OVAL Reference oval:org.opensuse.security:def:5827

Oval Definition:

oval:org.opensuse.security:def:5827

Revision Date:	2021-09-02	Version:	1
Title:	Security update for xen (Important)
Description:	This update for xen fixes the following issues: Update to Xen 4.13.3 general bug fix release (bsc#1027519). Security issues fixed: - CVE-2021-28693: xen/arm: Boot modules are not scrubbed (bsc#1186428) - CVE-2021-28692: xen: inappropriate x86 IOMMU timeout detection / handling (bsc#1186429) - CVE-2021-0089: xen: Speculative Code Store Bypass (bsc#1186433) - CVE-2021-28690: xen: x86: TSX Async Abort protections not restored after S3 (bsc#1186434) - CVE-2021-28694,CVE-2021-28695,CVE-2021-28696: IOMMU page mapping issues on x86 (XSA-378)(bsc#1189373). - CVE-2021-28697: grant table v2 status pages may remain accessible after de-allocation (XSA-379)(bsc#1189376). - CVE-2021-28698: long running loops in grant table handling (XSA-380)(bsc#1189378). - CVE-2021-28699: inadequate grant-v2 status frames array bounds check (XSA-382)(bsc#1189380). - CVE-2021-28700: No memory limit for dom0less domUs (XSA-383)(bsc#1189381). Other issues fixed: - Fixed 'Panic on CPU 0: IO-APIC + timer doesn't work!' (bsc#1180491) - Fixed an issue with xencommons, where file format expecations by fillup did not allign (bsc#1185682) - Fixed shell macro expansion in the spec file, so that ExecStart= in xendomains-wait-disks.service is created correctly (bsc#1183877) - Upstream bug fixes (bsc#1027519) - Fixed Xen SLES11SP4 guest hangs on cluster (bsc#1188050). - xl monitoring process exits during xl save -p\|-c keep the monitoring process running to cleanup the domU during shutdown (bsc#1176189). - Dom0 hangs when pinning CPUs for dom0 with HVM guest (bsc#1179246). - Prevent superpage allocation in the LAPIC and ACPI_INFO range (bsc#1189882).
Family:	unix	Class:	patch
Status:		Reference(s):	1027519 1137251 1176189 1179148 1179246 1180491 1181989 1183877 1185682 1186428 1186429 1186433 1186434 1188050 1189373 1189376 1189378 1189380 1189381 1189882 CVE-2009-0163 CVE-2009-2820 CVE-2009-3553 CVE-2010-0393 CVE-2010-0540 CVE-2010-0542 CVE-2010-1748 CVE-2010-2941 CVE-2010-4530 CVE-2011-1000 CVE-2012-2737 CVE-2012-2738 CVE-2012-4024 CVE-2012-4025 CVE-2012-5519 CVE-2012-6094 CVE-2013-1431 CVE-2013-1988 CVE-2013-1992 CVE-2013-2002 CVE-2013-2005 CVE-2014-0139 CVE-2014-2653 CVE-2014-2856 CVE-2014-3158 CVE-2014-3537 CVE-2014-5029 CVE-2014-5030 CVE-2014-5031 CVE-2014-6272 CVE-2014-9679 CVE-2015-1158 CVE-2015-1159 CVE-2015-5352 CVE-2015-5600 CVE-2015-6563 CVE-2015-6564 CVE-2015-7236 CVE-2015-8325 CVE-2016-0777 CVE-2016-0778 CVE-2016-10009 CVE-2016-10010 CVE-2016-10011 CVE-2016-10012 CVE-2016-1908 CVE-2016-3115 CVE-2016-6210 CVE-2016-6515 CVE-2016-8858 CVE-2017-0381 CVE-2021-0089 CVE-2021-28690 CVE-2021-28692 CVE-2021-28693 CVE-2021-28694 CVE-2021-28695 CVE-2021-28696 CVE-2021-28697 CVE-2021-28698 CVE-2021-28699 CVE-2021-28700
Platform(s):	openSUSE 13.1 openSUSE 13.1 NonFree openSUSE 13.2 SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Real Time Extension 12 SP1 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND python-setuptools-1.1.7-7.1 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 is installed AND kernel-zfcpdump-3.12.55-52.45 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND Package Information krb5-mini-1.12.1-22 is installed OR krb5-mini-devel-1.12.1-22 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND kernel-zfcpdump-4.4.21-84 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND python-pycrypto-2.6.1-10.