Oval Definition:oval:org.opensuse.security:def:60698
Revision Date:2020-12-01Version:1
Title:Security update for qemu (Moderate)
Description:

This update for qemu fixes the following issues:

Security issues fixed:

- CVE-2020-1711: Fixed a potential OOB access in the iSCSI client code (bsc#1166240). - CVE-2019-12068: Fixed a potential DoS in the LSI SCSI controller emulation (bsc#1146873). - CVE-2020-1983: Fixed a use-after-free in the ip_reass function of slirp (bsc#1170940). - CVE-2020-8608: Fixed a potential OOB access in slirp (bsc#1163018). - CVE-2020-7039: Fixed a potential OOB access in slirp (bsc#1161066). - CVE-2019-15890: Fixed a use-after-free during packet reassembly in slirp (bsc#1149811). - Fixed multiple potential DoS issues in SLIRP, similar to CVE-2019-6778 (bsc#1123156).

Non-security issue fixed:

- Make sure that required memory is mapped properly during an incoming migration of a Xen HVM domU (bsc#1160024).
Family:unixClass:patch
Status:Reference(s):1032680
1040311
1040312
1040313
1050577
1050578
1050579
1050581
1054028
1055960
1056995
1068612
1077717
1087102
1089533
1092420
1093414
1101644
1101645
1101651
1101656
1106019
1106812
1107190
1108719
1112767
1115034
1122198
1122475
1123156
1123872
1126230
1126503
1127027
1136082
1141968
1142772
1144524
1145692
1146848
1146873
11483483
1148383
1149811
1150734
1153191
1156525
1157198
1157607
1157888
1158003
1158004
1158005
1158006
1158007
1159046
1160024
1160152
1160153
1160192
1160790
1160851
1160895
1160912
1161066
1161088
1161089
1161096
1161181
1161670
1162388
1162553
1163018
1164322
1166240
1166847
1167152
1167244
1168140
1168142
1168593
1169392
1169770
1170657
1170940
1171273
1171560
1171594
1171661
1171670
1171909
1171921
1171960
1171961
1171963
1172166
1172167
1172175
1172176
1172205
1172409
1172515
1176315
1177914
903543
CVE-2017-1000246
CVE-2017-11462
CVE-2017-11624
CVE-2017-11625
CVE-2017-11626
CVE-2017-11627
CVE-2017-12595
CVE-2017-9208
CVE-2017-9209
CVE-2017-9210
CVE-2018-0739
CVE-2018-14618
CVE-2018-2938
CVE-2018-2940
CVE-2018-2952
CVE-2018-2973
CVE-2018-3639
CVE-2019-1010083
CVE-2019-1010180
CVE-2019-12068
CVE-2019-13456
CVE-2019-15043
CVE-2019-15890
CVE-2019-16785
CVE-2019-16786
CVE-2019-16789
CVE-2019-16792
CVE-2019-16865
CVE-2019-17185
CVE-2019-18874
CVE-2019-18901
CVE-2019-19577
CVE-2019-19578
CVE-2019-19579
CVE-2019-19580
CVE-2019-19581
CVE-2019-19583
CVE-2019-19911
CVE-2019-2510
CVE-2019-2537
CVE-2019-3688
CVE-2019-3690
CVE-2019-3828
CVE-2019-6778
CVE-2020-0543
CVE-2020-10663
CVE-2020-10743
CVE-2020-10753
CVE-2020-11076
CVE-2020-11077
CVE-2020-11739
CVE-2020-11740
CVE-2020-11741
CVE-2020-11742
CVE-2020-12052
CVE-2020-13254
CVE-2020-13379
CVE-2020-13596
CVE-2020-15999
CVE-2020-1711
CVE-2020-17507
CVE-2020-1983
CVE-2020-2574
CVE-2020-5312
CVE-2020-5313
CVE-2020-5390
CVE-2020-7039
CVE-2020-7211
CVE-2020-8151
CVE-2020-8608
SUSE-SU-2017:2659-1
SUSE-SU-2018:0925-1
SUSE-SU-2019:1162-1
SUSE-SU-2019:2916-1
SUSE-SU-2019:3180-1
SUSE-SU-2020:0527-1
SUSE-SU-2020:1018-1
SUSE-SU-2020:1538-1
SUSE-SU-2020:1748-1
SUSE-SU-2020:1901-1
SUSE-SU-2020:2751-1
SUSE-SU-2020:2998-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
openSUSE Leap 15.2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • libopenssl-1_1-devel-1.1.0i-lp150.3.9 is installed
  • OR libopenssl-1_1-devel-32bit-1.1.0i-lp150.3.9 is installed
  • OR libopenssl-devel-1.1.0i-lp150.2.3 is installed
  • OR libopenssl1_1-1.1.0i-lp150.3.9 is installed
  • OR libopenssl1_1-32bit-1.1.0i-lp150.3.9 is installed
  • OR libopenssl1_1-hmac-1.1.0i-lp150.3.9 is installed
  • OR libopenssl1_1-hmac-32bit-1.1.0i-lp150.3.9 is installed
  • OR openssl-1.1.0i-lp150.2.3 is installed
  • OR openssl-1_1-1.1.0i-lp150.3.9 is installed
  • OR openssl-1_1-doc-1.1.0i-lp150.3.9 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • MozillaFirefox-60.8.0-lp151.2.10 is installed
  • OR MozillaFirefox-branding-upstream-60.8.0-lp151.2.10 is installed
  • OR MozillaFirefox-buildsymbols-60.8.0-lp151.2.10 is installed
  • OR MozillaFirefox-devel-60.8.0-lp151.2.10 is installed
