Oval Definition:oval:org.opensuse.security:def:58389
Revision Date:2020-12-01Version:1
Title:Security update for ovmf (Moderate)
Description:

This update for ovmf fixes the following issues:

Security issues fixed:

- CVE-2018-0739: Update openssl to 1.0.2o to limit ASN.1 constructed types recursive definition depth (bsc#1094291). - CVE-2019-14563: Fixed a memory corruption caused by insufficient numeric truncation (bsc#1163959). - CVE-2019-14559: Fixed a remotely exploitable memory leak in the ARP handling code (bsc#1163927). - CVE-2019-14575: Fixed an insufficient signature check in the DxeImageVerificationHandler (bsc#1163969).

Bug fixes:

- Only use SLES-UEFI-CA-Certificate-2048.crt for the SUSE flavor to provide the better compatibility. (bsc#1077330)
Family:unixClass:patch
Status:Reference(s):1012102
1012103
1012104
1012266
1013653
1013655
1013663
1014560
1014566
1020601
1039063
1039064
1039066
1039069
1039661
1046856
1070727
1077330
1077445
1082063
1082210
1083417
1083420
1083422
1083424
1083426
1092100
1093414
1094291
1096723
1097356
1102682
1104301
1105323
1106191
1109673
1121753
1123371
1123377
1123378
1150734
1157198
1163927
1163959
1163969
1167240
1174415
997682
CVE-2016-10156
CVE-2016-1549
CVE-2016-9634
CVE-2016-9635
CVE-2016-9636
CVE-2016-9807
CVE-2016-9808
CVE-2016-9810
CVE-2017-1000083
CVE-2017-17083
CVE-2017-17084
CVE-2017-17085
CVE-2017-9047
CVE-2017-9048
CVE-2017-9049
CVE-2017-9050
CVE-2018-0739
CVE-2018-1000026
CVE-2018-10902
CVE-2018-10938
CVE-2018-1122
CVE-2018-1123
CVE-2018-1124
CVE-2018-1125
CVE-2018-1126
CVE-2018-16890
CVE-2018-17407
CVE-2018-5383
CVE-2018-5390
CVE-2018-5848
CVE-2018-7170
CVE-2018-7182
CVE-2018-7183
CVE-2018-7184
CVE-2018-7185
CVE-2019-14559
CVE-2019-14563
CVE-2019-14575
CVE-2019-3688
CVE-2019-3690
CVE-2019-3822
CVE-2019-3823
CVE-2020-15900
CVE-2020-5267
SUSE-SU-2016:3303-1
SUSE-SU-2017:0279-1
SUSE-SU-2017:1538-1
SUSE-SU-2017:1893-1
SUSE-SU-2017:3436-1
SUSE-SU-2018:1765-2
SUSE-SU-2019:0249-1
SUSE-SU-2019:0450-1
SUSE-SU-2020:0495-1
SUSE-SU-2020:0954-1
SUSE-SU-2020:2097-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-LTSS
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libdmx1-1.1.3-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • dbus-1-1.12.2-lp151.4.3 is installed
  • OR dbus-1-devel-1.12.2-lp151.4.3 is installed
  • OR dbus-1-devel-32bit-1.12.2-lp151.4.3 is installed
  • OR dbus-1-devel-doc-1.12.2-lp151.4.3 is installed
  • OR dbus-1-x11-1.12.2-lp151.4.3 is installed
  • OR libdbus-1-3-1.12.2-lp151.4.3 is installed
  • OR libdbus-1-3-32bit-1.12.2-lp151.4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • gstreamer-plugins-good-1.8.3-9 is installed
  • OR gstreamer-plugins-good-lang-1.8.3-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • ntp-4.2.8p11-64.5 is installed
  • OR ntp-doc-4.2.8p11-64.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_73-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_21-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_90-92_45-default-10-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_14-10-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • cpio-2.11-35 is installed
  • OR cpio-lang-2.11-35 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • tomcat-8.0.53-29.22 is installed
  • OR tomcat-admin-webapps-8.0.53-29.22 is installed
  • OR tomcat-docs-webapp-8.0.53-29.22 is installed
  • OR tomcat-el-3_0-api-8.0.53-29.22 is installed
  • OR tomcat-javadoc-8.0.53-29.22 is installed
  • OR tomcat-jsp-2_3-api-8.0.53-29.22 is installed
  • OR tomcat-lib-8.0.53-29.22 is installed
  • OR tomcat-servlet-3_1-api-8.0.53-29.22 is installed
  • OR tomcat-webapps-8.0.53-29.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_178-94_91-default-9-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_25-9-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_175-94_79-default-5-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_23-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • gdm-3.10.0.1-54.6 is installed
  • OR gdm-lang-3.10.0.1-54.6 is installed
  • OR gdmflexiserver-3.10.0.1-54.6 is installed
  • OR libgdm1-3.10.0.1-54.6 is installed
  • OR typelib-1_0-Gdm-1_0-3.10.0.1-54.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libykcs11-1-1.5.0-3 is installed
  • OR libykpiv1-1.5.0-3 is installed
  • OR yubico-piv-tool-1.5.0-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-LTSS is installed
  • AND golang-github-prometheus-node_exporter-0.18.1-1.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • ovmf-2015+git1462940744.321151f-19.10 is installed
  • OR ovmf-tools-2015+git1462940744.321151f-19.10 is installed
  • OR qemu-ovmf-x86_64-2015+git1462940744.321151f-19.10 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND cobbler-2.6.6-49.14 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • crowbar-5.0+git.1528696845.81a7b5d0-3.3 is installed
  • OR crowbar-core-5.0+git.1533887407.6e9b0412d-3.8 is installed
  • OR crowbar-core-branding-upstream-5.0+git.1533887407.6e9b0412d-3.8 is installed
  • OR crowbar-devel-5.0+git.1528696845.81a7b5d0-3.3 is installed
  • OR crowbar-ha-5.0+git.1530177874.35b9099-3.3 is installed
  • OR crowbar-init-5.0+git.1520420379.d5bbb35-3.3 is installed
  • OR crowbar-openstack-5.0+git.1534167599.d325ef804-4.8 is installed
  • OR crowbar-ui-1.2.0+git.1533844061.4ac8e723-3.3 is installed
    • BACK