OVAL Reference oval:org.opensuse.security:def:58953

Oval Definition:

oval:org.opensuse.security:def:58953

Revision Date:	2020-12-01	Version:	1
Title:	Security update for libvirt (Important)
Description:	This update for libvirt fixes the following issues: Security issues fixed: - CVE-2017-5715: Fixes for speculative side channel attacks aka 'SpectreAttack' (var2) (bsc#1079869). - CVE-2018-6764: Fixed guest executable code injection via libnss_dns.so loaded by libvirt_lxc before init (bsc#1080042). - CVE-2018-1064: Fixed denial of service when reading from guest agent (bsc#1083625). Non-security issues fixed: - Error starting domain: internal error: No usable sysfs TPM cancel file could be found (bsc#1078808). - SUSE Linux Enterprise 11 SP4 hvm converted to pvhvm. Unless vm memory is on gig boundary, vm won't boot (bsc#1082041).
Family:	unix	Class:	patch
Status:		Reference(s):	1012382 1013882 1031717 1046610 1057734 1070536 1075428 1076847 1077560 1078808 1079869 1080042 1082041 1082153 1082299 1082318 1083125 1083625 1083745 1083836 1084353 1084362 1084610 1084721 1084829 1085042 1085185 1085224 1085402 1085404 1086162 1086194 1087088 1087260 1087845 1088241 1088242 1088600 1088684 1089198 1089608 1089644 1089752 1090643 1101676 1101677 1101678 1102151 1103342 1109663 1109847 1112368 1112397 1112417 1112421 1112432 1116686 1118277 1118754 1120114 1120115 1120116 1120117 1120118 1120119 1120120 1120121 1120122 1128828 1129180 1131863 1132256 1132666 1134156 1135824 1136037 1138459 1140359 1142614 1146882 1146884 1149332 1164860 1165784 1168630 1171878 1172085 1173998 1174117 1176013 CVE-2010-1205 CVE-2011-2501 CVE-2011-2690 CVE-2011-2691 CVE-2011-2692 CVE-2011-3026 CVE-2011-3048 CVE-2011-3328 CVE-2011-3464 CVE-2012-3386 CVE-2015-8126 CVE-2015-8540 CVE-2016-10087 CVE-2016-9843 CVE-2017-18257 CVE-2017-5715 CVE-2018-1000802 CVE-2018-10087 CVE-2018-10124 CVE-2018-1064 CVE-2018-1087 CVE-2018-14432 CVE-2018-14647 CVE-2018-15126 CVE-2018-15127 CVE-2018-19788 CVE-2018-20019 CVE-2018-20020 CVE-2018-20021 CVE-2018-20022 CVE-2018-20023 CVE-2018-20024 CVE-2018-3058 CVE-2018-3063 CVE-2018-3064 CVE-2018-3066 CVE-2018-3143 CVE-2018-3156 CVE-2018-3174 CVE-2018-3251 CVE-2018-3282 CVE-2018-6307 CVE-2018-6764 CVE-2018-7740 CVE-2018-8043 CVE-2018-8781 CVE-2018-8822 CVE-2018-8897 CVE-2019-10160 CVE-2019-11070 CVE-2019-11691 CVE-2019-11692 CVE-2019-11693 CVE-2019-11694 CVE-2019-11698 CVE-2019-12973 CVE-2019-14811 CVE-2019-14812 CVE-2019-14813 CVE-2019-14817 CVE-2019-2529 CVE-2019-2537 CVE-2019-3835 CVE-2019-3839 CVE-2019-6201 CVE-2019-6251 CVE-2019-7285 CVE-2019-7292 CVE-2019-7317 CVE-2019-8503 CVE-2019-8506 CVE-2019-8515 CVE-2019-8524 CVE-2019-8535 CVE-2019-8536 CVE-2019-8544 CVE-2019-8551 CVE-2019-8558 CVE-2019-8559 CVE-2019-8563 CVE-2019-9800 CVE-2019-9815 CVE-2019-9816 CVE-2019-9817 CVE-2019-9818 CVE-2019-9819 CVE-2019-9820 CVE-2019-9893 CVE-2020-10029 CVE-2020-13753 CVE-2020-13935 CVE-2020-1935 CVE-2020-6819 CVE-2020-6820 CVE-2020-9802 CVE-2020-9803 CVE-2020-9805 CVE-2020-9806 CVE-2020-9807 CVE-2020-9843 CVE-2020-9850 SUSE-SU-2018:0861-1 SUSE-SU-2018:1173-1 SUSE-SU-2018:2761-1 SUSE-SU-2019:0019-1 SUSE-SU-2019:0060-1 SUSE-SU-2019:1388-1 SUSE-SU-2019:2048-1 SUSE-SU-2019:2053-1 SUSE-SU-2019:2478-1 SUSE-SU-2020:0928-1 SUSE-SU-2020:2069-1 