OVAL Reference oval:org.opensuse.security:def:60333

Oval Definition:

oval:org.opensuse.security:def:60333

Revision Date:	2021-08-17	Version:	1
Title:	Security update for spice-vdagent (Moderate)
Description:	This update for spice-vdagent fixes the following issues: - CVE-2020-25650: memory DoS via arbitrary entries in `active_xfers` hash table (bsc#1177780) - CVE-2020-25651: possible file transfer DoS and information leak via `active_xfers` hash map (bsc#1177781) - CVE-2020-25652: possibility to exhaust file descriptors in `vdagentd` (bsc#1177782) - CVE-2020-25653: UNIX domain socket peer PID retrieved via `SO_PEERCRED` is subject to race condition (bsc#1177783)
Family:	unix	Class:	patch
Status:		Reference(s):	1009254 1037930 1042037 1045160 1048575 1051791 1057406 1071853 1073990 1074293 1079036 1093536 1094462 1107874 1109845 1111331 1163985 1173369 1174157 1174955 1175259 1175664 1175665 1175671 1176733 1177155 1177780 1177781 1177782 1177783 CVE-2009-3736 CVE-2011-1898 CVE-2012-0029 CVE-2012-0217 CVE-2012-2625 CVE-2012-3432 CVE-2012-3433 CVE-2012-4411 CVE-2012-4425 CVE-2012-4535 CVE-2012-4536 CVE-2012-4537 CVE-2012-4538 CVE-2012-4539 CVE-2012-4544 CVE-2012-5510 CVE-2012-5511 CVE-2012-5513 CVE-2012-5514 CVE-2012-5515 CVE-2012-5525 CVE-2012-5634 CVE-2012-6075 CVE-2013-0151 CVE-2013-0152 CVE-2013-0153 CVE-2013-1442 CVE-2013-1917 CVE-2013-1918 CVE-2013-1919 CVE-2013-1922 CVE-2013-1952 CVE-2013-1987 CVE-2013-2007 CVE-2013-3495 CVE-2013-4355 CVE-2013-4356 CVE-2013-4361 CVE-2013-4375 CVE-2013-4416 CVE-2013-4494 CVE-2013-4533 CVE-2013-4534 CVE-2013-4537 CVE-2013-4538 CVE-2013-4539 CVE-2013-4540 CVE-2013-4551 CVE-2013-4553 CVE-2013-4554 CVE-2014-0222 CVE-2014-0467 CVE-2014-3124 CVE-2014-3640 CVE-2014-3672 CVE-2014-5146 CVE-2014-5149 CVE-2014-6268 CVE-2014-7154 CVE-2014-7155 CVE-2014-7156 CVE-2014-7188 CVE-2014-7815 CVE-2014-9116 CVE-2015-0254 CVE-2015-1779 CVE-2015-3259 CVE-2015-3340 CVE-2015-3456 CVE-2015-4037 CVE-2015-4103 CVE-2015-4104 CVE-2015-4105 CVE-2015-4106 CVE-2015-5154 CVE-2015-5239 CVE-2015-5278 CVE-2015-5307 CVE-2015-6815 CVE-2015-6855 CVE-2015-7311 CVE-2015-7504 CVE-2015-7512 CVE-2015-7549 CVE-2015-7835 CVE-2015-7969 CVE-2015-7970 CVE-2015-7971 CVE-2015-7972 CVE-2015-8104 CVE-2015-8339 CVE-2015-8340 CVE-2015-8341 CVE-2015-8345 CVE-2015-8504 CVE-2015-8550 CVE-2015-8554 CVE-2015-8555 CVE-2015-8558 CVE-2015-8567 CVE-2015-8568 CVE-2015-8613 CVE-2015-8615 CVE-2015-8619 CVE-2015-8743 CVE-2015-8744 CVE-2015-8745 CVE-2016-10013 CVE-2016-10024 CVE-2016-10025 CVE-2016-1568 CVE-2016-1570 CVE-2016-1571 CVE-2016-1714 CVE-2016-1922 CVE-2016-1981 CVE-2016-2198 CVE-2016-2270 CVE-2016-2271 CVE-2016-2391 CVE-2016-2392 CVE-2016-2538 CVE-2016-2841 CVE-2016-4439 CVE-2016-4441 CVE-2016-5238 CVE-2016-5338 CVE-2016-6258 CVE-2016-6259 CVE-2016-6351 CVE-2016-7092 CVE-2016-7093 CVE-2016-7094 CVE-2016-7777 CVE-2016-7908 CVE-2016-7909 CVE-2016-7949 