Oval Definition:	oval:org.opensuse.security:def:59415
Revision Date: 2020-12-01 Version: 1 Title: Security update for xen (Important) Description: This update for xen fixes the following security issues: - CVE-2018-3646: Systems with microprocessors utilizing speculative execution and address translations may have allowed unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis (bsc#1091107, bsc#1027519). - Incorrect MSR_DEBUGCTL handling let guests enable BTS allowing a malicious or buggy guest administrator can lock up the entire host (bsc#1103276) Family: unix Class: patch Status: Reference(s): 1004995 1027519 1029102 1029516 1032029 1033238 1036873 1037120 1038865 1040153 1040258 1040614 1040942 1040968 1043758 1043900 1045290 1046750 1048715 1051510 1056427 1068032 1075087 1080157 1084878 1085469 1087082 1088004 1088009 1090953 1091041 1091107 1092289 1093215 1094019 1103276 1104076 1111056 1117665 1122293 1122299 1130840 1131107 1132665 1132728 1132729 1132732 1133140 1134297 1135902 1135966 1135967 1136261 1137865 1139073 1140402 1140671 1141013 1141054 1141853 1142458 1143187 1143794 1144123 1144504 1144903 1145477 1146042 1146163 1146285 1146361 1146378 1146391 1146413 1146425 1146512 1146514 1146516 1146519 1146524 1146526 1146529 1146540 1146543 1146547 1146550 1146584 1146589 1147022 1147122 1148394 1148938 1149083 1149376 1149458 1149522 1149527 1149555 1149612 1149955 1150025 1150112 1150452 1150457 1150465 1150727 1150942 1151347 1151350 1151839 1152685 1152782 1152788 1153158 1153238 1153263 1153332 1154103 1154372 1155131 1155671 1162423 1163026 1166238 1172906 1172935 1173197 1173274 1174091 1174701 963041 982303 986216 CVE-2012-2944 CVE-2015-0295 CVE-2015-1858 CVE-2015-1859 CVE-2015-1860 CVE-2016-10906 CVE-2017-18379 CVE-2017-18509 CVE-2017-18551 CVE-2017-18595 CVE-2017-3308 CVE-2017-3309 CVE-2017-3453 CVE-2017-3456 CVE-2017-3464 CVE-2017-9217 CVE-2017-9445 CVE-2018-11212 CVE-2018-12207 CVE-2018-12472 CVE-2018-14647 CVE-2018-16301 CVE-2018-20852 CVE-2018-20976 CVE-2018-3639 CVE-2018-3646 CVE-2019-0154 CVE-2019-0155 CVE-2019-10220 CVE-2019-11135 CVE-2019-12155 CVE-2019-12625 CVE-2019-12900 CVE-2019-13164 CVE-2019-13272 CVE-2019-14378 CVE-2019-14814 CVE-2019-14815 CVE-2019-14816 CVE-2019-14821 CVE-2019-14835 CVE-2019-15098 CVE-2019-15165 CVE-2019-15211 CVE-2019-15212 CVE-2019-15214 CVE-2019-15215 CVE-2019-15216 CVE-2019-15217 CVE-2019-15218 CVE-2019-15219 CVE-2019-15220 CVE-2019-15221 CVE-2019-15239 CVE-2019-15290 CVE-2019-15291 CVE-2019-15505 CVE-2019-15666 CVE-2019-15807 CVE-2019-15902 CVE-2019-15924 CVE-2019-15926 CVE-2019-15927 CVE-2019-16056 CVE-2019-16232 CVE-2019-16233 CVE-2019-16234 CVE-2019-16413 CVE-2019-16935 CVE-2019-16995 CVE-2019-17055 CVE-2019-17056 CVE-2019-17133 CVE-2019-17666 CVE-2019-20503 CVE-2019-20907 CVE-2019-2422 CVE-2019-2426 CVE-2019-2602 CVE-2019-2684 CVE-2019-2698 CVE-2019-9456 CVE-2019-9506 CVE-2019-9947 CVE-2020-14093 CVE-2020-14154 CVE-2020-14422 CVE-2020-14954 CVE-2020-5208 CVE-2020-6805 CVE-2020-6806 CVE-2020-6807 CVE-2020-6811 CVE-2020-6812 CVE-2020-6814 SUSE-SU-2017:2031-1 SUSE-SU-2017:2035-1 SUSE-SU-2018:2410-2 SUSE-SU-2018:3467-1 SUSE-SU-2019:1392-1 SUSE-SU-2019:2157-1 SUSE-SU-2019:2669-1 SUSE-SU-2019:2949-1 SUSE-SU-2019:3066-1 SUSE-SU-2020:0630-1 SUSE-SU-2020:0717-1 SUSE-SU-2020:1794-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information ft2demos-2.9-lp150.2 is installed OR