Oval Definition:	oval:org.opensuse.security:def:58820
Revision Date: 2021-09-06 Version: 1 Title: Security update for xen (Important) Description: This update for xen fixes the following issues: - CVE-2021-3594: slirp: invalid pointer initialization may lead to information disclosure (udp)(bsc#1187378). - CVE-2021-3595: slirp: invalid pointer initialization may lead to information disclosure (tftp)(bsc#1187376). - CVE-2021-28698: long running loops in grant table handling (XSA-380)(bsc#1189378). - CVE-2021-28699: inadequate grant-v2 status frames array bounds check (XSA-382)(bsc#1189380). - CVE-2021-20255: Fixed stack overflow via infinite recursion in eepro100 (bsc#1182654) - CVE-2021-28690: xen: x86: TSX Async Abort protections not restored after S3 (bsc#1186434) - CVE-2021-28692: xen: inappropriate x86 IOMMU timeout detection / handling (bsc#1186429) - CVE-2021-28694,CVE-2021-28695,CVE-2021-28696: IOMMU page mapping issues on x86 (XSA-378)(bsc#1189373). - CVE-2021-0089: xen: Speculative Code Store Bypass (bsc#1186433) - CVE-2021-28697: grant table v2 status pages may remain accessible after de-allocation (XSA-379)(bsc#1189376). - CVE-2021-3592: slirp: invalid pointer initialization may lead to information disclosure (bootp)(bsc#1187369). - Prevent superpage allocation in the LAPIC and ACPI_INFO range (bsc#1189882). Family: unix Class: patch Status: Reference(s): 1040543 1041447 1041470 1057460 1061310 1073230 1076017 1076390 1082810 1083488 1085018 1085114 1085447 1087200 1094301 1097356 1101776 1101777 1101786 1101788 1101791 1101794 1101800 1101802 1101804 1101810 1106514 1109465 1117473 1118595 1118596 1122292 1122293 1122299 1123482 1123886 1124525 1128158 1133810 1136976 1140868 1145665 1149323 1155787 1160594 1160764 1161779 1163922 1172437 1182654 1186429 1186433 1186434 1187369 1187376 1187378 1189373 1189376 1189378 1189380 1189882 929900 955131 966304 CVE-2011-0421 CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 CVE-2011-3146 CVE-2012-1162 CVE-2012-1163 CVE-2013-1881 CVE-2014-3467 CVE-2014-3468 CVE-2014-3469 CVE-2015-2331 CVE-2015-2806 CVE-2015-3622 CVE-2016-4008 CVE-2017-13166 CVE-2017-14970 CVE-2017-2518 CVE-2017-9214 CVE-2017-9263 CVE-2017-9265 CVE-2018-1000004 CVE-2018-1068 CVE-2018-11212 CVE-2018-11354 CVE-2018-11355 CVE-2018-11356 CVE-2018-11357 CVE-2018-11358 CVE-2018-11359 CVE-2018-11360 CVE-2018-11361 CVE-2018-11362 CVE-2018-14339 CVE-2018-14340 CVE-2018-14341 CVE-2018-14342 CVE-2018-14343 CVE-2018-14344 CVE-2018-14367 CVE-2018-14368 CVE-2018-14369 CVE-2018-14370 CVE-2018-15518 CVE-2018-16056 CVE-2018-16057 CVE-2018-16058 CVE-2018-1890 CVE-2018-19873 CVE-2018-2579 CVE-2018-2582 CVE-2018-2588 CVE-2018-2599 CVE-2018-2602 CVE-2018-2603 CVE-2018-2618 CVE-2018-2633 CVE-2018-2634 CVE-2018-2637 CVE-2018-2641 CVE-2018-2657 CVE-2018-2663 CVE-2018-2677 CVE-2018-2678 CVE-2018-5848 CVE-2018-7566 CVE-2019-11709 CVE-2019-11710 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11714 CVE-2019-11715 CVE-2019-11716 CVE-2019-11717 CVE-2019-11718 CVE-2019-11719 CVE-2019-11720 CVE-2019-11721 CVE-2019-11723 CVE-2019-11724 CVE-2019-11725 CVE-2019-11727 CVE-2019-11728 CVE-2019-11729 CVE-2019-11730 CVE-2019-11733 CVE-2019-11735 CVE-2019-11736 CVE-2019-11738 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11747 CVE-2019-11748 CVE-2019-11749 CVE-2019-11750 CVE-2019-11751 CVE-2019-11752 CVE-2019-11753 CVE-2019-2422 CVE-2019-2449 CVE-2019-8457 CVE-2019-9811 CVE-2019-9812 CVE-2020-10757 CVE-2020-8013 CVE-2021-0089 CVE-2021-20255 CVE-2021-28690 CVE-2021-28692 CVE-2021-28694 CVE-2021-28695 CVE-2021-28696 CVE-2021-28697 CVE-2021-28698 CVE-2021-28699 CVE-2021-3592 CVE-2021-3594 CVE-2021-3595 SUSE-SU-2018:0311-1 SUSE-SU-2018:0694-1 SUSE-SU-2018:1033-1 SUSE-SU-2018:2891-1 SUSE-SU-2019:1601-1 SUSE-SU-2019:2620-1 SUSE-SU-2019:3050-1 SUSE-SU-2020:0545-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information libgcrypt20-1.8.2-lp150.4 is installed OR libgcrypt20-32bit-1.8.2-lp150.4 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libsolv-0.7.10-lp151.2.10 is installed OR libsolv-demo-0.7.10-lp151.2.10 is installed