OVAL Reference oval:org.opensuse.security:def:58227

Oval Definition:

oval:org.opensuse.security:def:58227

Revision Date:	2020-12-01	Version:	1
Title:	Security update for qemu (Important)
Description:	This update for qemu fixes the following issues: Security issues fixed: - CVE-2019-6778: Fixed a heap buffer overflow issue in the SLiRP networking implementation (bsc#1123156). - CVE-2018-16872: Fixed a host security vulnerability related to handling symlinks in usb-mtp (bsc#1119493). - CVE-2018-19489: Fixed a denial of service vulnerability in virtfs (bsc#1117275). - CVE-2018-19364: Fixed a use-after-free if the virtfs interface resulting in a denial of service (bsc#1116717). - CVE-2018-7858: Fixed a denial of service which could occur while updating the VGA display, after guest has adjusted the display dimensions (bsc#1084604). - CVE-2017-13673: Fixed a denial of service in the cpu_physical_memory_snapshot_get_dirty function. - CVE-2017-13672: Fixed a denial of service via vectors involving display update. Non-security issues fixed: - Fixed bad guest time after migration (bsc#1113231).
Family:	unix	Class:	patch
Status:		Reference(s):	1005776 1006867 1009434 1011377 1011390 1011395 1011398 1011404 1011406 1011411 1011417 1012382 1012829 1015400 1018088 1020353 1021868 1027054 1027519 1029497 1031717 1034503 1035432 1042286 1043441 1045330 1058425 1062840 1065600 1065615 1066223 1067118 1068032 1068569 1069135 1071306 1071892 1072363 1072689 1072739 1072865 1073401 1074198 1074426 1075087 1076282 1077285 1077513 1077560 1077779 1078583 1078609 1078672 1078673 1078787 1079029 1079038 1079384 1079989 1080014 1080263 1080344 1080360 1080364 1080384 1080464 1080774 1080809 1080813 1080851 1081134 1081431 1081491 1081498 1081500 1081512 1081671 1082223 1082299 1082478 1082795 1082864 1082897 1082979 1082993 1083494 1083548 1084604 1084610 1085053 1085107 1085224 1085239 1086825 1091107 1092098 1092548 1103098 1103276 1113231 1116717 1117275 1119493 1123156 1129271 1129272 1138954 1144327 1144379 1149792 1150584 1151021 1152711 1153471 1155789 1155952 1157860 1158763 1164860 1168930 1169605 1169786 1169936 1169947 1170302 1170741 1170939 1173580 1174117 1174628 1178038 863764 943216 956365 966328 975772 981252 983145 988028 992038 992606 CVE-2015-5219 CVE-2016-10251 CVE-2016-7426 CVE-2016-7427 CVE-2016-7428 CVE-2016-7429 CVE-2016-7431 CVE-2016-7433 CVE-2016-7434 CVE-2016-9310 CVE-2016-9311 CVE-2016-9583 CVE-2016-9600 CVE-2017-13166 CVE-2017-13672 CVE-2017-13673 CVE-2017-14482 CVE-2017-15951 CVE-2017-16644 CVE-2017-16912 CVE-2017-16913 CVE-2017-17975 CVE-2017-18208 CVE-2017-5498 CVE-2017-6850 CVE-2017-6967 CVE-2018-1000026 CVE-2018-1000301 CVE-2018-1068 CVE-2018-16872 CVE-2018-19364 CVE-2018-19489 CVE-2018-3646 CVE-2018-5150 CVE-2018-5154 CVE-2018-5155 CVE-2018-5157 CVE-2018-5158 CVE-2018-5159 CVE-2018-5168 CVE-2018-5174 CVE-2018-5178 CVE-2018-5183 CVE-2018-5391 CVE-2018-7858 CVE-2018-8087 CVE-2019-14835 CVE-2019-18900 CVE-2019-5418 CVE-2019-5419 CVE-2019-6778 CVE-2020-11008 CVE-2020-13935 CVE-2020-14344 CVE-2020-1935 CVE-2020-4044 CVE-2020-5260 SUSE-SU-2016:3195-1 SUSE-SU-2017:0953-1 SUSE-SU-2017:2529-1 SUSE-SU-2018:0785-1 SUSE-SU-2018:2410-2 SUSE-SU-2019:0489-1 SUSE-SU-2019:0915-1 SUSE-SU-2020:1295-1 SUSE-SU-2020:1943-1 SUSE-SU-2020:2196-1 SUSE-SU-2020:2611-1 SUSE-SU-2020:3367-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information unzip-6.00-lp150.2 is installed OR unzip-doc-6.00-lp150.2 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information exempi-2.4.5-lp151.3.3 is installed OR exempi-tools-2.4.5-lp151.3.3 is installed OR libexempi-devel-2.4.5-lp151.3.3 is installed OR libexempi3-2.4.5-lp151.3.3 is installed OR libexempi3-32bit-2.4.5-lp151.3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information ntp-4.2.8p9-55 is installed OR ntp-doc-4.2.8p9-55 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information xen-4.7.6_04-43.39 is installed OR xen-doc-html-4.7.6_04-43.39 is installed OR xen-libs-4.7.6_04-43.39 is installed OR xen-libs-32bit-4.7.6_04-43.39 is installed OR xen-tools-4.7.6_04-43.39 is installed OR xen-tools-domU-4.7.6_04-43.39 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_85-default-5-2 is