Oval Definition:	oval:org.opensuse.security:def:58957
Revision Date: 2020-12-01 Version: 1 Title: Security update for xen (Important) Description: This update for xen fixes the following issues: Update to Xen 4.7.5 bug fix only release (bsc#1027519) Security issues fixed: - CVE-2018-7540: Fixed DoS via non-preemptable L3/L4 pagetable freeing (XSA-252) (bsc#1080635) - CVE-2018-7541: A grant table v2 -> v1 transition may crash Xen (XSA-255) (bsc#1080662) - CVE-2017-5753,CVE-2017-5715,CVE-2017-5754 Fixed information leaks via side effects of speculative execution (XSA-254). Includes Spectre v2 mitigation. (bsc#1074562) - Preserve xen-syms from xen-dbg.gz to allow processing vmcores with crash(1) (bsc#1087251) - Xen HVM: Fixed unchecked MSR access error (bsc#1072834) - Add script, udev rule and systemd service to watch for vcpu online/offline events in a HVM domU They are triggered via xl vcpu-set domU N (fate#324965) - Make sure tools and tools-domU require libs from the very same build Family: unix Class: patch Status: Reference(s): 1027519 1068032 1072834 1074562 1080635 1080662 1084878 1087251 1090036 1092497 1095218 1095219 1106913 1110949 1117665 1122293 1122299 1124729 1124734 1128378 1131390 1132728 1132729 1132732 1133135 1135966 1135967 1136446 1137597 1137865 1138459 1139550 1140671 1140738 1140747 1141054 1141329 1141332 1141853 1144338 1144903 1145477 1146285 1146361 1146378 1146391 1146413 1146425 1146512 1146514 1146516 1146519 1146584 1147122 1148394 1148938 1149376 1149522 1149527 1149555 1149612 1149849 1150025 1150112 1150223 1150452 1150457 1150465 1150466 1151021 1151347 1151350 1152685 1152782 1152788 1153158 1154372 1155671 1155898 1156187 1163927 1174628 1175476 1176579 CVE-2012-4504 CVE-2016-10906 CVE-2017-18509 CVE-2017-18595 CVE-2017-5715 CVE-2017-5753 CVE-2017-5754 CVE-2018-1000199 CVE-2018-11212 CVE-2018-11233 CVE-2018-11235 CVE-2018-12207 CVE-2018-14734 CVE-2018-17456 CVE-2018-20852 CVE-2018-20976 CVE-2018-3639 CVE-2018-7540 CVE-2018-7541 CVE-2019-0154 CVE-2019-0155 CVE-2019-10160 CVE-2019-10220 CVE-2019-11135 CVE-2019-11477 CVE-2019-11478 CVE-2019-12525 CVE-2019-12529 CVE-2019-13272 CVE-2019-13345 CVE-2019-14559 CVE-2019-14562 CVE-2019-14814 CVE-2019-14815 CVE-2019-14816 CVE-2019-14821 CVE-2019-14835 CVE-2019-14835 CVE-2019-15098 CVE-2019-15211 CVE-2019-15212 CVE-2019-15214 CVE-2019-15215 CVE-2019-15216 CVE-2019-15217 CVE-2019-15218 CVE-2019-15219 CVE-2019-15220 CVE-2019-15221 CVE-2019-15290 CVE-2019-15291 CVE-2019-15505 CVE-2019-15666 CVE-2019-15807 CVE-2019-15902 CVE-2019-15924 CVE-2019-15926 CVE-2019-15927 CVE-2019-16231 CVE-2019-16232 CVE-2019-16233 CVE-2019-16234 CVE-2019-16413 CVE-2019-16995 CVE-2019-17055 CVE-2019-17056 CVE-2019-17133 CVE-2019-17666 CVE-2019-18680 CVE-2019-18805 CVE-2019-2422 CVE-2019-2426 CVE-2019-2602 CVE-2019-2684 CVE-2019-2698 CVE-2019-3846 CVE-2019-6974 CVE-2019-7221 CVE-2019-9213 CVE-2019-9456 CVE-2019-9506 CVE-2020-14344 CVE-2020-1472 SUSE-SU-2018:0909-1 SUSE-SU-2018:1239-1 SUSE-SU-2018:1566-2 SUSE-SU-2018:4088-1 SUSE-SU-2019:0683-1 SUSE-SU-2019:1422-1 SUSE-SU-2019:2089-1 SUSE-SU-2019:2091-1 SUSE-SU-2019:2613-1 SUSE-SU-2020:2117-1 SUSE-SU-2020:2724-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND python3-pip-10.0.1-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND transfig-3.2.6a-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information xen-4.7.5_02-43.27 is installed OR xen-doc-html-4.7.5_02-43.27 is installed OR xen-libs-4.7.5_02-43.27 is installed OR xen-libs-32bit-4.7.5_02-43.27 is installed OR xen-tools-4.7.5_02-43.27 is installed OR xen-tools-domU-4.7.5_02-43.27 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information git-2.12.3-27.14 is installed OR git-core-2.12.3-27.14 is installed OR git-doc-2.12.3-27.