Oval Definition:	oval:org.opensuse.security:def:57017
Revision Date: 2021-06-08 Version: 1 Title: Security update for qemu (Important) Description: This update for qemu fixes the following issues: - Fix OOB access during mmio operations (CVE-2020-13754, bsc#1172382) - Fix out-of-bounds read information disclosure in icmp6_send_echoreply (CVE-2020-10756, bsc#1172380) - Fix out-of-bound heap buffer access via an interrupt ID field (CVE-2021-20221, bsc#1181933) - For the record, these issues are fixed in this package already. Most are alternate references to previously mentioned issues: (CVE-2019-15890, bsc#1149813, CVE-2020-8608, bsc#1163019, CVE-2020-14364, bsc#1175534, CVE-2020-25707, bsc#1178683, CVE-2020-25723, bsc#1178935, CVE-2020-29130, bsc#1179477, CVE-2021-20257, bsc#1182846, CVE-2021-3419, bsc#1182975, bsc#1094725) Family: unix Class: patch Status: Reference(s): 1017902 1025506 1027038 1027593 1053153 1060427 1062645 1063008 1066295 1069708 1094725 1096745 1107832 1108963 1109893 1110233 1110542 1111319 1112911 1113296 1120629 1120630 1120631 1127155 1128829 1128963 1131823 1134226 1137977 1149813 1156402 1163019 1172380 1172382 1175534 1178683 1178935 1179477 1181933 1182846 1182975 951166 967970 975500 983582 984751 985177 985348 989523 991069 CVE-2010-3609 CVE-2014-2497 CVE-2014-9709 CVE-2016-0772 CVE-2016-1000031 CVE-2016-1000110 CVE-2016-10109 CVE-2016-2183 CVE-2016-2533 CVE-2016-4009 CVE-2016-5116 CVE-2016-5636 CVE-2016-5699 CVE-2016-6128 CVE-2016-6132 CVE-2016-6161 CVE-2016-6207 CVE-2016-6214 CVE-2016-6354 CVE-2016-6905 CVE-2017-10661 CVE-2017-13080 CVE-2017-13081 CVE-2017-14746 CVE-2017-15191 CVE-2017-15192 CVE-2017-15193 CVE-2017-15275 CVE-2017-16939 CVE-2018-12020 CVE-2018-12020 CVE-2018-14633 CVE-2018-14634 CVE-2018-17182 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2019-15890 CVE-2019-2201 CVE-2020-10756 CVE-2020-13754 CVE-2020-14364 CVE-2020-25707 CVE-2020-25723 CVE-2020-29130 CVE-2020-8608 CVE-2021-20221 CVE-2021-20257 CVE-2021-3419 SUSE-SU-2016:2859-1 SUSE-SU-2017:0286-1 SUSE-SU-2017:0839-1 SUSE-SU-2017:2860-1 SUSE-SU-2017:3104-1 SUSE-SU-2017:3106-1 SUSE-SU-2017:3332-1 SUSE-SU-2018:1698-1 SUSE-SU-2019:1214-1 SUSE-SU-2019:1972-1 SUSE-SU-2019:2334-1 SUSE-SU-2019:2972-1 SUSE-SU-2021:1894-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information librados2-13.0.2.1874+ge31585919b-lp150.1 is installed OR librbd1-13.0.2.1874+ge31585919b-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libvarnishapi2-6.2.1-lp151.3.3 is installed OR varnish-6.2.1-lp151.3.3 is installed OR varnish-devel-6.2.1-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libsolv-0.6.36-2.16 is installed OR libsolv-tools-0.6.36-2.16 is installed OR libzypp-16.20.0-2.39 is installed OR python-solv-0.6.36-2.16 is installed OR zypper-1.13.51-21.26 is installed OR zypper-log-1.13.51-21.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libpcsclite1-1.8.10-6 is installed OR pcsc-lite-1.8.10-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_35-default-8-2 is installed OR kgraft-patch-3_12_69-60_64_35-xen-8-2 is installed OR kgraft-patch-SLE12-SP1_Update_14-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND gd-2.1.0-12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information xen-4.7.5_04-43.33 is installed OR xen-doc-html-4.7.5_04-43.33 is installed OR xen-libs-4.7.5_04-43.33 is installed OR xen-libs-32bit-4.7.5_04-43.33 is installed OR xen-tools-4.7.5_04-43.33 is installed OR xen-tools-domU-4.7.5_04-43.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND cifs-utils-6.5-8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information bind-9.9.9P1-63.17 is installed OR bind-chrootenv-9.9.9P1-63.17 is installed OR bind-doc-9.9.9P1-63.17 is installed OR bind-libs-9.9.9P1-63.17 is installed OR bind-libs-32bit-9.9.9P1-63.17 is installed OR bind-utils-9.9.9P1-63.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information ghostscript-9.52-23.34 is installed OR ghostscript-x11-9.52-23.34 is installed OR libspectre-0.2.7-12.10 is installed OR libspectre1-0.2.7-12.10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information qemu-2.9.1-6.50.1 is installed OR qemu-arm-2.9.1-6.50.1 is installed OR qemu-block-curl-2.9.1-6.50.1 is installed OR qemu-block-iscsi-2.9.1-6.50.1 is installed OR qemu-block-rbd-2.9.1-6.50.1 is installed OR qemu-block-ssh-2.9.1-6.50.1 is installed OR qemu-guest-agent-2.9.1-6.50.1 is installed OR qemu-ipxe-1.0.0+-6.50.1 is installed OR qemu-kvm-2.9.1-6.50.1 is installed OR qemu-lang-2.9.1-6.50.1 is installed OR qemu-ppc-2.9.1-6.50.1 is installed OR qemu-s390-2.9.1-6.50.1 is installed OR qemu-seabios-1.10.2_0_g5f4c7b1-6.50.1 is installed OR qemu-sgabios-8-6.50.1 is installed OR qemu-tools-2.9.1-6.50.1 is installed OR qemu-vgabios-1.10.2_0_g5f4c7b1-6.50.1 is installed OR qemu-x86-2.9.1-6.50.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ovmf-2017+git1492060560.b6d11d7c46-4.12 is installed OR ovmf-tools-2017+git1492060560.b6d11d7c46-4.12 is installed OR qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-4.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.35-38.29 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information gpg2-2.0.24-9.3 is installed OR gpg2-lang-2.0.24-9.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information freeradius-server-3.0.15-2.14 is installed OR freeradius-server-doc-3.0.15-2.14 is installed OR freeradius-server-krb5-3.0.15-2.14 is installed OR freeradius-server-ldap-3.0.15-2.14 is installed OR freeradius-server-libs-3.0.15-2.14 is installed OR freeradius-server-mysql-3.0.15-2.14 is installed OR freeradius-server-perl-3.0.15-2.14 is installed OR freeradius-server-postgresql-3.0.15-2.14 is installed OR freeradius-server-python-3.0.15-2.14 is installed OR freeradius-server-sqlite-3.0.15-2.14 is installed OR freeradius-server-utils-3.0.15-2.14 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND ansible-2.4.6.0-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information ruby2.1-rubygem-loofah-2.0.2-3.8 is installed OR rubygem-loofah-2.0.2-3.8 is installed
BACK