OVAL Reference oval:org.opensuse.security:def:58530

Oval Definition:

oval:org.opensuse.security:def:58530

Revision Date:	2020-12-01	Version:	1
Title:	Security update for xen (Important)
Description:	This update for xen to version 4.7.3 fixes several issues. These security issues were fixed: - CVE-2017-12135: Unbounded recursion in grant table code allowed a malicious guest to crash the host or potentially escalate privileges/leak information (XSA-226, bsc#1051787). - CVE-2017-12137: Incorrectly-aligned updates to pagetables allowed for privilege escalation (XSA-227, bsc#1051788). - CVE-2017-12136: Race conditions with maptrack free list handling allows a malicious guest administrator to crash the host or escalate their privilege to that of the host (XSA-228, bsc#1051789). - CVE-2017-11434: The dhcp_decode function in slirp/bootp.c allowed local guest OS users to cause a denial of service (out-of-bounds read) via a crafted DHCP options string (bsc#1049578). - CVE-2017-10664: qemu-nbd did not ignore SIGPIPE, which allowed remote attackers to cause a denial of service (daemon crash) by disconnecting during a server-to-client reply attempt (bsc#1046637). - CVE-2017-12855: Premature clearing of GTF_writing / GTF_reading lead to potentially leaking sensitive information (XSA-230 CVE-2017-12855). These non-security issues were fixed: - bsc#1055695: XEN: 11SP4 and 12SP3 HVM guests can not be restored after the save using xl stack - bsc#1035231: Migration of HVM domU did not use superpages on destination dom0 - bsc#1002573: Optimized LVM functions in block-dmmd block-dmmd - bsc#1037840: Xen-detect always showed HVM for PV guests
Family:	unix	Class:	patch
Status:		Reference(s):	1002573 1012143 1015119 1017189 1026236 1031056 1033447 1033448 1035231 1036785 1037840 1040543 1041447 1041470 1046637 1048783 1049505 1049578 1051017 1051787 1051788 1051789 1052151 1052686 1053600 1055695 1061310 1081925 1087082 1087083 1096141 1100147 1106171 1106172 1106173 1106195 1107410 1107411 1107412 1107413 1107420 1107421 1107422 1107423 1107426 1107581 1108027 1109105 1124211 1141493 1145559 1156402 1160968 1169511 1171352 1172277 1174910 1174913 1176410 1176733 1177143 828003 967671 983215 983216 CVE-2012-6702 CVE-2013-2131 CVE-2016-5300 CVE-2016-8745 CVE-2016-9603 CVE-2017-10664 CVE-2017-11434 CVE-2017-12135 CVE-2017-12136 CVE-2017-12137 CVE-2017-12652 CVE-2017-12855 CVE-2017-14970 CVE-2017-5647 CVE-2017-5648 CVE-2017-9214 CVE-2017-9263 CVE-2017-9265 CVE-2018-1058 CVE-2018-15908 CVE-2018-15909 CVE-2018-15910 CVE-2018-15911 CVE-2018-16509 CVE-2018-16510 CVE-2018-16511 CVE-2018-16513 CVE-2018-16539 CVE-2018-16540 CVE-2018-16541 CVE-2018-16542 CVE-2018-16543 CVE-2018-16585 CVE-2018-16802 CVE-2018-17183 CVE-2018-3639 CVE-2018-3640 CVE-2019-11500 CVE-2019-2201 CVE-2019-2949 CVE-2019-7317 CVE-2020-14361 CVE-2020-14362 CVE-2020-25219 CVE-2020-26117 CVE-2020-26154 CVE-2020-2654 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 SUSE-SU-2017:0103-1 SUSE-SU-2017:0424-1 SUSE-SU-2017:1229-1 SUSE-SU-2017:2326-1 SUSE-SU-2017:2697-1 SUSE-SU-2018:0311-1 SUSE-SU-2018:0876-1 SUSE-SU-2018:1935-1 SUSE-SU-2018:2975-2 SUSE-SU-2019:2454-1 SUSE-SU-2019:3060-2 SUSE-SU-2020:1685-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND argyllcms-1.9.2-lp150.2 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libnetpbm-devel-10.80.1-lp151.4.3 is installed OR libnetpbm11-10.80.1-lp151.4.3 is installed OR libnetpbm11-32bit-10.80.1-lp151.4.3 is installed OR netpbm-10.80.1-lp151.4.3 is installed OR netpbm-vulnerable-10.80.1-lp151.4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information xen-4.7.3_03-43.9 is installed OR xen-doc-html-4.7.3_03-43.9 is installed OR xen-libs-4.7.3_03-43.9 is installed OR xen-libs-32bit-4.7.3_03-43.9 is installed OR xen-tools-4.7.3_03-43.9 is installed OR xen-tools-domU-4.7.3_03-43.