Oval Definition:oval:org.opensuse.security:def:57502
Revision Date:2021-09-06Version:1
Title:Security update for xen (Important)
Description:

This update for xen fixes the following issues:

- CVE-2021-3594: slirp: invalid pointer initialization may lead to information disclosure (udp)(bsc#1187378). - CVE-2021-3595: slirp: invalid pointer initialization may lead to information disclosure (tftp)(bsc#1187376). - CVE-2021-28698: long running loops in grant table handling (XSA-380)(bsc#1189378). - CVE-2021-28699: inadequate grant-v2 status frames array bounds check (XSA-382)(bsc#1189380). - CVE-2021-20255: Fixed stack overflow via infinite recursion in eepro100 (bsc#1182654) - CVE-2021-28690: xen: x86: TSX Async Abort protections not restored after S3 (bsc#1186434) - CVE-2021-28692: xen: inappropriate x86 IOMMU timeout detection / handling (bsc#1186429) - CVE-2021-28694,CVE-2021-28695,CVE-2021-28696: IOMMU page mapping issues on x86 (XSA-378)(bsc#1189373). - CVE-2021-0089: xen: Speculative Code Store Bypass (bsc#1186433) - CVE-2021-28697: grant table v2 status pages may remain accessible after de-allocation (XSA-379)(bsc#1189376). - CVE-2021-3592: slirp: invalid pointer initialization may lead to information disclosure (bootp)(bsc#1187369).

