OVAL Reference oval:org.opensuse.security:def:58655

Oval Definition:

oval:org.opensuse.security:def:58655

Revision Date:	2020-12-01	Version:	1
Title:	Security update for xen (Important)
Description:	This update for xen to version 4.7.2 fixes the following issues: These security issues were fixed: - CVE-2017-7228: Broken check in memory_exchange() permited PV guest breakout (bsc#1030442). - XSA-206: Unprivileged guests issuing writes to xenstore were able to stall progress of the control domain or driver domain, possibly leading to a Denial of Service (DoS) of the entire host (bsc#1030144). - CVE-2017-6505: The ohci_service_ed_list function in hw/usb/hcd-ohci.c allowed local guest OS users to cause a denial of service (infinite loop) via vectors involving the number of link endpoint list descriptors (bsc#1028235). These non-security issues were fixed: - bsc#1015348: libvirtd didn't not start during boot - bsc#1014136: kdump couldn't dump a kernel on SLES12-SP2 with Xen hypervisor. - bsc#1026236: Fixed paravirtualized performance - bsc#1022555: Timeout in 'execution of /etc/xen/scripts/block add' - bsc#1029827: Forward port xenstored - bsc#1029128: Make xen to really produce xen.efi with gcc48
Family:	unix	Class:	patch
Status:		Reference(s):	1010845 1014136 1015348 1022555 1026236 1027519 1028235 1029128 1029827 1030144 1030442 1035371 1058722 1064101 1064115 1074171 1075737 1075738 1075739 1075748 1076505 1083488 1085114 1085447 1090036 1104668 1130103 1133528 1138459 1141853 1154862 1159913 1160467 1160468 1165631 1173160 1174120 CVE-2009-2625 CVE-2009-3560 CVE-2009-3720 CVE-2009-5044 CVE-2009-5080 CVE-2009-5081 CVE-2012-0876 CVE-2012-1147 CVE-2012-1148 CVE-2012-6702 CVE-2015-1283 CVE-2015-8370 CVE-2016-0718 CVE-2016-5300 CVE-2016-9401 CVE-2017-10268 CVE-2017-10378 CVE-2017-13166 CVE-2017-17935 CVE-2017-6505 CVE-2017-7228 CVE-2018-1000199 CVE-2018-1068 CVE-2018-12539 CVE-2018-1517 CVE-2018-1656 CVE-2018-20852 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-5334 CVE-2018-5335 CVE-2018-5336 CVE-2018-7566 CVE-2019-10160 CVE-2019-14896 CVE-2019-14897 CVE-2019-17498 CVE-2019-3859 CVE-2019-5108 CVE-2020-10745 CVE-2020-1749 SUSE-SU-2017:0983-1 SUSE-SU-2017:1317-1 SUSE-SU-2018:0191-1 SUSE-SU-2018:0384-1 SUSE-SU-2018:1003-1 SUSE-SU-2018:1508-1 SUSE-SU-2018:2649-1 SUSE-SU-2019:2091-1 SUSE-SU-2019:2936-1 SUSE-SU-2020:2312-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-LTSS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information libavcodec57-3.4.2-lp150.2 is installed OR libavdevice57-3.4.2-lp150.2 is installed OR libavfilter6-3.4.2-lp150.2 is installed OR libavformat57-3.4.2-lp150.2 is installed OR libavresample3-3.4.2-lp150.2 is installed OR libavutil55-3.4.2-lp150.2 is installed OR libpostproc54-3.4.2-lp150.2 is installed OR libswresample2-3.4.2-lp150.2 is installed OR libswscale4-3.4.2-lp150.2 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information bird-1.6.8-lp151.2.3 is installed OR bird-common-1.6.8-lp151.2.3 is installed OR bird-doc-1.6.8-lp151.2.3 is installed OR bird6-1.6.8-lp151.2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information xen-4.7.2_02-36 is installed OR xen-doc-html-4.7.2_02-36 is installed OR xen-libs-4.7.2_02-36 is installed OR xen-libs-32bit-4.7.2_02-36 is installed OR xen-tools-4.7.2_02-36 is installed OR xen-tools-domU-4.7.2_02-36 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libssh2-1-1.4.3-20.14 is installed OR libssh2-1-32bit-1.4.3-20.14 is installed OR libssh2_org-1.4.3-20.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libssh2-1-1.4.3-20.6 is installed OR libssh2-1-32bit-1.4.3-20.6 is installed OR libssh2_org-1.4.3-20.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_73-default-2-2 is installed OR kgraft-patch-SLE12-SP2_Update_21-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information expat-2.1.0-20 is installed OR libexpat1-2.1.0-20 is installed OR libexpat1-32bit-2.1.0-20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information perl-5.18.2-12.20 is installed OR perl-32bit-5.18.2-12.20 is installed OR perl-base-5.18.2-12.20 is installed OR perl-doc-5.18.2-12.20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libsolv-0.6.36-2.27.19 is installed OR libsolv-tools-0.6.36-2.27.19 is installed OR libzypp-16.20.2-27.60 is installed OR perl-solv-0.6.36-2.27.19 is installed OR python-solv-0.6.36-2.27.19 is installed OR zypper-1.13.54-18.40 is installed OR zypper-log-1.13.54-18.40 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information MozillaFirefox-68.1.0-109.89 is installed OR MozillaFirefox-branding-SLE-68-32.8 is installed OR MozillaFirefox-translations-common-68.1.0-109.89 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libzypp-16.17.20-2.33 is installed OR zypper-1.13.45-21.21 is installed OR zypper-log-1.13.45-21.21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libsystemd0-228-150.49 is installed OR libsystemd0-32bit-228-150.49 is installed OR libudev1-228-150.49 is installed OR libudev1-32bit-228-150.49 is installed OR systemd-228-150.49 is installed OR systemd-32bit-228-150.49 is installed OR systemd-bash-completion-228-150.49 is installed OR systemd-sysvinit-228-150.49 is installed OR udev-228-150.49 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information xen-4.11.4_04-2.30 is installed OR xen-doc-html-4.11.4_04-2.30 is installed OR xen-libs-4.11.4_04-2.30 is installed OR xen-libs-32bit-4.11.4_04-2.30 is installed OR xen-tools-4.11.4_04-2.30 is installed OR xen-tools-domU-4.11.4_04-2.30 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND ucode-intel-20190618-13.47 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information crowbar-5.0+git.1528696845.81a7b5d0-3.3 is installed OR crowbar-core-5.0+git.1533887407.6e9b0412d-3.8 is installed OR crowbar-core-branding-upstream-5.0+git.1533887407.6e9b0412d-3.8 is installed OR crowbar-devel-5.0+git.1528696845.81a7b5d0-3.3 is installed OR crowbar-ha-5.0+git.1530177874.35b9099-3.3 is installed OR crowbar-init-5.0+git.1520420379.d5bbb35-3.3 is installed OR crowbar-openstack-5.0+git.1534167599.d325ef804-4.8 is installed OR crowbar-ui-1.2.0+git.1533844061.4ac8e723-3.3 is installed

BACK