Oval Definition:	oval:org.opensuse.security:def:56925
Revision Date: 2020-12-29 Version: 1 Title: Security update for xen (Moderate) Description: This update for xen fixes the following issues: - CVE-2020-29480: Fixed an issue which could have allowed leak of non-sensitive data to administrator guests (bsc#117949 XSA-115). - CVE-2020-29481: Fixed an issue which could have allowd to new domains to inherit existing node permissions (bsc#1179498 XSA-322). - CVE-2020-29483: Fixed an issue where guests could disturb domain cleanup (bsc#1179502 XSA-325). - CVE-2020-29484: Fixed an issue where guests could crash xenstored via watchs (bsc#1179501 XSA-324). - CVE-2020-29566: Fixed an undue recursion in x86 HVM context switch code (bsc#1179506 XSA-348). - CVE-2020-29570: Fixed an issue where FIFO event channels control block related ordering (bsc#1179514 XSA-358). - CVE-2020-29571: Fixed an issue where FIFO event channels control structure ordering (bsc#1179516 XSA-359). - CVE-2020-29130: Fixed an out-of-bounds access while processing ARP packets (bsc#1179477). - Fixed an issue where dump-core shows missing nr_pages during core (bsc#1176782). - Multiple other bugs (bsc#1027519) Family: unix Class: patch Status: Reference(s): 1008846 1010977 1010979 1011830 1012530 1013721 1013732 1015203 1015993 1022804 1025046 1027519 1027575 1035283 1038564 1040170 1042803 1042892 1045327 1046191 1050751 1057950 1096745 1112852 1140255 1153451 1153459 1173144 1176782 1179477 1179496 1179498 1179501 1179502 1179506 1179514 1179516 939342 963017 973786 CVE-2009-3627 CVE-2010-3170 CVE-2011-3389 CVE-2011-3640 CVE-2013-0743 CVE-2013-0791 CVE-2013-1620 CVE-2013-1739 CVE-2013-1740 CVE-2013-5605 CVE-2014-1492 CVE-2014-1568 CVE-2014-1569 CVE-2015-3228 CVE-2015-4000 CVE-2015-7181 CVE-2015-7182 CVE-2015-7575 CVE-2016-1938 CVE-2016-1950 CVE-2016-1978 CVE-2016-1979 CVE-2016-2834 CVE-2016-3076 CVE-2016-8654 CVE-2016-9190 CVE-2016-9395 CVE-2016-9398 CVE-2016-9560 CVE-2016-9591 CVE-2016-9800 CVE-2016-9801 CVE-2017-1000251 CVE-2017-10971 CVE-2017-10972 CVE-2017-15274 CVE-2017-2625 CVE-2017-2636 CVE-2017-7533 CVE-2017-7645 CVE-2017-8890 CVE-2017-9083 CVE-2017-9242 CVE-2017-9406 CVE-2018-12020 CVE-2018-12389 CVE-2018-12390 CVE-2018-12392 CVE-2018-12393 CVE-2018-12395 CVE-2018-12396 CVE-2018-12397 CVE-2019-13132 CVE-2019-17041 CVE-2019-17042 CVE-2020-29130 CVE-2020-29480 CVE-2020-29481 CVE-2020-29483 CVE-2020-29484 CVE-2020-29566 CVE-2020-29570 CVE-2020-29571 CVE-2020-8163 SUSE-SU-2016:0884-1 SUSE-SU-2017:0084-1 SUSE-SU-2017:1672-1 SUSE-SU-2017:1860-1 SUSE-SU-2017:1862-1 SUSE-SU-2017:2088-1 SUSE-SU-2017:2779-1 SUSE-SU-2018:1174-1 SUSE-SU-2018:1698-1 SUSE-SU-2018:3749-1 SUSE-SU-2018:4188-1 SUSE-SU-2019:1785-1 SUSE-SU-2020:0424-1 SUSE-SU-2020:2140-1 SUSE-SU-2020:3945-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND libXv1-1.0.11-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information bzip2-1.0.6-lp151.5.6 is installed OR bzip2-doc-1.0.6-lp151.5.6 is installed OR libbz2-1-1.0.6-lp151.5.6 is installed OR libbz2-1-32bit-1.0.6-lp151.5.6 is installed OR libbz2-devel-1.0.6-lp151.5.6 is installed OR libbz2-devel-32bit-1.0.6-lp151.5.6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information bluez-5.13-5.7 is installed OR bluez-cups-5.13-5.7 is installed OR libbluetooth3-5.13-5.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information ghostscript-9.15-6 is installed OR ghostscript-x11-9.15-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_62-60_64_8-default-10-2 is installed OR kgraft-patch-3_12_62-60_64_8-xen-10-2 is installed OR kgraft-patch-SLE12-SP1_Update_8-10-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libfreebl3-3.21.1-46 is installed OR libfreebl3-32bit-3.21.1-46 is installed OR libfreebl3-hmac-3.21.1-46 is installed OR libfreebl3-hmac-32bit-3.21.1-46 is installed OR libsoftokn3-3.21.1-46 is installed OR libsoftokn3-32bit-3.21.1-46 is installed OR libsoftokn3-hmac-3.21.1-46 is installed OR libsoftokn3-hmac-32bit-3.21.1-46 is installed OR mozilla-nss-3.21.1-46 is installed OR mozilla-nss-32bit-3.21.1-46 is installed OR mozilla-nss-certs-3.21.1-46 is installed OR mozilla-nss-certs-32bit-3.21.1-46 is installed OR mozilla-nss-sysinit-3.21.1-46 is installed OR mozilla-nss-sysinit-32bit-3.21.1-46 is installed OR mozilla-nss-tools-3.21.1-46 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_7_0-openjdk-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libopenssl-devel-1.0.2j-60.39 is installed OR libopenssl1_0_0-1.0.2j-60.39 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.39 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.39 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.39 is installed OR openssl-1.0.2j-60.39 is installed OR openssl-doc-1.0.2j-60.39 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND ucode-intel-20180807-13.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information augeas-1.2.0-15 is installed OR augeas-lenses-1.2.0-15 is installed OR libaugeas0-1.2.0-15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information postgresql96-9.6.15-3.29 is installed OR postgresql96-contrib-9.6.15-3.29 is installed OR postgresql96-docs-9.6.15-3.29 is installed OR postgresql96-libs-9.6.15-3.29 is installed OR postgresql96-plperl-9.6.15-3.29 is installed OR postgresql96-plpython-9.6.15-3.29 is installed OR postgresql96-pltcl-9.6.15-3.29 is installed OR postgresql96-server-9.6.15-3.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information MozillaFirefox-68.9.0-109.123 is installed OR MozillaFirefox-translations-common-68.9.0-109.123 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information xen-4.9.4_16-3.80.1 is installed OR xen-doc-html-4.9.4_16-3.80.1 is installed OR xen-libs-4.9.4_16-3.80.1 is installed OR xen-libs-32bit-4.9.4_16-3.80.1 is installed OR xen-tools-4.9.4_16-3.80.1 is installed OR xen-tools-domU-4.9.4_16-3.80.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND shadow-4.2.1-27.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND rpcbind-0.2.3-23 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND python-Pillow-2.8.1-4.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND git-2.12.3-27.14 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-sprockets-2_12-2.12.5-1.4 is installed OR rubygem-sprockets-2_12-2.12.5-1.4 is installed
BACK