Oval Definition:	oval:org.opensuse.security:def:57845
Revision Date: 2020-12-29 Version: 1 Title: Security update for xen (Moderate) Description: This update for xen fixes the following issues: - CVE-2020-29480: Fixed an issue which could have allowed leak of non-sensitive data to administrator guests (bsc#117949 XSA-115). - CVE-2020-29481: Fixed an issue which could have allowd to new domains to inherit existing node permissions (bsc#1179498 XSA-322). - CVE-2020-29483: Fixed an issue where guests could disturb domain cleanup (bsc#1179502 XSA-325). - CVE-2020-29484: Fixed an issue where guests could crash xenstored via watchs (bsc#1179501 XSA-324). - CVE-2020-29566: Fixed an undue recursion in x86 HVM context switch code (bsc#1179506 XSA-348). - CVE-2020-29570: Fixed an issue where FIFO event channels control block related ordering (bsc#1179514 XSA-358). - CVE-2020-29571: Fixed an issue where FIFO event channels control structure ordering (bsc#1179516 XSA-359). - CVE-2020-29130: Fixed an out-of-bounds access while processing ARP packets (bsc#1179477). - Fixed an issue where dump-core shows missing nr_pages during core (bsc#1176782). - Multiple other bugs (bsc#1027519) Family: unix Class: patch Status: Reference(s): 1006984 1006989 1027519 1037811 1047536 1083125 1085447 1090368 1090646 1090869 1091396 1091836 1097356 1097410 1097560 1097824 1103809 1103810 1104076 1105010 1106873 1107832 1110233 1115339 1116574 1118319 1118320 1119069 1119105 1120489 1145092 1170771 1172405 1176782 1179477 1179496 1179498 1179501 1179502 1179506 1179514 1179516 814241 879138 964336 977043 CVE-2008-1420 CVE-2009-0945 CVE-2009-3379 CVE-2010-2074 CVE-2011-3193 CVE-2011-3922 CVE-2012-0444 CVE-2012-4929 CVE-2012-6093 CVE-2013-0254 CVE-2013-4549 CVE-2014-0190 CVE-2014-3566 CVE-2015-0295 CVE-2015-1858 CVE-2015-1859 CVE-2015-1860 CVE-2017-13166 CVE-2018-0495 CVE-2018-1087 CVE-2018-12384 CVE-2018-12404 CVE-2018-12405 CVE-2018-12470 CVE-2018-12471 CVE-2018-12472 CVE-2018-13785 CVE-2018-14633 CVE-2018-15473 CVE-2018-17182 CVE-2018-17466 CVE-2018-18492 CVE-2018-18493 CVE-2018-18494 CVE-2018-18498 CVE-2018-20217 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3214 CVE-2018-5848 CVE-2018-8781 CVE-2018-8897 CVE-2018-9568 CVE-2019-10208 CVE-2020-12243 CVE-2020-29130 CVE-2020-29480 CVE-2020-29481 CVE-2020-29483 CVE-2020-29484 CVE-2020-29566 CVE-2020-29570 CVE-2020-29571 CVE-2020-8022 SUSE-SU-2017:2744-1 SUSE-SU-2018:1530-1 SUSE-SU-2018:1661-1 SUSE-SU-2018:2898-2 SUSE-SU-2018:3910-1 SUSE-SU-2018:3933-1 SUSE-SU-2018:4236-1 SUSE-SU-2019:0111-1 SUSE-SU-2019:2158-1 SUSE-SU-2020:1193-1 SUSE-SU-2020:1791-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information libopenssl-1_1-devel-1.1.0i-lp150.3.22 is installed OR libopenssl1_1-1.1.0i-lp150.3.22 is installed OR libopenssl1_1-hmac-1.1.0i-lp150.3.22 is installed OR openssl-1_1-1.1.0i-lp150.3.22 is installed OR openssl-1_1-doc-1.1.0i-lp150.3.22 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information graphviz-2.40.1-lp151.6.3 is installed OR graphviz-addons-2.40.1-lp151.6.3 is installed OR graphviz-devel-2.40.1-lp151.6.3 is installed OR graphviz-doc-2.40.1-lp151.6.3 is installed OR graphviz-gd-2.40.1-lp151.6.3 is installed OR graphviz-gnome-2.40.1-lp151.6.3 is installed OR graphviz-guile-2.40.1-lp151.6.3 