installed OR kgraft-patch-SLE12-SP2_Update_23-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_109-default-5-2 is installed OR kgraft-patch-SLE12-SP2_Update_29-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libQt5Concurrent5-5.6.2-5 is installed OR libQt5Core5-5.6.2-5 is installed OR libQt5DBus5-5.6.2-5 is installed OR libQt5Gui5-5.6.2-5 is installed OR libQt5Network5-5.6.2-5 is installed OR libQt5OpenGL5-5.6.2-5 is installed OR libQt5PrintSupport5-5.6.2-5 is installed OR libQt5Sql5-5.6.2-5 is installed OR libQt5Sql5-mysql-5.6.2-5 is installed OR libQt5Sql5-postgresql-5.6.2-5 is installed OR libQt5Sql5-sqlite-5.6.2-5 is installed OR libQt5Sql5-unixODBC-5.6.2-5 is installed OR libQt5Test5-5.6.2-5 is installed OR libQt5Widgets5-5.6.2-5 is installed OR libQt5Xml5-5.6.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND mailman-2.1.17-3.23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information freeradius-server-3.0.15-2.14 is installed OR freeradius-server-doc-3.0.15-2.14 is installed OR freeradius-server-krb5-3.0.15-2.14 is installed OR freeradius-server-ldap-3.0.15-2.14 is installed OR freeradius-server-libs-3.0.15-2.14 is installed OR freeradius-server-mysql-3.0.15-2.14 is installed OR freeradius-server-perl-3.0.15-2.14 is installed OR freeradius-server-postgresql-3.0.15-2.14 is installed OR freeradius-server-python-3.0.15-2.14 is installed OR freeradius-server-sqlite-3.0.15-2.14 is installed OR freeradius-server-utils-3.0.15-2.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libpcap-1.8.1-10.3 is installed OR libpcap1-1.8.1-10.3 is installed OR tcpdump-4.9.2-14.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libjavascriptcoregtk-4_0-18-2.22.4-2.29 is installed OR libwebkit2gtk-4_0-37-2.22.4-2.29 is installed OR typelib-1_0-JavaScriptCore-4_0-2.22.4-2.29 is installed OR typelib-1_0-WebKit2-4_0-2.22.4-2.29 is installed OR webkit2gtk-4_0-injected-bundles-2.22.4-2.29 is installed OR webkit2gtk3-2.22.4-2.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information kernel-default-4.12.14-94.41 is installed OR kernel-default-base-4.12.14-94.41 is installed OR kernel-default-devel-4.12.14-94.41 is installed OR kernel-default-man-4.12.14-94.41 is installed OR kernel-devel-4.12.14-94.41 is installed OR kernel-macros-4.12.14-94.41 is installed OR kernel-source-4.12.14-94.41 is installed OR kernel-syms-4.12.14-94.41 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information qemu-2.6.2-41.49 is installed OR qemu-block-curl-2.6.2-41.49 is installed OR qemu-block-rbd-2.6.2-41.49 is installed OR qemu-block-ssh-2.6.2-41.49 is installed OR qemu-guest-agent-2.6.2-41.49 is installed OR qemu-ipxe-1.0.0-41.49 is installed OR qemu-kvm-2.6.2-41.49 is installed OR qemu-lang-2.6.2-41.49 is installed OR qemu-s390-2.6.2-41.49 is installed OR qemu-seabios-1.9.1-41.49 is installed OR qemu-sgabios-8-41.49 is installed OR qemu-tools-2.6.2-41.49 is installed OR qemu-vgabios-1.9.1-41.49 is installed OR qemu-x86-2.6.2-41.49 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-60.8.0-109.83 is installed OR MozillaFirefox-translations-common-60.8.0-109.83 is installed OR libfreebl3-3.44.1-58.28 is installed OR libfreebl3-32bit-3.44.1-58.28 is installed OR libfreebl3-hmac-3.44.1-58.28 is installed OR libfreebl3-hmac-32bit-3.44.1-58.28 is installed OR libsoftokn3-3.44.1-58.28 is installed OR libsoftokn3-32bit-3.44.1-58.28 is installed OR libsoftokn3-hmac-3.44.1-58.28 is installed OR libsoftokn3-hmac-32bit-3.44.1-58.28 is installed OR mozilla-nss-3.44.1-58.28 is installed OR mozilla-nss-32bit-3.44.1-58.28 is installed OR mozilla-nss-certs-3.44.1-58.28 is installed OR mozilla-nss-certs-32bit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-32bit-3.44.1-58.28 is installed OR mozilla-nss-tools-3.44.1-58.28 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information postgresql96-9.6.15-3.29 is installed OR postgresql96-contrib-9.6.15-3.29 is installed OR postgresql96-docs-9.6.15-3.29 is installed OR postgresql96-libs-9.6.15-3.29 is installed OR postgresql96-plperl-9.6.15-3.29 is installed OR postgresql96-plpython-9.6.15-3.29 is installed OR postgresql96-pltcl-9.6.15-3.29 is installed OR postgresql96-server-9.6.15-3.29 is installed

BACK