Oval Definition:	oval:org.opensuse.security:def:60698
Revision Date: 2020-12-01 Version: 1 Title: Security update for qemu (Moderate) Description: This update for qemu fixes the following issues: Security issues fixed: - CVE-2020-1711: Fixed a potential OOB access in the iSCSI client code (bsc#1166240). - CVE-2019-12068: Fixed a potential DoS in the LSI SCSI controller emulation (bsc#1146873). - CVE-2020-1983: Fixed a use-after-free in the ip_reass function of slirp (bsc#1170940). - CVE-2020-8608: Fixed a potential OOB access in slirp (bsc#1163018). - CVE-2020-7039: Fixed a potential OOB access in slirp (bsc#1161066). - CVE-2019-15890: Fixed a use-after-free during packet reassembly in slirp (bsc#1149811). - Fixed multiple potential DoS issues in SLIRP, similar to CVE-2019-6778 (bsc#1123156). Non-security issue fixed: - Make sure that required memory is mapped properly during an incoming migration of a Xen HVM domU (bsc#1160024). Family: unix Class: patch Status: Reference(s): 1032680 1040311 1040312 1040313 1050577 1050578 1050579 1050581 1054028 1055960 1056995 1068612 1077717 1087102 1089533 1092420 1093414 1101644 1101645 1101651 1101656 1106019 1106812 1107190 1108719 1112767 1115034 1122198 1122475 1123156 1123872 1126230 1126503 1127027 1136082 1141968 1142772 1144524 1145692 1146848 1146873 11483483 1148383 1149811 1150734 1153191 1156525 1157198 1157607 1157888 1158003 1158004 1158005 1158006 1158007 1159046 1160024 1160152 1160153 1160192 1160790 1160851 1160895 1160912 1161066 1161088 1161089 1161096 1161181 1161670 1162388 1162553 1163018 1164322 1166240 1166847 1167152 1167244 1168140 1168142 1168593 1169392 1169770 1170657 1170940 1171273 1171560 1171594 1171661 1171670 1171909 1171921 1171960 1171961 1171963 1172166 1172167 1172175 1172176 1172205 1172409 1172515 1176315 1177914 903543 CVE-2017-1000246 CVE-2017-11462 CVE-2017-11624 CVE-2017-11625 CVE-2017-11626 CVE-2017-11627 CVE-2017-12595 CVE-2017-9208 CVE-2017-9209 CVE-2017-9210 CVE-2018-0739 CVE-2018-14618 CVE-2018-2938 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-3639 CVE-2019-1010083 CVE-2019-1010180 CVE-2019-12068 CVE-2019-13456 CVE-2019-15043 CVE-2019-15890 CVE-2019-16785 CVE-2019-16786 CVE-2019-16789 CVE-2019-16792 CVE-2019-16865 CVE-2019-17185 CVE-2019-18874 CVE-2019-18901 CVE-2019-19577 CVE-2019-19578 CVE-2019-19579 CVE-2019-19580 CVE-2019-19581 CVE-2019-19583 CVE-2019-19911 CVE-2019-2510 CVE-2019-2537 CVE-2019-3688 CVE-2019-3690 CVE-2019-3828 CVE-2019-6778 CVE-2020-0543 CVE-2020-10663 CVE-2020-10743 CVE-2020-10753 CVE-2020-11076 CVE-2020-11077 CVE-2020-11739 CVE-2020-11740 CVE-2020-11741 CVE-2020-11742 CVE-2020-12052 CVE-2020-13254 CVE-2020-13379 CVE-2020-13596 CVE-2020-15999 CVE-2020-1711 CVE-2020-17507 CVE-2020-1983 CVE-2020-2574 CVE-2020-5312 CVE-2020-5313 CVE-2020-5390 CVE-2020-7039 CVE-2020-7211 CVE-2020-8151 CVE-2020-8608 SUSE-SU-2017:2659-1 SUSE-SU-2018:0925-1 SUSE-SU-2019:1162-1 SUSE-SU-2019:2916-1 SUSE-SU-2019:3180-1 SUSE-SU-2020:0527-1 SUSE-SU-2020:1018-1 SUSE-SU-2020:1538-1 SUSE-SU-2020:1748-1 SUSE-SU-2020:1901-1 SUSE-SU-2020:2751-1 SUSE-SU-2020:2998-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information libopenssl-1_1-devel-1.1.0i-lp150.3.9 is installed OR libopenssl-1_1-devel-32bit-1.1.0i-lp150.3.9 is installed OR libopenssl-devel-1.1.0i-lp150.2.3 is installed OR libopenssl1_1-1.1.0i-lp150.3.9 is installed OR libopenssl1_1-32bit-1.1.0i-lp150.3.9 is installed OR libopenssl1_1-hmac-1.1.0i-lp150.3.9 is installed OR libopenssl1_1-hmac-32bit-1.1.0i-lp150.3.9 is installed OR openssl-1.1.0i-lp150.2.3 is installed OR openssl-1_1-1.1.0i-lp150.3.9 is installed OR openssl-1_1-doc-1.1.0i-lp150.3.9 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information MozillaFirefox-60.8.0-lp151.2.10 is installed OR MozillaFirefox-branding-upstream-60.8.0-lp151.2.10 is installed OR MozillaFirefox-buildsymbols-60.8.0-lp151.2.10 is installed OR