Oval Definition:	oval:org.opensuse.security:def:69447
Revision Date: 2021-04-16 Version: 1 Title: Security update for qemu (Important) Description: This update for qemu fixes the following issues: - Fix OOB access in sm501 device emulation (CVE-2020-12829, bsc#1172385) - Fix OOB access possibility in MegaRAID SAS 8708EM2 emulation (CVE-2020-13362 bsc#1172383) - Fix use-after-free in usb xhci packet handling (CVE-2020-25723, bsc#1178934) - Fix use-after-free in usb ehci packet handling (CVE-2020-25084, bsc#1176673) - Fix OOB access in usb hcd-ohci emulation (CVE-2020-25624, bsc#1176682) - Fix infinite loop (DoS) in usb hcd-ohci emulation (CVE-2020-25625, bsc#1176684) - Fix guest triggerable assert in shared network handling code (CVE-2020-27617, bsc#1178174) - Fix infinite loop (DoS) in e1000e device emulation (CVE-2020-28916, bsc#1179468) - Fix OOB access in atapi emulation (CVE-2020-29443, bsc#1181108) - Fix null pointer deref. (DoS) in mmio ops (CVE-2020-15469, bsc#1173612) - Fix infinite loop (DoS) in e1000 device emulation (CVE-2021-20257, bsc#1182577) - Fix OOB access (stack overflow) in rtl8139 NIC emulation (CVE-2021-3416, bsc#1182968) - Fix OOB access (stack overflow) in other NIC emulations (CVE-2021-3416) - Fix OOB access in SLIRP ARP/NCSI packet processing (CVE-2020-29129, bsc#1179466, CVE-2020-29130, bsc#1179467) - Fix null pointer dereference possibility (DoS) in MegaRAID SAS 8708EM2 emulation (CVE-2020-13659 bsc#1172386 - Fix OOB access in iscsi (CVE-2020-11947 bsc#1180523) - Fix OOB access in vmxnet3 emulation (CVE-2021-20203 bsc#1181639) - Fix buffer overflow in the XGMAC device (CVE-2020-15863 bsc#1174386) - Fix DoS in packet processing of various emulated NICs (CVE-2020-16092 bsc#1174641) - Fix OOB access while processing USB packets (CVE-2020-14364 bsc#1175441) - Fix package scripts to not use hard coded paths for temporary working directories and log files (bsc#1182425) - Fix potential privilege escalation in virtfs (CVE-2021-20181 bsc#1182137) - Drop the 'ampersand 0x25 shift altgr' line in pt-br keymap file (bsc#1129962) - Fix migration failure with error message: 'error while loading state section id 3(ram) (bsc#1154790) - Fix OOB access possibility in ES1370 audio device emulation (CVE-2020-13361 bsc#1172384) - Fix OOB access in ROM loading (CVE-2020-13765 bsc#1172478) - Fix OOB access in ARM interrupt handling (CVE-2021-20221 bsc#1181933) - Tweaks to spec file for better formatting, and remove not needed BuildRequires for e2fsprogs-devel and libpcap-devel - Use '%service_del_postun_without_restart' instead of '%service_del_postun' to avoid 'Failed to try-restart qemu-ga@.service' error while updating the qemu-guest-agent. (bsc#1178565) - Fix OOB access in sm501 device emulation (CVE-2020-12829, bsc#1172385) Family: unix Class: patch Status: Reference(s): 1129962 1133624 1133625 1145559 1154790 1163102 1163103 1163104 1172383 1172384 1172385 1172386 1172478 1173612 1174386 1174641 1175441 1176673 1176682 1176684 1178174 1178565 1178934 1179466 1179467 1179468 1180523 1181108 1181639 1181933 1182137 1182425 1182577 1182968 CVE-2019-11494 CVE-2019-11499 CVE-2019-11500 CVE-2019-15604 CVE-2019-15605 CVE-2019-15606 CVE-2020-11947 CVE-2020-12829 CVE-2020-13361 CVE-2020-13362 CVE-2020-13659 CVE-2020-13765 CVE-2020-14364 CVE-2020-15469 CVE-2020-15863 CVE-2020-16092 CVE-2020-25084 CVE-2020-25624 CVE-2020-25625 CVE-2020-25723 CVE-2020-27617 CVE-2020-28916 CVE-2020-29129 CVE-2020-29130 CVE-2020-29443 CVE-2021-20181 CVE-2021-20203 CVE-2021-20221 CVE-2021-20257 CVE-2021-3416 SUSE-SU-2019:2514-1 SUSE-SU-2020:0455-1 SUSE-SU-2021:1244-1 Platform(s): SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 15-LTSS Product(s): Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information dovecot23-2.3.3-8 is installed OR dovecot23-backend-mysql-2.3.3-8 is installed OR dovecot23-backend-pgsql-2.3.3-8 is installed OR dovecot23-backend-sqlite-2.3.3-8 is installed OR dovecot23-devel-2.3.3-8 is installed OR dovecot23-fts-2.3.3-8 is installed OR dovecot23-fts-lucene-2.3.3-8 is installed OR dovecot23-fts-solr-2.3.3-8 is installed OR dovecot23-fts-squat-2.3.3-8 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs10-10.19.0-1.18 is installed OR nodejs10-devel-10.19.0-1.18 is installed OR nodejs10-docs-10.19.0-1.18 is installed OR npm10-10.19.0-1.18 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information qemu-2.11.2-9.43.1 is installed OR qemu-arm-2.11.2-9.43.1 is installed OR qemu-block-curl-2.11.2-9.43.1 is installed OR qemu-block-iscsi-2.11.2-9.43.1 is installed OR qemu-block-rbd-2.11.2-9.43.1 is installed OR qemu-block-ssh-2.11.2-9.43.1 is installed OR qemu-guest-agent-2.11.2-9.43.1 is installed OR qemu-ipxe-1.0.0+-9.43.1 is installed OR qemu-kvm-2.11.2-9.43.1 is installed OR qemu-lang-2.11.2-9.43.1 is installed OR qemu-ppc-2.11.2-9.43.1 is installed OR qemu-s390-2.11.2-9.43.1 is installed OR qemu-seabios-1.11.0_0_g63451fc-9.43.1 is installed OR qemu-sgabios-8-9.43.1 is installed OR qemu-tools-2.11.2-9.43.1 is installed OR qemu-vgabios-1.11.0_0_g63451fc-9.43.1 is installed OR qemu-x86-2.11.2-9.43.1 is installed
BACK