CVE-2016-7950 CVE-2016-8667 CVE-2016-8669 CVE-2016-8910 CVE-2016-9377 CVE-2016-9378 CVE-2016-9379 CVE-2016-9380 CVE-2016-9381 CVE-2016-9382 CVE-2016-9383 CVE-2016-9384 CVE-2016-9385 CVE-2016-9386 CVE-2016-9637 CVE-2016-9921 CVE-2016-9922 CVE-2016-9932 CVE-2017-12132 CVE-2017-2615 CVE-2017-2620 CVE-2017-6505 CVE-2017-7659 CVE-2017-8309 CVE-2017-8804 CVE-2017-9330 CVE-2017-9789 CVE-2018-1000001 CVE-2018-10811 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-16151 CVE-2018-16152 CVE-2018-17540 CVE-2018-5388 CVE-2018-6485 CVE-2018-6551 CVE-2019-11091 CVE-2019-17639 CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-15011 CVE-2020-15708 CVE-2020-15810 CVE-2020-15811 CVE-2020-1720 CVE-2020-24606 CVE-2020-25637 CVE-2020-25650 CVE-2020-25651 CVE-2020-25652 CVE-2020-25653 CVE-2020-26117 SUSE-SU-2018:0261-1 SUSE-SU-2018:0451-1 SUSE-SU-2019:1954-1 SUSE-SU-2019:3266-1 SUSE-SU-2020:0715-1 SUSE-SU-2020:2048-1 SUSE-SU-2020:2461-1 SUSE-SU-2020:2471-1 SUSE-SU-2020:2898-1 SUSE-SU-2020:3095-1 SUSE-SU-2021:2766-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information kconf_update5-5.32.0-7 is installed OR kconfig-5.32.0-7 is installed OR kconfig-devel-5.32.0-7 is installed OR kconfig-devel-32bit-5.55.0-lp151.2.5 is installed OR kconfig-devel-64bit-5.32.0-7 is installed OR kdelibs4-4.14.33-7 is installed OR kdelibs4-apidocs-4.14.33-7 is installed OR kdelibs4-branding-upstream-4.14.33-7 is installed OR kdelibs4-core-4.14.33-7 is installed OR kdelibs4-doc-4.14.33-7 is installed OR libKF5ConfigCore5-5.32.0-7 is installed OR libKF5ConfigCore5-32bit-5.55.0-lp151.2.5 is installed OR libKF5ConfigCore5-64bit-5.32.0-7 is installed OR libKF5ConfigCore5-lang-5.32.0-7 is installed OR libKF5ConfigGui5-5.32.0-7 is installed OR libKF5ConfigGui5-32bit-5.55.0-lp151.2.5 is installed OR libKF5ConfigGui5-64bit-5.32.0-7 is installed OR libkde4-4.14.33-7 is installed OR libkde4-32bit-4.14.38-lp151.9.5 is installed OR libkde4-64bit-4.14.33-7 is installed OR libkde4-devel-4.14.33-7 is installed OR libkdecore4-4.14.33-7 is installed OR libkdecore4-32bit-4.14.38-lp151.9.5 is installed OR libkdecore4-64bit-4.14.33-7 is installed OR libkdecore4-devel-4.14.33-7 is installed OR libksuseinstall-devel-4.14.33-7 is installed OR libksuseinstall1-4.14.33-7 is installed OR libksuseinstall1-32bit-4.14.38-lp151.9.5 is installed OR libksuseinstall1-64bit-4.14.33-7 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libtasn1-4.13-lp151.4.3 is installed OR libtasn1-6-4.13-lp151.4.3 is installed OR libtasn1-6-32bit-4.13-lp151.4.3 is installed OR libtasn1-devel-4.13-lp151.4.3 is installed OR libtasn1-devel-32bit-4.13-lp151.4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information jakarta-taglibs-standard-1.1.1-255 is installed OR jakarta-taglibs-standard-javadoc-1.1.1-255 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND