Oval Definition:	oval:org.opensuse.security:def:60075
Revision Date: 2020-12-01 Version: 1 Title: Security update for qemu (Moderate) Description: This update for qemu fixes the following issues: Security issues fixed: - CVE-2020-1711: Fixed a potential OOB access in the iSCSI client code (bsc#1166240). - CVE-2019-12068: Fixed a potential DoS in the LSI SCSI controller emulation (bsc#1146873). - CVE-2020-1983: Fixed a use-after-free in the ip_reass function of slirp (bsc#1170940). - CVE-2020-8608: Fixed a potential OOB access in slirp (bsc#1163018). - CVE-2020-7039: Fixed a potential OOB access in slirp (bsc#1161066). - CVE-2019-15890: Fixed a use-after-free during packet reassembly in slirp (bsc#1149811). - Fixed multiple potential DoS issues in SLIRP, similar to CVE-2019-6778 (bsc#1123156). Family: unix Class: patch Status: Reference(s): 1046779 1101797 1123156 1132665 1136446 1137597 1140747 1146873 1149811 1154609 1159352 1159819 1161066 1163018 1166238 1166240 1168669 1169746 1170908 1170940 1171252 1171254 1171978 1172049 1172515 1172781 1172782 1172783 1173022 1173027 1176315 1177513 CVE-2009-0793 CVE-2010-2547 CVE-2013-4276 CVE-2013-4351 CVE-2013-4402 CVE-2013-6418 CVE-2014-4617 CVE-2015-1606 CVE-2015-1607 CVE-2017-7506 CVE-2018-10906 CVE-2019-11477 CVE-2019-11478 CVE-2019-12068 CVE-2019-15890 CVE-2019-16775 CVE-2019-16776 CVE-2019-16777 CVE-2019-17006 CVE-2019-18197 CVE-2019-20503 CVE-2019-3846 CVE-2019-6778 CVE-2020-10766 CVE-2020-10767 CVE-2020-10768 CVE-2020-12399 CVE-2020-12402 CVE-2020-12653 CVE-2020-12654 CVE-2020-1711 CVE-2020-17507 CVE-2020-1983 CVE-2020-25645 CVE-2020-6805 CVE-2020-6806 CVE-2020-6807 CVE-2020-6811 CVE-2020-6812 CVE-2020-6814 CVE-2020-7039 CVE-2020-8177 CVE-2020-8608 SUSE-SU-2017:2552-1 SUSE-SU-2018:3219-1 SUSE-SU-2020:0247-1 SUSE-SU-2020:0717-1 SUSE-SU-2020:1713-1 SUSE-SU-2020:1732-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.1 NonFree SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND update-alternatives-1.19.0.4-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information chromedriver-75.0.3770.142-7 is installed OR chromium-75.0.3770.142-7 is installed Definition Synopsis openSUSE Leap 15.1 NonFree is installed AND opera-70.0.3728.71-lp151.2.24 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information qemu-2.6.2-41.59 is installed OR qemu-block-curl-2.6.2-41.59 is installed OR qemu-block-rbd-2.6.2-41.59 is installed OR qemu-block-ssh-2.6.2-41.59 is installed OR qemu-guest-agent-2.6.2-41.59 is installed OR qemu-ipxe-1.0.0-41.59 is installed OR qemu-kvm-2.6.2-41.59 is installed OR qemu-lang-2.6.2-41.59 is installed OR qemu-seabios-1.9.1-41.59 is installed OR qemu-sgabios-8-41.59 is installed OR qemu-tools-2.6.2-41.59 is installed OR qemu-vgabios-1.9.1-41.59 is installed OR qemu-x86-2.6.2-41.59 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information gpg2-2.0.24-8 is installed OR gpg2-lang-2.0.24-8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information ghostscript-9.27-23.31 is installed OR ghostscript-x11-9.27-23.31 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information gnome-shell-search-provider-nautilus-3.20.3-23.6 is installed OR libnautilus-extension1-3.20.3-23.6 is installed OR nautilus-3.20.3-23.6 is installed OR nautilus-lang-3.20.3-23.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache2-2.4.23-29.24 is installed OR apache2-doc-2.4.23-29.24 is installed OR apache2-example-pages-2.4.23-29.24 is installed OR apache2-prefork-2.4.23-29.24 is installed OR apache2-utils-2.4.23-29.24 is installed OR apache2-worker-2.4.23-29.24 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND python-ipaddress-1.0.18-3.13 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-68.6.0-109.110 is installed OR MozillaFirefox-translations-common-68.6.0-109.110 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information openstack-manila-7.3.1~dev15-4.18 is installed OR openstack-manila-api-7.3.1~dev15-4.18 is installed OR openstack-manila-data-7.3.1~dev15-4.18 is installed OR openstack-manila-scheduler-7.3.1~dev15-4.18 is installed OR openstack-manila-share-7.3.1~dev15-4.18 is installed OR python-manila-7.3.1~dev15-4.18 is installed OR venv-openstack-manila-7.3.1~dev15-3.17 is installed OR venv-openstack-manila-x86_64-7.3.1~dev15-3.17 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.17.1-11.30 is installed
BACK