SUSE-SU-2020:2611-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND python2-paramiko-2.4.1-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libxslt-1.1.32-lp151.3.3 is installed OR libxslt-devel-1.1.32-lp151.3.3 is installed OR libxslt-devel-32bit-1.1.32-lp151.3.3 is installed OR libxslt-python-1.1.32-lp151.3.3 is installed OR libxslt-tools-1.1.32-lp151.3.3 is installed OR libxslt1-1.1.32-lp151.3.3 is installed OR libxslt1-32bit-1.1.32-lp151.3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libvirt-2.0.0-27.34 is installed OR libvirt-client-2.0.0-27.34 is installed OR libvirt-daemon-2.0.0-27.34 is installed OR libvirt-daemon-config-network-2.0.0-27.34 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.34 is installed OR libvirt-daemon-driver-interface-2.0.0-27.34 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.34 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.34 is installed OR libvirt-daemon-driver-network-2.0.0-27.34 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.34 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.34 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.34 is installed OR libvirt-daemon-driver-secret-2.0.0-27.34 is installed OR libvirt-daemon-driver-storage-2.0.0-27.34 is installed OR libvirt-daemon-hooks-2.0.0-27.34 is installed OR libvirt-daemon-lxc-2.0.0-27.34 is installed OR libvirt-daemon-qemu-2.0.0-27.34 is installed OR libvirt-daemon-xen-2.0.0-27.34 is installed OR libvirt-doc-2.0.0-27.34 is installed OR libvirt-lock-sanlock-2.0.0-27.34 is installed OR libvirt-nss-2.0.0-27.34 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information tomcat-8.0.53-29.37 is installed OR tomcat-admin-webapps-8.0.53-29.37 is installed OR tomcat-docs-webapp-8.0.53-29.37 is installed OR tomcat-el-3_0-api-8.0.53-29.37 is installed OR tomcat-javadoc-8.0.53-29.37 is installed OR tomcat-jsp-2_3-api-8.0.53-29.37 is installed OR tomcat-lib-8.0.53-29.37 is installed OR tomcat-servlet-3_1-api-8.0.53-29.37 is installed OR tomcat-webapps-8.0.53-29.37 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.1-2.41 is installed OR libwebkit2gtk-4_0-37-2.24.1-2.41 is installed OR libwebkit2gtk3-lang-2.24.1-2.41 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.1-2.41 is installed OR typelib-1_0-WebKit2-4_0-2.24.1-2.41 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.24.1-2.41 is installed OR webkit2gtk-4_0-injected-bundles-2.24.1-2.41 is installed OR webkit2gtk3-2.24.1-2.41 is installed OR webkit2gtk3-devel-2.24.1-2.41 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information MozillaFirefox-60.7.0-109.72 is installed OR MozillaFirefox-devel-60.7.0-109.72 is installed OR MozillaFirefox-translations-common-60.7.0-109.72 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND libpng15-15-1.5.22-9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_7_0-openjdk-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-demo-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-devel-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-headless-1.7.0.241-43.30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information xen-4.9.4_06-3.59 is installed OR xen-doc-html-4.9.4_06-3.59 is installed OR xen-libs-4.9.4_06-3.59 is installed OR xen-libs-32bit-4.9.4_06-3.59 is installed OR xen-tools-4.9.4_06-3.59 