Oval Definition:	oval:org.opensuse.security:def:63872
Revision Date: 2020-12-01 Version: 1 Title: Security update for ovmf (Important) Description: This update for ovmf fixes the following issues: Security issues fixed: - CVE-2018-12180: Fixed a buffer overflow in BlockIo service, which could lead to memory read/write overrun (bsc#1127820). - CVE-2018-12178: Fixed an improper DNS check upon receiving a new DNS packet (bsc#1127821). - CVE-2018-3630: Fixed a logic error in FV parsing which could allow a local attacker to bypass the chain of trust checks (bsc#1127822). Family: unix Class: patch Status: Reference(s): 1044638 1058115 1065729 1071995 1085030 1085469 1109412 1109413 1109414 1111966 1111996 1112534 1112535 1113247 1113252 1113255 1116827 1117463 1117464 1117465 1118595 1118596 1118599 1118644 1118830 1118831 1120640 1121034 1121035 1121056 1121214 1127820 1127821 1127822 1131055 1133131 1133232 1136085 1141913 1142772 1148868 1152472 1152489 1152590 1153274 1154016 1154025 1154353 1154492 1155518 1155798 1156395 1157169 1158050 1158242 1158265 1158748 1158765 1159781 1159867 1160947 1161495 1162002 1162063 1162400 1163026 1164648 1164777 1164780 1165211 1165975 1166985 1167104 1167651 1168023 1168230 1168779 1168838 1169021 1169194 1169514 1169681 1170011 1170442 1170774 1170879 1170891 1170895 1171189 1171191 1171219 1171220 1171246 1171417 1171433 1171513 1171530 1171662 1171688 1171699 1171739 1171743 1171759 1171828 1171868 1171904 1171915 1171982 1171983 1172017 1172046 1172061 1172062 1172063 1172064 1172065 1172066 1172067 1172068 1172069 1172073 1172086 1172095 1172169 1172170 1172208 1172223 1172342 1172343 1172344 1172365 1172366 1172374 1172391 1172393 1172394 1172453 1172458 1172467 1172484 1172537 1172719 1172739 1172751 1172759 1172775 1172781 1172782 1172783 1172814 1172823 1172841 1172938 1172939 1172940 1172956 1172983 1172984 1172985 1172986 1172987 1172988 1172989 1172990 1172999 1173060 1173068 1173085 1173139 1173206 1173271 1173280 1173428 1173438 1173461 1174157 1174538 1174628 CVE-2017-9670 CVE-2018-1000876 CVE-2018-12178 CVE-2018-12180 CVE-2018-15518 CVE-2018-17358 CVE-2018-17359 CVE-2018-17360 CVE-2018-17985 CVE-2018-18309 CVE-2018-18483 CVE-2018-18484 CVE-2018-18605 CVE-2018-18606 CVE-2018-18607 CVE-2018-19490 CVE-2018-19491 CVE-2018-19492 CVE-2018-19869 CVE-2018-19873 CVE-2018-19931 CVE-2018-19932 CVE-2018-20623 CVE-2018-20651 CVE-2018-20671 CVE-2018-3630 CVE-2018-6323 CVE-2018-6543 CVE-2018-6759 CVE-2018-6872 CVE-2018-7208 CVE-2018-7568 CVE-2018-7569 CVE-2018-7570 CVE-2018-7642 CVE-2018-7643 CVE-2018-8945 CVE-2019-0199 CVE-2019-0221 CVE-2019-1010180 CVE-2019-19462 CVE-2019-20810 CVE-2019-20812 CVE-2020-10711 CVE-2020-10732 CVE-2020-10751 CVE-2020-10766 CVE-2020-10767 CVE-2020-10768 CVE-2020-10773 CVE-2020-11100 CVE-2020-12656 CVE-2020-12769 CVE-2020-12888 CVE-2020-13143 CVE-2020-13974 CVE-2020-14344 CVE-2020-14416 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-15652 CVE-2020-15653 CVE-2020-15654 CVE-2020-15655 CVE-2020-15656 CVE-2020-15657 CVE-2020-15658 CVE-2020-15659 CVE-2020-5208 CVE-2020-6463 CVE-2020-6514 openSUSE-SU-2019:1808-1 openSUSE-SU-2019:2432-1 openSUSE-SU-2020:0444-1 openSUSE-SU-2020:0935-1 openSUSE-SU-2020:1189-1 SUSE-SU-2019:0581-1 SUSE-SU-2020:0630-1 SUSE-SU-2020:1021-1 SUSE-SU-2020:1660-1 SUSE-SU-2020:2861-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information tomcat-9.0.21-lp151.3.3 is installed OR tomcat-admin-webapps-9.0.21-lp151.3.3 is installed OR tomcat-docs-webapp-9.0.21-lp151.3.3 is installed OR tomcat-el-3_0-api-9.0.21-lp151.3.3 is installed OR tomcat-embed-9.0.21-lp151.3.3 is installed OR tomcat-javadoc-9.0.21-lp151.3.3 is installed OR tomcat-jsp-2_3-api-9.0.21-lp151.3.3 is installed OR tomcat-jsvc-9.0.21-lp151.3.3 is installed OR tomcat-lib-9.0.21-lp151.3.3 is installed OR tomcat-servlet-4_0-api-9.0.21-lp151.3.3 is installed OR tomcat-webapps-9.0.21-lp151.3.