mailman-2.1.17-3.23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information java-1_7_0-openjdk-1.7.0.261-43.38 is installed OR java-1_7_0-openjdk-demo-1.7.0.261-43.38 is installed OR java-1_7_0-openjdk-devel-1.7.0.261-43.38 is installed OR java-1_7_0-openjdk-headless-1.7.0.261-43.38 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND ucode-intel-20190618-13.47 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information cups-1.7.5-20.17 is installed OR cups-client-1.7.5-20.17 is installed OR cups-libs-1.7.5-20.17 is installed OR cups-libs-32bit-1.7.5-20.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information glib2-lang-2.48.2-10 is installed OR glib2-tools-2.48.2-10 is installed OR libgio-2_0-0-2.48.2-10 is installed OR libgio-2_0-0-32bit-2.48.2-10 is installed OR libglib-2_0-0-2.48.2-10 is installed OR libglib-2_0-0-32bit-2.48.2-10 is installed OR libgmodule-2_0-0-2.48.2-10 is installed OR libgmodule-2_0-0-32bit-2.48.2-10 is installed OR libgobject-2_0-0-2.48.2-10 is installed OR libgobject-2_0-0-32bit-2.48.2-10 is installed OR libgthread-2_0-0-2.48.2-10 is installed OR libgthread-2_0-0-32bit-2.48.2-10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information grub2-2.02-12.39 is installed OR grub2-arm64-efi-2.02-12.39 is installed OR grub2-i386-pc-2.02-12.39 is installed OR grub2-snapper-plugin-2.02-12.39 is installed OR grub2-systemd-sleep-plugin-2.02-12.39 is installed OR grub2-x86_64-efi-2.02-12.39 is installed OR grub2-x86_64-xen-2.02-12.39 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information xorg-x11-server-1.19.6-4.11 is installed OR xorg-x11-server-extra-1.19.6-4.11 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND spice-vdagent-0.16.0-8.8.2 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND spice-vdagent-0.16.0-8.8.2 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information strongswan-5.1.3-26.13 is installed OR strongswan-doc-5.1.3-26.13 is installed OR strongswan-hmac-5.1.3-26.13 is installed OR strongswan-ipsec-5.1.3-26.13 is installed OR strongswan-libs0-5.1.3-26.13 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libecpg6-10.12-1.18 is installed OR libpq5-10.12-1.18 is installed OR libpq5-32bit-10.12-1.18 is installed OR postgresql10-10.12-1.18 is installed OR postgresql10-contrib-10.12-1.18 is installed OR postgresql10-docs-10.12-1.18 is installed OR postgresql10-libs-10.12-1.18 is installed OR postgresql10-plperl-10.12-1.18 is installed OR postgresql10-plpython-10.12-1.18 is installed OR postgresql10-pltcl-10.12-1.18 is installed OR postgresql10-server-10.12-1.18 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information grub2-2.02-12.31 is installed OR grub2-i386-pc-2.02-12.31 is installed OR grub2-snapper-plugin-2.02-12.31 is installed OR grub2-systemd-sleep-plugin-2.02-12.31 is installed OR grub2-x86_64-efi-2.02-12.31 is installed OR grub2-x86_64-xen-2.02-12.31 is installed

BACK