OVAL Reference oval:org.opensuse.security:def:59408

Oval Definition:

oval:org.opensuse.security:def:59408

Revision Date:	2020-12-01	Version:	1
Title:	Security update for xen (Important)
Description:	This update for xen fixes the following issues: Security issues fixed: - CVE-2018-12891: Fix preemption checks bypass in x86 PV MM handling (XSA-264) (bsc#1097521). - CVE-2018-12892: Fix libxl failure to honour readonly flag on HVM emulated SCSI disks (XSA-266) (bsc#1097523). - CVE-2018-12893: Fix #DB exception safety check that could be triggered by a guest (XSA-265) (bsc#1097522). - CVE-2018-11806: Fix heap buffer overflow while reassembling fragmented datagrams (bsc#1096224). - CVE-2018-3665: Fix lazy FP Save/Restore (XSA-267) (bsc#1095242). Bug fixes: - bsc#1027519: Update to Xen 4.7.6 bug fix only release. - bsc#1087289: Xen BUG at sched_credit.c:1663. - bsc#1094725: `virsh blockresize` does not work with Xen qdisks.
Family:	unix	Class:	patch
Status:		Reference(s):	1019074 1027519 1077717 1087289 1094725 1095242 1096224 1096985 1097521 1097522 1097523 1102840 1106222 1106515 1108308 1110910 1111006 1111010 1111013 1111331 1111622 1114422 1115375 1115960 1116846 1118900 1120657 1122668 1125893 1126088 1132593 1132666 1136035 1139073 1141035 1141121 1141676 1141780 1141782 1141783 1141784 1141785 1141786 1141787 1141789 1143215 1145559 1145796 1146578 1148158 1148383 1150895 1154043 1155988 1160039 1160895 1160912 1162388 1165631 1167240 1168874 1170601 1171863 1171864 1171866 1173659 1173942 1174247 917802 CVE-2002-2443 CVE-2009-0844 CVE-2009-0845 CVE-2009-0846 CVE-2009-0847 CVE-2009-3295 CVE-2009-4212 CVE-2010-0283 CVE-2010-0628 CVE-2010-1320 CVE-2010-1321 CVE-2010-1322 CVE-2010-1323 CVE-2010-1324 CVE-2010-4020 CVE-2010-4021 CVE-2010-4022 CVE-2011-0281 CVE-2011-0282 CVE-2011-0284 CVE-2011-0285 CVE-2011-1527 CVE-2011-1528 CVE-2011-1529 CVE-2011-1530 CVE-2012-1012 CVE-2012-1013 CVE-2012-1016 CVE-2012-2396 CVE-2013-1415 CVE-2013-1417 CVE-2013-1418 CVE-2014-4341 CVE-2014-4342 CVE-2014-4343 CVE-2014-4344 CVE-2014-4345 CVE-2014-5351 CVE-2014-5352 CVE-2014-5353 CVE-2014-5354 CVE-2014-5355 CVE-2014-9421 CVE-2014-9422 CVE-2014-9423 CVE-2015-2694 CVE-2015-2695 CVE-2015-2696 CVE-2015-2697 CVE-2015-2698 CVE-2015-3448 CVE-2015-8629 CVE-2015-8630 CVE-2015-8631 CVE-2016-10127 CVE-2016-3119 CVE-2016-3120 CVE-2018-10839 CVE-2018-11806 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-12891 CVE-2018-12892 CVE-2018-12893 CVE-2018-15727 CVE-2018-15746 CVE-2018-17958 CVE-2018-17962 CVE-2018-17963 CVE-2018-18074 CVE-2018-18849 CVE-2018-19039 CVE-2018-3665 CVE-2018-558213 CVE-2019-11091 CVE-2019-11135 CVE-2019-11139 CVE-2019-11500 CVE-2019-13611 CVE-2019-15043 CVE-2019-16746 CVE-2019-18901 CVE-2019-2614 CVE-2019-2627 CVE-2019-2628 CVE-2019-2745 CVE-2019-2762 CVE-2019-2766 CVE-2019-2769 CVE-2019-2786 CVE-2019-2816 CVE-2019-2842 CVE-2019-5477 CVE-2019-7317 CVE-2020-10543 CVE-2020-10878 CVE-2020-11668 CVE-2020-12723 CVE-2020-14331 CVE-2020-1749 CVE-2020-2574 CVE-2020-5267 CVE-2020-6821 CVE-2020-6822 CVE-2020-6825 CVE-2020-6827 CVE-2020-6828 SUSE-SU-2018:2081-2 SUSE-SU-2018:3074-2 SUSE-SU-2019:1296-1 SUSE-SU-2019:2036-1 SUSE-SU-2019:2454-1 SUSE-SU-2019:2867-1 SUSE-SU-2019:2959-1 SUSE-SU-2020:0527-1 SUSE-SU-2020:0555-1 SUSE-SU-2020:0954-1 SUSE-SU-2020:0978-1 SUSE-SU-2020:1662-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information eog-3.26.2-lp150.3 is installed OR eog-lang-3.26.2-lp150.3 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libmirage-3.2.2-lp151.3.3 is