ftbench-2.9-lp150.2 is installed OR ftdiff-2.9-lp150.2 is installed OR ftdump-2.9-lp150.2 is installed OR ftgamma-2.9-lp150.2 is installed OR ftgrid-2.9-lp150.2 is installed OR ftinspect-2.9-lp150.2 is installed OR ftlint-2.9-lp150.2 is installed OR ftmulti-2.9-lp150.2 is installed OR ftstring-2.9-lp150.2 is installed OR ftvalid-2.9-lp150.2 is installed OR ftview-2.9-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information apache-commons-beanutils-1.9.2-lp151.3.3 is installed OR apache-commons-beanutils-javadoc-1.9.2-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information xen-4.7.6_04-43.39 is installed OR xen-doc-html-4.7.6_04-43.39 is installed OR xen-libs-4.7.6_04-43.39 is installed OR xen-libs-32bit-4.7.6_04-43.39 is installed OR xen-tools-4.7.6_04-43.39 is installed OR xen-tools-domU-4.7.6_04-43.39 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kernel-default-4.4.121-92.80 is installed OR kernel-default-base-4.4.121-92.80 is installed OR kernel-default-devel-4.4.121-92.80 is installed OR kernel-devel-4.4.121-92.80 is installed OR kernel-macros-4.4.121-92.80 is installed OR kernel-source-4.4.121-92.80 is installed OR kernel-syms-4.4.121-92.80 is installed OR kgraft-patch-4_4_121-92_80-default-1-3.5 is installed OR kgraft-patch-SLE12-SP2_Update_22-1-3.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libQt5Concurrent5-5.6.2-5 is installed OR libQt5Core5-5.6.2-5 is installed OR libQt5DBus5-5.6.2-5 is installed OR libQt5Gui5-5.6.2-5 is installed OR libQt5Network5-5.6.2-5 is installed OR libQt5OpenGL5-5.6.2-5 is installed OR libQt5PrintSupport5-5.6.2-5 is installed OR libQt5Sql5-5.6.2-5 is installed OR libQt5Sql5-mysql-5.6.2-5 is installed OR libQt5Sql5-postgresql-5.6.2-5 is installed OR libQt5Sql5-sqlite-5.6.2-5 is installed OR libQt5Sql5-unixODBC-5.6.2-5 is installed OR libQt5Test5-5.6.2-5 is installed OR libQt5Widgets5-5.6.2-5 is installed OR libQt5Xml5-5.6.2-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND squid-3.5.21-26.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information MozillaFirefox-60.9.0-109.86 is installed OR MozillaFirefox-translations-common-60.9.0-109.86 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_162-94_69-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_21-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information python3-rpm-4.11.2-16.21 is installed OR rpm-4.11.2-16.21 is installed OR rpm-32bit-4.11.2-16.21 is installed OR rpm-build-4.11.2-16.21 is installed OR rpm-python-4.11.2-16.21 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information crash-7.2.1-2 is installed OR crash-kmp-default-7.2.1_k4.12.14_94.41-2 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libpcap-1.8.1-10.3 is installed OR libpcap1-1.8.1-10.3 is installed OR tcpdump-4.9.2-14.14 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-Twisted-15.2.1-9.8 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information kernel-default-4.4.180-94.107 is installed OR kernel-default-base-4.4.180-94.107 is installed OR kernel-default-devel-4.4.180-94.107 is installed OR kernel-default-kgraft-4.4.180-94.107 is installed OR kernel-devel-4.4.180-94.107 is installed OR kernel-macros-4.4.180-94.107 is installed OR kernel-source-4.4.180-94.107 is installed OR kernel-syms-4.4.180-94.107 is installed OR kgraft-patch-4_4_180-94_107-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_29-1-4.3 is installed
BACK