Oval Definition:oval:org.opensuse.security:def:1305
Revision Date:2022-04-14Version:1
Title:Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP3) (Important)
Description:

This update for the Linux Kernel 5.3.18-59_19 fixes several issues.

The following security issues were fixed:

- CVE-2022-27666: Fixed a buffer overflow vulnerability in IPsec ESP transformation code. This flaw allowed a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation. (bnc#1197462) - CVE-2021-39698: Fixed a possible memory corruption due to a use after free in aio_poll_complete_work. This could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1196956) - CVE-2022-22942: Fixed stale file descriptors on failed usercopy. (bsc#1195065)
Family:unixClass:patch
Status:Reference(s):1132091
1195951
1196959
1197133
CVE-2015-7545
CVE-2015-7747
CVE-2016-3068
CVE-2016-3069
CVE-2016-3105
CVE-2016-3630
CVE-2017-1000115
CVE-2017-1000116
CVE-2017-17458
CVE-2017-6827
CVE-2017-6828
CVE-2017-6829
CVE-2017-6830
CVE-2017-6831
CVE-2017-6832
CVE-2017-6833
CVE-2017-6834
CVE-2017-6835
CVE-2017-6836
CVE-2017-6837
CVE-2017-6838
CVE-2017-6839
CVE-2018-1000132
CVE-2019-11023
CVE-2019-11023
CVE-2021-39698
CVE-2022-22942
CVE-2022-27666
SUSE-SU-2019:1267-1
Platform(s):SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 15
SUSE Linux Enterprise High Performance Computing 15
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Micro 5.1
SUSE Linux Enterprise Micro 5.2
SUSE Linux Enterprise Module for Basesystem 15
SUSE Linux Enterprise Module for Desktop Applications 15
SUSE Linux Enterprise Module for Development Tools 15
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Live Patching 15 SP3
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 15
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Package Hub for SUSE Linux Enterprise 12
SUSE Package Hub for SUSE Linux Enterprise 15
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND python-Beaker-1.6.4-0.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND argyllcms-1.6.3-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • DirectFB-1.7.1-4 is installed
  • OR lib++dfb-1_7-1-1.7.1-4 is installed
  • OR libdirectfb-1_7-1-1.7.1-4 is installed
  • OR libdirectfb-1_7-1-32bit-1.7.1-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • MozillaFirefox-45.4.0esr-81 is installed
  • OR MozillaFirefox-translations-45.4.0esr-81 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND Package Information
  • audiofile-devel-0.3.6-1.26 is installed
  • OR libaudiofile1-0.3.6-1.26 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Micro 5.1 is installed
  • OR SUSE Linux Enterprise Micro 5.2 is installed
  • OR SUSE Linux Enterprise Module for Live Patching 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • AND kernel-livepatch-5_3_18-59_19-default-10-150300.2.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 is installed
  • AND Package Information
  • graphviz-2.40.1-6.3 is installed
  • OR graphviz-devel-2.40.1-6.3 is installed
  • OR graphviz-plugins-core-2.40.1-6.3 is installed
  • OR libgraphviz6-2.40.1-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 is installed
  • AND mercurial-4.5.2-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-25_19-default-2-2 is installed
  • OR kernel-livepatch-SLE15_Update_5-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND libmspack0-0.4-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • vorbis-tools-1.4.0-26.1 is installed
  • OR vorbis-tools-lang-1.4.0-26.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-28.1 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-28.1 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 is installed
  • AND Package Information
  • irssi-0.8.20-9 is installed
  • OR irssi-devel-0.8.20-9 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 is installed
  • AND Package Information
  • messagelib-17.12.3-bp150.3.6 is installed
  • OR messagelib-devel-17.12.3-bp150.3.6 is installed
  • OR messagelib-lang-17.12.3-bp150.3.6 is installed
    • BACK