Oval Definition:	oval:org.opensuse.security:def:60018
Revision Date: 2020-12-01 Version: 1 Title: Security update for qemu (Important) Description: This update for qemu fixes the following issues: Security issues fixed: - CVE-2019-6778: Fixed a heap buffer overflow issue in the SLiRP networking implementation (bsc#1123156). - CVE-2018-16872: Fixed a host security vulnerability related to handling symlinks in usb-mtp (bsc#1119493). - CVE-2018-19489: Fixed a denial of service vulnerability in virtfs (bsc#1117275). - CVE-2018-19364: Fixed a use-after-free if the virtfs interface resulting in a denial of service (bsc#1116717). - CVE-2018-7858: Fixed a denial of service which could occur while updating the VGA display, after guest has adjusted the display dimensions (bsc#1084604). - CVE-2017-13673: Fixed a denial of service in the cpu_physical_memory_snapshot_get_dirty function. - CVE-2017-13672: Fixed a denial of service via vectors involving display update. Non-security issues fixed: - Fixed bad guest time after migration (bsc#1113231). Family: unix Class: patch Status: Reference(s): 1056334 1056386 1072947 1078662 1080740 1080919 1084300 1084604 1111789 1113231 1114957 1116717 1117275 1119493 1121563 1121600 1123022 1123156 1125352 1126056 1127557 1128657 1130116 1130230 1130721 1131233 1131237 1131239 1131241 1131245 1132348 1132400 1132721 1144524 1160305 1160498 1166847 1172031 1172140 1172225 1172437 1176012 1176072 1176382 1176535 1176896 1176931 955942 CVE-2009-0696 CVE-2009-4022 CVE-2010-2242 CVE-2010-3613 CVE-2010-3614 CVE-2010-3615 CVE-2011-0414 CVE-2011-1146 CVE-2011-1907 CVE-2011-1910 CVE-2011-2464 CVE-2011-2511 CVE-2011-4313 CVE-2011-4600 CVE-2012-1667 CVE-2012-3445 CVE-2012-3817 CVE-2012-3868 CVE-2012-4244 CVE-2012-5166 CVE-2012-5688 CVE-2012-5689 CVE-2013-0170 CVE-2013-1962 CVE-2013-1988 CVE-2013-2218 CVE-2013-2230 CVE-2013-2266 CVE-2013-4153 CVE-2013-4154 CVE-2013-4239 CVE-2013-4296 CVE-2013-4297 CVE-2013-4311 CVE-2013-4399 CVE-2013-4400 CVE-2013-4401 CVE-2013-4854 CVE-2013-6436 CVE-2013-6456 CVE-2013-6457 CVE-2013-6458 CVE-2014-0028 CVE-2014-0179 CVE-2014-0591 CVE-2014-1447 CVE-2014-3633 CVE-2014-3657 CVE-2014-7823 CVE-2014-8131 CVE-2014-8500 CVE-2015-0236 CVE-2015-1349 CVE-2015-4620 CVE-2015-5247 CVE-2015-5313 CVE-2015-5477 CVE-2015-5722 CVE-2015-8000 CVE-2015-8704 CVE-2016-1285 CVE-2016-1286 CVE-2016-2775 CVE-2016-2776 CVE-2016-6170 CVE-2016-8864 CVE-2016-9131 CVE-2016-9147 CVE-2016-9444 CVE-2017-13672 CVE-2017-13672 CVE-2017-13673 CVE-2017-13673 CVE-2017-2635 CVE-2017-3135 CVE-2017-3136 CVE-2017-3137 CVE-2017-3138 CVE-2017-3142 CVE-2017-3143 CVE-2018-16872 CVE-2018-16872 CVE-2018-18954 CVE-2018-19364 CVE-2018-19364 CVE-2018-19489 CVE-2018-19489 CVE-2018-6954 CVE-2018-7738 CVE-2018-7858 CVE-2018-7858 CVE-2019-0196 CVE-2019-0197 CVE-2019-0211 CVE-2019-0217 CVE-2019-0220 CVE-2019-13456 CVE-2019-15666 CVE-2019-17015 CVE-2019-17016 CVE-2019-17017 CVE-2019-17021 CVE-2019-17022 CVE-2019-17024 CVE-2019-17026 CVE-2019-17185 CVE-2019-1787 CVE-2019-1788 CVE-2019-1789 CVE-2019-20807 CVE-2019-3814 CVE-2019-3842 CVE-2019-6454 CVE-2019-6778 CVE-2019-6778 CVE-2019-7524 CVE-2020-0429 CVE-2020-0431 CVE-2020-10757 CVE-2020-14381 CVE-2020-14386 CVE-2020-17482 CVE-2020-25212 SUSE-SU-2018:3926-1 SUSE-SU-2019:0582-1 SUSE-SU-2019:0878-1 SUSE-SU-2019:0897-1 SUSE-SU-2019:1265-1 SUSE-SU-2020:0068-1 SUSE-SU-2020:1550-1 SUSE-SU-2020:2718-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.1 NonFree SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND m4-1.4.18-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information gvim-8.0.1568-lp151.5.3 is installed OR vim-8.0.1568-lp151.5.3 is installed OR vim-data-8.0.1568-lp151.5.3 is installed OR vim-data-common-8.0.1568-lp151.5.3 is installed Definition Synopsis openSUSE Leap 15.1 NonFree is installed AND opera-68.0.3618.63-lp151.2.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information qemu-2.6.2-41.49 is installed OR qemu-block-curl-2.6.2-41.49 is installed OR qemu-block-rbd-2.6.2-41.49 is installed OR qemu-block-ssh-2.6.2-41.49 is installed OR qemu-guest-agent-2.6.2-41.49 is installed OR qemu-ipxe-1.0.0-41.49 is installed OR qemu-kvm-2.6.2-41.49 is installed OR qemu-lang-2.6.2-41.49 is installed OR qemu-seabios-1.9.1-41.49 is installed OR qemu-sgabios-8-41.49 is installed OR qemu-tools-2.6.2-41.49 is installed OR qemu-vgabios-1.9.1-41.49 is installed OR qemu-x86-2.6.2-41.49 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information bind-9.9.9P1-62 is installed OR bind-chrootenv-9.9.9P1-62 is installed OR bind-doc-9.9.9P1-62 is installed OR bind-libs-9.9.9P1-62 is installed OR bind-libs-32bit-9.9.9P1-62 is installed OR bind-utils-9.9.9P1-62 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information cups-1.7.5-20.26 is installed OR cups-client-1.7.5-20.26 is installed OR cups-libs-1.7.5-20.26 is installed OR cups-libs-32bit-1.7.5-20.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND ucode-intel-20200602-13.68 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information pam_radius-1.3.16-239.4 is installed OR pam_radius-32bit-1.3.16-239.4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libsqlite3-0-3.8.10.2-9.6 is installed OR libsqlite3-0-32bit-3.8.10.2-9.6 is installed OR sqlite3-3.8.10.2-9.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information pdns-4.1.2-3.9 is installed OR pdns-backend-mysql-4.1.2-3.9 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-Django1-1.11.20-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information gvim-7.4.326-17.6 is installed OR vim-7.4.326-17.6 is installed OR vim-data-7.4.326-17.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND python-urllib3-1.23-3.6 is installed
BACK