Oval Definition:	oval:org.opensuse.security:def:58926
Revision Date: 2021-03-29 Version: 1 Title: Security update for ovmf (Moderate) Description: This update for ovmf fixes the following issues: - CVE-2021-28211: ovmf: edk2: possible heap corruption with LzmaUefiDecompressGetInfo (bsc#1183578) - CVE-2021-28210: ovmf: unlimited FV recursion, round 2 (bsc#1183579) Family: unix Class: patch Status: Reference(s): 1027519 1043290 1050087 1056427 1056434 1058630 1059735 1060382 1066168 1066170 1068032 1068664 1074594 1075014 1075087 1077355 1080157 1081714 1082283 1082291 1082348 1082362 1082792 1082837 1083628 1083634 1085970 1086011 1087082 1090205 1090953 1091041 1092289 1093215 1094019 1097356 1105528 1108940 1114423 1115040 1115045 1115047 1116380 1117756 1129346 1130847 1144524 1148987 1153108 1156321 1157770 1159208 1159623 1160968 1166847 1169511 1171352 1172277 1173369 1183578 1183579 CVE-2008-1686 CVE-2012-0876 CVE-2014-9087 CVE-2014-9638 CVE-2014-9639 CVE-2014-9640 CVE-2015-1142857 CVE-2015-6749 CVE-2016-0718 CVE-2016-4472 CVE-2016-4574 CVE-2016-4579 CVE-2016-9063 CVE-2017-1000158 CVE-2017-1000469 CVE-2017-11524 CVE-2017-12692 CVE-2017-12693 CVE-2017-13768 CVE-2017-14314 CVE-2017-14505 CVE-2017-14739 CVE-2017-15016 CVE-2017-15017 CVE-2017-16352 CVE-2017-16353 CVE-2017-18209 CVE-2017-18211 CVE-2017-9233 CVE-2017-9500 CVE-2018-18849 CVE-2018-19665 CVE-2018-19961 CVE-2018-19962 CVE-2018-19965 CVE-2018-19966 CVE-2018-3639 CVE-2018-5848 CVE-2018-7443 CVE-2018-7470 CVE-2018-8088 CVE-2018-8804 CVE-2019-10220 CVE-2019-13272 CVE-2019-13456 CVE-2019-13627 CVE-2019-17185 CVE-2019-2949 CVE-2019-9636 CVE-2019-9948 CVE-2020-15011 CVE-2020-2654 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 CVE-2021-28210 CVE-2021-28211 SUSE-SU-2018:0674-1 SUSE-SU-2018:0857-1 SUSE-SU-2018:1377-1 SUSE-SU-2018:1736-1 SUSE-SU-2018:1744-1 SUSE-SU-2019:0020-1 SUSE-SU-2019:1439-1 SUSE-SU-2019:3263-1 SUSE-SU-2020:0497-1 SUSE-SU-2020:1685-1 SUSE-SU-2020:2048-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND libyaml-0-2-0.1.7-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND squid-4.10-lp151.2.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information kernel-firmware-20170530-21.19 is installed OR ucode-amd-20170530-21.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND mailman-2.1.17-3.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_120-92_70-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_20-9-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kernel-default-4.4.121-92.80 is installed OR kernel-default-base-4.4.121-92.80 is installed OR kernel-default-devel-4.4.121-92.80 is installed OR kernel-default-man-4.4.121-92.80 is installed OR kernel-devel-4.4.121-92.80 is installed OR kernel-macros-4.4.121-92.80 is installed OR kernel-source-4.4.121-92.80 is installed OR kernel-syms-4.4.121-92.80 is installed OR kgraft-patch-4_4_121-92_80-default-1-3.5 is installed OR kgraft-patch-SLE12-SP2_Update_22-1-3.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND libksba8-1.3.0-23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_178-94_91-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_25-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND ucode-intel-20191112-13.53 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ovmf-2017+git1492060560.b6d11d7c46-4.41.1 is installed OR ovmf-tools-2017+git1492060560.b6d11d7c46-4.41.1 is installed OR qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-4.41.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information elfutils-0.158-6 is installed OR libasm1-0.158-6 is installed OR libasm1-32bit-0.158-6 is installed OR libdw1-0.158-6 is installed OR libdw1-32bit-0.158-6 is installed OR libebl1-0.158-6 is installed OR libebl1-32bit-0.158-6 is installed OR libelf-devel-0.158-6 is installed OR libelf1-0.158-6 is installed OR libelf1-32bit-0.158-6 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND slf4j-1.7.12-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information MozillaFirefox-68.1.0-109.89 is installed OR MozillaFirefox-branding-SLE-68-32.8 is installed OR MozillaFirefox-translations-common-68.1.0-109.89 is installed
BACK