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information MozillaFirefox-78.1.0-lp152.2.15 is installed OR MozillaFirefox-branding-upstream-78.1.0-lp152.2.15 is installed OR MozillaFirefox-buildsymbols-78.1.0-lp152.2.15 is installed OR MozillaFirefox-devel-78.1.0-lp152.2.15 is installed OR MozillaFirefox-translations-common-78.1.0-lp152.2.15 is installed OR MozillaFirefox-translations-other-78.1.0-lp152.2.15 is installed OR gstreamer-plugin-pipewire-0.3.6-lp152.2.3 is installed OR libpipewire-0_3-0-0.3.6-lp152.2.3 is installed OR pipewire-0.3.6-lp152.2.3 is installed OR pipewire-devel-0.3.6-lp152.2.3 is installed OR pipewire-doc-0.3.6-lp152.2.3 is installed OR pipewire-libjack-0_3-0.3.6-lp152.2.3 is installed OR pipewire-libpulse-0_3-0.3.6-lp152.2.3 is installed OR pipewire-modules-0.3.6-lp152.2.3 is installed OR pipewire-spa-plugins-0_2-0.3.6-lp152.2.3 is installed OR pipewire-spa-tools-0.3.6-lp152.2.3 is installed OR pipewire-tools-0.3.6-lp152.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information ovmf-2017+git1510945757.b2662641d5-3.8 is installed OR ovmf-tools-2017+git1510945757.b2662641d5-3.8 is installed OR qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-3.8 is installed OR qemu-uefi-aarch64-2017+git1510945757.b2662641d5-3.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information libX11-1.6.2-12.8 is installed OR libX11-6-1.6.2-12.8 is installed OR libX11-6-32bit-1.6.2-12.8 is installed OR libX11-data-1.6.2-12.8 is installed OR libX11-xcb1-1.6.2-12.8 is installed OR libX11-xcb1-32bit-1.6.2-12.8 is installed OR libxcb-1.10-4.5 is installed OR libxcb-dri2-0-1.10-4.5 is installed OR libxcb-dri2-0-32bit-1.10-4.5 is installed OR libxcb-dri3-0-1.10-4.5 is installed OR libxcb-dri3-0-32bit-1.10-4.5 is installed OR libxcb-glx0-1.10-4.5 is installed OR libxcb-glx0-32bit-1.10-4.5 is installed OR libxcb-present0-1.10-4.5 is installed OR libxcb-present0-32bit-1.10-4.5 is installed OR libxcb-randr0-1.10-4.5 is installed OR libxcb-render0-1.10-4.5 is installed OR libxcb-render0-32bit-1.10-4.5 is installed OR libxcb-shape0-1.10-4.5 is installed OR libxcb-shm0-1.10-4.5 is installed OR libxcb-shm0-32bit-1.10-4.5 is installed OR libxcb-sync1-1.10-4.5 is installed OR libxcb-sync1-32bit-1.10-4.5 is installed OR libxcb-xf86dri0-1.10-4.5 is installed OR libxcb-xfixes0-1.10-4.5 is installed OR libxcb-xfixes0-32bit-1.10-4.5 is installed OR libxcb-xinerama0-1.10-4.5 is installed OR libxcb-xkb1-1.10-4.5 is installed OR libxcb-xkb1-32bit-1.10-4.5 is installed OR libxcb-xv0-1.10-4.5 is installed OR libxcb1-1.10-4.5 is installed OR libxcb1-32bit-1.10-4.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information java-1_7_0-openjdk-1.7.0.271-43.41 is installed OR java-1_7_0-openjdk-demo-1.7.0.271-43.41 is installed OR java-1_7_0-openjdk-devel-1.7.0.271-43.41 is installed OR java-1_7_0-openjdk-headless-1.7.0.271-43.41 is installed
BACK