Oval Definition:	oval:org.opensuse.security:def:1397
Revision Date: 2022-06-27 Version: 1 Title: Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP3) (Important) (in QA) Description: This update for the Linux Kernel 5.3.18-59_19 fixes several issues. The following security issues were fixed: - CVE-2022-32250: Fixed an use-after-free bug in the netfilter subsystem. This flaw allowed a local attacker with user access to cause a privilege escalation issue. (bnc#1200015) - CVE-2022-1972: Fixed a buffer overflow in nftable that could lead to privilege escalation. (bsc#1200019) - CVE-2022-1116: Fixed an integer overflow vulnerability in io_uring that allows local attacker to cause memory corruption and escalate privileges to root. (bsc#1199647) versions. - CVE-2022-1734: Fixed a r/w use-after-free when non synchronized between cleanup routine and firmware download routine. (bnc#1199605) This patch is currently in QA and not yet available for download. Family: unix Class: patch Status: Reference(s): 1150137 1199606 1199648 1200266 1200268 CVE-2006-4484 CVE-2018-11307 CVE-2018-12022 CVE-2018-12023 CVE-2018-14718 CVE-2018-14721 CVE-2018-19360 CVE-2018-19361 CVE-2018-19362 CVE-2018-7489 CVE-2019-12086 CVE-2019-12384 CVE-2019-12814 CVE-2019-14379 CVE-2019-14439 CVE-2019-14540 CVE-2019-14893 CVE-2019-16168 CVE-2019-16168 CVE-2019-16942 CVE-2019-16943 CVE-2019-17267 CVE-2019-17531 CVE-2019-20330 CVE-2022-1116 CVE-2022-1734 CVE-2022-1966 CVE-2022-1972 CVE-2022-32250 SUSE-SU-2019:2533-1 Platform(s): SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Containers 15 SUSE Linux Enterprise Module for Containers 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP3 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libXinerama1-1.1.3-3 is installed OR libXinerama1-32bit-1.1.3-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information DirectFB-1.7.1-4 is installed OR lib++dfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-32bit-1.7.1-4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND argyllcms-1.6.3-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information ImageMagick-6.8.8.1-70 is installed OR libMagick++-6_Q16-3-6.8.8.1-70 is installed OR libMagickCore-6_Q16-1-6.8.8.1-70 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-70 is installed OR libMagickWand-6_Q16-1-6.8.8.1-70 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND perl-Tk-804.034-1.44 is installed Definition Synopsis Release Information SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Micro 5.1 is installed OR SUSE Linux Enterprise Micro 5.2 is installed OR SUSE Linux Enterprise Module for Live Patching 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed AND kernel-livepatch-5_3_18-59_19-default-15-150300.2.2 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information ffmpeg-3.4.2-4.12 is installed OR libavdevice57-3.4.2-4.12 is installed OR libavfilter6-3.4.2-4.12 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information libsqlite3-0-3.28.0-3.9 is installed OR libsqlite3-0-32bit-3.28.0-3.9 is installed OR sqlite3-3.28.0-3.9 is installed OR sqlite3-devel-3.28.0-3.9 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information bzip2-1.0.6-5.3 is installed OR libbz2-1-1.0.6-5.3 is installed OR libbz2-1-32bit-1.0.6-5.3 is installed OR libbz2-devel-1.0.6-5.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 15 is installed AND Package Information containerd-1.2.5-5.13 is installed OR docker-18.09.6_ce-6.17 is installed OR docker-bash-completion-18.09.6_ce-6.17 is installed OR docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed OR docker-runc-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 15 SP1 is installed AND Package Information containerd-1.2.5-5.13 is installed OR docker-18.09.6_ce-6.17 is installed OR docker-bash-completion-18.09.6_ce-6.17 is installed OR docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed OR docker-runc-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information typelib-1_0-JavaScriptCore-4_0-2.20.3-3.3 is installed OR typelib-1_0-WebKit2-4_0-2.20.3-3.3 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.20.3-3.3 is installed OR webkit2gtk3-2.20.3-3.3 is installed OR webkit2gtk3-devel-2.20.3-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed AND jackson-databind-2.10.2-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_7-default-2-2 is installed OR kernel-livepatch-SLE15-SP1_Update_2-2-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.5 is installed OR kernel-azure-base-4.12.14-5.5 is installed OR kernel-azure-devel-4.12.14-5.5 is installed OR kernel-devel-azure-4.12.14-5.5 is installed OR kernel-source-azure-4.12.14-5.5 is installed OR kernel-syms-azure-4.12.14-5.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information vino-3.10.1-1 is installed OR vino-lang-3.10.1-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information gnutls-3.2.15-11.1 is installed OR libgnutls-openssl27-3.2.15-11.1 is installed OR libgnutls28-3.2.15-11.1 is installed OR libgnutls28-32bit-3.2.15-11.1 is installed
BACK