Oval Definition:oval:org.opensuse.security:def:59933
Revision Date:2020-12-01Version:1
Title:Security update for libvirt (Important)
Description:

This update for libvirt fixes the following issues:

Security issues fixed:

- CVE-2019-10161: Fixed virDomainSaveImageGetXMLDesc API which could accept a path parameter pointing anywhere on the system and potentially leading to execution of a malicious file with root privileges by libvirtd (bsc#1138301). - CVE-2019-10167: Fixed an issue with virConnectGetDomainCapabilities API which could have been used to execute arbitrary emulators (bsc#1138303).

Non-security issue fixed:

- qemu: Add support for overriding max threads per process limit (bsc#1133719)
Family:unixClass:patch
Status:Reference(s):1017711
1017712
1026236
1069496
1069702
1070805
1081493
1086598
1106061
1114988
1119947
1123157
1123161
1125674
1126140
1126141
1126192
1126195
1126196
1126198
1126201
1127034
1127400
1128977
1129623
1130972
1133719
1133860
1134399
1135335
1135365
1137584
1138301
1138303
1139358
1139826
1140652
1140903
1140945
1141181
1141401
1141402
1141452
1141453
1141454
1142023
1142254
1142857
1143045
1143048
1143189
1143191
1143333
1144257
1144273
1144288
1144920
1145604
1145920
1145922
1151021
1159478
1159479
1159482
1159486
1170170
1173580
1178171
945190
CVE-2012-2812
CVE-2012-2813
CVE-2012-2814
CVE-2012-2836
CVE-2012-2837
CVE-2012-2840
CVE-2012-2841
CVE-2014-3577
CVE-2014-5044
CVE-2015-5262
CVE-2015-5276
CVE-2016-9941
CVE-2016-9942
CVE-2017-1000405
CVE-2017-16939
CVE-2017-18379
CVE-2018-16884
CVE-2018-19967
CVE-2018-20855
CVE-2018-20856
CVE-2018-7225
CVE-2018-8048
CVE-2019-10161
CVE-2019-10167
CVE-2019-10207
CVE-2019-1125
CVE-2019-11810
CVE-2019-13631
CVE-2019-13648
CVE-2019-14283
CVE-2019-14284
CVE-2019-14835
CVE-2019-14835
CVE-2019-15117
CVE-2019-15118
CVE-2019-18388
CVE-2019-18389
CVE-2019-18390
CVE-2019-18391
CVE-2019-3819
CVE-2019-6778
CVE-2019-9824
CVE-2020-12059
CVE-2020-4044
SUSE-SU-2017:3225-1
SUSE-SU-2018:0830-1
SUSE-SU-2019:2209-1
SUSE-SU-2019:2263-1
SUSE-SU-2020:1158-1
SUSE-SU-2020:1991-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libltdl7-2.4.6-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • chromedriver-76.0.3809.87-lp151.2.15 is installed
  • OR chromium-76.0.3809.87-lp151.2.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • libvirt-2.0.0-27.61 is installed
  • OR libvirt-client-2.0.0-27.61 is installed
  • OR libvirt-daemon-2.0.0-27.61 is installed
  • OR libvirt-daemon-config-network-2.0.0-27.61 is installed
  • OR libvirt-daemon-config-nwfilter-2.0.0-27.61 is installed
  • OR libvirt-daemon-driver-interface-2.0.0-27.61 is installed
  • OR libvirt-daemon-driver-libxl-2.0.0-27.61 is installed
  • OR libvirt-daemon-driver-lxc-2.0.0-27.61 is installed
  • OR libvirt-daemon-driver-network-2.0.0-27.61 is installed
  • OR libvirt-daemon-driver-nodedev-2.0.0-27.61 is installed
  • OR libvirt-daemon-driver-nwfilter-2.0.0-27.61 is installed
  • OR libvirt-daemon-driver-qemu-2.0.0-27.61 is installed
  • OR libvirt-daemon-driver-secret-2.0.0-27.61 is installed
  • OR libvirt-daemon-driver-storage-2.0.0-27.61 is installed
  • OR libvirt-daemon-hooks-2.0.0-27.61 is installed
  • OR libvirt-daemon-lxc-2.0.0-27.61 is installed
  • OR libvirt-daemon-qemu-2.0.0-27.61 is installed
  • OR libvirt-daemon-xen-2.0.0-27.61 is installed
  • OR libvirt-doc-2.0.0-27.61 is installed
  • OR libvirt-lock-sanlock-2.0.0-27.61 is installed
  • OR libvirt-nss-2.0.0-27.61 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • cpp48-4.8.5-30 is installed
  • OR gcc48-4.8.5-30 is installed
  • OR gcc48-32bit-4.8.5-30 is installed
  • OR gcc48-c++-4.8.5-30 is installed
  • OR gcc48-info-4.8.5-30 is installed
  • OR gcc48-locale-4.8.5-30 is installed
  • OR libasan0-4.8.5-30 is installed
  • OR libasan0-32bit-4.8.5-30 is installed
  • OR libstdc++48-devel-4.8.5-30 is installed
  • OR libstdc++48-devel-32bit-4.8.5-30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libssh2-1-1.4.3-20.14 is installed
  • OR libssh2-1-32bit-1.4.3-20.14 is installed
  • OR libssh2_org-1.4.3-20.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_156-94_57-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_18-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kernel-default-4.4.180-94.103 is installed
  • OR kernel-default-base-4.4.180-94.103 is installed
  • OR kernel-default-devel-4.4.180-94.103 is installed
  • OR kernel-default-man-4.4.180-94.103 is installed
  • OR kernel-devel-4.4.180-94.103 is installed
  • OR kernel-macros-4.4.180-94.103 is installed
  • OR kernel-source-4.4.180-94.103 is installed
  • OR kernel-syms-4.4.180-94.103 is installed
  • OR kgraft-patch-4_4_180-94_103-default-1-4.3 is installed
  • OR kgraft-patch-SLE12-SP3_Update_28-1-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • openslp-2.0.0-18.17 is installed
