Oval Definition:	oval:org.opensuse.security:def:57598
Revision Date: 2020-12-01 Version: 1 Title: Security update for kvm (Important) Description: This update for kvm fixes the following issues: Security issues fixed: - CVE-2015-7512: The receive packet size is now checked in the emulated pcnet driver, eliminating buffer overflow and potential security issue by malicious guest systems. (bsc#957162) - CVE-2015-8345: A infinite loop in processing command block list was fixed that could be exploit by malicious guest systems (bsc#956829). Other bugs fixed: - To assist users past the migration incompatibility discussed in bsc#950590 (restore migration compatibility with SLE11 SP3 and SLE12, at the unfortunate expense to prior SLE11 SP4 kvm release compatability when a virtio-net device is used), print a message which references the support document TID 7017048. See https://www.suse.com/support/kb/doc.php?id=7017048 - Fix cases of wrong clock values in kvmclock timekeeping (bsc#947164 and bsc#953187) - Enforce pxe rom sizes to ensure migration compatibility. (bsc#950590) - Fix kvm live migration fails between sles11 sp3 and sp4 (bsc#950590) Family: unix Class: patch Status: Reference(s): 1027593 1040662 1045490 1047044 1047898 1050120 1050606 1051446 1052468 1052550 1052710 1052720 1052731 1052732 1055065 1055323 1055434 1055855 1058640 1059751 1060427 1063008 1068386 1069708 1073748 1074123 1074171 1074969 1074973 1074975 1075737 1075738 1075739 1075748 1084604 1100973 1109160 1109847 1113231 1116717 1117275 1118367 1118368 1119493 1122191 1123156 1142214 1153108 1156321 1156331 1157770 1160903 1160904 1160905 1160906 1171740 947164 950590 953187 956829 957162 CVE-2011-3630 CVE-2011-3631 CVE-2011-3632 CVE-2012-6706 CVE-2014-3158 CVE-2014-3430 CVE-2014-8169 CVE-2014-9087 CVE-2015-7512 CVE-2015-8345 CVE-2016-4574 CVE-2016-4579 CVE-2017-10800 CVE-2017-11141 CVE-2017-11529 CVE-2017-11644 CVE-2017-11724 CVE-2017-12434 CVE-2017-12564 CVE-2017-12636 CVE-2017-12667 CVE-2017-12670 CVE-2017-12672 CVE-2017-12675 CVE-2017-13060 CVE-2017-13146 CVE-2017-13648 CVE-2017-13658 CVE-2017-13672 CVE-2017-13673 CVE-2017-14326 CVE-2017-14533 CVE-2017-14746 CVE-2017-15275 CVE-2017-16939 CVE-2017-17881 CVE-2017-17935 CVE-2017-18022 CVE-2018-14647 CVE-2018-16872 CVE-2018-19364 CVE-2018-19489 CVE-2018-20856 CVE-2018-5246 CVE-2018-5247 CVE-2018-5334 CVE-2018-5335 CVE-2018-5336 CVE-2018-5741 CVE-2018-7858 CVE-2018-8007 CVE-2019-10220 CVE-2019-13272 CVE-2019-18902 CVE-2019-18903 CVE-2019-5010 CVE-2019-6778 CVE-2020-7216 CVE-2020-7217 CVE-2020-8616 CVE-2020-8617 SUSE-SU-2016:0010-1 SUSE-SU-2017:1716-1 SUSE-SU-2017:3104-1 SUSE-SU-2017:3338-1 SUSE-SU-2018:0130-1 SUSE-SU-2018:0191-1 SUSE-SU-2018:2578-1 SUSE-SU-2019:0482-1 SUSE-SU-2019:0489-1 SUSE-SU-2019:3261-1 SUSE-SU-2020:0358-1 SUSE-SU-2020:1914-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.1 NonFree SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND libdmx1-1.1.3-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libecpg6-10.10-lp151.2.6 is installed OR libecpg6-32bit-10.10-lp151.2.6 is installed OR libpq5-10.10-lp151.2.6 is installed OR libpq5-32bit-10.10-lp151.2.6 is installed OR postgresql10-10.10-lp151.2.6 is installed OR postgresql10-contrib-10.10-lp151.2.6 is installed OR postgresql10-devel-10.10-lp151.2.6 is installed OR postgresql10-docs-10.10-lp151.2.6 is installed OR postgresql10-plperl-10.10-lp151.2.6 is installed OR postgresql10-plpython-10.10-lp151.2.6 is installed OR postgresql10-pltcl-10.10-lp151.2.6 is installed OR postgresql10-server-10.10-lp151.2.6 is installed OR postgresql10-test-10.10-lp151.2.6 is installed Definition Synopsis openSUSE Leap 15.1 NonFree is installed AND opera-68.0.3618.63-lp151.2.15 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND kvm-1.4.2-35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_63-default-2-2 is installed OR kgraft-patch-3_12_74-60_64_63-xen-2-2 is installed OR kgraft-patch-SLE12-SP1_Update_22-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND autofs-5.0.9-21 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information openssh-7.2p2-74.25 is installed OR openssh-askpass-gnome-7.2p2-74.25 is installed OR openssh-fips-7.2p2-74.25 is installed OR openssh-helpers-7.2p2-74.25 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-30.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_114-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_30-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information crash-7.1.8-3 is installed OR crash-kmp-default-7.1.8_k4.4.73_5-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information ceph-12.2.12+git.1587570958.35d78d0243-2.45 is installed OR ceph-common-12.2.12+git.1587570958.35d78d0243-2.45 is installed OR libcephfs2-12.2.12+git.1587570958.35d78d0243-2.45 is installed OR librados2-12.2.12+git.1587570958.35d78d0243-2.45 is installed OR libradosstriper1-12.2.12+git.1587570958.35d78d0243-2.45 is installed OR librbd1-12.2.12+git.1587570958.35d78d0243-2.45 is installed OR librgw2-12.2.12+git.1587570958.35d78d0243-2.45 is installed OR python-cephfs-12.2.12+git.1587570958.35d78d0243-2.45 is installed OR python-rados-12.2.12+git.1587570958.35d78d0243-2.45 is installed OR python-rbd-12.2.12+git.1587570958.35d78d0243-2.45 is installed OR python-rgw-12.2.12+git.1587570958.35d78d0243-2.45 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND permissions-2015.09.28.1626-17.27 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libsolv-0.6.36-2.16 is installed OR libsolv-tools-0.6.36-2.16 is installed OR libzypp-16.20.0-2.39 is installed OR perl-solv-0.6.36-2.16 is installed OR python-solv-0.6.36-2.16 is installed OR zypper-1.13.51-21.26 is installed OR zypper-log-1.13.51-21.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information bash-4.3-83.23 is installed OR bash-doc-4.3-83.23 is installed OR libreadline6-6.3-83.23 is installed OR libreadline6-32bit-6.3-83.23 is installed OR readline-doc-6.3-83.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information jakarta-commons-fileupload-1.1.1-120 is installed OR jakarta-commons-fileupload-javadoc-1.1.1-120 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND couchdb-1.7.2-2.8 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND cobbler-2.6.6-49.9 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-rack-1.6.11-3.3 is installed OR rubygem-rack-1.6.11-3.3 is installed
BACK