Oval Definition:	oval:org.opensuse.security:def:59707
Revision Date: 2020-12-22 Version: 1 Title: Security update for xen (Moderate) Description: This update for xen fixes the following issues: - CVE-2020-29480: Fixed an issue which could have allowed leak of non-sensitive data to administrator guests (bsc#117949 XSA-115). - CVE-2020-29481: Fixed an issue which could have allowd to new domains to inherit existing node permissions (bsc#1179498 XSA-322). - CVE-2020-29483: Fixed an issue where guests could disturb domain cleanup (bsc#1179502 XSA-325). - CVE-2020-29484: Fixed an issue where guests could crash xenstored via watchs (bsc#1179501 XSA-324). - CVE-2020-29566: Fixed an undue recursion in x86 HVM context switch code (bsc#1179506 XSA-348). - CVE-2020-29570: Fixed an issue where FIFO event channels control block related ordering (bsc#1179514 XSA-358). - CVE-2020-29571: Fixed an issue where FIFO event channels control structure ordering (bsc#1179516 XSA-359). - CVE-2020-29130: Fixed an out-of-bounds access while processing ARP packets (bsc#1179477). - Fixed an issue where dump-core shows missing nr_pages during core (bsc#1176782). - Multiple other bugs (bsc#1027519) Family: unix Class: patch Status: Reference(s): 1027519 1035442 1049825 1050257 1051188 1051729 1060995 1060996 1061000 1061081 1067317 1068032 1070158 1070159 1070160 1070163 1072928 1074562 1076116 1076180 1090638 1091610 1092952 1093095 1095070 1106923 1106989 1106996 1107609 1108835 1109252 1109893 1110445 1110542 1111278 1111319 1112024 1112911 1113083 1113296 1113632 1113665 1115916 1115917 1116995 1120381 1120629 1120630 1120631 1122033 1123886 1124365 1124366 1124368 1127155 1128649 1129186 1130330 1131317 1131823 1132053 1132054 1132060 1134226 1137977 1140039 1145521 1148987 1152497 1154448 1154456 1154458 1154461 1155945 1157888 1158003 1158004 1158005 1158006 1158007 1160594 1160764 1161181 1161779 1163922 1168404 1168407 1169066 1175664 1175665 1175671 1176409 1176412 1176782 1179477 1179496 1179498 1179501 1179502 1179506 1179514 1179516 CVE-2012-1174 CVE-2013-4288 CVE-2016-10156 CVE-2016-7795 CVE-2017-11591 CVE-2017-11683 CVE-2017-14859 CVE-2017-14862 CVE-2017-14864 CVE-2017-15595 CVE-2017-17563 CVE-2017-17564 CVE-2017-17565 CVE-2017-17566 CVE-2017-17669 CVE-2017-17833 CVE-2017-18030 CVE-2017-5715 CVE-2017-5731 CVE-2017-5732 CVE-2017-5733 CVE-2017-5734 CVE-2017-5735 CVE-2017-5753 CVE-2017-5754 CVE-2018-10958 CVE-2018-10998 CVE-2018-1115 CVE-2018-11531 CVE-2018-12207 CVE-2018-15686 CVE-2018-15688 CVE-2018-16412 CVE-2018-16413 CVE-2018-16644 CVE-2018-20467 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2018-3613 CVE-2018-5683 CVE-2019-10650 CVE-2019-11007 CVE-2019-11008 CVE-2019-11009 CVE-2019-11135 CVE-2019-13627 CVE-2019-18420 CVE-2019-18421 CVE-2019-18424 CVE-2019-18425 CVE-2019-19577 CVE-2019-19578 CVE-2019-19579 CVE-2019-19580 CVE-2019-19581 CVE-2019-19583 CVE-2019-3838 CVE-2019-7175 CVE-2019-7395 CVE-2019-7397 CVE-2019-7398 CVE-2019-9956 CVE-2020-14392 CVE-2020-14393 CVE-2020-15810 CVE-2020-15811 CVE-2020-1927 CVE-2020-1934 CVE-2020-1938 CVE-2020-24606 CVE-2020-29130 CVE-2020-29480 CVE-2020-29481 CVE-2020-29483 CVE-2020-29484 CVE-2020-29566 CVE-2020-29570 CVE-2020-29571 CVE-2020-7211 CVE-2020-8013 SUSE-SU-2018:0438-1 SUSE-SU-2018:1695-1 SUSE-SU-2018:3882-1 SUSE-SU-2018:4207-1 SUSE-SU-2019:2510-1 SUSE-SU-2020:0334-1 