OVAL Reference oval:org.opensuse.security:def:57398

Oval Definition:

oval:org.opensuse.security:def:57398

Revision Date:	2020-12-01	Version:	1
Title:	Security update for kvm and libvirt
Description:	This collective update for KVM and libvirt provides fixes for security and non-security issues. kvm: * Fix NULL pointer dereference because of uninitialized UDP socket. (bsc#897654, CVE-2014-3640) * Fix performance degradation after migration. (bsc#878350) * Fix potential image corruption due to missing FIEMAP_FLAG_SYNC flag in FS_IOC_FIEMAP ioctl. (bsc#908381) * Add validate hex properties for qdev. (bsc#852397) * Add boot option to do strict boot (bsc#900084) * Add query-command-line-options QMP command. (bsc#899144) * Fix incorrect return value of migrate_cancel. (bsc#843074) * Fix insufficient parameter validation during ram load. (bsc#905097, CVE-2014-7840) * Fix insufficient blit region checks in qemu/cirrus. (bsc#907805, CVE-2014-8106) libvirt: * Fix security hole with migratable flag in dumpxml. (bsc#904176, CVE-2014-7823) * Fix domain deadlock. (bsc#899484, CVE-2014-3657) * Use correct definition when looking up disk in qemu blkiotune. (bsc#897783, CVE-2014-3633) * Fix undefined symbol when starting virtlockd. (bsc#910145) * Add '-boot strict' to qemu's commandline whenever possible. (bsc#900084) * Add support for 'reboot-timeout' in qemu. (bsc#899144) * Increase QEMU's monitor timeout to 30sec. (bsc#911742) * Allow setting QEMU's migration max downtime any time. (bsc#879665) Security Issues: * CVE-2014-7823 * CVE-2014-3657 * CVE-2014-3633 * CVE-2014-3640 * CVE-2014-7840 * CVE-2014-8106
Family:	unix	Class:	patch
Status:		Reference(s):	1005879 1018832 1040202 1068032 1068613 1070144 1071228 1073230 1073489 1076017 1076114 1076179 1076775 1076814 1082276 1083291 1083488 1085114 1085447 1085598 1087082 1087845 1089895 1091755 1092497 1093215 1094019 1097108 1111331 1145559 1153108 1156334 1160467 1160468 1162610 1169659 1170313 1170423 843074 852397 878350 879665 897654 897783 899144 899484 900084 904176 905097 907805 908381 910145 911742 949669 949670 985025 999646 CVE-2011-1831 CVE-2011-1832 CVE-2011-1833 CVE-2011-1834 CVE-2011-1835 CVE-2011-1836 CVE-2011-1837 CVE-2014-3633 CVE-2014-3640 CVE-2014-3657 CVE-2014-7823 CVE-2014-7840 CVE-2014-8106 CVE-2014-9087 CVE-2014-9687 CVE-2015-5288 CVE-2015-5289 CVE-2016-1572 CVE-2016-4574 CVE-2016-4579 CVE-2016-7444 CVE-2016-8610 CVE-2017-13166 CVE-2017-15119 CVE-2017-15124 CVE-2017-16845 CVE-2017-17381 CVE-2017-18030 CVE-2017-18043 CVE-2017-5335 CVE-2017-5336 CVE-2017-5337 CVE-2017-5715 CVE-2018-1000004 CVE-2018-1000199 CVE-2018-10675 CVE-2018-1068 CVE-2018-10853 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-3639 CVE-2018-5683 CVE-2018-7550 CVE-2018-7566 CVE-2019-10220 CVE-2019-11091 CVE-2019-11500 CVE-2019-12519 CVE-2019-12520 CVE-2019-12521 CVE-2019-12524 CVE-2019-14896 CVE-2019-14897 CVE-2019-15917 CVE-2020-11945 CVE-2020-8597 SUSE-SU-2015:0357-1 SUSE-SU-2016:0482-1 SUSE-SU-2017:0348-1 SUSE-SU-2018:0831-1 SUSE-SU-2018:1004-1 SUSE-SU-2018:1031-1 SUSE-SU-2018:1375-1 SUSE-SU-2018:2684-1 SUSE-SU-2019:1296-1 SUSE-SU-2019:2454-1 SUSE-SU-2020:0490-1 SUSE-SU-2020:1227-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND less-530-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND ansible-2.8.1-12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information