OVAL Reference oval:org.opensuse.security:def:5880

Oval Definition:

oval:org.opensuse.security:def:5880

Revision Date:	2021-11-04	Version:	1
Title:	Security update for qemu (Important)
Description:	This update for qemu fixes the following issues: Security issues fixed: - Fix out-of-bounds write in UAS (USB Attached SCSI) device emulation (bsc#1189702, CVE-2021-3713) - Fix heap use-after-free in virtio_net_receive_rcu (bsc#1189938, CVE-2021-3748) - usbredir: free call on invalid pointer in bufp_alloc (bsc#1189145, CVE-2021-3682) - NULL pointer dereference in ESP (bsc#1180433, CVE-2020-35504) (bsc#1180434, CVE-2020-35505) (bsc#1180435, CVE-2020-35506) - NULL pointer dereference issue in megasas-gen2 host bus adapter (bsc#1180432, CVE-2020-35503) - eepro100: stack overflow via infinite recursion (bsc#1182651, CVE-2021-20255) - usb: unbounded stack allocation in usbredir (bsc#1186012, CVE-2021-3527) Non-security issues fixed: - Use max host physical address if -cpu max is used (bsc#1188299)
Family:	unix	Class:	patch
Status:		Reference(s):	1180432 1180433 1180434 1180435 1182651 1186012 1189145 1189702 1189938 CVE-2006-4197 CVE-2007-6746 CVE-2009-0946 CVE-2010-0624 CVE-2010-1205 CVE-2010-2074 CVE-2010-2240 CVE-2010-2497 CVE-2010-2805 CVE-2010-3053 CVE-2010-3054 CVE-2010-3311 CVE-2010-3814 CVE-2010-4341 CVE-2011-0226 CVE-2011-1758 CVE-2011-2501 CVE-2011-2690 CVE-2011-2691 CVE-2011-2692 CVE-2011-3328 CVE-2012-3355 CVE-2012-4929 CVE-2012-5668 CVE-2012-5669 CVE-2012-5670 CVE-2013-0219 CVE-2013-0220 CVE-2013-0287 CVE-2013-1940 CVE-2013-4396 CVE-2013-6393 CVE-2013-6424 CVE-2013-6954 CVE-2014-0004 CVE-2014-0333 CVE-2014-2240 CVE-2014-2525 CVE-2014-8091 CVE-2014-8092 CVE-2014-8093 CVE-2014-8094 CVE-2014-8095 CVE-2014-8096 CVE-2014-8097 CVE-2014-8098 CVE-2014-8099 CVE-2014-8100 CVE-2014-8101 CVE-2014-8102 CVE-2014-8103 CVE-2014-8484 CVE-2014-8485 CVE-2014-8501 CVE-2014-8502 CVE-2014-8503 CVE-2014-8504 CVE-2014-8737 CVE-2014-8738 CVE-2014-9112 CVE-2014-9130 CVE-2014-9656 CVE-2014-9657 CVE-2014-9658 CVE-2014-9659 CVE-2014-9660 CVE-2014-9661 CVE-2014-9662 CVE-2014-9663 CVE-2014-9664 CVE-2014-9665 CVE-2014-9666 CVE-2014-9667 CVE-2014-9668 CVE-2014-9669 CVE-2014-9670 CVE-2014-9671 CVE-2014-9672 CVE-2014-9673 CVE-2014-9674 CVE-2014-9675 CVE-2015-0255 CVE-2015-3164 CVE-2015-3418 CVE-2016-2037 CVE-2016-9434 CVE-2016-9435 CVE-2016-9436 CVE-2016-9437 CVE-2016-9438 CVE-2016-9439 CVE-2016-9440 CVE-2016-9441 CVE-2016-9442 CVE-2016-9443 CVE-2016-9621 CVE-2016-9622 CVE-2016-9623 CVE-2016-9624 CVE-2016-9625 CVE-2016-9626 CVE-2016-9627 CVE-2016-9628 CVE-2016-9629 CVE-2016-9630 CVE-2016-9631 CVE-2016-9632 CVE-2016-9633 CVE-2016-9811 CVE-2017-5209 CVE-2017-5545 CVE-2017-5834 CVE-2017-5835 CVE-2017-5836 CVE-2017-5837 CVE-2017-5839 CVE-2017-5842 CVE-2017-5844 CVE-2017-6440 CVE-2017-6507 CVE-2017-7982 CVE-2020-35503 CVE-2020-35504 CVE-2020-35505 CVE-2020-35506 CVE-2021-20255 CVE-2021-3527 CVE-2021-3682 CVE-2021-3713 CVE-2021-3748
Platform(s):	openSUSE 13.1 openSUSE 13.1 NonFree openSUSE 13.2 SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Real Time Extension 12 SP1 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE OpenStack Cloud 6	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND python-setuptools-1.1.7-7.1 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 is installed AND kernel-zfcpdump-3.12.38-44 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND kernel-zfcpdump-3.12.59-60.45 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND kernel-zfcpdump-4.4.74-92.38 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND Package Information libpoppler-cpp0-0.43.0-16.5 is installed OR poppler-0.43.0-16.5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information libpng16-16-1.6.8-2 is installed OR libpng16-16-32bit-1.6.8-2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information xorg-x11-server-7.6_1.18.3-57 is installed OR xorg-x11-server-extra-7.6_1.18.3-57 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information apparmor-docs-2.8.2-49 is installed OR apparmor-parser-2.8.2-49 is installed OR apparmor-profiles-2.8.2-49 