is installed OR xen-tools-domU-4.9.4_06-3.59 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_103-default-2-2 is installed OR kgraft-patch-SLE12-SP3_Update_28-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information gpgme-1.5.1-1 is installed OR libgpgme11-1.5.1-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information openstack-aodh-5.1.1~dev5-3.5 is installed OR openstack-aodh-api-5.1.1~dev5-3.5 is installed OR openstack-aodh-doc-5.1.1~dev5-3.5 is installed OR openstack-aodh-evaluator-5.1.1~dev5-3.5 is installed OR openstack-aodh-expirer-5.1.1~dev5-3.5 is installed OR openstack-aodh-listener-5.1.1~dev5-3.5 is installed OR openstack-aodh-notifier-5.1.1~dev5-3.5 is installed OR openstack-barbican-5.0.1~dev11-3.8 is installed OR openstack-barbican-api-5.0.1~dev11-3.8 is installed OR openstack-barbican-doc-5.0.1~dev11-3.8 is installed OR openstack-barbican-keystone-listener-5.0.1~dev11-3.8 is installed OR openstack-barbican-retry-5.0.1~dev11-3.8 is installed OR openstack-barbican-worker-5.0.1~dev11-3.8 is installed OR openstack-cinder-11.1.2~dev14-3.6 is installed OR openstack-cinder-api-11.1.2~dev14-3.6 is installed OR openstack-cinder-backup-11.1.2~dev14-3.6 is installed OR openstack-cinder-doc-11.1.2~dev14-3.6 is installed OR openstack-cinder-scheduler-11.1.2~dev14-3.6 is installed OR openstack-cinder-volume-11.1.2~dev14-3.6 is installed OR openstack-dashboard-12.0.4~dev1-3.8 is installed OR openstack-designate-5.0.2~dev5-3.5 is installed OR openstack-designate-agent-5.0.2~dev5-3.5 is installed OR openstack-designate-api-5.0.2~dev5-3.5 is installed OR openstack-designate-central-5.0.2~dev5-3.5 is installed OR openstack-designate-doc-5.0.2~dev5-3.5 is installed OR openstack-designate-producer-5.0.2~dev5-3.5 is installed OR openstack-designate-sink-5.0.2~dev5-3.5 is installed OR openstack-designate-worker-5.0.2~dev5-3.5 is installed OR openstack-glance-15.0.2~dev4-3.3 is installed OR openstack-glance-api-15.0.2~dev4-3.3 is installed OR openstack-glance-doc-15.0.2~dev4-3.3 is installed OR openstack-glance-registry-15.0.2~dev4-3.3 is installed OR openstack-heat-9.0.5~dev11-3.6 is installed OR openstack-heat-api-9.0.5~dev11-3.6 is installed OR openstack-heat-api-cfn-9.0.5~dev11-3.6 is installed OR openstack-heat-api-cloudwatch-9.0.5~dev11-3.6 is installed OR openstack-heat-doc-9.0.5~dev11-3.6 is installed OR openstack-heat-engine-9.0.5~dev11-3.6 is installed OR openstack-heat-plugin-heat_docker-9.0.5~dev11-3.6 is installed OR openstack-heat-templates-0.0.0+git.1525957319.6b5a7cd-3.3 is installed OR openstack-heat-test-9.0.5~dev11-3.6 is installed OR openstack-horizon-plugin-designate-ui-5.0.2~dev5-3.3 is installed OR openstack-horizon-plugin-freezer-ui-5.0.1~dev6-3.3 is installed OR openstack-horizon-plugin-gbp-ui-5.0.1~dev21-4.3 is installed OR openstack-horizon-plugin-manila-ui-2.10.3~dev4-4.5 is installed OR openstack-horizon-plugin-neutron-lbaas-ui-3.0.3~dev2-3.5 is installed OR openstack-horizon-plugin-trove-ui-9.0.1~dev7-3.3 is installed OR openstack-ironic-9.1.5~dev7-3.6 is installed OR openstack-ironic-api-9.1.5~dev7-3.6 is installed OR openstack-ironic-conductor-9.1.5~dev7-3.6 is installed OR openstack-ironic-doc-9.1.5~dev7-3.6 is installed OR openstack-keystone-12.0.1~dev19-5.8 is installed