OVAL Reference oval:org.opensuse.security:def:56975

Oval Definition:

oval:org.opensuse.security:def:56975

Revision Date:	2021-04-16	Version:	1
Title:	Security update for qemu (Important)
Description:	This update for qemu fixes the following issues: - Fix OOB access in sm501 device emulation (CVE-2020-12829, bsc#1172385) - Fix OOB access possibility in MegaRAID SAS 8708EM2 emulation (CVE-2020-13362 bsc#1172383) - Fix use-after-free in usb xhci packet handling (CVE-2020-25723, bsc#1178934) - Fix use-after-free in usb ehci packet handling (CVE-2020-25084, bsc#1176673) - Fix OOB access in usb hcd-ohci emulation (CVE-2020-25624, bsc#1176682) - Fix infinite loop (DoS) in usb hcd-ohci emulation (CVE-2020-25625, bsc#1176684) - Fix guest triggerable assert in shared network handling code (CVE-2020-27617, bsc#1178174) - Fix infinite loop (DoS) in e1000e device emulation (CVE-2020-28916, bsc#1179468) - Fix OOB access in atapi emulation (CVE-2020-29443, bsc#1181108) - Fix null pointer deref. (DoS) in mmio ops (CVE-2020-15469, bsc#1173612) - Fix infinite loop (DoS) in e1000 device emulation (CVE-2021-20257, bsc#1182577) - Fix OOB access (stack overflow) in rtl8139 NIC emulation (CVE-2021-3416, bsc#1182968) - Fix OOB access (stack overflow) in other NIC emulations (CVE-2021-3416) - Fix OOB access in SLIRP ARP packet processing (CVE-2020-29130, bsc#1179467) - Fix null pointer dereference possibility (DoS) in MegaRAID SAS 8708EM2 emulation (CVE-2020-13659 bsc#1172386 - Fix OOB access in iscsi (CVE-2020-11947 bsc#1180523) - Fix OOB access in vmxnet3 emulation (CVE-2021-20203 bsc#1181639) - Fix buffer overflow in the XGMAC device (CVE-2020-15863, bsc#1174386) - Fix DoS in packet processing of various emulated NICs (CVE-2020-16092 bsc#1174641) - Fix OOB access while processing USB packets (CVE-2020-14364 bsc#1175441) - Fix package scripts to not use hard coded paths for temporary working directories and log files (bsc#1182425) - Fix potential privilege escalation in virtfs (CVE-2021-20181 bsc#1182137) - Fix OOB access possibility in ES1370 audio device emulation (CVE-2020-13361 bsc#1172384) - Fix OOB access in ROM loading (CVE-2020-13765 bsc#1172478)
Family:	unix	Class:	patch
Status:		Reference(s):	1005480 1005893 1006221 1016366 1016368 1016369 1016370 1020928 1033109 1033111 1033112 1033113 1033118 1033120 1033126 1033127 1033128 1033129 1033131 1035082 1037559 1038438 1042804 1042805 1043960 1044417 1045327 1045341 1053153 1056248 1056249 1056251 1057950 1069708 1076017 1083488 1085114 1085447 1092885 1096223 1098735 1122706 1133375 1137443 1152497 1154448 1154456 1154458 1154461 1155945 1157888 1158003 1158004 1158005 1158006 1158007 1161181 1172383 1172384 1172385 1172386 1172478 1173612 1174386 1174641 1175441 1176673 1176682 1176684 1178174 1178934 1179467 1179468 1180523 1181108 1181639 1182137 1182425 1182577 1182968 CVE-2011-1521 CVE-2011-3389 CVE-2011-4944 CVE-2012-0845 CVE-2012-1150 CVE-2013-1752 CVE-2013-1753 CVE-2013-4238 CVE-2014-1912 CVE-2014-4650 CVE-2014-7185 CVE-2014-8484 CVE-2014-8485 CVE-2014-8501 CVE-2014-8502 CVE-2014-8503 CVE-2014-8504 CVE-2014-8737 CVE-2014-8738 CVE-2015-1419 CVE-2016-0772 CVE-2016-1000110 CVE-2016-10009 CVE-2016-10010 CVE-2016-10011 CVE-2016-10012 CVE-2016-10196 CVE-2016-10371 CVE-2016-5636 CVE-2016-5699 CVE-2016-8858 CVE-2017-1000251 CVE-2017-10661 CVE-2017-13166 CVE-2017-13765 CVE-2017-13766 CVE-2017-13767 CVE-2017-15274 