0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libsamba-util0-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libsamba-util0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libsamdb0-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libsamdb0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libsmbclient0-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libsmbclient0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libsmbconf0-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libsmbconf0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libsmbldap0-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libsmbldap0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libtevent-util0-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libtevent-util0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libwbclient0-4.6.16+git.169.064abe062be-3.46 is installed
  • OR libwbclient0-32bit-4.6.16+git.169.064abe062be-3.46 is installed
  • OR samba-4.6.16+git.169.064abe062be-3.46 is installed
  • OR samba-client-4.6.16+git.169.064abe062be-3.46 is installed
  • OR samba-client-32bit-4.6.16+git.169.064abe062be-3.46 is installed
  • OR samba-doc-4.6.16+git.169.064abe062be-3.46 is installed
  • OR samba-libs-4.6.16+git.169.064abe062be-3.46 is installed
  • OR samba-libs-32bit-4.6.16+git.169.064abe062be-3.46 is installed
  • OR samba-winbind-4.6.16+git.169.064abe062be-3.46 is installed
  • OR samba-winbind-32bit-4.6.16+git.169.064abe062be-3.46 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_162-94_72-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_22-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • perl-Mail-SpamAssassin-3.4.2-44.8 is installed
  • OR spamassassin-3.4.2-44.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND busybox-1.21.1-3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.10-38.5 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.10-38.5 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.10-38.5 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.10-38.5 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.10-38.5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • openssh-7.2p2-74.35 is installed
  • OR openssh-askpass-gnome-7.2p2-74.35 is installed
  • OR openssh-fips-7.2p2-74.35 is installed
  • OR openssh-helpers-7.2p2-74.35 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • crowbar-5.0+git.1528696845.81a7b5d0-3.3 is installed
  • OR crowbar-core-5.0+git.1533887407.6e9b0412d-3.8 is installed
  • OR crowbar-core-branding-upstream-5.0+git.1533887407.6e9b0412d-3.8 is installed
  • OR crowbar-devel-5.0+git.1528696845.81a7b5d0-3.3 is installed
  • OR crowbar-ha-5.0+git.1530177874.35b9099-3.3 is installed
  • OR crowbar-init-5.0+git.1520420379.d5bbb35-3.3 is installed
  • OR crowbar-openstack-5.0+git.1534167599.d325ef804-4.8 is installed
  • OR crowbar-ui-1.2.0+git.1533844061.4ac8e723-3.3 is installed
    • BACK