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_8_0-openjdk-1.8.0.212-27.32 is installed OR java-1_8_0-openjdk-demo-1.8.0.212-27.32 is installed OR java-1_8_0-openjdk-devel-1.8.0.212-27.32 is installed OR java-1_8_0-openjdk-headless-1.8.0.212-27.32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_85-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_23-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libproxy1-0.4.13-16 is installed OR libproxy1-32bit-0.4.13-16 is installed OR libproxy1-config-gnome3-0.4.13-16 is installed OR libproxy1-config-gnome3-32bit-0.4.13-16 is installed OR libproxy1-networkmanager-0.4.13-16 is installed OR libproxy1-pacrunner-webkit-0.4.13-16 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information xen-4.9.4_06-3.59 is installed OR xen-doc-html-4.9.4_06-3.59 is installed OR xen-libs-4.9.4_06-3.59 is installed OR xen-libs-32bit-4.9.4_06-3.59 is installed OR xen-tools-4.9.4_06-3.59 is installed OR xen-tools-domU-4.9.4_06-3.59 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information cups-1.7.5-20.29 is installed OR cups-client-1.7.5-20.29 is installed OR cups-libs-1.7.5-20.29 is installed OR cups-libs-32bit-1.7.5-20.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libQtWebKit4-4.8.7+2.3.4-4.7 is installed OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed OR libqca2-2.0.3-17.7 is installed OR libqca2-32bit-2.0.3-17.7 is installed OR libqt4-4.8.7-8.8 is installed OR libqt4-32bit-4.8.7-8.8 is installed OR libqt4-devel-doc-4.8.7-8.8 is installed OR libqt4-qt3support-4.8.7-8.8 is installed OR libqt4-qt3support-32bit-4.8.7-8.8 is installed OR libqt4-sql-4.8.7-8.8 is installed OR libqt4-sql-32bit-4.8.7-8.8 is installed OR libqt4-sql-mysql-4.8.7-8.8 is installed OR libqt4-sql-plugins-4.8.7-8.8 is installed OR libqt4-sql-sqlite-4.8.7-8.8 is installed OR libqt4-x11-4.8.7-8.8 is installed OR libqt4-x11-32bit-4.8.7-8.8 is installed OR qt4-x11-tools-4.8.7-8.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information gstreamer-plugins-bad-1.8.3-17 is installed OR gstreamer-plugins-bad-lang-1.8.3-17 is installed OR libgstadaptivedemux-1_0-0-1.8.3-17 is installed OR libgstbadaudio-1_0-0-1.8.3-17 is installed OR libgstbadbase-1_0-0-1.8.3-17 is installed OR libgstbadvideo-1_0-0-1.8.3-17 is installed OR libgstbasecamerabinsrc-1_0-0-1.8.3-17 is installed OR libgstcodecparsers-1_0-0-1.8.3-17 is installed OR libgstgl-1_0-0-1.8.3-17 is installed OR libgstmpegts-1_0-0-1.8.3-17 is installed OR libgstphotography-1_0-0-1.8.3-17 is installed OR libgsturidownloader-1_0-0-1.8.3-17 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND git-2.12.3-27.17 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-activejob-4_2-4.2.9-3.6 is installed OR rubygem-activejob-4_2-4.2.9-3.6 is installed
BACK