  • OR openslp-32bit-2.0.0-18.17 is installed
  • OR openslp-server-2.0.0-18.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • gtk2-data-2.24.31-7 is installed
  • OR gtk2-lang-2.24.31-7 is installed
  • OR gtk2-tools-2.24.31-7 is installed
  • OR gtk2-tools-32bit-2.24.31-7 is installed
  • OR libgtk-2_0-0-2.24.31-7 is installed
  • OR libgtk-2_0-0-32bit-2.24.31-7 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • ceph-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR ceph-common-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR libcephfs2-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR librados2-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR libradosstriper1-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR librbd1-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR librgw2-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-cephfs-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-rados-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-rbd-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-rgw-12.2.12+git.1587570958.35d78d0243-2.45 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr6.15-30.72 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr6.15-30.72 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr6.15-30.72 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr6.15-30.72 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ruby2.1-rubygem-loofah-2.0.2-3.8 is installed
  • OR rubygem-loofah-2.0.2-3.8 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • crowbar-core-6.0+git.1573825081.b1caf60f1-3.16 is installed
  • OR crowbar-core-branding-upstream-6.0+git.1573825081.b1caf60f1-3.16 is installed
  • OR crowbar-openstack-6.0+git.1573754820.dd036ef77-3.16 is installed
  • OR crowbar-ui-1.3.0+git.1572871359.50fc6087-14 is installed
  • OR openstack-barbican-7.0.1~dev21-3.3 is installed
  • OR openstack-barbican-api-7.0.1~dev21-3.3 is installed
  • OR openstack-barbican-keystone-listener-7.0.1~dev21-3.3 is installed
  • OR openstack-barbican-retry-7.0.1~dev21-3.3 is installed
  • OR openstack-barbican-worker-7.0.1~dev21-3.3 is installed
  • OR openstack-heat-templates-0.0.0+git.1553459627.948e8cc-3.3 is installed
  • OR openstack-keystone-14.1.1~dev28-3.16 is installed
  • OR openstack-neutron-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-dhcp-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-gbp-5.0.1~dev476-3.13 is installed
  • OR openstack-neutron-ha-tool-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-l3-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-lbaas-13.0.1~dev16-3.13 is installed
  • OR openstack-neutron-lbaas-agent-13.0.1~dev16-3.13 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-macvtap-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-metadata-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-metering-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.6~dev8-3.16 is installed
  • OR openstack-neutron-server-13.0.6~dev8-3.16 is installed
  • OR openstack-nova-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-api-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-cells-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-compute-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-conductor-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-console-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-novncproxy-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-placement-api-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-scheduler-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-serialproxy-18.2.4~dev22-3.16 is installed
  • OR openstack-nova-vncproxy-18.2.4~dev22-3.16 is installed
  • OR openstack-octavia-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-amphora-agent-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-api-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-health-manager-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-housekeeping-3.2.1~dev3-3.16 is installed
  • OR openstack-octavia-worker-3.2.1~dev3-3.16 is installed
  • OR openstack-sahara-9.0.2~dev14-3.6 is installed
  • OR openstack-sahara-api-9.0.2~dev14-3.6 is installed
  • OR openstack-sahara-engine-9.0.2~dev14-3.6 is installed
  • OR python-barbican-7.0.1~dev21-3.3 is installed
  • OR python-keystone-14.1.1~dev28-3.16 is installed
  • OR python-neutron-13.0.6~dev8-3.16 is installed
  • OR python-neutron-gbp-5.0.1~dev476-3.13 is installed
  • OR python-neutron-lbaas-13.0.1~dev16-3.13 is installed
  • OR python-nova-18.2.4~dev22-3.16 is installed
  • OR python-octavia-3.2.1~dev3-3.16 is installed
  • OR python-psutil-5.4.6-3.3 is installed
  • OR python-sahara-9.0.2~dev14-3.6 is installed
  • OR release-notes-suse-openstack-cloud-9.20191025-3.15 is installed
    • BACK