Oval Definition:	oval:org.opensuse.security:def:59534
Revision Date: 2021-09-03 Version: 1 Title: Security update for xen (Important) Description: This update for xen fixes the following issues: Security issues fixed: - CVE-2021-28698: long running loops in grant table handling (XSA-380)(bsc#1189378). - CVE-2021-28697: grant table v2 status pages may remain accessible after de-allocation (XSA-379)(bsc#1189376). - CVE-2021-28694,CVE-2021-28695,CVE-2021-28696: IOMMU page mapping issues on x86 (XSA-378)(bsc#1189373). - CVE-2021-28699: inadequate grant-v2 status frames array bounds check (XSA-382)(bsc#1189380). - CVE-2021-28692: xen: inappropriate x86 IOMMU timeout detection / handling (bsc#1186429) - CVE-2021-28690: xen: x86: TSX Async Abort protections not restored after S3 (bsc#1186434) - CVE-2021-0089: xen: Speculative Code Store Bypass (bsc#1186433) - CVE-2021-20255: Fixed stack overflow via infinite recursion in eepro100 (bsc#1182654) - CVE-2021-3592: slirp: invalid pointer initialization may lead to information disclosure (bootp)(bsc#1187369). - CVE-2021-3594: slirp: invalid pointer initialization may lead to information disclosure (udp)(bsc#1187378). - CVE-2021-3595: slirp: invalid pointer initialization may lead to information disclosure (tftp)(bsc#1187376). - CVE-2021-3308: Fixed IRQ vector leak on x86 (XSA-360)(bsc#1181254). - Prevent superpage allocation in the LAPIC and ACPI_INFO range (bsc#1189882). Family: unix Class: patch Status: Reference(s): 1005778 1005780 1005781 1010399 1010405 1010406 1010408 1010409 1010421 1010423 1010424 1010425 1010426 1012382 1017967 1025108 1039616 1043008 1047281 1047487 1063043 1064311 1065180 1068032 1068951 1070116 1071009 1072166 1072216 1072556 1072866 1072890 1072962 1073090 1073525 1073792 1073809 1073868 1073874 1073912 1074235 1079152 1082962 1083650 1083900 1084878 1085185 1086400 1087007 1087012 1087036 1087086 1087095 1088004 1088009 1088681 1089638 1089895 1090518 1090534 1090955 1092497 1092552 1092611 1092813 1092904 1094033 1094353 1094823 1095042 1096140 1096242 1096281 1096728 1097356 1106913 1117665 1120374 1120629 1120630 1120631 1127155 1130103 1130840 1131823 1133528 1135966 1135967 1137865 1137977 1137990 1139550 1140671 1141054 1141853 1144338 1144903 1145477 1146285 1146361 1146378 1146391 1146413 1146425 1146512 1146514 1146516 1146519 1146584 1147122 1148394 1148938 1149376 1149429 1149496 1149522 1149527 1149555 1149612 1149849 1149955 1150025 1150112 1150223 1150452 1150457 1150465 1150466 1151347 1151350 1152685 1152782 1152788 1153158 1153238 1154372 1154738 1155419 1155671 1155898 1156187 1159819 1160471 1162423 1167976 1168669 1169746 1170441 1170908 1171978 1173022 1173274 1173986 1174091 1174420 1174701 1176756 1181254 1182654 1186429 1186433 1186434 1187369 1187376 1187378 1189373 1189376 1189378 1189380 1189882 959933 963897 964063 966170 966172 973378 983922 CVE-2006-0855 CVE-2007-1669 CVE-2010-2242 CVE-2011-1146 CVE-2011-2511 CVE-2011-4600 CVE-2012-3445 CVE-2013-0170 CVE-2013-1962 CVE-2013-2218 CVE-2013-2230 CVE-2013-4153 CVE-2013-4154 CVE-2013-4239 CVE-2013-4296 CVE-2013-4297 CVE-2013-4311 CVE-2013-4399 CVE-2013-4400 CVE-2013-4401 CVE-2013-6436 CVE-2013-6456 CVE-2013-6457 CVE-2013-6458 CVE-2014-0028 CVE-2014-0179 CVE-2014-1447 CVE-2014-3633 CVE-2014-3657 CVE-2014-7823 CVE-2014-8131 CVE-2015-0236 CVE-2015-5247 CVE-2015-5313 CVE-2015-8872 CVE-2016-10906 CVE-2016-2830 CVE-2016-4804 CVE-2016-5289 CVE-2016-5292 CVE-2016-9063 CVE-2016-9067 CVE-2016-9068 CVE-2016-9069 CVE-2016-9071 CVE-2016-9073 CVE-2016-9075 CVE-2016-9076 