is installed OR graphviz-gvedit-2.40.1-lp151.6.3 is installed OR graphviz-java-2.40.1-lp151.6.3 is installed OR graphviz-lua-2.40.1-lp151.6.3 is installed OR graphviz-perl-2.40.1-lp151.6.3 is installed OR graphviz-php-2.40.1-lp151.6.3 is installed OR graphviz-plugins-core-2.40.1-lp151.6.3 is installed OR graphviz-python-2.40.1-lp151.6.3 is installed OR graphviz-ruby-2.40.1-lp151.6.3 is installed OR graphviz-smyrna-2.40.1-lp151.6.3 is installed OR graphviz-tcl-2.40.1-lp151.6.3 is installed OR libgraphviz6-2.40.1-lp151.6.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_93-default-7-2 is installed OR kgraft-patch-3_12_74-60_64_93-xen-7-2 is installed OR kgraft-patch-SLE12-SP1_Update_28-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libqt4-4.8.6-7 is installed OR libqt4-32bit-4.8.6-7 is installed OR libqt4-qt3support-4.8.6-7 is installed OR libqt4-qt3support-32bit-4.8.6-7 is installed OR libqt4-sql-4.8.6-7 is installed OR libqt4-sql-32bit-4.8.6-7 is installed OR libqt4-sql-mysql-4.8.6-7 is installed OR libqt4-sql-sqlite-4.8.6-7 is installed OR libqt4-x11-4.8.6-7 is installed OR libqt4-x11-32bit-4.8.6-7 is installed OR qt4-x11-tools-4.8.6-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information res-signingkeys-3.0.37-52.23 is installed OR smt-3.0.37-52.23 is installed OR smt-support-3.0.37-52.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information xen-4.7.5_04-43.33 is installed OR xen-doc-html-4.7.5_04-43.33 is installed OR xen-libs-4.7.5_04-43.33 is installed OR xen-libs-32bit-4.7.5_04-43.33 is installed OR xen-tools-4.7.5_04-43.33 is installed OR xen-tools-domU-4.7.5_04-43.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_64-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_18-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND clamav-0.99.2-32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information xen-4.9.4_16-3.80.1 is installed OR xen-doc-html-4.9.4_16-3.80.1 is installed OR xen-libs-4.9.4_16-3.80.1 is installed OR xen-libs-32bit-4.9.4_16-3.80.1 is installed OR xen-tools-4.9.4_16-3.80.1 is installed OR xen-tools-domU-4.9.4_16-3.80.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information bzip2-1.0.6-30.5 is installed OR bzip2-doc-1.0.6-30.5 is installed OR libbz2-1-1.0.6-30.5 is installed OR libbz2-1-32bit-1.0.6-30.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libopenjp2-7-2.1.0-4.12 is installed OR openjpeg2-2.1.0-4.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information gvim-7.4.326-16 is installed OR vim-7.4.326-16 is installed OR vim-data-7.4.326-16 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND ucode-intel-20180425-13.20 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND cobbler-2.6.6-49.14 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information glibc-2.22-62.22 is installed OR glibc-32bit-2.22-62.22 is installed OR glibc-devel-2.22-62.22 is installed OR glibc-devel-32bit-2.22-62.22 is installed OR glibc-html-2.22-62.22 is installed OR glibc-i18ndata-2.22-62.22 is installed OR glibc-info-2.22-62.22 is installed OR glibc-locale-2.22-62.22 is installed OR glibc-locale-32bit-2.22-62.22 is installed OR glibc-profile-2.22-62.22 is installed OR glibc-profile-32bit-2.22-62.22 is installed OR nscd-2.22-62.22 is installed
BACK