installed OR libmirage-3_2-3.2.2-lp151.3.3 is installed OR libmirage-data-3.2.2-lp151.3.3 is installed OR libmirage-devel-3.2.2-lp151.3.3 is installed OR libmirage-lang-3.2.2-lp151.3.3 is installed OR libmirage11-3.2.2-lp151.3.3 is installed OR typelib-1_0-libmirage-3_2-3.2.2-lp151.3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information xen-4.7.6_02-43.36 is installed OR xen-doc-html-4.7.6_02-43.36 is installed OR xen-libs-4.7.6_02-43.36 is installed OR xen-libs-32bit-4.7.6_02-43.36 is installed OR xen-tools-4.7.6_02-43.36 is installed OR xen-tools-domU-4.7.6_02-43.36 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information qemu-2.6.2-41.46 is installed OR qemu-block-curl-2.6.2-41.46 is installed OR qemu-block-rbd-2.6.2-41.46 is installed OR qemu-block-ssh-2.6.2-41.46 is installed OR qemu-guest-agent-2.6.2-41.46 is installed OR qemu-ipxe-1.0.0-41.46 is installed OR qemu-kvm-2.6.2-41.46 is installed OR qemu-lang-2.6.2-41.46 is installed OR qemu-seabios-1.9.1-41.46 is installed OR qemu-sgabios-8-41.46 is installed OR qemu-tools-2.6.2-41.46 is installed OR qemu-vgabios-1.9.1-41.46 is installed OR qemu-x86-2.6.2-41.46 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information krb5-1.12.5-39 is installed OR krb5-32bit-1.12.5-39 is installed OR krb5-client-1.12.5-39 is installed OR krb5-doc-1.12.5-39 is installed OR krb5-plugin-kdb-ldap-1.12.5-39 is installed OR krb5-plugin-preauth-otp-1.12.5-39 is installed OR krb5-plugin-preauth-pkinit-1.12.5-39 is installed OR krb5-server-1.12.5-39 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND ucode-intel-20190618-13.47 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libsolv-0.6.36-2.27.19 is installed OR libsolv-tools-0.6.36-2.27.19 is installed OR libzypp-16.20.2-27.60 is installed OR perl-solv-0.6.36-2.27.19 is installed OR python-solv-0.6.36-2.27.19 is installed OR zypper-1.13.54-18.40 is installed OR zypper-log-1.13.54-18.40 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_156-94_57-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_18-8-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND opensc-0.13.0-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND clamav-0.100.2-33.18 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information dovecot22-2.2.31-19.17 is installed OR dovecot22-backend-mysql-2.2.31-19.17 is installed OR dovecot22-backend-pgsql-2.2.31-19.17 is installed OR dovecot22-backend-sqlite-2.2.31-19.17 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND python-Twisted-15.2.1-9.5 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information crowbar-core-5.0+git.1569597589.1f025c557-3.32 is installed OR crowbar-core-branding-upstream-5.0+git.1569597589.1f025c557-3.32 is installed OR crowbar-ha-5.0+git.1567673535.607aada-3.26 is installed OR crowbar-openstack-5.0+git.1570141351.058c8bd44-4.31 is installed OR crowbar-ui-1.2.0+git.1568396400.0344a727-3.12 is installed OR galera-3-25.3.25-4.6 is installed OR galera-3-wsrep-provider-25.3.25-4.6 is installed OR grafana-4.6.5-4.6 is installed OR libmariadb3-3.1.2-3.12 is installed OR mariadb-10.2.25-4.14 is installed OR mariadb-client-10.2.25-4.14 is installed OR mariadb-connector-c-3.1.2-3.12 is installed OR mariadb-errormessages-10.2.25-4.14 is installed OR mariadb-galera-10.2.25-4.14 is installed OR mariadb-tools-10.2.25-4.14 is installed OR novnc-1.0.0-3.6 is installed OR openstack-cinder-11.2.3~dev16-3.21 is installed OR openstack-cinder-api-11.2.3~dev16-3.21 is installed OR openstack-cinder-backup-11.2.3~dev16-3.21 