kvm-1.4.2-0.21 is installed OR libvirt-1.0.5.9-0.19 is installed OR libvirt-client-1.0.5.9-0.19 is installed OR libvirt-client-32bit-1.0.5.9-0.19 is installed OR libvirt-doc-1.0.5.9-0.19 is installed OR libvirt-python-1.0.5.9-0.19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kernel-default-3.12.74-60.64.93 is installed OR kernel-default-base-3.12.74-60.64.93 is installed OR kernel-default-devel-3.12.74-60.64.93 is installed OR kernel-default-man-3.12.74-60.64.93 is installed OR kernel-devel-3.12.74-60.64.93 is installed OR kernel-macros-3.12.74-60.64.93 is installed OR kernel-source-3.12.74-60.64.93 is installed OR kernel-syms-3.12.74-60.64.93 is installed OR kernel-xen-3.12.74-60.64.93 is installed OR kernel-xen-base-3.12.74-60.64.93 is installed OR kernel-xen-devel-3.12.74-60.64.93 is installed OR kgraft-patch-3_12_74-60_64_93-default-1-2.5 is installed OR kgraft-patch-3_12_74-60_64_93-xen-1-2.5 is installed OR kgraft-patch-SLE12-SP1_Update_28-1-2.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information ecryptfs-utils-103-7 is installed OR ecryptfs-utils-32bit-103-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information MozillaFirefox-60.4.0esr-109.55 is installed OR MozillaFirefox-devel-60.4.0esr-109.55 is installed OR MozillaFirefox-translations-common-60.4.0esr-109.55 is installed OR libfreebl3-3.40.1-58.18 is installed OR libfreebl3-32bit-3.40.1-58.18 is installed OR libsoftokn3-3.40.1-58.18 is installed OR libsoftokn3-32bit-3.40.1-58.18 is installed OR mozilla-nspr-4.20-19.6 is installed OR mozilla-nspr-32bit-4.20-19.6 is installed OR mozilla-nss-3.40.1-58.18 is installed OR mozilla-nss-32bit-3.40.1-58.18 is installed OR mozilla-nss-certs-3.40.1-58.18 is installed OR mozilla-nss-certs-32bit-3.40.1-58.18 is installed OR mozilla-nss-sysinit-3.40.1-58.18 is installed OR mozilla-nss-sysinit-32bit-3.40.1-58.18 is installed OR mozilla-nss-tools-3.40.1-58.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND ucode-intel-20180807-13.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_92-default-2-2 is installed OR kgraft-patch-SLE12-SP2_Update_24-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information gnome-keyring-3.20.0-27 is installed OR gnome-keyring-32bit-3.20.0-27 is installed OR gnome-keyring-lang-3.20.0-27 is installed OR gnome-keyring-pam-3.20.0-27 is installed OR gnome-keyring-pam-32bit-3.20.0-27 is installed OR libgck-modules-gnome-keyring-3.20.0-27 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.55-38.44 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.55-38.44 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.55-38.44 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.55-38.44 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information audit-2.8.1-8.3 is installed OR audit-audispd-plugins-2.8.1-8.3 is installed OR audit-secondary-2.8.1-8.3 is installed OR libaudit1-2.8.1-8.3 is installed OR libaudit1-32bit-2.8.1-8.3 is installed OR libauparse0-2.8.1-8.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND ctags-5.8-7 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND ucode-intel-20190514-13.44 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND python-Twisted-15.2.1-9.5 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND xrdp-0.9.0~git.1456906198.f422461-21.27 is installed

BACK