OVAL Reference oval:org.opensuse.security:def:57430

Oval Definition:

oval:org.opensuse.security:def:57430

Revision Date:	2021-04-16	Version:	1
Title:	Security update for qemu (Important)
Description:	This update for qemu fixes the following issues: - Fix OOB access in sm501 device emulation (CVE-2020-12829, bsc#1172385) - Fix OOB access possibility in MegaRAID SAS 8708EM2 emulation (CVE-2020-13362 bsc#1172383) - Fix use-after-free in usb xhci packet handling (CVE-2020-25723, bsc#1178934) - Fix use-after-free in usb ehci packet handling (CVE-2020-25084, bsc#1176673) - Fix OOB access in usb hcd-ohci emulation (CVE-2020-25624, bsc#1176682) - Fix infinite loop (DoS) in usb hcd-ohci emulation (CVE-2020-25625, bsc#1176684) - Fix guest triggerable assert in shared network handling code (CVE-2020-27617, bsc#1178174) - Fix infinite loop (DoS) in e1000e device emulation (CVE-2020-28916, bsc#1179468) - Fix OOB access in atapi emulation (CVE-2020-29443, bsc#1181108) - Fix null pointer deref. (DoS) in mmio ops (CVE-2020-15469, bsc#1173612) - Fix infinite loop (DoS) in e1000 device emulation (CVE-2021-20257, bsc#1182577) - Fix OOB access (stack overflow) in rtl8139 NIC emulation (CVE-2021-3416, bsc#1182968) - Fix OOB access (stack overflow) in other NIC emulations (CVE-2021-3416) - Fix OOB access in SLIRP ARP packet processing (CVE-2020-29130, bsc#1179467) - Fix null pointer dereference possibility (DoS) in MegaRAID SAS 8708EM2 emulation (CVE-2020-13659 bsc#1172386 - Fix OOB access in iscsi (CVE-2020-11947 bsc#1180523) - Fix OOB access in vmxnet3 emulation (CVE-2021-20203 bsc#1181639) - Fix buffer overflow in the XGMAC device (CVE-2020-15863, bsc#1174386) - Fix DoS in packet processing of various emulated NICs (CVE-2020-16092 bsc#1174641) - Fix OOB access while processing USB packets (CVE-2020-14364 bsc#1175441) - Fix package scripts to not use hard coded paths for temporary working directories and log files (bsc#1182425) - Fix potential privilege escalation in virtfs (CVE-2021-20181 bsc#1182137) - Fix OOB access possibility in ES1370 audio device emulation (CVE-2020-13361 bsc#1172384) - Fix OOB access in ROM loading (CVE-2020-13765 bsc#1172478)
Family:	unix	Class:	patch
Status:		Reference(s):	1002991 1002995 1002998 1003000 1003002 1003012 1003017 1003023 1003577 1003579 1003580 1012382 1013882 1031717 1046610 1056427 1057734 1068032 1070536 1075087 1075428 1076847 1077560 1079405 1080157 1082153 1082299 1083125 1083745 1083836 1084353 1084610 1084721 1084829 1085042 1085185 1085224 1085402 1085404 1086162 1086194 1087082 1087088 1087260 1087845 1088241 1088242 1088600 1088684 1089198 1089608 1089644 1089752 1090643 1090953 1091041 1092289 1092885 1093215 1094019 1096254 1103098 1107832 1108382 1109137 1110233 1124729 1124734 1127155 1128378 1133190 1133375 1133738 1134395 1134701 1136922 1136935 1137194 1138291 1140575 1152856 1154212 1155094 1162224 1162367 1162825 1165894 1170715 1172383 1172384 1172385 1172386 1172478 1172698 1172704 1173612 1174386 1174641 1175441 1176673 1176682 1176684 1178174 1178934 1179467 1179468 1180523 1181108 1181639 1182137 1182425 1182577 1182968 843174 953516 953521 CVE-2009-0316 CVE-2013-5745 CVE-2014-8080 CVE-2014-8090 CVE-2014-9756 CVE-2015-7805 CVE-2016-5407 CVE-2016-7942 CVE-2016-7944 CVE-2016-7945 CVE-2016-7946 CVE-2016-7947 CVE-2016-7948 CVE-2016-7949 CVE-2016-7950 CVE-2016-7951 CVE-2016-7952 CVE-2016-7953 CVE-2016-9840 CVE-2016-9841 CVE-2016-9842 CVE-2016-9843 CVE-2017-18257 CVE-2018-10087 CVE-2018-10124 CVE-2018-1087 CVE-2018-14633 CVE-2018-17182 CVE-2018-20836 CVE-2018-3639 CVE-2018-5391 CVE-2018-7740 CVE-2018-8043 CVE-2018-8781 CVE-2018-8822 CVE-2018-8897 CVE-2019-10126 CVE-2019-10638 CVE-2019-10639 CVE-2019-11487 CVE-2019-11599 CVE-2019-12380 CVE-2019-12456 CVE-2019-12614 CVE-2019-12818 CVE-2019-12819 CVE-2019-18348 CVE-2019-2894 CVE-2019-2933 CVE-2019-2945 CVE-2019-2949 CVE-2019-2958 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2987 CVE-2019-2988 CVE-2019-2989 CVE-2019-2992 CVE-2019-2999 CVE-2019-6974 CVE-2019-7221 CVE-2019-9213 CVE-2019-9674 CVE-2019-9928 CVE-2020-11947 CVE-2020-12829 CVE-2020-13361 CVE-2020-13362 CVE-2020-13659 CVE-2020-13765 CVE-2020-14364 CVE-2020-15469 CVE-2020-15863 CVE-2020-16092 CVE-2020-25084 CVE-2020-25624 CVE-2020-25625 CVE-2020-25723 CVE-2020-27617 CVE-2020-28916 CVE-2020-29130 CVE-2020-29443 CVE-2020-8023 CVE-2020-8492 CVE-2021-20181 CVE-2021-20203 CVE-2021-20257 CVE-2021-3416 SUSE-SU-2015:1979-1 SUSE-SU-2016:2828-1 SUSE-SU-2017:0003-1 SUSE-SU-2018:1173-1 SUSE-SU-2018:1362-1 SUSE-SU-2018:1377-1 SUSE-SU-2018:3173-1 SUSE-SU-2019:1508-1 SUSE-SU-2019:1823-1 SUSE-SU-2019:3084-1 SUSE-SU-2020:0854-1 SUSE-SU-2020:1859-1 SUSE-SU-2021:1240-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information bzip2-1.0.6-lp150.3 is installed OR libbz2-1-1.0.6-lp150.3 is installed OR libbz2-1-32bit-1.0.6-lp150.3 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND teeworlds-0.7.3.1-lp151.2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information libsndfile-1.0.20-2.10 is installed OR libsndfile-32bit-1.0.20-2.10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information gstreamer-0_10-plugins-base-0.10.36-11.9 is installed OR gstreamer-0_10-plugins-base-32bit-0.10.36-11.9 is installed OR libgstapp-0_10-0-32bit-0.10.36-11.9 is installed OR libgstinterfaces-0_10-0-32bit-0.10.36-11.