OVAL Reference oval:org.opensuse.security:def:58762

Oval Definition:

oval:org.opensuse.security:def:58762

Revision Date:	2021-06-08	Version:	1
Title:	Security update for qemu (Important)
Description:	This update for qemu fixes the following issues: - Fix OOB access during mmio operations (CVE-2020-13754, bsc#1172382) - Fix out-of-bounds read information disclosure in icmp6_send_echoreply (CVE-2020-10756, bsc#1172380) - Fix out-of-bound heap buffer access via an interrupt ID field (CVE-2021-20221, bsc#1181933) - For the record, these issues are fixed in this package already. Most are alternate references to previously mentioned issues: (CVE-2019-15890, bsc#1149813, CVE-2020-8608, bsc#1163019, CVE-2020-14364, bsc#1175534, CVE-2020-25707, bsc#1178683, CVE-2020-25723, bsc#1178935, CVE-2020-29130, bsc#1179477, CVE-2021-20257, bsc#1182846, CVE-2021-3419, bsc#1182975, bsc#1094725)
Family:	unix	Class:	patch
Status:		Reference(s):	1005023 1006984 1006989 1027519 1035442 1037811 1051729 1061081 1068032 1068565 1070158 1070159 1070160 1070163 1074562 1076116 1076180 1076696 1082216 1082233 1082234 1088268 1090036 1094725 1096718 1097108 1097560 1097824 1099306 1101591 1103098 1103203 1103809 1103810 1104076 1107832 1109663 1109847 1110233 1114981 1115518 1119971 1120323 1129231 1138459 1144903 1149813 1153108 1153158 1153161 1163019 1172380 1172382 1174662 1175534 1178683 1178935 1179477 1181933 1182846 1182975 977043 CVE-2009-0023 CVE-2009-1191 CVE-2009-1195 CVE-2009-1890 CVE-2009-1891 CVE-2009-1955 CVE-2009-1956 CVE-2009-2412 CVE-2009-2473 CVE-2009-2474 CVE-2009-2699 CVE-2009-3094 CVE-2009-3095 CVE-2009-3555 CVE-2009-3560 CVE-2009-3720 CVE-2010-0408 CVE-2010-0425 CVE-2010-0434 CVE-2010-1452 CVE-2010-1623 CVE-2010-2068 CVE-2011-1176 CVE-2011-3192 CVE-2011-3368 CVE-2011-3607 CVE-2011-4317 CVE-2012-0021 CVE-2012-0031 CVE-2012-0053 CVE-2012-2687 CVE-2012-3499 CVE-2012-3502 CVE-2013-1896 CVE-2013-2249 CVE-2013-5704 CVE-2013-6401 CVE-2013-6438 CVE-2014-0098 CVE-2014-0117 CVE-2014-0118 CVE-2014-0226 CVE-2014-0231 CVE-2014-3523 CVE-2014-3581 CVE-2014-3583 CVE-2014-8109 CVE-2015-0228 CVE-2015-0253 CVE-2015-4000 CVE-2016-0736 CVE-2016-1546 CVE-2016-2161 CVE-2016-4979 CVE-2016-5387 CVE-2016-6354 CVE-2016-8740 CVE-2016-8743 CVE-2017-0861 CVE-2017-15595 CVE-2017-17563 CVE-2017-17564 CVE-2017-17565 CVE-2017-17566 CVE-2017-18030 CVE-2017-18344 CVE-2017-2581 CVE-2017-2586 CVE-2017-2587 CVE-2017-3167 CVE-2017-3169 CVE-2017-5715 CVE-2017-5753 CVE-2017-5754 CVE-2017-7679 CVE-2018-1000199 CVE-2018-1000802 CVE-2018-10853 CVE-2018-12015 CVE-2018-12470 CVE-2018-12471 CVE-2018-12472 CVE-2018-14633 CVE-2018-14647 CVE-2018-16864 CVE-2018-16865 CVE-2018-16866 CVE-2018-17182 CVE-2018-3646 CVE-2018-5391 CVE-2018-5683 CVE-2018-6797 CVE-2018-6798 CVE-2018-6913 CVE-2019-10160 CVE-2019-10220 CVE-2019-15890 CVE-2019-17133 CVE-2020-10756 CVE-2020-13754 CVE-2020-14364 CVE-2020-25707 CVE-2020-25723 CVE-2020-29130 CVE-2020-8608 CVE-2020-9862 CVE-2020-9893 CVE-2020-9894 CVE-2020-9895 CVE-2020-9915 CVE-2020-9925 CVE-2021-20221 CVE-2021-20257 CVE-2021-3419 SUSE-SU-2018:0472-1 SUSE-SU-2018:1245-1 SUSE-SU-2018:1972-1 SUSE-SU-2018:2391-1 SUSE-SU-2019:0135-1 SUSE-SU-2019:0736-1 SUSE-SU-2019:2053-1 SUSE-SU-2020:2232-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information kinit-5.45.0-lp150.1 is