OR openstack-keystone-doc-12.0.1~dev19-5.8 is installed OR openstack-manila-5.0.2~dev55-3.6 is installed OR openstack-manila-api-5.0.2~dev55-3.6 is installed OR openstack-manila-data-5.0.2~dev55-3.6 is installed OR openstack-manila-doc-5.0.2~dev55-3.6 is installed OR openstack-manila-scheduler-5.0.2~dev55-3.6 is installed OR openstack-manila-share-5.0.2~dev55-3.6 is installed OR openstack-neutron-11.0.6~dev63-3.6 is installed OR openstack-neutron-dhcp-agent-11.0.6~dev63-3.6 is installed OR openstack-neutron-doc-11.0.6~dev63-3.6 is installed OR openstack-neutron-fwaas-11.0.2~dev7-3.5 is installed OR openstack-neutron-fwaas-doc-11.0.2~dev7-3.5 is installed OR openstack-neutron-ha-tool-11.0.6~dev63-3.6 is installed OR openstack-neutron-l3-agent-11.0.6~dev63-3.6 is installed OR openstack-neutron-lbaas-11.0.4~dev4-3.3 is installed OR openstack-neutron-lbaas-agent-11.0.4~dev4-3.3 is installed OR openstack-neutron-lbaas-doc-11.0.4~dev4-3.3 is installed OR openstack-neutron-linuxbridge-agent-11.0.6~dev63-3.6 is installed OR openstack-neutron-macvtap-agent-11.0.6~dev63-3.6 is installed OR openstack-neutron-metadata-agent-11.0.6~dev63-3.6 is installed OR openstack-neutron-metering-agent-11.0.6~dev63-3.6 is installed OR openstack-neutron-openvswitch-agent-11.0.6~dev63-3.6 is installed OR openstack-neutron-server-11.0.6~dev63-3.6 is installed OR openstack-neutron-vpn-agent-11.0.1~dev1-3.3 is installed OR openstack-neutron-vpnaas-11.0.1~dev1-3.3 is installed OR openstack-neutron-vpnaas-doc-11.0.1~dev1-3.3 is installed OR openstack-neutron-vyatta-agent-11.0.1~dev1-3.3 is installed OR openstack-neutron-zvm-agent-8.0.1~dev12-4.3 is installed OR openstack-nova-16.1.5~dev49-3.8 is installed OR openstack-nova-api-16.1.5~dev49-3.8 is installed OR openstack-nova-cells-16.1.5~dev49-3.8 is installed OR openstack-nova-compute-16.1.5~dev49-3.8 is installed OR openstack-nova-conductor-16.1.5~dev49-3.8 is installed OR openstack-nova-console-16.1.5~dev49-3.8 is installed OR openstack-nova-consoleauth-16.1.5~dev49-3.8 is installed OR openstack-nova-doc-16.1.5~dev49-3.8 is installed OR openstack-nova-novncproxy-16.1.5~dev49-3.8 is installed OR openstack-nova-placement-api-16.1.5~dev49-3.8 is installed OR openstack-nova-scheduler-16.1.5~dev49-3.8 is installed OR openstack-nova-serialproxy-16.1.5~dev49-3.8 is installed OR openstack-nova-virt-zvm-8.0.1~dev56-3.3 is installed OR openstack-nova-vncproxy-16.1.5~dev49-3.8 is installed OR openstack-octavia-1.0.3~dev21-4.6 is installed OR openstack-octavia-amphora-agent-1.0.3~dev21-4.6 is installed OR openstack-octavia-api-1.0.3~dev21-4.6 is installed OR openstack-octavia-health-manager-1.0.3~dev21-4.6 is installed OR openstack-octavia-housekeeping-1.0.3~dev21-4.6 is installed OR openstack-octavia-worker-1.0.3~dev21-4.6 is installed OR openstack-trove-8.0.1~dev11-3.3 is installed OR openstack-trove-api-8.0.1~dev11-3.3 is installed OR openstack-trove-conductor-8.0.1~dev11-3.3 is installed OR openstack-trove-doc-8.0.1~dev11-3.3 is installed OR openstack-trove-guestagent-8.0.1~dev11-3.3 is installed OR openstack-trove-taskmanager-8.0.1~dev11-3.3 is installed OR python-aodh-5.1.1~dev5-3.5 is installed OR python-barbican-5.0.1~dev11-3.8 is installed OR python-barbicanclient-4.5.2-4.3 is installed OR python-barbicanclient-doc-4.5.2-4.3 