is installed OR apparmor-utils-2.8.2-49 is installed OR libapparmor1-2.8.2-49 is installed OR libapparmor1-32bit-2.8.2-49 is installed OR pam_apparmor-2.8.2-49 is installed OR pam_apparmor-32bit-2.8.2-49 is installed OR perl-apparmor-2.8.2-49 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr3.50-28.2 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr3.50-28.2 is installed OR java-1_7_1-ibm-devel-1.7.1_sr3.50-28.2 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr3.50-28.2 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr3.50-28.2 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information kgraft-patch-3_12_74-60_64_40-default-3-2.1 is installed OR kgraft-patch-3_12_74-60_64_40-xen-3-2.1 is installed OR kgraft-patch-SLE12-SP1_Update_15-3-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 is installed AND haproxy-1.5.4-2.4 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP1 is installed AND Package Information libpcreposix0-8.39-7 is installed OR pcre-8.39-7 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND ruby2.1-rubygem-bundler-1.7.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information hawk-1.0.0+git.1448981395.15fb8b9-4.3 is installed OR hawk-templates-1.0.0+git.1448981395.15fb8b9-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP4 is installed AND ruby2.1-rubygem-bundler-1.7.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_51-52_34-default-1-2 is installed OR kgraft-patch-3_12_51-52_34-xen-1-2 is installed OR kgraft-patch-SLE12_Update_10-1-2 is installed
Definition Synopsis
SUSE Linux Enterprise Real Time Extension 12 SP1 is installed AND Package Information kernel-compute-3.12.69-60.30.1 is installed OR kernel-compute-base-3.12.69-60.30.1 is installed OR kernel-compute-devel-3.12.69-60.30.1 is installed OR kernel-compute_debug-3.12.69-60.30.1 is installed OR kernel-compute_debug-devel-3.12.69-60.30.1 is installed OR kernel-devel-rt-3.12.69-60.30.1 is installed OR kernel-rt-3.12.69-60.30.1 is installed OR kernel-rt-base-3.12.69-60.30.1 is installed OR kernel-rt-devel-3.12.69-60.30.1 is installed OR kernel-rt_debug-3.12.69-60.30.1 is installed OR kernel-rt_debug-devel-3.12.69-60.30.1 is installed OR kernel-source-rt-3.12.69-60.30.1 is installed OR kernel-syms-rt-3.12.69-60.30.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP1-LTSS is installed AND openssl-certs-1.96-0.4.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND libxml2-2.7.6-0.25.1 is installed OR libxml2-32bit-2.7.6-0.25.1 is installed OR libxml2-doc-2.7.6-0.25.1 is installed OR libxml2-python-2.7.6-0.25.1 is installed OR libxml2-x86-2.7.6-0.25.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP2 is installed AND libxml2-2.7.6-0.25.1 is installed OR libxml2-32bit-2.7.6-0.25.1 is installed OR libxml2-doc-2.7.6-0.25.1 is installed OR libxml2-python-2.7.6-0.25.1 is installed OR libxml2-x86-2.7.6-0.25.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2 is installed AND cifs-utils-5.1-0.4.9 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND libxml2-2.7.6-0.37.1 is installed OR libxml2-32bit-2.7.6-0.37.1 is installed OR libxml2-doc-2.7.6-0.37.1 is installed OR libxml2-python-2.7.6-0.37.4 is installed OR libxml2-x86-2.7.6-0.37.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND libxml2-2.7.6-0.37.1 is installed OR libxml2-32bit-2.7.6-0.37.1 is installed OR libxml2-doc-2.7.6-0.37.1 is installed OR libxml2-python-2.7.6-0.37.4 is installed OR libxml2-x86-2.7.6-0.37.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information Mesa-9.0.3-0.17.1 is installed OR Mesa-32bit-9.0.3-0.17.1 is installed OR Mesa-x86-9.0.3-0.17.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3-LTSS is installed AND Package Information java-1_7_0-ibm-1.7.0_sr9.50-55.1 is installed OR java-1_7_0-ibm-alsa-1.7.0_sr9.50-55.1 is installed OR java-1_7_0-ibm-devel-1.7.0_sr9.50-55.1 is installed OR java-1_7_0-ibm-jdbc-1.7.0_sr9.50-55.1 is installed OR java-1_7_0-ibm-plugin-1.7.0_sr9.50-55.