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information gvim-7.4.326-2 is installed OR vim-7.4.326-2 is installed OR vim-data-7.4.326-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libsystemd0-228-150.58 is installed OR libsystemd0-32bit-228-150.58 is installed OR libudev1-228-150.58 is installed OR libudev1-32bit-228-150.58 is installed OR systemd-228-150.58 is installed OR systemd-32bit-228-150.58 is installed OR systemd-bash-completion-228-150.58 is installed OR systemd-sysvinit-228-150.58 is installed OR udev-228-150.58 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libopenssl-devel-1.0.2j-60.30 is installed OR libopenssl1_0_0-1.0.2j-60.30 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.30 is installed OR openssl-1.0.2j-60.30 is installed OR openssl-doc-1.0.2j-60.30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_92-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_24-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information kernel-default-4.4.73-5 is installed OR kernel-default-base-4.4.73-5 is installed OR kernel-default-devel-4.4.73-5 is installed OR kernel-default-man-4.4.73-5 is installed OR kernel-devel-4.4.73-5 is installed OR kernel-macros-4.4.73-5 is installed OR kernel-source-4.4.73-5 is installed OR kernel-syms-4.4.73-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information qemu-2.9.1-6.47.1 is installed OR qemu-block-curl-2.9.1-6.47.1 is installed OR qemu-block-iscsi-2.9.1-6.47.1 is installed OR qemu-block-rbd-2.9.1-6.47.1 is installed OR qemu-block-ssh-2.9.1-6.47.1 is installed OR qemu-guest-agent-2.9.1-6.47.1 is installed OR qemu-ipxe-1.0.0+-6.47.1 is installed OR qemu-kvm-2.9.1-6.47.1 is installed OR qemu-lang-2.9.1-6.47.1 is installed OR qemu-seabios-1.10.2_0_g5f4c7b1-6.47.1 is installed OR qemu-sgabios-8-6.47.1 is installed OR qemu-tools-2.9.1-6.47.1 is installed OR qemu-vgabios-1.10.2_0_g5f4c7b1-6.47.1 is installed OR qemu-x86-2.9.1-6.47.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND squid-3.5.21-26.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libpython2_7-1_0-2.7.17-28.42 is installed OR libpython2_7-1_0-32bit-2.7.17-28.42 is installed OR python-2.7.17-28.42 is installed OR python-32bit-2.7.17-28.42 is installed OR python-base-2.7.17-28.42 is installed OR python-base-32bit-2.7.17-28.42 is installed OR python-curses-2.7.17-28.42 is installed OR python-demo-2.7.17-28.42 is installed OR python-devel-2.7.17-28.42 is installed OR python-doc-2.7.17-28.42 is installed OR python-doc-pdf-2.7.17-28.42 is installed OR python-gdbm-2.7.17-28.42 is installed OR python-idle-2.7.17-28.42 is installed OR python-rpm-macros-20200207.5feb6c1-3.19 is installed OR python-tk-2.7.17-28.42 is installed OR python-xml-2.7.17-28.42 is installed OR shared-python-startup-0.1-1.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information gvim-7.4.326-17.3 is installed OR vim-7.4.326-17.3 is installed OR vim-data-7.4.326-17.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information gdk-pixbuf-lang-2.34.0-19.17 is installed OR gdk-pixbuf-query-loaders-2.34.0-19.17 is installed OR gdk-pixbuf-query-loaders-32bit-2.34.0-19.17 is installed OR libgdk_pixbuf-2_0-0-2.34.0-19.17 is installed OR libgdk_pixbuf-2_0-0-32bit-2.34.0-19.17 is installed OR typelib-1_0-GdkPixbuf-2_0-2.34.0-19.17 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information kernel-default-4.4.121-92.117 is installed OR kernel-default-base-4.4.121-92.117 is installed OR kernel-default-devel-4.4.121-92.117 is installed OR kernel-default-man-4.4.121-92.117 is installed OR kernel-devel-4.4.121-92.117 is installed OR kernel-macros-4.4.121-92.117 is installed OR kernel-source-4.4.121-92.117 is installed OR kernel-syms-4.4.121-92.117 is installed OR kgraft-patch-4_4_121-92_117-default-1-3.3 is installed OR kgraft-patch-SLE12-SP2_Update_31-1-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND cobbler-2.6.6-49.14 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND python-Django-1.11.11-3.3 is installed

BACK