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information libXRes1-1.0.7-3 is installed OR libXRes1-32bit-1.0.7-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND ppp-2.4.7-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 is installed AND Package Information apache2-2.4.10-14.17.1 is installed OR apache2-doc-2.4.10-14.17.1 is installed OR apache2-example-pages-2.4.10-14.17.1 is installed OR apache2-prefork-2.4.10-14.17.1 is installed OR apache2-utils-2.4.10-14.17.1 is installed OR apache2-worker-2.4.10-14.17.1 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 SP1 is installed AND sudo-1.8.10p3-2.16.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 is installed AND haproxy-1.5.4-2.4 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP1 is installed AND Package Information ctdb-4.2.4-26 is installed OR samba-4.2.4-26 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND Package Information cluster-md-kmp-default-4.4.103-92.59 is installed OR cluster-network-kmp-default-4.4.103-92.59 is installed OR dlm-kmp-default-4.4.103-92.59 is installed OR gfs2-kmp-default-4.4.103-92.59 is installed OR kernel-default-4.4.103-92.59 is installed OR ocfs2-kmp-default-4.4.103-92.59 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information ctdb-4.6.7+git.51.327af8d0a11-3.12 is installed OR samba-4.6.7+git.51.327af8d0a11-3.12 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP4 is installed AND Package Information cluster-md-kmp-default-4.12.14-94.41 is installed OR dlm-kmp-default-4.12.14-94.41 is installed OR gfs2-kmp-default-4.12.14-94.41 is installed OR ocfs2-kmp-default-4.12.14-94.41 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP5 is installed AND haproxy-1.6.11-10 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_39-47-default-1-2 is installed OR kgraft-patch-3_12_39-47-xen-1-2 is installed OR kgraft-patch-SLE12_Update_4-1-2 is installed
Definition Synopsis
SUSE Linux Enterprise Real Time Extension 12 SP1 is installed AND Package Information kernel-compute-3.12.69-60.30.1 is installed OR kernel-compute-base-3.12.69-60.30.1 is installed OR kernel-compute-devel-3.12.69-60.30.1 is installed OR kernel-compute_debug-3.12.69-60.30.1 is installed OR kernel-compute_debug-devel-3.12.69-60.30.1 is installed OR kernel-devel-rt-3.12.69-60.30.1 is installed OR kernel-rt-3.12.69-60.30.1 is installed OR kernel-rt-base-3.12.69-60.30.1 is installed OR kernel-rt-devel-3.12.69-60.30.1 is installed OR kernel-rt_debug-3.12.69-60.30.1 is installed OR kernel-rt_debug-devel-3.12.69-60.30.1 is installed OR kernel-source-rt-3.12.69-60.30.1 is installed OR kernel-syms-rt-3.12.69-60.30.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 is installed AND wireshark-1.0.5-1.26.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information PolicyKit-0.9-14.39.1 is installed OR PolicyKit-32bit-0.9-14.39.1 is installed OR PolicyKit-doc-0.9-14.39.2 is installed OR PolicyKit-x86-0.9-14.39.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2-LTSS is installed AND Package Information glibc-2.11.3-17.45.66.1 is installed OR glibc-32bit-2.11.3-17.45.66.1 is installed OR glibc-devel-2.11.3-17.45.66.1 is installed OR glibc-devel-32bit-2.11.3-17.45.66.1 is installed OR glibc-html-2.11.3-17.45.66.1 is installed OR glibc-i18ndata-2.11.3-17.45.66.1 is installed OR glibc-info-2.11.3-17.45.66.1 is installed OR glibc-locale-2.11.3-17.45.66.1 is installed OR glibc-locale-32bit-2.11.3-17.45.66.1 is installed OR glibc-profile-2.11.3-17.45.66.1 is installed OR glibc-profile-32bit-2.11.3-17.45.66.1 is installed OR nscd-2.11.3-17.45.66.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND MozillaFirefox-24.4.0esr-0.8.1 is installed OR MozillaFirefox-branding-SLED-24-0.7.23 is installed OR MozillaFirefox-translations-24.4.0esr-0.8.1 is installed OR mozilla-nspr-4.10.4-0.3.1 is installed OR mozilla-nspr-32bit-4.10.4-0.3.1 is installed OR mozilla-nspr-x86-4.10.4-0.3.