Oval Definition:	oval:org.opensuse.security:def:64474
Revision Date: 2021-04-16 Version: 1 Title: Security update for qemu (Important) Description: This update for qemu fixes the following issues: - CVE-2020-12829: Fix OOB access in sm501 device emulation (bsc#1172385) - CVE-2020-25723: Fix use-after-free in usb xhci packet handling (bsc#1178934) - CVE-2020-25084: Fix use-after-free in usb ehci packet handling (bsc#1176673) - CVE-2020-25625: Fix infinite loop (DoS) in usb hcd-ohci emulation (bsc#1176684) - CVE-2020-25624: Fix OOB access in usb hcd-ohci emulation (bsc#1176682) - CVE-2020-27617: Fix guest triggerable assert in shared network handling code (bsc#1178174) - CVE-2020-28916: Fix infinite loop (DoS) in e1000e device emulation (bsc#1179468) - CVE-2020-29443: Fix OOB access in atapi emulation (bsc#1181108) - CVE-2020-27821: Fix heap overflow in MSIx emulation (bsc#1179686) - CVE-2020-15469: Fix null pointer deref. (DoS) in mmio ops (bsc#1173612) - CVE-2021-20257: Fix infinite loop (DoS) in e1000 device emulation (bsc#1182577) - CVE-2021-3416: Fix OOB access (stack overflow) in rtl8139 NIC emulation (bsc#1182968) - CVE-2021-3416: Fix OOB access (stack overflow) in other NIC emulations (bsc#1182968) - CVE-2020-27616: Fix OOB access in ati-vga emulation (bsc#1178400) - CVE-2020-29129: Fix OOB access in SLIRP ARP/NCSI packet processing (bsc#1179466, CVE-2020-29130, bsc#1179467) - Fix package scripts to not use hard coded paths for temporary working directories and log files (bsc#1182425) - Add split-provides through forsplits/13 to cover updates of SLE15-SP2 to SLE15-SP3, and openSUSE equivalents (bsc#1184064) - Added a few more usability improvements for our git packaging workflow Family: unix Class: patch Status: Reference(s): 1027519 1157490 1167007 1168630 1168874 1170107 1171910 1171975 1172177 1172182 1172184 1172186 1172205 1172385 1172496 1173351 1173612 1174773 1174949 1175070 1175071 1176673 1176682 1176684 1178074 1178174 1178400 1178934 1179466 1179467 1179468 1179686 1181108 1182425 1182577 1182968 1184064 CVE-2011-2483 CVE-2016-5824 CVE-2016-5827 CVE-2016-9584 CVE-2019-16770 CVE-2019-5418 CVE-2019-5419 CVE-2019-5420 CVE-2020-0543 CVE-2020-11076 CVE-2020-11077 CVE-2020-11993 CVE-2020-12829 CVE-2020-15169 CVE-2020-15469 CVE-2020-16116 CVE-2020-17353 CVE-2020-25084 CVE-2020-25624 CVE-2020-25625 CVE-2020-25723 CVE-2020-27616 CVE-2020-27617 CVE-2020-27821 CVE-2020-28916 CVE-2020-29129 CVE-2020-29130 CVE-2020-29443 CVE-2020-5247 CVE-2020-5249 CVE-2020-5267 CVE-2020-6463 CVE-2020-6465 CVE-2020-6466 CVE-2020-6467 CVE-2020-6468 CVE-2020-6469 CVE-2020-6470 CVE-2020-6471 CVE-2020-6472 CVE-2020-6473 CVE-2020-6474 CVE-2020-6475 CVE-2020-6476 CVE-2020-6477 CVE-2020-6478 CVE-2020-6479 CVE-2020-6480 CVE-2020-6481 CVE-2020-6482 CVE-2020-6483 CVE-2020-6484 CVE-2020-6485 CVE-2020-6486 CVE-2020-6487 CVE-2020-6488 CVE-2020-6489 CVE-2020-6490 CVE-2020-6491 CVE-2020-6493 CVE-2020-6494 CVE-2020-6495 CVE-2020-6496 CVE-2020-6819 CVE-2020-6820 CVE-2020-6821 CVE-2020-6822 CVE-2020-6825 CVE-2020-8164 CVE-2020-8165 CVE-2020-8166 CVE-2020-8167 CVE-2020-8184 CVE-2020-8185 CVE-2020-9490 CVE-2021-20257 CVE-2021-3416 openSUSE-SU-2020:0544-1 openSUSE-SU-2020:0818-1 openSUSE-SU-2020:0823-1 openSUSE-SU-2020:1183-2 openSUSE-SU-2020:1453-1 openSUSE-SU-2020:1792-1 SUSE-SU-2021:1243-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Storage 7 SUSE Manager Proxy 4.1 SUSE Manager Server 4.1 Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information ark-20.04.2-lp152.2.3 is installed OR ark-lang-20.04.2-lp152.2.3 is installed OR libkerfuffle18-18.12.3-lp151.2.4 is installed OR libkerfuffle20-20.04.2-lp152.2.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information lilypond-2.20.0-lp152.2.5 is installed OR lilypond-doc-2.20.0-lp152.2.5 is installed OR lilypond-doc-cs-2.20.0-lp152.2.5 is installed OR lilypond-doc-de-2.20.0-lp152.2.5 is installed OR lilypond-doc-es-2.20.0-lp152.2.5 is installed OR lilypond-doc-fr-2.20.0-lp152.2.5 is installed OR lilypond-doc-hu-2.20.0-lp152.2.5 is installed OR lilypond-doc-it-2.20.0-lp152.2.5 is installed OR lilypond-doc-ja-2.20.0-lp152.2.5 is installed OR lilypond-doc-nl-2.20.0-lp152.2.5 is installed OR lilypond-doc-zh-2.20.0-lp152.2.5 is installed OR lilypond-emmentaler-fonts-2.20.0-lp152.2.5 is installed OR lilypond-fonts-common-2.20.0-lp152.2.5 is installed OR lilypond-texgy-fonts-2.20.0-lp152.2.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND qemu-tools-4.2.1-11.16.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information sysvinit-tools-2.88+-1 is installed OR whois-5.3.0-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND libical-devel-2.0.0-1 is installed
BACK