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information glib2-2.22.5-0.8.14.1 is installed OR glib2-doc-2.22.5-0.8.14.1 is installed OR glib2-lang-2.22.5-0.8.14.1 is installed OR libgio-2_0-0-2.22.5-0.8.14.1 is installed OR libgio-2_0-0-32bit-2.22.5-0.8.14.1 is installed OR libgio-2_0-0-x86-2.22.5-0.8.14.1 is installed OR libglib-2_0-0-2.22.5-0.8.14.1 is installed OR libglib-2_0-0-32bit-2.22.5-0.8.14.1 is installed OR libglib-2_0-0-x86-2.22.5-0.8.14.1 is installed OR libgmodule-2_0-0-2.22.5-0.8.14.1 is installed OR libgmodule-2_0-0-32bit-2.22.5-0.8.14.1 is installed OR libgmodule-2_0-0-x86-2.22.5-0.8.14.1 is installed OR libgobject-2_0-0-2.22.5-0.8.14.1 is installed OR libgobject-2_0-0-32bit-2.22.5-0.8.14.1 is installed OR libgobject-2_0-0-x86-2.22.5-0.8.14.1 is installed OR libgthread-2_0-0-2.22.5-0.8.14.1 is installed OR libgthread-2_0-0-32bit-2.22.5-0.8.14.1 is installed OR libgthread-2_0-0-x86-2.22.5-0.8.14.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information groff-1.22.2-5 is installed OR groff-full-1.22.2-5 is installed OR gxditview-1.22.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information avahi-0.6.31-20 is installed OR avahi-lang-0.6.31-20 is installed OR avahi-utils-0.6.31-20 is installed OR libavahi-client3-0.6.31-20 is installed OR libavahi-client3-32bit-0.6.31-20 is installed OR libavahi-common3-0.6.31-20 is installed OR libavahi-common3-32bit-0.6.31-20 is installed OR libavahi-core7-0.6.31-20 is installed OR libdns_sd-0.6.31-20 is installed OR libdns_sd-32bit-0.6.31-20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information alsa-1.0.27.2-11 is installed OR alsa-docs-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache2-2.4.23-28 is installed OR apache2-doc-2.4.23-28 is installed OR apache2-example-pages-2.4.23-28 is installed OR apache2-prefork-2.4.23-28 is installed OR apache2-utils-2.4.23-28 is installed OR apache2-worker-2.4.23-28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information pam_ssh-2.0-1 is installed OR pam_ssh-32bit-2.0-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information at-3.1.14-7 is installed OR flex-2.5.37-8 is installed OR libQtWebKit4-4.8.6+2.3.3-3 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-doc-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed OR libkde4-4.12.0-7 is installed OR libkdecore4-4.12.0-7 is installed OR libksuseinstall1-4.12.0-7 is installed OR libnetpbm11-10.66.3-4 is installed OR netpbm-10.66.3-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND ucode-intel-20191112-13.53 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND Package Information kgraft-patch-4_4_90-92_50-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_15-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND kernel-docs-3.0.101-0.47.71.3 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND augeas-devel-0.9.0-3.15.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND MozillaFirefox-devel-31.1.0esr-1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information finch-devel-2.10.9-8 is installed OR libpurple-2.10.9-8 is installed OR libpurple-devel-2.10.9-8 is installed OR libpurple-lang-2.10.9-8 is installed OR pidgin-devel-2.10.9-8 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND MozillaFirefox-devel-45.4.0esr-81 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information finch-2.10.9-5 is installed OR libpurple-2.10.9-5 is installed OR libpurple-lang-2.10.9-5 is installed OR libpurple-meanwhile-2.10.9-5 is installed OR libpurple-tcl-2.10.9-5 is installed OR pidgin-2.10.9-5 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND bogofilter-1.2.4-3 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information NetworkManager-1.0.12-8 is installed OR NetworkManager-lang-1.0.12-8 is installed OR typelib-1_0-NM-1_0-1.0.12-8 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information finch-2.12.0-1 is installed OR libpurple-2.12.0-1 is installed OR libpurple-branding-upstream-2.12.0-1 is installed OR libpurple-lang-2.12.0-1 is installed OR libpurple-plugin-sametime-2.12.0-1 is installed OR libpurple-tcl-2.12.0-1 is installed OR pidgin-2.12.0-1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND bash-lang-4.3-83.15 is installed

BACK