OVAL Reference oval:org.opensuse.security:def:1413

Oval Definition:

oval:org.opensuse.security:def:1413

Revision Date:	2022-02-01	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP3) (Important)
Description:	This update for the Linux Kernel 5.3.18-59_10 fixes several issues. The following security issues were fixed: - CVE-2022-0185: Incorrect param length parsing in legacy_parse_param which could have led to a local privilege escalation (bsc#1194517). - CVE-2021-4154: Fixed option parsing with cgroups version 1 (bsc#1193842). - CVE-2021-4028: Fixed use-after-free in RDMA listen() that could lead to DoS or privilege escalation by a local attacker (bsc#1193167). - CVE-2020-3702: Fixed a bug which could be triggered with specifically timed and handcrafted traffic and cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure. (bsc#1191193) - CVE-2021-42739: The firewire subsystem had a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandled bounds checking (bsc#1184673).
Family:	unix	Class:	patch
Status:		Reference(s):	1109412 1109413 1109414 1111996 1112534 1112535 1113247 1113252 1113255 1116827 1118644 1118830 1118831 1120640 1121034 1121035 1121056 1133131 1133232 1141913 1142772 1152590 1154016 1154025 1191529 1192036 1193529 1194461 1194737 CVE-2006-7246 CVE-2015-2924 CVE-2016-0764 CVE-2016-1238 CVE-2018-1000876 CVE-2018-1000876 CVE-2018-17358 CVE-2018-17358 CVE-2018-17359 CVE-2018-17359 CVE-2018-17360 CVE-2018-17360 CVE-2018-17985 CVE-2018-17985 CVE-2018-18309 CVE-2018-18309 CVE-2018-18483 CVE-2018-18483 CVE-2018-18484 CVE-2018-18484 CVE-2018-18605 CVE-2018-18605 CVE-2018-18606 CVE-2018-18606 CVE-2018-18607 CVE-2018-18607 CVE-2018-19931 CVE-2018-19931 CVE-2018-19932 CVE-2018-19932 CVE-2018-20623 CVE-2018-20623 CVE-2018-20651 CVE-2018-20651 CVE-2018-20671 CVE-2018-20671 CVE-2018-6323 CVE-2018-6323 CVE-2018-6543 CVE-2018-6543 CVE-2018-6759 CVE-2018-6759 CVE-2018-6872 CVE-2018-6872 CVE-2018-7208 CVE-2018-7208 CVE-2018-7568 CVE-2018-7568 CVE-2018-7569 CVE-2018-7569 CVE-2018-7570 CVE-2018-7570 CVE-2018-7642 CVE-2018-7642 CVE-2018-7643 CVE-2018-7643 CVE-2018-8945 CVE-2018-8945 CVE-2019-1010180 CVE-2019-1010180 CVE-2020-3702 CVE-2021-4028 CVE-2021-4154 CVE-2021-42739 CVE-2022-0185 SUSE-SU-2019:2780-1
Platform(s):	SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 15 SP1 SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Containers 15 SUSE Linux Enterprise Module for Containers 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP3 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Storage 6 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Manager Proxy 4.0 SUSE Manager Server 4.0	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND libevent-2_0-5-2.0.21-4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information ImageMagick-6.8.8.1-8 is installed OR libMagick++-6_Q16-3-6.8.8.1-8 is installed OR libMagickCore-6_Q16-1-6.8.8.1-8 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-8 is installed OR libMagickWand-6_Q16-1-6.8.8.1-8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information ImageMagick-6.8.8.1-70 is installed OR libMagick++-6_Q16-3-6.8.8.1-70 is installed OR libMagickCore-6_Q16-1-6.8.8.1-70 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-70 is installed OR libMagickWand-6_Q16-1-6.8.8.1-70 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information NetworkManager-1.10.6-5.3.1 is installed OR NetworkManager-devel-1.10.6-5.3.1 is installed OR libnm-glib-vpn1-1.10.6-5.3.1 is installed OR libnm-glib4-1.10.6-5.3.1 is installed OR libnm-util2-1.10.6-5.3.1 is installed OR typelib-1_0-NMClient-1_0-1.10.6-5.3.1 is installed OR typelib-1_0-NetworkManager-1_0-1.10.6-5.3.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Micro 5.1 is installed OR SUSE Linux Enterprise Micro 5.2 is installed OR SUSE Linux Enterprise Module for Live Patching 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed AND kernel-livepatch-5_3_18-59_10-default-8-150300.2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information php7-7.2.5-4.32 is installed OR php7-embed-7.2.5-4.32 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information python-SQLAlchemy-1.2.14-6.3 is installed OR python2-SQLAlchemy-1.2.14-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information binutils-2.32-6.8 is installed OR binutils-devel-2.32-6.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information bzip2-1.0.6-5.3 is installed OR libbz2-1-1.0.6-5.3 is installed OR libbz2-1-32bit-1.0.6-5.3 is installed OR libbz2-devel-1.0.6-5.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 15 is installed AND Package Information containerd-1.1.2-5.3 is installed OR docker-18.06.1_ce-6.8 is installed OR docker-bash-completion-18.06.1_ce-6.8 is installed OR docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3 is installed OR docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 15 SP1 is installed AND helm-mirror-0.2.1-1.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information cairo-1.15.10-4.5 is installed OR libcairo2-32bit-1.15.10-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed AND Package Information perl-Archive-Extract-0.80-1 is installed OR perl-ExtUtils-MakeMaker-7.30-1 is installed OR perl-Module-Load-Conditional-0.68-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_7-default-5-2 is installed OR kernel-livepatch-SLE15-SP1_Update_2-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information rmt-server-2.3.1-3.3 is installed OR rmt-server-pubcloud-2.3.1-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information DirectFB-1.7.1-4 is installed OR lib++dfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-1.7.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information jakarta-commons-fileupload-1.1.1-120.238 is installed OR jakarta-commons-fileupload-javadoc-1.1.1-120.238 is installed

BACK