Oval Definition:oval:org.opensuse.security:def:773
Revision Date:2022-09-22Version:1
Title:Security update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container (Important)
Description:

This update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container fixes the following issues:

The kubevirt stack was updated to version 0.54.0

Release notes https://github.com/kubevirt/kubevirt/releases/tag/v0.54.0

Security fixes:

- CVE-2022-1798: Fix arbitrary file read on the host from KubeVirt VMs (bsc#1202516)

Security fixes in vendored dependencies:

- CVE-2022-1996: Fixed go-restful CORS bypass bsc#1200528) - CVE-2022-29162: Fixed runc incorrect handling of inheritable capabilities in default configuration (bsc#1199460)

- Fix containerdisk unmount logic - Support topology spread constraints - Update libvirt-go to fix memory leak - Pack nft rules and nsswitch.conf for virt-handler - Only create 1MiB-aligned disk images (bsc#1199603) - Avoid to return nil failure message - Use semantic equality comparison - Drop kubevirt-psp-caasp.yaml - Allow to configure utility containers for update test - Symlink nsswitch.conf and nft rules to proper locations - Drop unused package libvirt-client - Install vim-small instead of vim - Remove unneeded libvirt-daemon-driver-storage-core - Install missing packages ethtool and gawk. Fixes bsc#1199392
Family:unixClass:patch
Status:Reference(s):1189521
1199392
1199460
1199603
1200528
1202516
CVE-2011-0523
CVE-2011-0523
CVE-2011-0524
CVE-2011-0524
CVE-2014-8964
CVE-2015-2325
CVE-2015-2326
CVE-2016-3191
CVE-2017-7186
CVE-2017-8786
CVE-2021-3712
CVE-2022-1798
CVE-2022-1996
CVE-2022-29162
SUSE-SU-2021:2966-1
SUSE-SU-2022:3333-1
Platform(s):openSUSE 13.2
openSUSE Leap 15.4
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise for SAP 12 SP1
SUSE Linux Enterprise High Availability 15
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Module for additional PackageHub packages 15
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP3
SUSE Linux Enterprise Module for Desktop Applications 15
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for Development Tools 15
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for Rasperry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Storage 7
SUSE Linux Enterprise Storage 7.1
SUSE Linux Enterprise Workstation Extension 15
SUSE Manager Proxy 4.1
SUSE Manager Proxy 4.2
SUSE Manager Retail Branch Server 4.2
SUSE Manager Server 4.1
SUSE Manager Server 4.2
Product(s):
Definition Synopsis
  • openSUSE Leap 15.4 is installed
  • AND Package Information
  • kubevirt-container-disk-0.54.0-150400.3.3.2 is installed
  • OR kubevirt-manifests-0.54.0-150400.3.3.2 is installed
  • OR kubevirt-tests-0.54.0-150400.3.3.2 is installed
  • OR kubevirt-virt-api-0.54.0-150400.3.3.2 is installed
  • OR kubevirt-virt-controller-0.54.0-150400.3.3.2 is installed
  • OR kubevirt-virt-handler-0.54.0-150400.3.3.2 is installed
  • OR kubevirt-virt-launcher-0.54.0-150400.3.3.2 is installed
  • OR kubevirt-virt-operator-0.54.0-150400.3.3.2 is installed
  • OR kubevirt-virtctl-0.54.0-150400.3.3.2 is installed
  • OR obs-service-kubevirt_containers_meta-0.54.0-150400.3.3.2 is installed
    • Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND haproxy-1.5.4-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-5 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-5 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-5 is installed
  • OR libMagickCore-6_Q16-1-32bit-6.8.8.1-5 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • strongswan-5.1.3-22 is installed
  • OR strongswan-doc-5.1.3-22 is installed
  • OR strongswan-ipsec-5.1.3-22 is installed
  • OR strongswan-libs0-5.1.3-22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • libpcre2-16-0-10.31-1.14 is installed
  • OR libpcre2-32-0-10.31-1.14 is installed
  • OR libpcre2-8-0-10.31-1.14 is installed
  • OR libpcre2-posix2-10.31-1.14 is installed
  • OR pcre2-devel-10.31-1.14 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP3 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Server 4.2 is installed
  • AND Package Information
  • libopenssl-1_1-devel-1.1.1d-11.30.1 is installed
  • OR libopenssl1_1-1.1.1d-11.30.1 is installed
  • OR libopenssl1_1-32bit-1.1.1d-11.30.1 is installed
  • OR libopenssl1_1-hmac-1.1.1d-11.30.1 is installed
  • OR libopenssl1_1-hmac-32bit-1.1.1d-11.30.1 is installed
  • OR openssl-1_1-1.1.1d-11.30.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 is installed
  • AND Package Information
  • ruby2.5-rubygem-sprockets-3.7.2-3.3 is installed
  • OR rubygem-sprockets-3.7.2-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed
  • AND Package Information
  • libxmlsec1-gcrypt1-1.2.26-3.3 is installed
  • OR libxmlsec1-gnutls1-1.2.26-3.3 is installed
  • OR libxmlsec1-openssl1-1.2.26-3.3 is installed
  • OR xmlsec1-1.2.26-3.3 is installed
  • OR xmlsec1-gnutls-devel-1.2.26-3.3 is installed
  • OR xmlsec1-openssl-devel-1.2.26-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • libpcre2-16-0-10.31-1 is installed
  • OR libpcre2-32-0-10.31-1 is installed
  • OR libpcre2-8-0-10.31-1 is installed
  • OR libpcre2-posix2-10.31-1 is installed
  • OR pcre2-devel-10.31-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND Package Information
  • cairo-1.15.10-4.5 is installed
  • OR libcairo2-32bit-1.15.10-4.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • libgypsy-devel-0.9-2 is installed
  • OR libgypsy0-0.9-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 is installed
  • AND Package Information
  • perl-5.26.1-7.3 is installed
  • OR perl-doc-5.26.1-7.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.19 is installed
  • OR reiserfs-kmp-default-4.12.14-25.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.13 is installed
  • OR kernel-default-livepatch-4.12.14-25.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • ruby2.5-rubygem-activejob-doc-5_1-5.1.4-3.3 is installed
  • OR rubygem-activejob-5_1-5.1.4-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • openslp-2.0.0-6.3 is installed
  • OR openslp-server-2.0.0-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND Package Information
  • nodejs8-8.11.3-3.5 is installed
  • OR nodejs8-devel-8.11.3-3.5 is installed
  • OR nodejs8-docs-8.11.3-3.5 is installed
  • OR npm8-8.11.3-3.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • MozillaThunderbird-52.9.1-3.7 is installed
  • OR MozillaThunderbird-devel-52.9.1-3.7 is installed
  • OR MozillaThunderbird-translations-common-52.9.1-3.7 is installed
  • OR MozillaThunderbird-translations-other-52.9.1-3.7 is installed
    • BACK