  • OR MozillaFirefox-translations-common-60.8.0-lp151.2.10 is installed
  • OR MozillaFirefox-translations-other-60.8.0-lp151.2.10 is installed
  • OR libfreebl3-3.44.1-lp151.2.3 is installed
  • OR libfreebl3-32bit-3.44.1-lp151.2.3 is installed
  • OR libfreebl3-hmac-3.44.1-lp151.2.3 is installed
  • OR libfreebl3-hmac-32bit-3.44.1-lp151.2.3 is installed
  • OR libsoftokn3-3.44.1-lp151.2.3 is installed
  • OR libsoftokn3-32bit-3.44.1-lp151.2.3 is installed
  • OR libsoftokn3-hmac-3.44.1-lp151.2.3 is installed
  • OR libsoftokn3-hmac-32bit-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-32bit-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-certs-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-certs-32bit-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-devel-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-sysinit-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-sysinit-32bit-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-tools-3.44.1-lp151.2.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • libunbound-devel-mini-1.6.8-lp152.9.3 is installed
  • OR libunbound2-1.6.8-lp152.9.3 is installed
  • OR unbound-1.6.8-lp152.9.3 is installed
  • OR unbound-anchor-1.6.8-lp152.9.3 is installed
  • OR unbound-devel-1.6.8-lp152.9.3 is installed
  • OR unbound-munin-1.6.8-lp152.9.3 is installed
  • OR unbound-python-1.6.8-lp152.9.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • krb5-1.12.5-40.13 is installed
  • OR krb5-32bit-1.12.5-40.13 is installed
  • OR krb5-client-1.12.5-40.13 is installed
  • OR krb5-doc-1.12.5-40.13 is installed
  • OR krb5-plugin-kdb-ldap-1.12.5-40.13 is installed
  • OR krb5-plugin-preauth-otp-1.12.5-40.13 is installed
  • OR krb5-plugin-preauth-pkinit-1.12.5-40.13 is installed
  • OR krb5-server-1.12.5-40.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND permissions-2015.09.28.1626-17.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • xen-4.9.4_06-3.62 is installed
  • OR xen-doc-html-4.9.4_06-3.62 is installed
  • OR xen-libs-4.9.4_06-3.62 is installed
  • OR xen-libs-32bit-4.9.4_06-3.62 is installed
  • OR xen-tools-4.9.4_06-3.62 is installed
  • OR xen-tools-domU-4.9.4_06-3.62 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND gdb-8.3.1-2.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • curl-7.37.0-37.26 is installed
  • OR libcurl4-7.37.0-37.26 is installed
  • OR libcurl4-32bit-7.37.0-37.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • apache2-mod_apparmor-2.8.2-49 is installed
  • OR apparmor-docs-2.8.2-49 is installed
  • OR apparmor-parser-2.8.2-49 is installed
  • OR apparmor-profiles-2.8.2-49 is installed
  • OR apparmor-utils-2.8.2-49 is installed
  • OR libapparmor1-2.8.2-49 is installed
  • OR libapparmor1-32bit-2.8.2-49 is installed
  • OR pam_apparmor-2.8.2-49 is installed
  • OR pam_apparmor-32bit-2.8.2-49 is installed
  • OR perl-apparmor-2.8.2-49 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND squid-3.5.21-26.29 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • qemu-2.9.1-6.44 is installed
  • OR qemu-block-curl-2.9.1-6.44 is installed
  • OR qemu-block-iscsi-2.9.1-6.44 is installed
  • OR qemu-block-rbd-2.9.1-6.44 is installed
  • OR qemu-block-ssh-2.9.1-6.44 is installed
  • OR qemu-guest-agent-2.9.1-6.44 is installed
  • OR qemu-ipxe-1.0.0+-6.44 is installed
  • OR qemu-kvm-2.9.1-6.44 is installed
  • OR qemu-lang-2.9.1-6.44 is installed
  • OR qemu-seabios-1.10.2-6.44 is installed
  • OR qemu-sgabios-8-6.44 is installed
  • OR qemu-tools-2.9.1-6.44 is installed
  • OR qemu-vgabios-1.10.2-6.44 is installed
  • OR qemu-x86-2.9.1-6.44 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND squid-3.5.21-26.32 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • mariadb-10.2.22-4.11 is installed
  • OR mariadb-client-10.2.22-4.11 is installed
  • OR mariadb-errormessages-10.2.22-4.11 is installed
  • OR mariadb-galera-10.2.22-4.11 is installed
  • OR mariadb-tools-10.2.22-4.11 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Django1-1.11.20-3.6 is installed
    • BACK