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND MozillaFirefox-24.4.0esr-0.8.1 is installed OR MozillaFirefox-branding-SLED-24-0.7.23 is installed OR MozillaFirefox-translations-24.4.0esr-0.8.1 is installed OR mozilla-nspr-4.10.4-0.3.1 is installed OR mozilla-nspr-32bit-4.10.4-0.3.1 is installed OR mozilla-nspr-x86-4.10.4-0.3.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information PolicyKit-0.9-14.41.1 is installed OR PolicyKit-32bit-0.9-14.41.1 is installed OR PolicyKit-doc-0.9-14.39.2 is installed OR PolicyKit-x86-0.9-14.41.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information apache2-2.2.12-1.51.52.1 is installed OR apache2-doc-2.2.12-1.51.52.1 is installed OR apache2-example-pages-2.2.12-1.51.52.1 is installed OR apache2-prefork-2.2.12-1.51.52.1 is installed OR apache2-utils-2.2.12-1.51.52.1 is installed OR apache2-worker-2.2.12-1.51.52.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information apache2-2.4.10-6 is installed OR apache2-doc-2.4.10-6 is installed OR apache2-example-pages-2.4.10-6 is installed OR apache2-prefork-2.4.10-6 is installed OR apache2-utils-2.4.10-6 is installed OR apache2-worker-2.4.10-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND autofs-5.0.9-8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-36 is installed OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libssh2-1-1.4.3-19 is installed OR libssh2-1-32bit-1.4.3-19 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND Package Information kernel-default-3.12.74-60.64.118 is installed OR kernel-default-base-3.12.74-60.64.118 is installed OR kernel-default-devel-3.12.74-60.64.118 is installed OR kernel-devel-3.12.74-60.64.118 is installed OR kernel-macros-3.12.74-60.64.118 is installed OR kernel-source-3.12.74-60.64.118 is installed OR kernel-syms-3.12.74-60.64.118 is installed OR kernel-xen-3.12.74-60.64.118 is installed OR kernel-xen-base-3.12.74-60.64.118 is installed OR kernel-xen-devel-3.12.74-60.64.118 is installed OR kgraft-patch-3_12_74-60_64_118-default-1-2.3 is installed OR kgraft-patch-3_12_74-60_64_118-xen-1-2.3 is installed OR kgraft-patch-SLE12-SP1_Update_35-1-2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND emacs-nox-22.3-4.42.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information apache2-2.2.12-1.51.52.1 is installed OR apache2-devel-2.2.12-1.51.52.1 is installed OR apache2-doc-2.2.12-1.51.52.1 is installed OR apache2-example-pages-2.2.12-1.51.52.1 is installed OR apache2-prefork-2.2.12-1.51.52.1 is installed OR apache2-utils-2.2.12-1.51.52.1 is installed OR apache2-worker-2.2.12-1.51.52.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND aaa_base-malloccheck-13.2+git20140911.61c1681-1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND apache2-devel-2.4.16-5 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information e2fsprogs-devel-1.42.11-7 is installed OR libcom_err-devel-1.42.11-7 is installed OR libext2fs-devel-1.42.11-7 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND pam-devel-1.1.8-24.14 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND argyllcms-1.6.3-1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information ImageMagick-6.8.8.1-8 is installed OR libMagick++-6_Q16-3-6.8.8.1-8 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-8 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND argyllcms-1.6.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information ImageMagick-6.8.8.1-70 is installed OR libMagick++-6_Q16-3-6.8.8.1-70 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-70 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND cyrus-sasl-digestmd5-32bit-2.1.26-8.7 is installed

BACK