CVE-2016-9077 CVE-2017-13305 CVE-2017-17805 CVE-2017-17806 CVE-2017-18241 CVE-2017-18249 CVE-2017-18509 CVE-2017-18595 CVE-2017-2635 CVE-2017-5715 CVE-2017-5753 CVE-2017-5754 CVE-2017-7789 CVE-2018-1000199 CVE-2018-1000204 CVE-2018-1059 CVE-2018-1065 CVE-2018-1092 CVE-2018-1093 CVE-2018-1094 CVE-2018-1130 CVE-2018-12207 CVE-2018-14647 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2018-20852 CVE-2018-20976 CVE-2018-2755 CVE-2018-2761 CVE-2018-2766 CVE-2018-2767 CVE-2018-2771 CVE-2018-2781 CVE-2018-2782 CVE-2018-2784 CVE-2018-2787 CVE-2018-2813 CVE-2018-2817 CVE-2018-2819 CVE-2018-3665 CVE-2018-5150 CVE-2018-5151 CVE-2018-5152 CVE-2018-5153 CVE-2018-5154 CVE-2018-5155 CVE-2018-5157 CVE-2018-5158 CVE-2018-5159 CVE-2018-5160 CVE-2018-5163 CVE-2018-5164 CVE-2018-5165 CVE-2018-5166 CVE-2018-5167 CVE-2018-5168 CVE-2018-5169 CVE-2018-5172 CVE-2018-5173 CVE-2018-5174 CVE-2018-5175 CVE-2018-5176 CVE-2018-5177 CVE-2018-5178 CVE-2018-5179 CVE-2018-5180 CVE-2018-5181 CVE-2018-5182 CVE-2018-5183 CVE-2018-5803 CVE-2018-5848 CVE-2018-7492 CVE-2019-0154 CVE-2019-0155 CVE-2019-10220 CVE-2019-11135 CVE-2019-11757 CVE-2019-11758 CVE-2019-11759 CVE-2019-11760 CVE-2019-11761 CVE-2019-11762 CVE-2019-11763 CVE-2019-11764 CVE-2019-13272 CVE-2019-14814 CVE-2019-14815 CVE-2019-14816 CVE-2019-14821 CVE-2019-14835 CVE-2019-15098 CVE-2019-15211 CVE-2019-15212 CVE-2019-15214 CVE-2019-15215 CVE-2019-15216 CVE-2019-15217 CVE-2019-15218 CVE-2019-15219 CVE-2019-15220 CVE-2019-15221 CVE-2019-15290 CVE-2019-15291 CVE-2019-15505 CVE-2019-15666 CVE-2019-15681 CVE-2019-15690 CVE-2019-15807 CVE-2019-15902 CVE-2019-15903 CVE-2019-15924 CVE-2019-15926 CVE-2019-15927 CVE-2019-16056 CVE-2019-16231 CVE-2019-16232 CVE-2019-16233 CVE-2019-16234 CVE-2019-16413 CVE-2019-16935 CVE-2019-16995 CVE-2019-17006 CVE-2019-17055 CVE-2019-17056 CVE-2019-17133 CVE-2019-17666 CVE-2019-18680 CVE-2019-18805 CVE-2019-20788 CVE-2019-20907 CVE-2019-3859 CVE-2019-5482 CVE-2019-9456 CVE-2019-9506 CVE-2019-9947 CVE-2020-12399 CVE-2020-12402 CVE-2020-14422 CVE-2020-15673 CVE-2020-15676 CVE-2020-15677 CVE-2020-15678 CVE-2021-0089 CVE-2021-20255 CVE-2021-28690 CVE-2021-28692 CVE-2021-28694 CVE-2021-28695 CVE-2021-28696 CVE-2021-28697 CVE-2021-28698 CVE-2021-28699 CVE-2021-3308 CVE-2021-3592 CVE-2021-3594 CVE-2021-3595 SUSE-SU-2018:0010-1 SUSE-SU-2018:1492-1 SUSE-SU-2018:1781-1 SUSE-SU-2019:2339-2 SUSE-SU-2019:2984-1 SUSE-SU-2020:1165-1 SUSE-SU-2020:1839-1 SUSE-SU-2020:2660-1 SUSE-SU-2020:2699-1 SUSE-SU-2020:2759-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND libjasper4-2.0.14-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-accessibility-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-javadoc-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-src-1.8.0.222-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information curl-7.37.0-37.43 is installed OR libcurl4-7.37.0-37.43 is installed OR libcurl4-32bit-7.37.0-37.43 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kernel-default-4.4.121-92.85 is installed OR kernel-default-base-4.4.121-92.85 is installed OR kernel-default-devel-4.4.121-92.85 is installed OR kernel-devel-4.4.121-92.85 is installed OR kernel-macros-4.4.121-92.85 is installed OR kernel-source-4.4.121-92.85 is installed OR kernel-syms-4.4.121-92.85 is installed OR kgraft-patch-4_4_121-92_85-default-1-3.5 is installed OR kgraft-patch-SLE12-SP2_Update_23-1-3.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND dosfstools-3.0.26-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libexif-0.6.22-8.9 is installed OR libexif12-0.6.22-8.9 is installed OR libexif12-32bit-0.6.22-8.