Oval Definition:	oval:org.opensuse.security:def:1329
Revision Date: 2022-04-25 Version: 1 Title: Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP3) (Important) Description: This update for the Linux Kernel 5.3.18-59_16 fixes several issues. The following security issues were fixed: - CVE-2022-1016: Fixed a vulnerability in the nf_tables component of the netfilter subsystem. This vulnerability gives an attacker a powerful primitive that can be used to both read from and write to relative stack data, which can lead to arbitrary code execution. (bsc#1197335) - CVE-2022-1055: Fixed a use-after-free in tc_new_tfilter that could allow a local attacker to gain privilege escalation. (bnc#1197705) - CVE-2022-1011: Fixed an use-after-free vulnerability which could allow a local attacker to retireve (partial) /etc/shadow hashes or any other data from filesystem when he can mount a FUSE filesystems. (bsc#1197344) Family: unix Class: patch Status: Reference(s): 1033084 1033085 1033086 1033087 1033088 1033089 1033090 1106390 1107066 1107067 1111973 1112723 1112726 1123685 1125007 1197335 1197344 1197705 CVE-2009-0316 CVE-2016-2175 CVE-2017-1000382 CVE-2017-5953 CVE-2017-6349 CVE-2017-6350 CVE-2017-7607 CVE-2017-7607 CVE-2017-7608 CVE-2017-7608 CVE-2017-7609 CVE-2017-7609 CVE-2017-7610 CVE-2017-7610 CVE-2017-7611 CVE-2017-7611 CVE-2017-7612 CVE-2017-7612 CVE-2017-7613 CVE-2017-7613 CVE-2018-11797 CVE-2018-16062 CVE-2018-16062 CVE-2018-16402 CVE-2018-16402 CVE-2018-16403 CVE-2018-16403 CVE-2018-18310 CVE-2018-18310 CVE-2018-18520 CVE-2018-18520 CVE-2018-18521 CVE-2018-18521 CVE-2018-8036 CVE-2019-7150 CVE-2019-7150 CVE-2019-7665 CVE-2019-7665 CVE-2022-1011 CVE-2022-1016 CVE-2022-1055 SUSE-SU-2019:1486-1 Platform(s): SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Development Tools 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP3 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information colord-1.1.7-2 is installed OR colord-gtk-lang-0.1.25-3 is installed OR colord-lang-1.1.7-2 is installed OR libcolord-gtk1-0.1.25-3 is installed OR libcolord2-1.1.7-2 is installed OR libcolord2-32bit-1.1.7-2 is installed OR libcolorhug2-1.1.7-2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information alsa-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND gvim-8.0.1568-3.20 is installed Definition Synopsis Release Information SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Micro 5.1 is installed OR SUSE Linux Enterprise Micro 5.2 is installed OR SUSE Linux Enterprise Module for Live Patching 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed AND kernel-livepatch-5_3_18-59_16-default-12-150300.2.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information elfutils-0.168-4.5 is installed OR elfutils-lang-0.168-4.5 is installed OR libasm-devel-0.168-4.5 is installed OR libasm1-0.168-4.5 is installed OR libdw-devel-0.168-4.5 is installed OR libdw1-0.168-4.5 is installed OR libdw1-32bit-0.168-4.5 is installed OR libebl-devel-0.168-4.5 is installed OR libebl-plugins-0.168-4.5 is installed OR libebl-plugins-32bit-0.168-4.5 is installed OR libelf-devel-0.168-4.5 is installed OR libelf1-0.168-4.5 is installed OR libelf1-32bit-0.168-4.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND apache-pdfbox-1.8.12-5.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_3-default-11-2 is installed OR kernel-livepatch-SLE15_Update_1-11-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.7 is installed OR kernel-default-livepatch-4.12.14-197.7 is installed OR kernel-default-livepatch-devel-4.12.14-197.7 is installed OR kernel-livepatch-4_12_14-197_7-default-1-3.3 is installed OR kernel-livepatch-SLE15-SP1_Update_2-1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information libtasn1-3.7-2 is installed OR libtasn1-6-3.7-2 is installed OR libtasn1-6-32bit-3.7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information apache-commons-beanutils-1.9.2-1.27 is installed OR apache-commons-beanutils-javadoc-1.9.2-1.27 is installed
BACK