OVAL Reference oval:org.opensuse.security:def:1392

Oval Definition:

oval:org.opensuse.security:def:1392

Revision Date:	2022-06-27	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP3) (Important) (in QA)
Description:	This update for the Linux Kernel 5.3.18-57 fixes several issues. The following security issues were fixed: - CVE-2022-32250: Fixed an use-after-free bug in the netfilter subsystem. This flaw allowed a local attacker with user access to cause a privilege escalation issue. (bnc#1200015) - CVE-2022-1972: Fixed a buffer overflow in nftable that could lead to privilege escalation. (bsc#1200019) - CVE-2022-1116: Fixed an integer overflow vulnerability in io_uring that allows local attacker to cause memory corruption and escalate privileges to root. (bsc#1199647) versions. - CVE-2022-1734: Fixed a r/w use-after-free when non synchronized between cleanup routine and firmware download routine. (bnc#1199605) This patch is currently in QA and not yet available for download.
Family:	unix	Class:	patch
Status:		Reference(s):	1112438 1125689 1134616 1146182 1146184 1199606 1199648 1200266 1200268 CVE-2005-4900 CVE-2009-2905 CVE-2014-9390 CVE-2016-2315 CVE-2016-2324 CVE-2017-1000117 CVE-2017-14867 CVE-2017-15298 CVE-2017-8386 CVE-2018-11233 CVE-2018-11235 CVE-2018-17456 CVE-2018-19486 CVE-2019-1348 CVE-2019-1349 CVE-2019-1350 CVE-2019-1351 CVE-2019-1352 CVE-2019-1353 CVE-2019-1354 CVE-2019-1387 CVE-2019-19604 CVE-2019-9511 CVE-2019-9511 CVE-2019-9513 CVE-2019-9513 CVE-2020-11008 CVE-2020-5260 CVE-2022-1116 CVE-2022-1734 CVE-2022-1966 CVE-2022-1972 CVE-2022-32250 SUSE-SU-2019:2473-1
Platform(s):	SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for CAP 15 SUSE Linux Enterprise Module for Containers 15 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP3 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Workstation Extension 12	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information libXcursor1-1.1.14-3 is installed OR libXcursor1-32bit-1.1.14-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information bind-libs-9.9.6P1-30 is installed OR bind-libs-32bit-9.9.6P1-30 is installed OR bind-utils-9.9.6P1-30 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information MozillaFirefox-45.4.0esr-81 is installed OR MozillaFirefox-translations-45.4.0esr-81 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information ImageMagick-6.8.8.1-70 is installed OR libMagick++-6_Q16-3-6.8.8.1-70 is installed OR libMagickCore-6_Q16-1-6.8.8.1-70 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-70 is installed OR libMagickWand-6_Q16-1-6.8.8.1-70 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND newt-devel-0.52.20-5.35 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Micro 5.1 is installed OR SUSE Linux Enterprise Micro 5.2 is installed OR SUSE Linux Enterprise Module for Live Patching 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed AND kernel-livepatch-5_3_18-57-default-19-150200.3.2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND tiff-4.0.9-5.17 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information libnghttp2-14-1.39.2-3.3 is installed OR libnghttp2-14-32bit-1.39.2-3.3 is installed OR libnghttp2-devel-1.39.2-3.3 is installed OR libnghttp2_asio-devel-1.39.2-3.3 is installed OR libnghttp2_asio1-1.39.2-3.3 is installed OR nghttp2-1.39.2-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information libxslt-1.1.32-3.3 is installed OR libxslt-devel-1.1.32-3.3 is installed OR libxslt-tools-1.1.32-3.3 is installed OR libxslt1-1.1.32-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for CAP 15 is installed AND cf-cli-6.43.0-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 15 is installed AND Package Information docker-18.09.6_ce-6.20 is installed OR docker-bash-completion-18.09.6_ce-6.20 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information libtiff5-32bit-4.0.9-5.9 is installed OR tiff-4.0.9-5.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed AND Package Information git-2.26.2-3.28 is installed OR git-arch-2.26.2-3.28 is installed OR git-cvs-2.26.2-3.28 is installed OR git-daemon-2.26.2-3.28 is installed OR git-doc-2.26.2-3.28 is installed OR git-email-2.26.2-3.28 is installed OR git-gui-2.26.2-3.28 is installed OR git-svn-2.26.2-3.28 is installed OR git-web-2.26.2-3.28 is installed OR gitk-2.26.2-3.28 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-195-default-3-7 is installed OR kernel-livepatch-SLE15-SP1_Update_0-3-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information sysvinit-tools-2.88+-94 is installed OR whois-5.1.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information glib2-lang-2.48.2-10.2 is installed OR glib2-tools-2.48.2-10.2 is installed OR libgio-2_0-0-2.48.2-10.2 is installed OR libgio-2_0-0-32bit-2.48.2-10.2 is installed OR libglib-2_0-0-2.48.2-10.2 is installed OR libglib-2_0-0-32bit-2.48.2-10.2 is installed OR libgmodule-2_0-0-2.48.2-10.2 is installed OR libgmodule-2_0-0-32bit-2.48.2-10.2 is installed OR libgobject-2_0-0-2.48.2-10.2 is installed OR libgobject-2_0-0-32bit-2.48.2-10.2 is installed OR libgthread-2_0-0-2.48.2-10.2 is installed OR libgthread-2_0-0-32bit-2.48.2-10.2 is installed

BACK