MozillaFirefox-devel-60.8.0-lp151.2.10 is installed OR MozillaFirefox-translations-common-60.8.0-lp151.2.10 is installed OR MozillaFirefox-translations-other-60.8.0-lp151.2.10 is installed OR libfreebl3-3.44.1-lp151.2.3 is installed OR libfreebl3-32bit-3.44.1-lp151.2.3 is installed OR libfreebl3-hmac-3.44.1-lp151.2.3 is installed OR libfreebl3-hmac-32bit-3.44.1-lp151.2.3 is installed OR libsoftokn3-3.44.1-lp151.2.3 is installed OR libsoftokn3-32bit-3.44.1-lp151.2.3 is installed OR libsoftokn3-hmac-3.44.1-lp151.2.3 is installed OR libsoftokn3-hmac-32bit-3.44.1-lp151.2.3 is installed OR mozilla-nss-3.44.1-lp151.2.3 is installed OR mozilla-nss-32bit-3.44.1-lp151.2.3 is installed OR mozilla-nss-certs-3.44.1-lp151.2.3 is installed OR mozilla-nss-certs-32bit-3.44.1-lp151.2.3 is installed OR mozilla-nss-devel-3.44.1-lp151.2.3 is installed OR mozilla-nss-sysinit-3.44.1-lp151.2.3 is installed OR mozilla-nss-sysinit-32bit-3.44.1-lp151.2.3 is installed OR mozilla-nss-tools-3.44.1-lp151.2.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information libunbound-devel-mini-1.6.8-lp152.9.3 is installed OR libunbound2-1.6.8-lp152.9.3 is installed OR unbound-1.6.8-lp152.9.3 is installed OR unbound-anchor-1.6.8-lp152.9.3 is installed OR unbound-devel-1.6.8-lp152.9.3 is installed OR unbound-munin-1.6.8-lp152.9.3 is installed OR unbound-python-1.6.8-lp152.9.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information krb5-1.12.5-40.13 is installed OR krb5-32bit-1.12.5-40.13 is installed OR krb5-client-1.12.5-40.13 is installed OR krb5-doc-1.12.5-40.13 is installed OR krb5-plugin-kdb-ldap-1.12.5-40.13 is installed OR krb5-plugin-preauth-otp-1.12.5-40.13 is installed OR krb5-plugin-preauth-pkinit-1.12.5-40.13 is installed OR krb5-server-1.12.5-40.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND permissions-2015.09.28.1626-17.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information xen-4.9.4_06-3.62 is installed OR xen-doc-html-4.9.4_06-3.62 is installed OR xen-libs-4.9.4_06-3.62 is installed OR xen-libs-32bit-4.9.4_06-3.62 is installed OR xen-tools-4.9.4_06-3.62 is installed OR xen-tools-domU-4.9.4_06-3.62 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND gdb-8.3.1-2.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information curl-7.37.0-37.26 is installed OR libcurl4-7.37.0-37.26 is installed OR libcurl4-32bit-7.37.0-37.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache2-mod_apparmor-2.8.2-49 is installed OR apparmor-docs-2.8.2-49 is installed OR apparmor-parser-2.8.2-49 is installed OR apparmor-profiles-2.8.2-49 is installed OR apparmor-utils-2.8.2-49 is installed OR libapparmor1-2.8.2-49 is installed OR libapparmor1-32bit-2.8.2-49 is installed OR pam_apparmor-2.8.2-49 is installed OR pam_apparmor-32bit-2.8.2-49 is installed OR perl-apparmor-2.8.2-49 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND squid-3.5.21-26.29 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information qemu-2.9.1-6.44 is installed OR qemu-block-curl-2.9.1-6.44 is installed OR qemu-block-iscsi-2.9.1-6.44 is installed OR qemu-block-rbd-2.9.1-6.44 is installed OR qemu-block-ssh-2.9.1-6.44 is installed OR qemu-guest-agent-2.9.1-6.44 is installed OR qemu-ipxe-1.0.0+-6.44 is installed OR qemu-kvm-2.9.1-6.44 is installed OR qemu-lang-2.9.1-6.44 is installed OR qemu-seabios-1.10.2-6.44 is installed OR qemu-sgabios-8-6.44 is installed OR qemu-tools-2.9.1-6.44 is installed OR qemu-vgabios-1.10.2-6.44 is installed OR qemu-x86-2.9.1-6.44 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND squid-3.5.21-26.32 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information mariadb-10.2.22-4.11 is installed OR mariadb-client-10.2.22-4.11 is installed OR mariadb-errormessages-10.2.22-4.11 is installed OR mariadb-galera-10.2.22-4.11 is installed OR mariadb-tools-10.2.22-4.11 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND python-Django1-1.11.20-3.6 is installed
BACK