Oval Definition:	oval:org.opensuse.security:def:1404
Revision Date: 2022-06-27 Version: 1 Title: Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP3) (Important) (in QA) Description: This update for the Linux Kernel 5.3.18-150300_59_46 fixes several issues. The following security issues were fixed: - CVE-2022-32250: Fixed an use-after-free bug in the netfilter subsystem. This flaw allowed a local attacker with user access to cause a privilege escalation issue. (bnc#1200015) - CVE-2022-1972: Fixed a buffer overflow in nftable that could lead to privilege escalation. (bsc#1200019) - CVE-2022-1116: Fixed an integer overflow vulnerability in io_uring that allows local attacker to cause memory corruption and escalate privileges to root. (bsc#1199647) versions. - CVE-2022-1734: Fixed a r/w use-after-free when non synchronized between cleanup routine and firmware download routine. (bnc#1199605) This patch is currently in QA and not yet available for download. Family: unix Class: patch Status: Reference(s): 1051510 1054914 1055117 1061840 1065600 1065729 1071995 1082555 1104967 1109158 1113722 1114279 1119086 1123034 1127988 1131304 1137069 1137865 1137959 1140155 1141013 1142076 1142635 1146042 1146519 1146540 1146664 1148133 1148712 1148868 1149313 1149446 1149555 1149651 1150381 1150423 1151350 1151610 1151667 1151680 1151891 1151955 1152024 1152025 1152026 1152161 1152325 1152457 1152460 1152466 1152972 1152974 1152975 1199606 1199648 1200266 1200268 CVE-2015-5522 CVE-2015-5523 CVE-2016-6583 CVE-2017-18595 CVE-2017-18595 CVE-2017-6318 CVE-2019-14821 CVE-2019-14821 CVE-2019-15291 CVE-2019-15291 CVE-2019-9506 CVE-2019-9506 CVE-2022-1116 CVE-2022-1734 CVE-2022-1966 CVE-2022-1972 CVE-2022-32250 SUSE-SU-2019:2706-1 Platform(s): SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Containers 15 SUSE Linux Enterprise Module for Containers 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP3 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND libXvMC1-1.0.8-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information accountsservice-0.6.35-3 is installed OR accountsservice-lang-0.6.35-3 is installed OR libaccountsservice0-0.6.35-3 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information ImageMagick-6.8.8.1-33 is installed OR libMagick++-6_Q16-3-6.8.8.1-33 is installed OR libMagickCore-6_Q16-1-6.8.8.1-33 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-33 is installed OR libMagickWand-6_Q16-1-6.8.8.1-33 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-36 is installed OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information sane-backends-1.0.27-4.27 is installed OR sane-backends-autoconfig-1.0.27-4.27 is installed OR sane-backends-devel-1.0.27-4.27 is installed Definition Synopsis Release Information SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Micro 5.1 is installed OR SUSE Linux Enterprise Micro 5.2 is installed OR SUSE Linux Enterprise Module for Live Patching 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed AND kernel-livepatch-5_3_18-150300_59_46-default-10-150300.2.2 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information postgresql10-10.6-4.8 is installed OR postgresql10-test-10.6-4.8 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information kernel-default-4.12.14-150.38 is installed OR kernel-default-base-4.12.14-150.38 is installed OR kernel-default-devel-4.12.14-150.38 is installed OR kernel-default-man-4.12.14-150.38 is installed OR kernel-devel-4.12.14-150.38 is installed OR kernel-macros-4.12.14-150.38 is installed OR kernel-source-4.12.14-150.38 is installed OR kernel-zfcpdump-4.12.14-150.38 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information libsystemd0-234-24.30 is installed OR libsystemd0-32bit-234-24.30 is installed OR libudev-devel-234-24.30 is installed OR libudev1-234-24.30 is installed OR libudev1-32bit-234-24.30 is installed OR systemd-234-24.30 is installed OR systemd-32bit-234-24.30 is installed OR systemd-bash-completion-234-24.30 is installed OR systemd-container-234-24.30 is installed OR systemd-coredump-234-24.30 is installed OR systemd-devel-234-24.30 is installed OR systemd-sysvinit-234-24.30 is installed OR udev-234-24.30 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 15 is installed AND Package Information containerd-1.1.2-5.3 is installed OR docker-18.06.1_ce-6.8 is installed OR docker-bash-completion-18.06.1_ce-6.8 is installed OR docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3 is installed OR docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 15 SP1 is installed AND Package Information docker-18.09.6_ce-6.20 is installed OR docker-bash-completion-18.09.6_ce-6.20 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information exiv2-0.26-6.3 is installed OR libexiv2-26-0.26-6.3 is installed OR libexiv2-devel-0.26-6.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed AND Package Information libtidy-devel-5.4.0-3.2 is installed OR tidy-5.4.0-3.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_7-default-4-2 is installed OR kernel-livepatch-SLE15-SP1_Update_2-4-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information python-paramiko-2.4.2-3.3 is installed OR python3-paramiko-2.4.2-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND xf86-video-intel-2.99.914-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information accountsservice-0.6.35-3.10 is installed OR accountsservice-lang-0.6.35-3.10 is installed OR libaccountsservice0-0.6.35-3.10 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-3.10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information gv-3.7.4-1.39 is installed OR wdiff-1.2.1-3.64 is installed
BACK