SUSE-SU-2020:0545-1 SUSE-SU-2020:1272-1 SUSE-SU-2020:2471-1 SUSE-SU-2020:3914-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information libpolkit0-0.114-lp150.2.6 is installed OR libpolkit0-32bit-0.114-lp150.2.6 is installed OR polkit-0.114-lp150.2.6 is installed OR polkit-devel-0.114-lp150.2.6 is installed OR polkit-doc-0.114-lp150.2.6 is installed OR typelib-1_0-Polkit-1_0-0.114-lp150.2.6 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information go1.12-1.12.9-lp151.2.21 is installed OR go1.12-doc-1.12.9-lp151.2.21 is installed OR go1.12-race-1.12.9-lp151.2.21 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information xen-4.7.6_06-43.59 is installed OR xen-doc-html-4.7.6_06-43.59 is installed OR xen-libs-4.7.6_06-43.59 is installed OR xen-libs-32bit-4.7.6_06-43.59 is installed OR xen-tools-4.7.6_06-43.59 is installed OR xen-tools-domU-4.7.6_06-43.59 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information openslp-2.0.0-18.15 is installed OR openslp-32bit-2.0.0-18.15 is installed OR openslp-server-2.0.0-18.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libsystemd0-228-142 is installed OR libsystemd0-32bit-228-142 is installed OR libudev1-228-142 is installed OR libudev1-32bit-228-142 is installed OR systemd-228-142 is installed OR systemd-32bit-228-142 is installed OR systemd-bash-completion-228-142 is installed OR systemd-sysvinit-228-142 is installed OR udev-228-142 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information xen-4.9.4_04-3.56 is installed OR xen-doc-html-4.9.4_04-3.56 is installed OR xen-libs-4.9.4_04-3.56 is installed OR xen-libs-32bit-4.9.4_04-3.56 is installed OR xen-tools-4.9.4_04-3.56 is installed OR xen-tools-domU-4.9.4_04-3.56 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND mailman-2.1.17-3.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_176-94_88-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_24-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information apache2-2.4.23-29.21 is installed OR apache2-doc-2.4.23-29.21 is installed OR apache2-example-pages-2.4.23-29.21 is installed OR apache2-prefork-2.4.23-29.21 is installed OR apache2-utils-2.4.23-29.21 is installed OR apache2-worker-2.4.23-29.21 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information gnome-shell-search-provider-nautilus-3.20.3-23.6 is installed OR libnautilus-extension1-3.20.3-23.6 is installed OR nautilus-3.20.3-23.6 is installed OR nautilus-lang-3.20.3-23.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND squid-3.5.21-26.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information xen-4.11.4_16-2.48.1 is installed OR xen-doc-html-4.11.4_16-2.48.1 is installed OR xen-libs-4.11.4_16-2.48.1 is installed OR xen-libs-32bit-4.11.4_16-2.48.1 is installed OR xen-tools-4.11.4_16-2.48.1 is installed OR xen-tools-domU-4.11.4_16-2.48.1 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libgcrypt-1.6.1-16.68 is installed OR libgcrypt20-1.6.1-16.68 is installed OR libgcrypt20-32bit-1.6.1-16.68 is installed OR libgcrypt20-hmac-1.6.1-16.68 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information apache2-2.4.23-29.54 is installed OR apache2-doc-2.4.23-29.54 is installed OR apache2-example-pages-2.4.23-29.54 is installed OR apache2-prefork-2.4.23-29.54 is installed OR apache2-utils-2.4.23-29.54 is installed OR apache2-worker-2.4.23-29.54 is installed
BACK