- Prevent superpage allocation in the LAPIC and ACPI_INFO range (bsc#1189882).
Family:unixClass:patch
Status:Reference(s):1020940
1025068
1027519
1035686
1077724
1077725
1077978
1105528
1108940
1114423
1115040
1115045
1115047
1116380
1117756
1133191
1136446
1136935
1137597
1138743
1139073
1139083
1141035
1144504
1149458
1151839
1154043
1154849
1155988
1164692
1171252
1171254
1182654
1186429
1186433
1186434
1187369
1187376
1187378
1189373
1189376
1189378
1189380
1189882
905870
905871
905872
914890
916927
922220
922221
922222
922223
927637
930721
942317
950944
956988
961721
962736
962737
962738
962739
984650
CVE-2014-2497
CVE-2014-3566
CVE-2014-8127
CVE-2014-8128
CVE-2014-8129
CVE-2014-8130
CVE-2014-8767
CVE-2014-8768
CVE-2014-8769
CVE-2014-9655
CVE-2014-9709
CVE-2014-9761
CVE-2015-0261
CVE-2015-2153
CVE-2015-2154
CVE-2015-2155
CVE-2015-3138
CVE-2015-7547
CVE-2015-8776
CVE-2015-8777
CVE-2015-8778
CVE-2015-8779
CVE-2016-1372
CVE-2016-1856
CVE-2016-1857
CVE-2016-4590
CVE-2016-4591
CVE-2016-4622
CVE-2016-4624
CVE-2016-5116
CVE-2016-6128
CVE-2016-6132
CVE-2016-6161
CVE-2016-6207
CVE-2016-6214
CVE-2016-6905
CVE-2016-7922
CVE-2016-7923
CVE-2016-7924
CVE-2016-7925
CVE-2016-7926
CVE-2016-7927
CVE-2016-7928
CVE-2016-7929
CVE-2016-7930
CVE-2016-7931
CVE-2016-7932
CVE-2016-7933
CVE-2016-7934
CVE-2016-7935
CVE-2016-7936
CVE-2016-7937
CVE-2016-7938
CVE-2016-7939
CVE-2016-7940
CVE-2016-7973
CVE-2016-7974
CVE-2016-7975
CVE-2016-7983
CVE-2016-7984
CVE-2016-7985
CVE-2016-7986
CVE-2016-7992
CVE-2016-7993
CVE-2016-8574
CVE-2016-8575
CVE-2017-17969
CVE-2017-2626
CVE-2017-5202
CVE-2017-5203
CVE-2017-5204
CVE-2017-5205
CVE-2017-5341
CVE-2017-5342
CVE-2017-5482
CVE-2017-5483
CVE-2017-5484
CVE-2017-5485
CVE-2017-5486
CVE-2018-18849
CVE-2018-19665
CVE-2018-19961
CVE-2018-19962
CVE-2018-19965
CVE-2018-19966
CVE-2018-5996
CVE-2019-11135
CVE-2019-11139
CVE-2019-11477
CVE-2019-11478
CVE-2019-11487
CVE-2019-12625
CVE-2019-12900
CVE-2019-12900
CVE-2019-14834
CVE-2019-3846
CVE-2020-12653
CVE-2020-12654
CVE-2020-1938
CVE-2021-0089
CVE-2021-20255
CVE-2021-28690
CVE-2021-28692
CVE-2021-28694
CVE-2021-28695
CVE-2021-28696
CVE-2021-28697
CVE-2021-28698
CVE-2021-28699
CVE-2021-3592
CVE-2021-3594
CVE-2021-3595
SUSE-SU-2015:1420-1
SUSE-SU-2016:0472-1
SUSE-SU-2017:1110-1
SUSE-SU-2017:1835-1
SUSE-SU-2018:0464-1
SUSE-SU-2019:0020-1
SUSE-SU-2019:2013-1
SUSE-SU-2019:2959-1
SUSE-SU-2019:3066-1
SUSE-SU-2020:0419-1
SUSE-SU-2020:0806-1
SUSE-SU-2021:2957-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • freerdp-2.0.0~rc2-lp150.1 is installed
  • OR libfreerdp2-2.0.0~rc2-lp150.1 is installed
  • OR libwinpr2-2.0.0~rc2-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • ImageMagick-7.0.7.34-lp151.7.3 is installed
  • OR ImageMagick-config-7-SUSE-7.0.7.34-lp151.7.3 is installed
  • OR ImageMagick-config-7-upstream-7.0.7.34-lp151.7.3 is installed
  • OR ImageMagick-devel-7.0.7.34-lp151.7.3 is installed
  • OR ImageMagick-devel-32bit-7.0.7.34-lp151.7.3 is installed
  • OR ImageMagick-doc-7.0.7.34-lp151.7.3 is installed
  • OR ImageMagick-extra-7.0.7.34-lp151.7.3 is installed
  • OR libMagick++-7_Q16HDRI4-7.0.7.34-lp151.7.3 is installed
  • OR libMagick++-7_Q16HDRI4-32bit-7.0.7.34-lp151.7.3 is installed
  • OR libMagick++-devel-7.0.7.34-lp151.7.3 is installed
  • OR libMagick++-devel-32bit-7.0.7.34-lp151.7.3 is installed
  • OR libMagickCore-7_Q16HDRI6-7.0.7.34-lp151.7.3 is installed
  • OR libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-lp151.7.3 is installed
  • OR libMagickWand-7_Q16HDRI6-7.0.7.34-lp151.7.3 is installed
  • OR libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-lp151.7.3 is installed
  • OR perl-PerlMagick-7.0.7.34-lp151.7.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • libtiff3-3.8.2-141.160 is installed
  • OR libtiff3-32bit-3.8.2-141.160 is installed
  • OR tiff-3.8.2-141.160 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • glibc-2.11.3-17.95 is installed
  • OR glibc-32bit-2.11.3-17.95 is installed
  • OR glibc-devel-2.11.3-17.95 is installed
  • OR glibc-devel-32bit-2.11.3-17.95 is installed
  • OR glibc-i18ndata-2.11.3-17.95 is installed
  • OR glibc-locale-2.11.3-17.95 is installed
  • OR glibc-locale-32bit-2.11.3-17.95 is installed
  • OR nscd-2.11.3-17.95 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND ucode-intel-20191112-13.53 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND gd-2.1.0-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libvirt-2.0.0-27.42 is installed
  • OR libvirt-client-2.0.0-27.42 is installed
  • OR libvirt-daemon-2.0.0-27.42 is installed
  • OR libvirt-daemon-config-network-2.0.0-27.42 is installed
  • OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-network-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed
  • OR libvirt-daemon-hooks-2.0.0-27.42 is installed
  • OR libvirt-daemon-lxc-2.0.0-27.42 is installed
  • OR libvirt-daemon-qemu-2.0.0-27.42 is installed
  • OR libvirt-daemon-xen-2.0.0-27.42 is installed
  • OR libvirt-doc-2.0.0-27.42 is installed
  • OR libvirt-lock-sanlock-2.0.0-27.42 is installed
  • OR libvirt-nss-2.0.0-27.42 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • git-2.12.3-27.17 is installed
  • OR git-core-2.12.3-27.17 is installed
  • OR git-doc-2.12.3-27.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_109-default-3-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_29-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND apache2-mod_nss-1.0.14-18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • xen-4.9.4_20-3.91.1 is installed
  • OR xen-doc-html-4.9.4_20-3.91.1 is installed
  • OR xen-libs-4.9.4_20-3.91.1 is installed
  • OR xen-libs-32bit-4.9.4_20-3.91.1 is installed
  • OR xen-tools-4.9.4_20-3.91.1 is installed
  • OR xen-tools-domU-4.9.4_20-3.91.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.28.1-2.50 is installed
  • OR libwebkit2gtk-4_0-37-2.28.1-2.50 is installed
  • OR libwebkit2gtk3-lang-2.28.1-2.50 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.28.1-2.50 is installed
  • OR typelib-1_0-WebKit2-4_0-2.28.1-2.50 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.28.1-2.50 is installed
  • OR webkit2gtk3-2.28.1-2.50 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • wicked-0.6.60-38.27 is installed
  • OR wicked-service-0.6.60-38.27 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libpython3_6m1_0-3.6.8-6.6 is installed
  • OR python36-3.6.8-6.6 is installed
  • OR python36-base-3.6.8-6.6 is installed
  • OR python36-curses-3.6.8-6.6 is installed
  • OR python36-dbm-3.6.8-6.6 is installed
  • OR python36-devel-3.6.8-6.6 is installed
  • OR python36-doc-3.6.8-6.6 is installed
  • OR python36-idle-3.6.8-6.6 is installed
  • OR python36-testsuite-3.6.8-6.6 is installed
  • OR python36-tk-3.6.8-6.6 is installed
  • OR python36-tools-3.6.8-6.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND apache-commons-httpclient-3.1-4 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND clamav-0.100.3-33.26 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • glib2-2.48.2-12.15 is installed
  • OR glib2-lang-2.48.2-12.15 is installed
  • OR glib2-tools-2.48.2-12.15 is installed
  • OR libgio-2_0-0-2.48.2-12.15 is installed
  • OR libgio-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libglib-2_0-0-2.48.2-12.15 is installed
  • OR libglib-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgmodule-2_0-0-2.48.2-12.15 is installed
  • OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgobject-2_0-0-2.48.2-12.15 is installed
  • OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgthread-2_0-0-2.48.2-12.15 is installed
  • OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libpython3_4m1_0-3.4.6-25.29 is installed
  • OR python3-3.4.6-25.29 is installed
  • OR python3-base-3.4.6-25.29 is installed
  • OR python3-curses-3.4.6-25.29 is installed
    • BACK