OVAL Reference oval:org.opensuse.security:def:1408

Oval Definition:

oval:org.opensuse.security:def:1408

Revision Date:	2022-02-01	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP3) (Important)
Description:	This update for the Linux Kernel 5.3.18-59_19 fixes several issues. The following security issues were fixed: - CVE-2022-0185: Incorrect param length parsing in legacy_parse_param which could have led to a local privilege escalation (bsc#1194517). - CVE-2021-4154: Fixed option parsing with cgroups version 1 (bsc#1193842). - CVE-2021-4028: Fixed use-after-free in RDMA listen() that could lead to DoS or privilege escalation by a local attacker (bsc#1193167). - CVE-2020-3702: Fixed a bug which could be triggered with specifically timed and handcrafted traffic and cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure. (bsc#1191193) - CVE-2021-42739: The firewire subsystem had a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandled bounds checking (bsc#1184673).
Family:	unix	Class:	patch
Status:		Reference(s):	1130840 1149955 1153238 1191529 1192036 1193529 1194461 1194737 CVE-2014-9638 CVE-2014-9639 CVE-2014-9640 CVE-2015-6749 CVE-2018-19211 CVE-2019-16056 CVE-2019-16056 CVE-2019-16935 CVE-2019-16935 CVE-2019-17594 CVE-2019-17595 CVE-2019-9947 CVE-2019-9947 CVE-2020-3702 CVE-2021-4028 CVE-2021-4154 CVE-2021-42739 CVE-2022-0185 SUSE-SU-2019:2743-1
Platform(s):	SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for CAP 15 SP1 SUSE Linux Enterprise Module for Containers 15 SUSE Linux Enterprise Module for Containers 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP3 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information libblkid1-2.25-6 is installed OR libblkid1-32bit-2.25-6 is installed OR libmount1-2.25-6 is installed OR libmount1-32bit-2.25-6 is installed OR libsmartcols1-2.25-6 is installed OR libuuid-devel-2.25-6 is installed OR libuuid1-2.25-6 is installed OR libuuid1-32bit-2.25-6 is installed OR python-libmount-2.25-6 is installed OR util-linux-2.25-6 is installed OR util-linux-lang-2.25-6 is installed OR util-linux-systemd-2.25-6 is installed OR uuidd-2.25-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information avahi-0.6.31-20 is installed OR avahi-lang-0.6.31-20 is installed OR libavahi-client3-0.6.31-20 is installed OR libavahi-client3-32bit-0.6.31-20 is installed OR libavahi-common3-0.6.31-20 is installed OR libavahi-common3-32bit-0.6.31-20 is installed OR libavahi-core7-0.6.31-20 is installed OR libdns_sd-0.6.31-20 is installed OR libdns_sd-32bit-0.6.31-20 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information vorbis-tools-1.4.0-1.53 is installed OR vorbis-tools-lang-1.4.0-1.53 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Micro 5.1 is installed OR SUSE Linux Enterprise Micro 5.2 is installed OR SUSE Linux Enterprise Module for Live Patching 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed AND kernel-livepatch-5_3_18-59_19-default-6-150300.2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information java-1_8_0-openjdk-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-javadoc-1.8.0.212-3.19 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information libpython2_7-1_0-2.7.14-7.24 is installed OR python-2.7.14-7.24 is installed OR python-base-2.7.14-7.24 is installed OR python-curses-2.7.14-7.24 is installed OR python-devel-2.7.14-7.24 is installed OR python-gdbm-2.7.14-7.24 is installed OR python-xml-2.7.14-7.24 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information libxslt-1.1.32-3.3 is installed OR libxslt-devel-1.1.32-3.3 is installed OR libxslt-tools-1.1.32-3.3 is installed OR libxslt1-1.1.32-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for CAP 15 SP1 is installed AND cf-cli-6.43.0-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 15 is installed AND Package Information containerd-1.1.2-5.3 is installed OR docker-18.06.1_ce-6.8 is installed OR docker-bash-completion-18.06.1_ce-6.8 is installed OR docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3 is installed OR docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 15 SP1 is installed AND Package Information docker-18.09.6_ce-6.20 is installed OR docker-bash-completion-18.09.6_ce-6.20 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information libmodplug-devel-0.3.9-3.3 is installed OR libmodplug1-0.3.9-3.3 is installed OR libopenmpt-0.3.9-3.3 is installed OR libopenmpt-devel-0.3.9-3.3 is installed OR libopenmpt0-0.3.9-3.3 is installed OR libopenmpt_modplug1-0.3.9-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed AND ncurses-devel-32bit-6.1-5.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.21 is installed OR kernel-default-livepatch-4.12.14-197.21 is installed OR kernel-default-livepatch-devel-4.12.14-197.21 is installed OR kernel-livepatch-4_12_14-197_21-default-1-3.3 is installed OR kernel-livepatch-SLE15-SP1_Update_6-1-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information python-ecdsa-0.13.3-3.3 is installed OR python3-ecdsa-0.13.3-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND xorg-x11-libs-7.6-45 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information DirectFB-1.7.1-4.1 is installed OR lib++dfb-1_7-1-1.7.1-4.1 is installed OR libdirectfb-1_7-1-1.7.1-4.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information hplip-3.14.6-3.5 is installed OR hplip-hpijs-3.14.6-3.5 is installed OR hplip-sane-3.14.6-3.5 is installed

BACK