OVAL Reference oval:org.opensuse.security:def:56926

Oval Definition:

oval:org.opensuse.security:def:56926

Revision Date:	2020-12-01	Version:	1
Title:	Security update for ovmf (Moderate)
Description:	This update for ovmf fixes the following issues: Security issues fixed: - CVE-2018-3613: Fixed AuthVariable Timestamp zeroing issue on APPEND_WRITE (bsc#1115916). - CVE-2017-5731: Fixed privilege escalation via processing of malformed files in TianoCompress.c (bsc#1115917). - CVE-2017-5732: Fixed privilege escalation via processing of malformed files in BaseUefiDecompressLib.c (bsc#1115917). - CVE-2017-5733: Fixed privilege escalation via heap-based buffer overflow in MakeTable() function (bsc#1115917). - CVE-2017-5734: Fixed privilege escalation via stack-based buffer overflow in MakeTable() function (bsc#1115917). - CVE-2017-5735: Fixed privilege escalation via heap-based buffer overflow in Decode() function (bsc#1115917). Non security issues fixed: - Fixed an issue with the default owner of PK/KEK/db/dbx and make the auto-enrollment only happen at the very first time. (bsc#1117998)
Family:	unix	Class:	patch
Status:		Reference(s):	1017308 1017310 1017311 1017312 1017313 1017314 1017318 1017319 1017320 1017321 1017322 1017324 1017325 1017326 1017421 1020433 1020435 1020436 1020439 1020441 1020443 1020446 1020448 1025046 1037603 1037624 1038293 1045327 1046856 1052916 1057950 1085449 1087453 1087459 1087463 1093311 1112039 1115916 1115917 1117998 1120281 1160968 1162972 1173274 952849 953110 954872 960305 964465 CVE-2009-0946 CVE-2010-2497 CVE-2010-2805 CVE-2010-3053 CVE-2010-3054 CVE-2010-3311 CVE-2010-3814 CVE-2010-3855 CVE-2011-0226 CVE-2011-3256 CVE-2011-3439 CVE-2012-1126 CVE-2012-1127 CVE-2012-1128 CVE-2012-1129 CVE-2012-1130 CVE-2012-1131 CVE-2012-1132 CVE-2012-1133 CVE-2012-1134 CVE-2012-1135 CVE-2012-1136 CVE-2012-1137 CVE-2012-1138 CVE-2012-1139 CVE-2012-1140 CVE-2012-1141 CVE-2012-1142 CVE-2012-1143 CVE-2012-1144 CVE-2012-5668 CVE-2012-5669 CVE-2012-5670 CVE-2014-2240 CVE-2014-2241 CVE-2014-3230 CVE-2014-9656 CVE-2014-9657 CVE-2014-9658 CVE-2014-9659 CVE-2014-9660 CVE-2014-9661 CVE-2014-9662 CVE-2014-9663 CVE-2014-9664 CVE-2014-9665 CVE-2014-9666 CVE-2014-9667 CVE-2014-9668 CVE-2014-9669 CVE-2014-9670 CVE-2014-9671 CVE-2014-9672 CVE-2014-9673 CVE-2014-9674 CVE-2014-9675 CVE-2015-5313 CVE-2016-10046 CVE-2016-10048 CVE-2016-10049 CVE-2016-10050 CVE-2016-10051 CVE-2016-10052 CVE-2016-10059 CVE-2016-10060 CVE-2016-10061 CVE-2016-10062 CVE-2016-10063 CVE-2016-10064 CVE-2016-10065 CVE-2016-10068 CVE-2016-10069 CVE-2016-10070 CVE-2016-10071 CVE-2016-10144 CVE-2016-10145 CVE-2016-10146 CVE-2017-1000083 CVE-2017-1000251 CVE-2017-15274 CVE-2017-2625 CVE-2017-2885 CVE-2017-5506 CVE-2017-5507 CVE-2017-5508 CVE-2017-5510 CVE-2017-5511 CVE-2017-5731 CVE-2017-5732 CVE-2017-5733 CVE-2017-5734 CVE-2017-5735 CVE-2017-7484 CVE-2017-7485 CVE-2017-7486 CVE-2018-1000845 CVE-2018-1417 CVE-2018-18386 CVE-2018-2783 CVE-2018-2790 CVE-2018-2794 CVE-2018-2795 CVE-2018-2796 CVE-2018-2797 CVE-2018-2798 CVE-2018-2799 CVE-2018-2800 CVE-2018-2814 CVE-2018-2825 CVE-2018-2826 CVE-2018-3613 CVE-2018-7158 CVE-2018-7159 CVE-2018-7160 