installed OR kinit-lang-5.45.0-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libopencv3_3-3.3.1-lp151.6.3 is installed OR opencv-3.3.1-lp151.6.3 is installed OR opencv-devel-3.3.1-lp151.6.3 is installed OR opencv-doc-3.3.1-lp151.6.3 is installed OR python2-opencv-3.3.1-lp151.6.3 is installed OR python3-opencv-3.3.1-lp151.6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information xen-4.7.4_06-43.24 is installed OR xen-doc-html-4.7.4_06-43.24 is installed OR xen-libs-4.7.4_06-43.24 is installed OR xen-libs-32bit-4.7.4_06-43.24 is installed OR xen-tools-4.7.4_06-43.24 is installed OR xen-tools-domU-4.7.4_06-43.24 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libsystemd0-228-150.58 is installed OR libsystemd0-32bit-228-150.58 is installed OR libudev1-228-150.58 is installed OR libudev1-32bit-228-150.58 is installed OR systemd-228-150.58 is installed OR systemd-32bit-228-150.58 is installed OR systemd-bash-completion-228-150.58 is installed OR systemd-sysvinit-228-150.58 is installed OR udev-228-150.58 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information res-signingkeys-3.0.37-52.23 is installed OR smt-3.0.37-52.23 is installed OR smt-support-3.0.37-52.23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information perl-5.18.2-12.14 is installed OR perl-32bit-5.18.2-12.14 is installed OR perl-base-5.18.2-12.14 is installed OR perl-doc-5.18.2-12.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache2-2.4.23-28 is installed OR apache2-doc-2.4.23-28 is installed OR apache2-example-pages-2.4.23-28 is installed OR apache2-prefork-2.4.23-28 is installed OR apache2-utils-2.4.23-28 is installed OR apache2-worker-2.4.23-28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libshibsp-lite6-2.5.5-6.6 is installed OR libshibsp6-2.5.5-6.6 is installed OR shibboleth-sp-2.5.5-6.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND squid-3.5.21-26.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information ibus-1.5.13-15.11 is installed OR ibus-gtk-1.5.13-15.11 is installed OR ibus-gtk3-1.5.13-15.11 is installed OR ibus-lang-1.5.13-15.11 is installed OR libibus-1_0-5-1.5.13-15.11 is installed OR typelib-1_0-IBus-1_0-1.5.13-15.11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information qemu-2.9.1-6.50.1 is installed OR qemu-block-curl-2.9.1-6.50.1 is installed OR qemu-block-iscsi-2.9.1-6.50.1 is installed OR qemu-block-rbd-2.9.1-6.50.1 is installed OR qemu-block-ssh-2.9.1-6.50.1 is installed OR qemu-guest-agent-2.9.1-6.50.1 is installed OR qemu-ipxe-1.0.0+-6.50.1 is installed OR qemu-kvm-2.9.1-6.50.1 is installed OR qemu-lang-2.9.1-6.50.1 is installed OR qemu-seabios-1.10.2_0_g5f4c7b1-6.50.1 is installed OR qemu-sgabios-8-6.50.1 is installed OR qemu-tools-2.9.1-6.50.1 is installed OR qemu-vgabios-1.10.2_0_g5f4c7b1-6.50.1 is installed OR qemu-x86-2.9.1-6.50.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information at-3.1.14-8.6 is installed OR flex-2.5.37-8 is installed OR flex-32bit-2.5.37-8 is installed OR libQtWebKit4-4.8.7+2.3.4-4.7 is installed OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-doc-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libmysqlclient18-10.0.40.1-29.32 is installed OR mariadb-10.0.40.1-29.32 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND gdb-8.3.1-2.14 is installed

BACK