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_97-default-9-2 is installed OR kgraft-patch-SLE12-SP3_Update_26-9-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libtiff5-4.0.9-44.21 is installed OR libtiff5-32bit-4.0.9-44.21 is installed OR tiff-4.0.9-44.21 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information cups-pk-helper-0.2.5-5 is installed OR cups-pk-helper-lang-0.2.5-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information xen-4.11.4_20-2.60.1 is installed OR xen-doc-html-4.11.4_20-2.60.1 is installed OR xen-libs-4.11.4_20-2.60.1 is installed OR xen-libs-32bit-4.11.4_20-2.60.1 is installed OR xen-tools-4.11.4_20-2.60.1 is installed OR xen-tools-domU-4.11.4_20-2.60.1 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libsolv-0.6.36-2.30 is installed OR libsolv-devel-0.6.36-2.30 is installed OR libsolv-tools-0.6.36-2.30 is installed OR perl-solv-0.6.36-2.30 is installed OR python-solv-0.6.36-2.30 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information ardana-ansible-9.0+git.1568821007.4e73730-3.13 is installed OR ardana-horizon-9.0+git.1569869028.8edfc22-3.10 is installed OR ardana-keystone-9.0+git.1570035317.78077ac-3.10 is installed OR ardana-manila-9.0+git.1569444107.add6a40-3.9 is installed OR ardana-neutron-9.0+git.1571328680.3a89cb8-3.13 is installed OR grafana-6.2.5-3.9 is installed OR openstack-cinder-13.0.8~dev8-3.13 is installed OR openstack-cinder-api-13.0.8~dev8-3.13 is installed OR openstack-cinder-backup-13.0.8~dev8-3.13 is installed OR openstack-cinder-scheduler-13.0.8~dev8-3.13 is installed OR openstack-cinder-volume-13.0.8~dev8-3.13 is installed OR openstack-dashboard-14.0.5~dev1-3.9 is installed OR openstack-horizon-plugin-manila-ui-2.16.2~dev2-3.3 is installed OR openstack-keystone-14.1.1~dev26-3.13 is installed OR openstack-manila-7.3.1~dev15-4.13 is installed OR openstack-manila-api-7.3.1~dev15-4.13 is installed OR openstack-manila-data-7.3.1~dev15-4.13 is installed OR openstack-manila-scheduler-7.3.1~dev15-4.13 is installed OR openstack-manila-share-7.3.1~dev15-4.13 is installed OR openstack-neutron-13.0.6~dev3-3.13 is installed OR openstack-neutron-dhcp-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-fwaas-13.0.3~dev2-3.6 is installed OR openstack-neutron-ha-tool-13.0.6~dev3-3.13 is installed OR openstack-neutron-l3-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-lbaas-13.0.1~dev15-3.10 is installed OR openstack-neutron-lbaas-agent-13.0.1~dev15-3.10 is installed OR openstack-neutron-linuxbridge-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-macvtap-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-metadata-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-metering-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-openvswitch-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-server-13.0.6~dev3-3.13 is installed OR openstack-nova-18.2.4~dev18-3.13 is installed OR openstack-nova-api-18.2.4~dev18-3.13 is installed OR openstack-nova-cells-18.2.4~dev18-3.13 is installed OR openstack-nova-compute-18.2.4~dev18-3.13 is installed OR openstack-nova-conductor-18.2.4~dev18-3.13 is installed OR openstack-nova-console-18.2.4~dev18-3.13 is installed OR openstack-nova-novncproxy-18.2.4~dev18-3.13 is installed OR openstack-nova-placement-api-18.2.4~dev18-3.13 is installed OR openstack-nova-scheduler-18.2.4~dev18-3.13 is installed OR openstack-nova-serialproxy-18.2.4~dev18-3.13 is installed OR openstack-nova-vncproxy-18.2.4~dev18-3.13 is installed OR openstack-octavia-3.2.1~dev1-3.13 