CVE-2020-14422 CVE-2020-2583 CVE-2020-2593 CVE-2020-2604 CVE-2020-2659 SUSE-SU-2016:0923-1 SUSE-SU-2017:0529-1 SUSE-SU-2017:1690-1 SUSE-SU-2017:1862-1 SUSE-SU-2017:1893-1 SUSE-SU-2017:2130-1 SUSE-SU-2017:2778-1 SUSE-SU-2018:1183-1 SUSE-SU-2018:1738-1 SUSE-SU-2018:3772-1 SUSE-SU-2018:4194-1 SUSE-SU-2019:0179-1 SUSE-SU-2020:0456-1 SUSE-SU-2020:2157-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND libXvMC1-1.0.10-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information MozillaFirefox-60.8.0-lp151.2.10 is installed OR MozillaFirefox-branding-upstream-60.8.0-lp151.2.10 is installed OR MozillaFirefox-buildsymbols-60.8.0-lp151.2.10 is installed OR MozillaFirefox-devel-60.8.0-lp151.2.10 is installed OR MozillaFirefox-translations-common-60.8.0-lp151.2.10 is installed OR MozillaFirefox-translations-other-60.8.0-lp151.2.10 is installed OR libfreebl3-3.44.1-lp151.2.3 is installed OR libfreebl3-32bit-3.44.1-lp151.2.3 is installed OR libfreebl3-hmac-3.44.1-lp151.2.3 is installed OR libfreebl3-hmac-32bit-3.44.1-lp151.2.3 is installed OR libsoftokn3-3.44.1-lp151.2.3 is installed OR libsoftokn3-32bit-3.44.1-lp151.2.3 is installed OR libsoftokn3-hmac-3.44.1-lp151.2.3 is installed OR libsoftokn3-hmac-32bit-3.44.1-lp151.2.3 is installed OR mozilla-nss-3.44.1-lp151.2.3 is installed OR mozilla-nss-32bit-3.44.1-lp151.2.3 is installed OR mozilla-nss-certs-3.44.1-lp151.2.3 is installed OR mozilla-nss-certs-32bit-3.44.1-lp151.2.3 is installed OR mozilla-nss-devel-3.44.1-lp151.2.3 is installed OR mozilla-nss-sysinit-3.44.1-lp151.2.3 is installed OR mozilla-nss-sysinit-32bit-3.44.1-lp151.2.3 is installed OR mozilla-nss-tools-3.44.1-lp151.2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information ovmf-2017+git1510945757.b2662641d5-3.5 is installed OR qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-3.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libvirt-1.2.18.2-8 is installed OR libvirt-client-1.2.18.2-8 is installed OR libvirt-daemon-1.2.18.2-8 is installed OR libvirt-daemon-config-network-1.2.18.2-8 is installed OR libvirt-daemon-config-nwfilter-1.2.18.2-8 is installed OR libvirt-daemon-driver-interface-1.2.18.2-8 is installed OR libvirt-daemon-driver-libxl-1.2.18.2-8 is installed OR libvirt-daemon-driver-lxc-1.2.18.2-8 is installed OR libvirt-daemon-driver-network-1.2.18.2-8 is installed OR libvirt-daemon-driver-nodedev-1.2.18.2-8 is installed OR libvirt-daemon-driver-nwfilter-1.2.18.2-8 is installed OR libvirt-daemon-driver-qemu-1.2.18.2-8 is installed OR libvirt-daemon-driver-secret-1.2.18.2-8 is installed OR libvirt-daemon-driver-storage-1.2.18.2-8 is installed OR libvirt-daemon-lxc-1.2.18.2-8 is installed OR libvirt-daemon-qemu-1.2.18.2-8 is installed OR libvirt-daemon-xen-1.2.18.2-8 is installed OR libvirt-doc-1.2.18.2-8 is installed OR libvirt-lock-sanlock-1.2.18.2-8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information libsoup-2.44.2-2.3 is installed OR libsoup-2_4-1-2.44.2-2.3 is installed OR libsoup-2_4-1-32bit-2.44.2-2.3 is installed OR libsoup-lang-2.44.2-2.3 is installed OR typelib-1_0-Soup-2_4-2.44.2-2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libfreetype6-2.6.3-7.8 is installed OR libfreetype6-32bit-2.6.3-7.