is installed OR openstack-cinder-doc-11.2.3~dev16-3.21 is installed OR openstack-cinder-scheduler-11.2.3~dev16-3.21 is installed OR openstack-cinder-volume-11.2.3~dev16-3.21 is installed OR openstack-glance-15.0.3~dev3-3.12 is installed OR openstack-glance-api-15.0.3~dev3-3.12 is installed OR openstack-glance-doc-15.0.3~dev3-3.12 is installed OR openstack-glance-registry-15.0.3~dev3-3.12 is installed OR openstack-heat-9.0.8~dev13-3.24 is installed OR openstack-heat-api-9.0.8~dev13-3.24 is installed OR openstack-heat-api-cfn-9.0.8~dev13-3.24 is installed OR openstack-heat-api-cloudwatch-9.0.8~dev13-3.24 is installed OR openstack-heat-doc-9.0.8~dev13-3.24 is installed OR openstack-heat-engine-9.0.8~dev13-3.24 is installed OR openstack-heat-plugin-heat_docker-9.0.8~dev13-3.24 is installed OR openstack-heat-test-9.0.8~dev13-3.24 is installed OR openstack-horizon-plugin-neutron-vpnaas-ui-1.0.1~dev3-3.6 is installed OR openstack-keystone-12.0.4~dev4-5.27 is installed OR openstack-keystone-doc-12.0.4~dev4-5.27 is installed OR openstack-monasca-installer-20190923_16.32-3.9 is installed OR openstack-neutron-11.0.9~dev51-3.24 is installed OR openstack-neutron-dhcp-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-doc-11.0.9~dev51-3.24 is installed OR openstack-neutron-gbp-7.3.1~dev56-3.9 is installed OR openstack-neutron-ha-tool-11.0.9~dev51-3.24 is installed OR openstack-neutron-l3-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-lbaas-11.0.4~dev6-3.15 is installed OR openstack-neutron-lbaas-agent-11.0.4~dev6-3.15 is installed OR openstack-neutron-lbaas-doc-11.0.4~dev6-3.15 is installed OR openstack-neutron-linuxbridge-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-macvtap-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-metadata-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-metering-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-openvswitch-agent-11.0.9~dev51-3.24 is installed OR openstack-neutron-server-11.0.9~dev51-3.24 is installed OR openstack-nova-16.1.9~dev7-3.29 is installed OR openstack-nova-api-16.1.9~dev7-3.29 is installed OR openstack-nova-cells-16.1.9~dev7-3.29 is installed OR openstack-nova-compute-16.1.9~dev7-3.29 is installed OR openstack-nova-conductor-16.1.9~dev7-3.29 is installed OR openstack-nova-console-16.1.9~dev7-3.29 is installed OR openstack-nova-consoleauth-16.1.9~dev7-3.29 is installed OR openstack-nova-doc-16.1.9~dev7-3.29 is installed OR openstack-nova-novncproxy-16.1.9~dev7-3.29 is installed OR openstack-nova-placement-api-16.1.9~dev7-3.29 is installed OR openstack-nova-scheduler-16.1.9~dev7-3.29 is installed OR openstack-nova-serialproxy-16.1.9~dev7-3.29 is installed OR openstack-nova-vncproxy-16.1.9~dev7-3.29 is installed OR python-amqp-2.2.2-3.6 is installed OR python-cinder-11.2.3~dev16-3.21 is installed OR python-glance-15.0.3~dev3-3.12 is installed OR python-heat-9.0.8~dev13-3.24 is installed OR python-horizon-plugin-neutron-vpnaas-ui-1.0.1~dev3-3.6 is installed OR python-keystone-12.0.4~dev4-5.27 is installed OR python-neutron-11.0.9~dev51-3.24 is installed OR python-neutron-gbp-7.3.1~dev56-3.9 is installed OR python-neutron-lbaas-11.0.4~dev6-3.15 is installed OR python-nova-16.1.9~dev7-3.29 is installed OR python-ovs-2.7.2-3.6 is installed OR python-pysaml2-4.0.2-5.3 is installed OR python-urllib3-1.22-5.9 is installed OR release-notes-suse-openstack-cloud-8.20190911-3.20 is installed OR ruby2.1-rubygem-easy_diff-1.0.0-3.4 is installed OR rubygem-easy_diff-1.0.0-3.4 is installed

BACK