| Revision Date: | 2021-09-16 | Version: | 1 |
| Title: | Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP3) (Important) |
| Description: |
This update for the Linux Kernel 5.3.18-57 fixes several issues.
The following security issues were fixed:
- CVE-2021-3653: Fixed missing validation of the KVM `int_ctl` VMCB field that would have allowed a malicious L1 guest to enable AVIC support for the L2 guest (bsc#1189420). - CVE-2021-3656: Fixed KVM nSVM nested VMLOAD/VMSAVE interception (bsc#1189418). - CVE-2021-38198: Fixed KVM MMU to use the correct inherited permissions to get shadow page (bsc#1189278).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1089761
1090944
1091677
1093753
1101040
1102908
1105031
1107640
1107941
1109197
1109252
1110445
1112024
1113083
1113632
1113665
1114135
1189278
1189418
1189420
991901
CVE-2014-3686
CVE-2015-1863
CVE-2015-4141
CVE-2015-4142
CVE-2015-4143
CVE-2015-4144
CVE-2015-4145
CVE-2015-4146
CVE-2015-5310
CVE-2015-5315
CVE-2015-5316
CVE-2015-8041
CVE-2016-4476
CVE-2016-4477
CVE-2016-8888
CVE-2016-9085
CVE-2017-13077
CVE-2017-13078
CVE-2017-13079
CVE-2017-13080
CVE-2017-13081
CVE-2017-13082
CVE-2017-13086
CVE-2017-13087
CVE-2017-13088
CVE-2018-14526
CVE-2018-15686
CVE-2018-15686
CVE-2018-15688
CVE-2018-15688
CVE-2019-11555
CVE-2019-13377
CVE-2019-16275
CVE-2019-9494
CVE-2019-9495
CVE-2019-9497
CVE-2019-9498
CVE-2019-9499
CVE-2021-0326
CVE-2021-27803
CVE-2021-30004
CVE-2021-3653
CVE-2021-3656
CVE-2021-38198
SUSE-SU-2018:3644-1
SUSE-SU-2021:3073-1
|
| Platform(s): | SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise High Availability 15
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Micro 5.1
SUSE Linux Enterprise Micro 5.2
SUSE Linux Enterprise Module for Basesystem 15
SUSE Linux Enterprise Module for Basesystem 15 SP3
SUSE Linux Enterprise Module for Desktop Applications 15 SP2
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Live Patching 15 SP3
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 15
SUSE Manager Proxy 4.2
SUSE Manager Server 4.2
SUSE Package Hub for SUSE Linux Enterprise 12
SUSE Package Hub for SUSE Linux Enterprise 15
| Product(s): | |
| Definition Synopsis |
| SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information
openstack-cinder-2014.2.3.dev13-1 is installed
OR openstack-cinder-volume-2014.2.3.dev13-1 is installed
OR python-cinder-2014.2.3.dev13-1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 is installed
AND Package Information
ImageMagick-6.8.8.1-5 is installed
OR libMagick++-6_Q16-3-6.8.8.1-5 is installed
OR libMagickCore-6_Q16-1-6.8.8.1-5 is installed
OR libMagickCore-6_Q16-1-32bit-6.8.8.1-5 is installed
OR libMagickWand-6_Q16-1-6.8.8.1-5 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP1 is installed
AND binutils-2.25.0-13 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP2 is installed
AND Package Information
ImageMagick-6.8.8.1-33 is installed
OR libMagick++-6_Q16-3-6.8.8.1-33 is installed
OR libMagickCore-6_Q16-1-6.8.8.1-33 is installed
OR libMagickCore-6_Q16-1-32bit-6.8.8.1-33 is installed
OR libMagickWand-6_Q16-1-6.8.8.1-33 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed
AND wpa_supplicant-2.9-4.29.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 15 is installed
AND haproxy-1.8.17~git0.e89d25b2-3.9 is installed
|
| Definition Synopsis |
| Release Information
SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
OR SUSE Linux Enterprise Micro 5.1 is installed
OR SUSE Linux Enterprise Micro 5.2 is installed
OR SUSE Linux Enterprise Module for Live Patching 15 SP3 is installed
OR SUSE Linux Enterprise Server 15 SP3 is installed
OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
AND kernel-livepatch-5_3_18-57-default-6-3.2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Basesystem 15 is installed
AND Package Information
libsystemd0-234-24.15 is installed
OR libsystemd0-32bit-234-24.15 is installed
OR libudev-devel-234-24.15 is installed
OR libudev1-234-24.15 is installed
OR libudev1-32bit-234-24.15 is installed
OR systemd-234-24.15 is installed
OR systemd-32bit-234-24.15 is installed
OR systemd-bash-completion-234-24.15 is installed
OR systemd-container-234-24.15 is installed
OR systemd-coredump-234-24.15 is installed
OR systemd-devel-234-24.15 is installed
OR systemd-sysvinit-234-24.15 is installed
OR udev-234-24.15 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed
AND Package Information
libwebp-devel-1.0.3-1 is installed
OR libwebpdecoder3-1.0.3-1 is installed
OR libwebpmux3-1.0.3-1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Legacy Software 15 is installed
AND Package Information
java-1_8_0-openjdk-1.8.0.201-3.16 is installed
OR java-1_8_0-openjdk-demo-1.8.0.201-3.16 is installed
OR java-1_8_0-openjdk-devel-1.8.0.201-3.16 is installed
OR java-1_8_0-openjdk-headless-1.8.0.201-3.16 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Live Patching 15 is installed
AND Package Information
kernel-default-4.12.14-25.13 is installed
OR kernel-default-livepatch-4.12.14-25.13 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 is installed
AND Package Information
libXRes1-1.0.7-3 is installed
OR libXRes1-32bit-1.0.7-3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP1 is installed
AND pigz-2.3-5.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 15 is installed
AND Package Information
kernel-default-4.12.14-25.6 is installed
OR kernel-default-extra-4.12.14-25.6 is installed
|
| Definition Synopsis |
| SUSE Package Hub for SUSE Linux Enterprise 12 is installed
AND Package Information
irssi-0.8.20-9 is installed
OR irssi-devel-0.8.20-9 is installed
|
| Definition Synopsis |
| SUSE Package Hub for SUSE Linux Enterprise 15 is installed
AND ansible-2.7.6-bp150.3.3 is installed
|