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information ghostscript-9.25-23.13 is installed OR ghostscript-x11-9.25-23.13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libjpeg-turbo-1.5.3-31.19 is installed OR libjpeg62-62.2.0-31.19 is installed OR libjpeg62-32bit-62.2.0-31.19 is installed OR libjpeg62-turbo-1.5.3-31.19 is installed OR libjpeg8-8.1.2-31.19 is installed OR libjpeg8-32bit-8.1.2-31.19 is installed OR libturbojpeg0-8.1.2-31.19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND ucode-intel-20180703-13.25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libIlmImf-Imf_2_1-21-2.1.0-4 is installed OR openexr-2.1.0-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information icu-52.1-8.10 is installed OR libicu-doc-52.1-8.10 is installed OR libicu52_1-52.1-8.10 is installed OR libicu52_1-32bit-52.1-8.10 is installed OR libicu52_1-data-52.1-8.10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information tomcat-8.0.53-29.32 is installed OR tomcat-admin-webapps-8.0.53-29.32 is installed OR tomcat-docs-webapp-8.0.53-29.32 is installed OR tomcat-el-3_0-api-8.0.53-29.32 is installed OR tomcat-javadoc-8.0.53-29.32 is installed OR tomcat-jsp-2_3-api-8.0.53-29.32 is installed OR tomcat-lib-8.0.53-29.32 is installed OR tomcat-servlet-3_1-api-8.0.53-29.32 is installed OR tomcat-webapps-8.0.53-29.32 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_156-94_61-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_19-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information gdm-3.10.0.1-54.6 is installed OR gdm-lang-3.10.0.1-54.6 is installed OR gdmflexiserver-3.10.0.1-54.6 is installed OR libgdm1-3.10.0.1-54.6 is installed OR typelib-1_0-Gdm-1_0-3.10.0.1-54.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libQt5Concurrent5-5.6.2-6.12 is installed OR libQt5Core5-5.6.2-6.12 is installed OR libQt5DBus5-5.6.2-6.12 is installed OR libQt5Gui5-5.6.2-6.12 is installed OR libQt5Network5-5.6.2-6.12 is installed OR libQt5OpenGL5-5.6.2-6.12 is installed OR libQt5PrintSupport5-5.6.2-6.12 is installed OR libQt5Sql5-5.6.2-6.12 is installed OR libQt5Sql5-mysql-5.6.2-6.12 is installed OR libQt5Sql5-postgresql-5.6.2-6.12 is installed OR libQt5Sql5-sqlite-5.6.2-6.12 is installed OR libQt5Sql5-unixODBC-5.6.2-6.12 is installed OR libQt5Test5-5.6.2-6.12 is installed OR libQt5Widgets5-5.6.2-6.12 is installed OR libQt5Xml5-5.6.2-6.12 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libssh2-1-1.4.3-20.14 is installed OR libssh2-1-32bit-1.4.3-20.14 is installed OR libssh2_org-1.4.3-20.14 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND Package Information MozillaFirefox-78.0.1-112.3 is installed OR MozillaFirefox-branding-SLE-78-35.3 is installed OR MozillaFirefox-devel-78.0.1-112.3 is installed OR MozillaFirefox-translations-common-78.0.1-112.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND python-paramiko-2.2.4-4.3 is installed

BACK