OVAL Reference oval:org.opensuse.security:def:1318

Oval Definition:

oval:org.opensuse.security:def:1318

Revision Date:	2022-04-24	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 14 for SLE 15 SP3) (Important)
Description:	This update for the Linux Kernel 5.3.18-150300_59_49 fixes several issues. The following security issues were fixed: - CVE-2022-1016: Fixed a vulnerability in the nf_tables component of the netfilter subsystem. This vulnerability gives an attacker a powerful primitive that can be used to both read from and write to relative stack data, which can lead to arbitrary code execution. (bsc#1197335) - CVE-2022-1055: Fixed a use-after-free in tc_new_tfilter that could allow a local attacker to gain privilege escalation. (bnc#1197705) - CVE-2022-1011: Fixed an use-after-free vulnerability which could allow a local attacker to retireve (partial) /etc/shadow hashes or any other data from filesystem when he can mount a FUSE filesystems. (bsc#1197344)
Family:	unix	Class:	patch
Status:		Reference(s):	1086263 1197335 1197344 1197705 CVE-2012-1152 CVE-2013-6393 CVE-2014-2525 CVE-2014-9130 CVE-2015-0552 CVE-2018-1000135 CVE-2018-1000135 CVE-2018-5345 CVE-2022-1011 CVE-2022-1016 CVE-2022-1055 SUSE-SU-2019:1369-1
Platform(s):	SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP3 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information ruby2.1-rubygem-chef-10.32.2-3 is installed OR rubygem-chef-10.32.2-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-1 is installed OR aaa_base-extras-13.2+git20140911.61c1681-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information DirectFB-1.7.1-4 is installed OR lib++dfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-32bit-1.7.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND argyllcms-1.6.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information gcab-1.1-1.15 is installed OR gcab-devel-1.1-1.15 is installed OR gcab-lang-1.1-1.15 is installed OR libgcab-1_0-0-1.1-1.15 is installed OR typelib-1_0-GCab-1_0-1.1-1.15 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Micro 5.1 is installed OR SUSE Linux Enterprise Micro 5.2 is installed OR SUSE Linux Enterprise Module for Live Patching 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed AND kernel-livepatch-5_3_18-150300_59_49-default-5-150300.2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information NetworkManager-1.10.6-5.6 is installed OR libnm0-1.10.6-5.6 is installed OR typelib-1_0-NM-1_0-1.10.6-5.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 is installed AND perl-YAML-LibYAML-0.59-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_17-default-2-2 is installed OR kernel-livepatch-SLE15_Update_10-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information libpython2_7-1_0-2.7.7-2 is installed OR libpython2_7-1_0-32bit-2.7.7-2 is installed OR python-base-2.7.7-2 is installed OR python-base-32bit-2.7.7-2 is installed OR python-xml-2.7.7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND xorg-x11-libs-7.6-45.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND apache2-mod_jk-1.2.40-5.2 is installed

BACK