Oval Definition:oval:org.opensuse.security:def:101996
Revision Date:2022-02-02Version:1
Title:Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP3) (Important)
Description:

This update for the Linux Kernel 5.3.18-59_5 fixes several issues.

The following security issues were fixed:

- CVE-2022-0185: Incorrect param length parsing in legacy_parse_param which could have led to a local privilege escalation (bsc#1194517). - CVE-2021-4154: Fixed option parsing with cgroups version 1 (bsc#1193842). - CVE-2021-4028: Fixed use-after-free in RDMA listen() that could lead to DoS or privilege escalation by a local attacker (bsc#1193167). - CVE-2020-3702: Fixed a bug which could be triggered with specifically timed and handcrafted traffic and cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure. (bsc#1191193) - CVE-2021-42739: The firewire subsystem had a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandled bounds checking (bsc#1184673).
Family:unixClass:patch
Status:Reference(s):1149813
1163019
1172380
1175534
1178683
1178935
1179477
1179484
1182846
1182975
1191529
1192036
1193529
1194461
1194737
CVE-2019-15890
CVE-2020-10756
CVE-2020-14364
CVE-2020-25707
CVE-2020-25723
CVE-2020-29129
CVE-2020-29130
CVE-2020-3702
CVE-2020-8608
CVE-2021-20257
CVE-2021-3419
CVE-2021-4028
CVE-2021-4154
CVE-2021-42739
CVE-2022-0185
SUSE-SU-2022:0295-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Micro 5.1
SUSE Linux Enterprise Micro 5.2
SUSE Linux Enterprise Module for Live Patching 15 SP3
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP3
Product(s):
Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Micro 5.1 is installed
  • OR SUSE Linux Enterprise Micro 5.2 is installed
  • OR SUSE Linux Enterprise Module for Live Patching 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • AND kernel-livepatch-5_3_18-59_5-default-8-150300.2.2 is installed
  • BACK