OR libsolv-devel-0.7.10-lp151.2.10 is installed OR libsolv-tools-0.7.10-lp151.2.10 is installed OR libzypp-17.19.0-lp151.2.10 is installed OR libzypp-devel-17.19.0-lp151.2.10 is installed OR libzypp-devel-doc-17.19.0-lp151.2.10 is installed OR perl-solv-0.7.10-lp151.2.10 is installed OR python-solv-0.7.10-lp151.2.10 is installed OR python3-solv-0.7.10-lp151.2.10 is installed OR ruby-solv-0.7.10-lp151.2.10 is installed OR zypper-1.14.33-lp151.2.10 is installed OR zypper-aptitude-1.14.33-lp151.2.10 is installed OR zypper-log-1.14.33-lp151.2.10 is installed OR zypper-needs-restarting-1.14.33-lp151.2.10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information openvswitch-2.5.1-25.12 is installed OR openvswitch-dpdk-2.5.1-25.12 is installed OR openvswitch-dpdk-switch-2.5.1-25.12 is installed OR openvswitch-switch-2.5.1-25.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information MozillaFirefox-68.1.0-109.89 is installed OR MozillaFirefox-branding-SLE-68-32.8 is installed OR MozillaFirefox-devel-68.1.0-109.89 is installed OR MozillaFirefox-translations-common-68.1.0-109.89 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libQt5Concurrent5-5.6.1-17.6 is installed OR libQt5Core5-5.6.1-17.6 is installed OR libQt5DBus5-5.6.1-17.6 is installed OR libQt5Gui5-5.6.1-17.6 is installed OR libQt5Network5-5.6.1-17.6 is installed OR libQt5OpenGL5-5.6.1-17.6 is installed OR libQt5PrintSupport5-5.6.1-17.6 is installed OR libQt5Sql5-5.6.1-17.6 is installed OR libQt5Sql5-mysql-5.6.1-17.6 is installed OR libQt5Sql5-postgresql-5.6.1-17.6 is installed OR libQt5Sql5-sqlite-5.6.1-17.6 is installed OR libQt5Sql5-unixODBC-5.6.1-17.6 is installed OR libQt5Test5-5.6.1-17.6 is installed OR libQt5Widgets5-5.6.1-17.6 is installed OR libQt5Xml5-5.6.1-17.6 is installed OR libqt5-qtbase-5.6.1-17.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information libwireshark9-2.4.9-48.29 is installed OR libwiretap7-2.4.9-48.29 is installed OR libwscodecs1-2.4.9-48.29 is installed OR libwsutil8-2.4.9-48.29 is installed OR wireshark-2.4.9-48.29 is installed OR wireshark-gtk-2.4.9-48.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information gdk-pixbuf-loader-rsvg-2.40.15-4 is installed OR librsvg-2-2-2.40.15-4 is installed OR librsvg-2-2-32bit-2.40.15-4 is installed OR rsvg-view-2.40.15-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information LibVNCServer-0.9.9-17.31 is installed OR libvncclient0-0.9.9-17.31 is installed OR libvncserver0-0.9.9-17.31 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_156-94_61-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_19-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information xen-4.9.4_20-3.91.1 is installed OR xen-doc-html-4.9.4_20-3.91.1 is installed OR xen-libs-4.9.4_20-3.91.1 is installed OR xen-libs-32bit-4.9.4_20-3.91.1 is installed OR xen-tools-4.9.4_20-3.91.1 is installed OR xen-tools-domU-4.9.4_20-3.91.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND binutils-2.31-9.26 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND python-Twisted-15.2.1-9.8 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information libfreebl3-3.53.1-58.48 is installed OR libfreebl3-32bit-3.53.1-58.48 is installed OR libfreebl3-hmac-3.53.1-58.48 is installed OR libfreebl3-hmac-32bit-3.53.1-58.48 is installed OR libsoftokn3-3.53.1-58.48 is installed OR libsoftokn3-32bit-3.53.1-58.48 is installed OR libsoftokn3-hmac-3.53.1-58.48 is installed OR libsoftokn3-hmac-32bit-3.53.1-58.48 is installed OR mozilla-nspr-4.25-19.15 is installed OR mozilla-nspr-32bit-4.25-19.15 is installed OR mozilla-nspr-devel-4.25-19.15 is installed OR mozilla-nss-3.53.1-58.48 is installed OR mozilla-nss-32bit-3.53.1-58.48 is installed OR mozilla-nss-certs-3.53.1-58.48 is installed OR mozilla-nss-certs-32bit-3.53.1-58.48 is installed OR mozilla-nss-devel-3.53.1-58.48 is installed OR mozilla-nss-sysinit-3.53.1-58.48 is installed OR mozilla-nss-sysinit-32bit-3.53.1-58.48 is installed OR mozilla-nss-tools-3.53.1-58.48 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND ucode-intel-20200602-13.68 is installed
BACK