Oval Definition:	oval:org.opensuse.security:def:60645
Revision Date: 2020-12-01 Version: 1 Title: Security update for xen (Important) Description: This update for xen fixes the following issues: Security issues fixed: - CVE-2019-15890: Fixed a use-after-free in SLiRP networking implementation of QEMU emulator which could have led to Denial of Service (bsc#1149813). - CVE-2019-12068: Fixed an issue in lsi which could lead to an infinite loop and denial of service (bsc#1146874). - CVE-2019-14378: Fixed a heap buffer overflow in SLiRp networking implementation of QEMU emulator which could have led to execution of arbitrary code with privileges of the QEMU process (bsc#1143797). Other issue fixed: - Fixed an issue where libxenlight could not restore domain vsa6535522 on live migration (bsc#1133818). Family: unix Class: patch Status: Reference(s): 1026236 1027519 1054413 1065600 1069468 1073879 1077358 1083244 1087082 1087083 1089343 1099510 1101288 1101689 1104134 1105528 1111151 1111622 1114988 1115040 1115045 1115047 1115375 1116380 1117756 1119161 1120531 1121826 1121872 1122668 1123157 1126140 1126141 1126192 1126195 1126196 1126197 1126198 1126201 1126325 1127400 1129623 1133818 1141780 1141782 1141783 1141784 1141785 1141786 1141787 1141789 1142690 1143797 1146358 1146359 1146874 1149813 1157298 1160917 1164692 1168630 1168874 1168994 1170415 1170715 1172698 1172704 1175228 1175306 1175626 1175656 1175721 1175749 1176011 1176069 1176235 1176253 1176278 1176381 1176382 1176423 1176482 1176721 1176722 1176725 1176816 1176896 1176990 1177027 1177086 1177121 1177165 1177206 1177226 1177410 1177411 1177511 1177513 1177725 1177766 1177816 1178123 1178622 1178782 761500 922448 925502 929736 935252 945455 947357 961596 967128 995352 CVE-2015-2296 CVE-2015-2775 CVE-2016-6893 CVE-2017-18204 CVE-2018-0618 CVE-2018-1000805 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-1333 CVE-2018-13796 CVE-2018-18074 CVE-2018-19665 CVE-2018-19961 CVE-2018-19962 CVE-2018-19965 CVE-2018-19966 CVE-2018-19967 CVE-2018-3639 CVE-2018-3640 CVE-2018-3646 CVE-2018-5950 CVE-2019-10206 CVE-2019-11091 CVE-2019-12068 CVE-2019-14378 CVE-2019-15890 CVE-2019-17340 CVE-2019-17341 CVE-2019-17342 CVE-2019-17343 CVE-2019-17344 CVE-2019-17345 CVE-2019-17346 CVE-2019-17347 CVE-2019-17348 CVE-2019-19063 CVE-2019-2745 CVE-2019-2762 CVE-2019-2766 CVE-2019-2769 CVE-2019-2786 CVE-2019-2816 CVE-2019-2842 CVE-2019-6133 CVE-2019-6778 CVE-2019-7317 CVE-2019-8675 CVE-2019-8696 CVE-2019-9824 CVE-2020-0404 CVE-2020-0427 CVE-2020-0431 CVE-2020-0432 CVE-2020-10713 CVE-2020-12352 CVE-2020-14351 CVE-2020-14381 CVE-2020-14390 CVE-2020-1938 CVE-2020-25212 CVE-2020-25284 CVE-2020-25641 CVE-2020-25643 CVE-2020-25645 CVE-2020-25656 CVE-2020-25668 CVE-2020-25705 CVE-2020-26088 CVE-2020-6819 CVE-2020-6820 CVE-2020-6821 CVE-2020-6822 CVE-2020-6825 CVE-2020-6827 CVE-2020-6828 CVE-2020-8023 CVE-2020-8694 SUSE-SU-2018:4296-1 SUSE-SU-2019:0396-1 SUSE-SU-2019:2036-1 SUSE-SU-2019:2274-1 SUSE-SU-2019:2769-1 SUSE-SU-2020:0928-1 SUSE-SU-2020:0978-1 SUSE-SU-2020:1792-1 SUSE-SU-2020:1859-1 SUSE-SU-2020:2627-1 SUSE-SU-2020:3503-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information ucode-intel-20180807-lp150.2.7 is installed OR ucode-intel-blob-20180807-28 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information cron-4.2-lp151.4.3 is installed OR cronie-1.5.1-lp151.4.3 is installed OR cronie-anacron-1.5.1-lp151.4.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information libraw-0.18.9-lp152.5.3 is installed OR libraw-devel-0.18.9-lp152.5.3 is installed OR libraw-devel-static-0.18.9-lp152.5.3 is installed OR libraw-tools-0.18.9-lp152.5.3 is installed OR libraw16-0.18.9-lp152.5.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND mailman-2.1.17-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information cups-1.7.5-20.26 is installed OR cups-client-1.7.5-20.26 is installed OR cups-libs-1.7.5-20.26 is installed OR cups-libs-32bit-1.7.5-20.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND ucode-intel-20180807-13.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information xen-4.9.4_04-3.56 is installed OR xen-doc-html-4.9.4_04-3.56 is installed OR xen-libs-4.9.4_04-3.56 is installed OR xen-libs-32bit-4.9.4_04-3.56 is installed OR xen-tools-4.9.4_04-3.56 is installed OR xen-tools-domU-4.9.4_04-3.56 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND haproxy-1.6.11-11.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND ansible-2.4.6.0-3.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND python-ipaddress-1.0.22-3.3 is installed
BACK