Oval Definition:oval:org.opensuse.security:def:91784
Revision Date:2020-03-03Version:1
Title:Security update for ovmf (Moderate)
Description:

This update for ovmf fixes the following issues:

Security issues fixed:

- CVE-2019-14563: Fixed a memory corruption caused by insufficient numeric truncation (bsc#1163959). - CVE-2019-14553: Fixed the TLS certification verification in HTTPS-over-IPv6 boot sequences (bsc#1153072). - CVE-2019-14559: Fixed a remotely exploitable memory leak in the ARP handling code (bsc#1163927). - CVE-2019-14575: Fixed an insufficient signature check in the DxeImageVerificationHandler (bsc#1163969). - Enabled HTTPS-over-IPv6 (bsc#1153072).
Family:unixClass:patch
Status:Reference(s):1153072
1163927
1163959
1163969
CVE-2019-14553
CVE-2019-14559
CVE-2019-14563
CVE-2019-14575
SUSE-SU-2020:0568-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • ovmf-2017+git1510945757.b2662641d5-5.29.3 is installed
  • OR ovmf-tools-2017+git1510945757.b2662641d5-5.29.3 is installed
  • OR qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-5.29.3 is installed
  • OR qemu-uefi-aarch64-2017+git1510945757.b2662641d5-5.29.3 is installed
    • BACK