CVE-2017-16939 CVE-2017-5429 CVE-2017-5430 CVE-2017-5432 CVE-2017-5433 CVE-2017-5434 CVE-2017-5435 CVE-2017-5436 CVE-2017-5438 CVE-2017-5439 CVE-2017-5440 CVE-2017-5441 CVE-2017-5442 CVE-2017-5443 CVE-2017-5444 CVE-2017-5445 CVE-2017-5446 CVE-2017-5447 CVE-2017-5448 CVE-2017-5449 CVE-2017-5451 CVE-2017-5454 CVE-2017-5455 CVE-2017-5456 CVE-2017-5459 CVE-2017-5460 CVE-2017-5461 CVE-2017-5462 CVE-2017-5464 CVE-2017-5465 CVE-2017-5466 CVE-2017-5467 CVE-2017-5469 CVE-2017-5470 CVE-2017-5472 CVE-2017-7592 CVE-2017-7593 CVE-2017-7594 CVE-2017-7595 CVE-2017-7596 CVE-2017-7597 CVE-2017-7598 CVE-2017-7599 CVE-2017-7600 CVE-2017-7601 CVE-2017-7602 CVE-2017-7749 CVE-2017-7750 CVE-2017-7751 CVE-2017-7752 CVE-2017-7754 CVE-2017-7755 CVE-2017-7756 CVE-2017-7757 CVE-2017-7758 CVE-2017-7761 CVE-2017-7763 CVE-2017-7764 CVE-2017-7765 CVE-2017-7768 CVE-2017-7778 CVE-2017-8779 CVE-2017-9403 CVE-2017-9404 CVE-2017-9617 CVE-2017-9766 CVE-2018-1000004 CVE-2018-1068 CVE-2018-11806 CVE-2018-12207 CVE-2018-12617 CVE-2018-3639 CVE-2018-7566 CVE-2019-11135 CVE-2019-12735 CVE-2019-18420 CVE-2019-18421 CVE-2019-18424 CVE-2019-18425 CVE-2019-19577 CVE-2019-19578 CVE-2019-19579 CVE-2019-19580 CVE-2019-19581 CVE-2019-19583 CVE-2019-3813 CVE-2019-9928 CVE-2020-11947 CVE-2020-12829 CVE-2020-13361 CVE-2020-13362 CVE-2020-13659 CVE-2020-13765 CVE-2020-14364 CVE-2020-15469 CVE-2020-15863 CVE-2020-16092 CVE-2020-25084 CVE-2020-25624 CVE-2020-25625 CVE-2020-25723 CVE-2020-27617 CVE-2020-28916 CVE-2020-29130 CVE-2020-29443 CVE-2020-7211 CVE-2021-20181 CVE-2021-20203 CVE-2021-20257 CVE-2021-3416 SUSE-SU-2017:0264-1 SUSE-SU-2017:1306-1 SUSE-SU-2017:1669-1 SUSE-SU-2017:2555-1 SUSE-SU-2017:2569-1 SUSE-SU-2017:2793-1 SUSE-SU-2017:3322-1 SUSE-SU-2018:1032-1 SUSE-SU-2018:2565-1 SUSE-SU-2019:0241-1 SUSE-SU-2019:1456-1 SUSE-SU-2019:1600-1 SUSE-SU-2020:0334-1 SUSE-SU-2021:1240-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information liblightdm-gobject-1-0-1.24.1-lp150.1 is installed OR lightdm-1.24.1-lp150.1 is installed OR lightdm-lang-1.24.1-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information containerd-1.2.6-lp151.2.6 is installed OR containerd-ctr-1.2.6-lp151.2.6 is installed OR docker-19.03.1_ce-lp151.2.12 is installed OR docker-bash-completion-19.03.1_ce-lp151.2.12 is installed OR docker-libnetwork-0.7.0.1+gitr2800_fc5a7d91d54c-lp151.2.6 is installed OR docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp151.3.6 is installed OR docker-test-19.03.1_ce-lp151.2.12 is installed OR docker-zsh-completion-19.03.1_ce-lp151.2.12 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2800_fc5a7d91d54c-lp151.2.6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gvim-7.4.326-17.3 is installed OR vim-7.4.326-17.3 is installed OR vim-data-7.4.326-17.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libtirpc-0.2.3-13.3 is installed OR libtirpc1-0.2.3-13.3 is installed OR libtirpc1-32bit-0.2.3-13.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-branding-SLE-52-31 is installed OR MozillaFirefox-devel-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND binutils-2.26.1-9.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libwireshark9-2.4.9-48.29 is installed OR libwiretap7-2.4.9-48.29 is installed OR libwscodecs1-2.4.9-48.29 is installed OR libwsutil8-2.4.9-48.29 is installed OR wireshark-2.4.9-48.29 is installed OR wireshark-gtk-2.4.9-48.