Oval Definition:	oval:org.opensuse.security:def:1332
Revision Date: 2022-04-28 Version: 1 Title: Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP3) (Important) Description: This update for the Linux Kernel 5.3.18-150300_59_54 fixes several issues. The following security issues were fixed: - CVE-2022-1016: Fixed a vulnerability in the nf_tables component of the netfilter subsystem. This vulnerability gives an attacker a powerful primitive that can be used to both read from and write to relative stack data, which can lead to arbitrary code execution. (bsc#1197335) - CVE-2022-1055: Fixed a use-after-free in tc_new_tfilter that could allow a local attacker to gain privilege escalation. (bnc#1197705) - CVE-2022-1011: Fixed an use-after-free vulnerability which could allow a local attacker to retireve (partial) /etc/shadow hashes or any other data from filesystem when he can mount a FUSE filesystems. (bsc#1197344) Family: unix Class: patch Status: Reference(s): 1024288 1024291 1136936 1197335 1197344 1197705 CVE-2013-0211 CVE-2015-2304 CVE-2015-8917 CVE-2015-8928 CVE-2015-8933 CVE-2015-8934 CVE-2016-1541 CVE-2016-4300 CVE-2016-4301 CVE-2016-4809 CVE-2016-5418 CVE-2016-5844 CVE-2016-6250 CVE-2016-8687 CVE-2016-8688 CVE-2016-8689 CVE-2017-14166 CVE-2017-14501 CVE-2017-14502 CVE-2017-14503 CVE-2017-2579 CVE-2017-2579 CVE-2017-2580 CVE-2017-2580 CVE-2017-2626 CVE-2018-1000877 CVE-2018-1000878 CVE-2018-1000879 CVE-2018-1000880 CVE-2019-1000019 CVE-2019-1000020 CVE-2022-1011 CVE-2022-1016 CVE-2022-1055 SUSE-SU-2019:1525-1 SUSE-SU-2022:1453-1 Platform(s): SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Development Tools 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP3 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information cpio-2.11-26 is installed OR cpio-lang-2.11-26 is installed OR tar-1.27.1-2 is installed OR tar-lang-1.27.1-2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information avahi-0.6.31-20 is installed OR avahi-lang-0.6.31-20 is installed OR libavahi-client3-0.6.31-20 is installed OR libavahi-client3-32bit-0.6.31-20 is installed OR libavahi-common3-0.6.31-20 is installed OR libavahi-common3-32bit-0.6.31-20 is installed OR libavahi-core7-0.6.31-20 is installed OR libdns_sd-0.6.31-20 is installed OR libdns_sd-32bit-0.6.31-20 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information ImageMagick-6.8.8.1-33 is installed OR libMagick++-6_Q16-3-6.8.8.1-33 is installed OR libMagickCore-6_Q16-1-6.8.8.1-33 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-33 is installed OR libMagickWand-6_Q16-1-6.8.8.1-33 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND libICE6-32bit-1.0.9-1.25 is installed Definition Synopsis Release Information SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Micro 5.1 is installed OR SUSE Linux Enterprise Micro 5.2 is installed OR SUSE Linux Enterprise Module for Live Patching 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed AND kernel-livepatch-5_3_18-150300_59_54-default-4-150300.2.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information libnetpbm11-10.80.1-3.8 is installed OR netpbm-10.80.1-3.8 is installed Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND bsdtar-3.3.2-3.8 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_16-default-7-2 is installed OR kernel-livepatch-SLE15_Update_4-7-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.10 is installed OR kernel-default-livepatch-4.12.14-197.10 is installed OR kernel-default-livepatch-devel-4.12.14-197.10 is installed OR kernel-livepatch-4_12_14-197_10-default-1-3.3 is installed OR kernel-livepatch-SLE15-SP1_Update_3-1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information libupsclient1-2.7.1-4 is installed OR nut-2.7.1-4 is installed OR nut-drivers-net-2.7.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information apache2-2.4.23-14.7 is installed OR apache2-doc-2.4.23-14.7 is installed OR apache2-example-pages-2.4.23-14.7 is installed OR apache2-prefork-2.4.23-14.7 is installed OR apache2-utils-2.4.23-14.7 is installed OR apache2-worker-2.4.23-14.7 is installed
BACK