is installed OR python-cinder-11.1.2~dev14-3.6 is installed OR python-designate-5.0.2~dev5-3.5 is installed OR python-glance-15.0.2~dev4-3.3 is installed OR python-heat-9.0.5~dev11-3.6 is installed OR python-horizon-12.0.4~dev1-3.8 is installed OR python-horizon-plugin-designate-ui-5.0.2~dev5-3.3 is installed OR python-horizon-plugin-freezer-ui-5.0.1~dev6-3.3 is installed OR python-horizon-plugin-gbp-ui-5.0.1~dev21-4.3 is installed OR python-horizon-plugin-manila-ui-2.10.3~dev4-4.5 is installed OR python-horizon-plugin-neutron-lbaas-ui-3.0.3~dev2-3.5 is installed OR python-horizon-plugin-trove-ui-9.0.1~dev7-3.3 is installed OR python-ironic-9.1.5~dev7-3.6 is installed OR python-keystone-12.0.1~dev19-5.8 is installed OR python-keystone-json-assignment-0.0.2-3.3 is installed OR python-manila-5.0.2~dev55-3.6 is installed OR python-manilaclient-1.17.3-3.3 is installed OR python-manilaclient-doc-1.17.3-3.3 is installed OR python-neutron-11.0.6~dev63-3.6 is installed OR python-neutron-fwaas-11.0.2~dev7-3.5 is installed OR python-neutron-lbaas-11.0.4~dev4-3.3 is installed OR python-neutron-vpnaas-11.0.1~dev1-3.3 is installed OR python-nova-16.1.5~dev49-3.8 is installed OR python-octavia-1.0.3~dev21-4.6 is installed OR python-trove-8.0.1~dev11-3.3 is installed OR python-vmware-nsx-11.0.3~dev16-3.3 is installed OR python-vmware-nsxlib-11.0.4~dev7-3.3 is installed OR venv-openstack-aodh-5.0.1-12.4 is installed OR venv-openstack-aodh-x86_64-5.0.1-12.4 is installed OR venv-openstack-barbican-5.0.1-12.5 is installed OR venv-openstack-barbican-x86_64-5.0.1-12.5 is installed OR venv-openstack-cinder-11.0.2-14.5 is installed OR venv-openstack-cinder-x86_64-11.0.2-14.5 is installed OR venv-openstack-designate-5.0.1-12.3 is installed OR venv-openstack-designate-x86_64-5.0.1-12.3 is installed OR venv-openstack-glance-15.0.1-12.3 is installed OR venv-openstack-glance-x86_64-15.0.1-12.3 is installed OR venv-openstack-heat-9.0.1-12.5 is installed OR venv-openstack-heat-x86_64-9.0.1-12.5 is installed OR venv-openstack-horizon-11.0.2-14.6 is installed OR venv-openstack-horizon-x86_64-11.0.2-14.6 is installed OR venv-openstack-ironic-9.1.3-12.5 is installed OR venv-openstack-ironic-x86_64-9.1.3-12.5 is installed OR venv-openstack-keystone-12.0.1-11.5 is installed OR venv-openstack-keystone-x86_64-12.0.1-11.5 is installed OR venv-openstack-magnum-5.0.2-11.4 is installed OR venv-openstack-magnum-x86_64-5.0.2-11.4 is installed OR venv-openstack-manila-5.0.2-12.5 is installed OR venv-openstack-manila-x86_64-5.0.2-12.5 is installed OR venv-openstack-neutron-11.0.2-13.8 is installed OR venv-openstack-neutron-x86_64-11.0.2-13.8 is installed OR venv-openstack-nova-16.0.3-11.6 is installed OR venv-openstack-nova-x86_64-16.0.3-11.6 is installed OR venv-openstack-octavia-1.0.2-12.5 is installed OR venv-openstack-octavia-x86_64-1.0.2-12.5 is installed OR venv-openstack-sahara-7.0.1-11.4 is installed OR venv-openstack-sahara-x86_64-7.0.1-11.4 is installed OR venv-openstack-trove-8.0.0.0-11.4 is installed OR venv-openstack-trove-x86_64-8.0.0.0-11.4 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information kafka-0.10.2.2-5.6 is installed OR openstack-monasca-api-2.2.1~dev24-3.6 is installed OR python-monasca-api-2.2.1~dev24-3.6 is installed

BACK