is installed OR openstack-octavia-amphora-agent-3.2.1~dev1-3.13 is installed OR openstack-octavia-amphora-image-0.1.1-7.3 is installed OR openstack-octavia-amphora-image-x86_64-0.1.1-7.3 is installed OR openstack-octavia-api-3.2.1~dev1-3.13 is installed OR openstack-octavia-health-manager-3.2.1~dev1-3.13 is installed OR openstack-octavia-housekeeping-3.2.1~dev1-3.13 is installed OR openstack-octavia-worker-3.2.1~dev1-3.13 is installed OR pdns-4.1.8-3.3 is installed OR pdns-backend-mysql-4.1.8-3.3 is installed OR python-Django1-1.11.24-3.12 is installed OR python-cinder-13.0.8~dev8-3.13 is installed OR python-horizon-14.0.5~dev1-3.9 is installed OR python-horizon-plugin-manila-ui-2.16.2~dev2-3.3 is installed OR python-keystone-14.1.1~dev26-3.13 is installed OR python-keystonemiddleware-5.2.1-11 is installed OR python-manila-7.3.1~dev15-4.13 is installed OR python-neutron-13.0.6~dev3-3.13 is installed OR python-neutron-fwaas-13.0.3~dev2-3.6 is installed OR python-neutron-lbaas-13.0.1~dev15-3.10 is installed OR python-nova-18.2.4~dev18-3.13 is installed OR python-octavia-3.2.1~dev1-3.13 is installed OR python-octaviaclient-1.6.1-3.3 is installed OR python-openstack_auth-14.0.5~dev1-3.9 is installed OR python-os-brick-2.5.8-3.6 is installed OR python-os-brick-common-2.5.8-3.6 is installed OR python-oslo.cache-1.30.4-3.3 is installed OR python-oslo.messaging-8.1.4-3.3 is installed OR venv-openstack-barbican-7.0.1~dev18-3.11 is installed OR venv-openstack-barbican-x86_64-7.0.1~dev18-3.11 is installed OR venv-openstack-cinder-13.0.8~dev8-3.11 is installed OR venv-openstack-cinder-x86_64-13.0.8~dev8-3.11 is installed OR venv-openstack-designate-7.0.1~dev22-3.11 is installed OR venv-openstack-designate-x86_64-7.0.1~dev22-3.11 is installed OR venv-openstack-glance-17.0.1~dev30-3.11 is installed OR venv-openstack-glance-x86_64-17.0.1~dev30-3.11 is installed OR venv-openstack-heat-11.0.3~dev23-3.11 is installed OR venv-openstack-heat-x86_64-11.0.3~dev23-3.11 is installed OR venv-openstack-horizon-14.0.5~dev1-4.11 is installed OR venv-openstack-horizon-x86_64-14.0.5~dev1-4.11 is installed OR venv-openstack-keystone-14.1.1~dev26-3.11 is installed OR venv-openstack-keystone-x86_64-14.1.1~dev26-3.11 is installed OR venv-openstack-magnum-7.1.1~dev28-4.11 is installed OR venv-openstack-magnum-x86_64-7.1.1~dev28-4.11 is installed OR venv-openstack-manila-7.3.1~dev15-3.11 is installed OR venv-openstack-manila-x86_64-7.3.1~dev15-3.11 is installed OR venv-openstack-monasca-2.7.1~dev10-3.11 is installed OR venv-openstack-monasca-ceilometer-1.8.2~dev3-3.11 is installed OR venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.11 is installed OR venv-openstack-monasca-x86_64-2.7.1~dev10-3.11 is installed OR venv-openstack-neutron-13.0.6~dev3-6.11 is installed OR venv-openstack-neutron-x86_64-13.0.6~dev3-6.11 is installed OR venv-openstack-nova-18.2.4~dev18-3.11 is installed OR venv-openstack-nova-x86_64-18.2.4~dev18-3.11 is installed OR venv-openstack-octavia-3.2.1~dev1-4.11 is installed OR venv-openstack-octavia-x86_64-3.2.1~dev1-4.11 is installed OR venv-openstack-sahara-9.0.2~dev12-3.11 is installed OR venv-openstack-sahara-x86_64-9.0.2~dev12-3.11 is installed OR venv-openstack-swift-2.19.2~dev1-2.8 is installed OR venv-openstack-swift-x86_64-2.19.2~dev1-2.8 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libpython3_4m1_0-3.4.10-25.52 is installed OR python3-3.4.10-25.52 is installed OR python3-base-3.4.10-25.52 is installed OR python3-curses-3.4.10-25.52 is installed OR python3-devel-3.4.10-25.52 is installed
BACK