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.65-38.53 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.65-38.53 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.65-38.53 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.65-38.53 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.65-38.53 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_80-default-3-2 is installed OR kgraft-patch-SLE12-SP2_Update_22-3-2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information gdk-pixbuf-lang-2.34.0-18 is installed OR gdk-pixbuf-query-loaders-2.34.0-18 is installed OR gdk-pixbuf-query-loaders-32bit-2.34.0-18 is installed OR libgdk_pixbuf-2_0-0-2.34.0-18 is installed OR libgdk_pixbuf-2_0-0-32bit-2.34.0-18 is installed OR typelib-1_0-GdkPixbuf-2_0-2.34.0-18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information icu-52.1-8.10 is installed OR libicu-doc-52.1-8.10 is installed OR libicu52_1-52.1-8.10 is installed OR libicu52_1-32bit-52.1-8.10 is installed OR libicu52_1-data-52.1-8.10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information qemu-2.9.1-6.47.1 is installed OR qemu-arm-2.9.1-6.47.1 is installed OR qemu-block-curl-2.9.1-6.47.1 is installed OR qemu-block-iscsi-2.9.1-6.47.1 is installed OR qemu-block-rbd-2.9.1-6.47.1 is installed OR qemu-block-ssh-2.9.1-6.47.1 is installed OR qemu-guest-agent-2.9.1-6.47.1 is installed OR qemu-ipxe-1.0.0+-6.47.1 is installed OR qemu-kvm-2.9.1-6.47.1 is installed OR qemu-lang-2.9.1-6.47.1 is installed OR qemu-ppc-2.9.1-6.47.1 is installed OR qemu-s390-2.9.1-6.47.1 is installed OR qemu-seabios-1.10.2_0_g5f4c7b1-6.47.1 is installed OR qemu-sgabios-8-6.47.1 is installed OR qemu-tools-2.9.1-6.47.1 is installed OR qemu-vgabios-1.10.2_0_g5f4c7b1-6.47.1 is installed OR qemu-x86-2.9.1-6.47.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND squid-3.5.21-26.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information xorg-x11-7.6_1-14 is installed OR xorg-x11-essentials-7.6_1-14 is installed OR xrdb-1.1.0-3 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information gstreamer-plugins-base-1.8.3-13.3 is installed OR gstreamer-plugins-base-lang-1.8.3-13.3 is installed OR libgstallocators-1_0-0-1.8.3-13.3 is installed OR libgstapp-1_0-0-1.8.3-13.3 is installed OR libgstapp-1_0-0-32bit-1.8.3-13.3 is installed OR libgstaudio-1_0-0-1.8.3-13.3 is installed OR libgstaudio-1_0-0-32bit-1.8.3-13.3 is installed OR libgstfft-1_0-0-1.8.3-13.3 is installed OR libgstpbutils-1_0-0-1.8.3-13.3 is installed OR libgstpbutils-1_0-0-32bit-1.8.3-13.3 is installed OR libgstriff-1_0-0-1.8.3-13.3 is installed OR libgstrtp-1_0-0-1.8.3-13.3 is installed OR libgstrtsp-1_0-0-1.8.3-13.3 is installed OR libgstsdp-1_0-0-1.8.3-13.3 is installed OR libgsttag-1_0-0-1.8.3-13.3 is installed OR libgsttag-1_0-0-32bit-1.8.3-13.3 is installed OR libgstvideo-1_0-0-1.8.3-13.3 is installed OR libgstvideo-1_0-0-32bit-1.8.3-13.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information ibus-1.5.13-15.11 is installed OR ibus-gtk-1.5.13-15.11 is installed OR ibus-gtk3-1.5.13-15.11 is installed OR ibus-lang-1.5.13-15.11 is installed OR libibus-1_0-5-1.5.13-15.11 is installed OR typelib-1_0-IBus-1_0-1.5.13-15.11 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-loofah-2.0.2-3.8 is installed OR rubygem-loofah-2.0.2-3.8 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information ruby2.1-rubygem-loofah-2.0.2-3.8 is installed OR rubygem-loofah-2.0.2-3.8 is installed

BACK