Oval Definition:	oval:org.opensuse.security:def:60161
Revision Date: 2020-12-18 Version: 1 Title: Security update for xen (Moderate) Description: This update for xen fixes the following issues: - CVE-2020-29480: Fixed an issue which could have allowed leak of non-sensitive data to administrator guests (bsc#117949 XSA-115). - CVE-2020-29481: Fixed an issue which could have allowd to new domains to inherit existing node permissions (bsc#1179498 XSA-322). - CVE-2020-29483: Fixed an issue where guests could disturb domain cleanup (bsc#1179502 XSA-325). - CVE-2020-29484: Fixed an issue where guests could crash xenstored via watchs (bsc#1179501 XSA-324). - CVE-2020-29566: Fixed an undue recursion in x86 HVM context switch code (bsc#1179506 XSA-348). - CVE-2020-29570: Fixed an issue where FIFO event channels control block related ordering (bsc#1179514 XSA-358). - CVE-2020-29571: Fixed an issue where FIFO event channels control structure ordering (bsc#1179516 XSA-359). - CVE-2020-29130: Fixed an out-of-bounds access while processing ARP packets (bsc#1179477). - Fixed an issue where dump-core shows missing nr_pages during core (bsc#1176782). - Multiple other bugs (bsc#1027519) Family: unix Class: patch Status: Reference(s): 1027519 1047356 1049485 1049488 1049489 1049490 1049491 1056277 1077003 1077006 1087820 1094204 1094237 1095730 1095812 1095813 1106383 1121826 1133495 1137832 1139459 1151377 1151506 1152497 1154043 1154448 1154456 1154458 1154460 1154461 1154464 1155574 1155945 1156275 1156482 1157888 1158003 1158004 1158005 1158006 1158007 1159814 1160968 1162108 1163019 1176756 1176782 1177513 1177872 1179477 1179496 1179498 1179501 1179502 1179506 1179514 1179516 CVE-2010-4341 CVE-2010-4352 CVE-2011-1758 CVE-2012-3449 CVE-2012-3524 CVE-2013-0219 CVE-2013-0220 CVE-2013-0287 CVE-2013-1571 CVE-2013-2168 CVE-2014-3477 CVE-2014-3532 CVE-2014-3533 CVE-2014-3635 CVE-2014-3636 CVE-2014-3637 CVE-2014-3638 CVE-2014-3639 CVE-2014-7824 CVE-2014-8148 CVE-2015-0245 CVE-2017-10928 CVE-2017-13758 CVE-2017-18271 CVE-2017-5838 CVE-2018-1000024 CVE-2018-1000027 CVE-2018-10804 CVE-2018-10805 CVE-2018-11251 CVE-2018-11655 CVE-2018-12207 CVE-2018-9133 CVE-2019-11135 CVE-2019-12749 CVE-2019-14869 CVE-2019-18420 CVE-2019-18421 CVE-2019-18422 CVE-2019-18423 CVE-2019-18424 CVE-2019-18425 CVE-2019-19577 CVE-2019-19578 CVE-2019-19579 CVE-2019-19580 CVE-2019-19581 CVE-2019-19582 CVE-2019-19583 CVE-2019-6133 CVE-2020-15683 CVE-2020-15969 CVE-2020-1712 CVE-2020-25645 CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2654 CVE-2020-2659 CVE-2020-29130 CVE-2020-29480 CVE-2020-29481 CVE-2020-29483 CVE-2020-29484 CVE-2020-29566 CVE-2020-29570 CVE-2020-29571 CVE-2020-8608 SUSE-SU-2017:2109-1 SUSE-SU-2018:0636-1 SUSE-SU-2018:1851-1 SUSE-SU-2019:2035-1 SUSE-SU-2019:2983-1 SUSE-SU-2019:3297-1 SUSE-SU-2020:0261-1 SUSE-SU-2020:0331-1 SUSE-SU-2020:3880-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information kernel-debug-4.12.14-lp150.12.58 is installed OR kernel-debug-base-4.12.14-lp150.12.58 is installed OR kernel-debug-devel-4.12.14-lp150.12.58 is installed OR kernel-default-4.12.14-lp150.12.58 is installed OR kernel-default-base-4.12.14-lp150.12.58 is installed OR kernel-default-devel-4.12.14-lp150.12.58 is installed OR kernel-devel-4.12.14-lp150.12.58 is installed OR kernel-docs-4.12.14-lp150.12.58 is installed OR kernel-docs-html-4.12.14-lp150.12.58 is installed OR kernel-kvmsmall-4.12.14-lp150.12.58 is installed OR kernel-kvmsmall-base-4.12.14-lp150.12.58 is installed OR kernel-kvmsmall-devel-4.12.14-lp150.12.58 is installed OR kernel-macros-4.12.14-lp150.12.58 is installed OR kernel-obs-build-4.12.14-lp150.12.58 is installed OR kernel-obs-qa-4.12.14-lp150.12.58 is installed OR kernel-source-4.12.14-lp150.12.58 is installed OR kernel-source-vanilla-4.12.14-lp150.12.58 is installed OR kernel-syms-4.12.14-lp150.12.58 is installed OR kernel-vanilla-4.12.14-lp150.12.58 is installed OR kernel-vanilla-base-4.12.14-lp150.12.58 is installed OR kernel-vanilla-devel-4.12.14-lp150.12.58 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information chromedriver-75.0.3770.90-2 is installed OR chromium-75.0.3770.90-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information MozillaFirefox-78.4.0-112.28 is installed OR MozillaFirefox-devel-78.4.0-112.28 is installed OR MozillaFirefox-translations-common-78.4.0-112.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND ant-1.9.4-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.0-30.60 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.0-30.60 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.0-30.60 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information xen-4.9.4_06-3.59 is installed OR xen-doc-html-4.9.4_06-3.59 is installed OR xen-libs-4.9.4_06-3.59 is installed OR xen-libs-32bit-4.9.4_06-3.59 is installed OR xen-tools-4.9.4_06-3.59 is installed OR xen-tools-domU-4.9.4_06-3.59 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libpolkit0-0.113-5.12 is installed OR polkit-0.113-5.12 is installed OR typelib-1_0-Polkit-1_0-0.113-5.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND xen-4.12.4_06-3.36.1 is installed OR xen-doc-html-4.12.4_06-3.36.1 is installed OR xen-libs-4.12.4_06-3.36.1 is installed OR xen-libs-32bit-4.12.4_06-3.36.1 is installed OR xen-tools-4.12.4_06-3.36.1 is installed OR xen-tools-domU-4.12.4_06-3.36.1 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND xen-4.12.4_06-3.36.1 is installed OR xen-doc-html-4.12.4_06-3.36.1 is installed OR xen-libs-4.12.4_06-3.36.1 is installed OR xen-libs-32bit-4.12.4_06-3.36.1 is installed OR xen-tools-4.12.4_06-3.36.1 is installed OR xen-tools-domU-4.12.4_06-3.36.1 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libpolkit0-0.113-5.18 is installed OR polkit-0.113-5.18 is installed OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-urllib3-1.23-3.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ghostscript-9.27-23.31 is installed OR ghostscript-x11-9.27-23.31 is installed
BACK