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information gpg2-2.0.24-9.3 is installed OR gpg2-lang-2.0.24-9.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information qemu-2.6.2-41.43 is installed OR qemu-block-curl-2.6.2-41.43 is installed OR qemu-block-rbd-2.6.2-41.43 is installed OR qemu-block-ssh-2.6.2-41.43 is installed OR qemu-guest-agent-2.6.2-41.43 is installed OR qemu-ipxe-1.0.0-41.43 is installed OR qemu-kvm-2.6.2-41.43 is installed OR qemu-lang-2.6.2-41.43 is installed OR qemu-seabios-1.9.1-41.43 is installed OR qemu-sgabios-8-41.43 is installed OR qemu-tools-2.6.2-41.43 is installed OR qemu-vgabios-1.9.1-41.43 is installed OR qemu-x86-2.6.2-41.43 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information libdcerpc-atsvc0-4.2.4-28.29 is installed OR samba-4.2.4-28.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND autofs-5.0.9-27 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libvirt-3.3.0-5.40 is installed OR libvirt-admin-3.3.0-5.40 is installed OR libvirt-client-3.3.0-5.40 is installed OR libvirt-daemon-3.3.0-5.40 is installed OR libvirt-daemon-config-network-3.3.0-5.40 is installed OR libvirt-daemon-config-nwfilter-3.3.0-5.40 is installed OR libvirt-daemon-driver-interface-3.3.0-5.40 is installed OR libvirt-daemon-driver-libxl-3.3.0-5.40 is installed OR libvirt-daemon-driver-lxc-3.3.0-5.40 is installed OR libvirt-daemon-driver-network-3.3.0-5.40 is installed OR libvirt-daemon-driver-nodedev-3.3.0-5.40 is installed OR libvirt-daemon-driver-nwfilter-3.3.0-5.40 is installed OR libvirt-daemon-driver-qemu-3.3.0-5.40 is installed OR libvirt-daemon-driver-secret-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-core-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-disk-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-iscsi-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-logical-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-mpath-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-rbd-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-scsi-3.3.0-5.40 is installed OR libvirt-daemon-hooks-3.3.0-5.40 is installed OR libvirt-daemon-lxc-3.3.0-5.40 is installed OR libvirt-daemon-qemu-3.3.0-5.40 is installed OR libvirt-daemon-xen-3.3.0-5.40 is installed OR libvirt-doc-3.3.0-5.40 is installed OR libvirt-libs-3.3.0-5.40 is installed OR libvirt-lock-sanlock-3.3.0-5.40 is installed OR libvirt-nss-3.3.0-5.40 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libwireshark9-2.4.9-48.29 is installed OR libwiretap7-2.4.9-48.29 is installed OR libwscodecs1-2.4.9-48.29 is installed OR libwsutil8-2.4.9-48.29 is installed OR wireshark-2.4.9-48.29 is installed OR wireshark-gtk-2.4.9-48.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information rpm-4.11.2-16.16 is installed OR rpm-32bit-4.11.2-16.16 is installed OR rpm-build-4.11.2-16.16 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND nodejs6-6.14.1-11.12 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information pdns-4.1.2-3.3 is installed OR pdns-backend-mysql-4.1.2-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND slf4j-1.7.12-3.3 is installed

BACK