OVAL Reference oval:org.opensuse.security:def:1415

Oval Definition:

oval:org.opensuse.security:def:1415

Revision Date:	2022-02-02	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP3) (Important)
Description:	This update for the Linux Kernel 5.3.18-57 fixes several issues. The following security issues were fixed: - CVE-2022-0185: Incorrect param length parsing in legacy_parse_param which could have led to a local privilege escalation (bsc#1194517). - CVE-2021-4154: Fixed option parsing with cgroups version 1 (bsc#1193842). - CVE-2021-4028: Fixed use-after-free in RDMA listen() that could lead to DoS or privilege escalation by a local attacker (bsc#1193167). - CVE-2020-3702: Fixed a bug which could be triggered with specifically timed and handcrafted traffic and cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure. (bsc#1191193) - CVE-2020-25670, CVE-2020-25671, CVE-2020-25672, CVE-2020-25673, CVE-2021-23134: Fixed multiple bugs in NFC subsytem (bsc#1178181, bsc#1186060). - CVE-2021-42739: The firewire subsystem had a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandled bounds checking (bsc#1184673).
Family:	unix	Class:	patch
Status:		Reference(s):	1120281 1186061 1191529 1192036 1193529 1194461 1194680 1194737 CVE-2012-2737 CVE-2017-1000231 CVE-2017-1000232 CVE-2018-1000845 CVE-2018-1000845 CVE-2018-14036 CVE-2020-25670 CVE-2020-25671 CVE-2020-25672 CVE-2020-25673 CVE-2020-3702 CVE-2021-23134 CVE-2021-4028 CVE-2021-4154 CVE-2021-42739 CVE-2022-0185 SUSE-SU-2019:0285-1 SUSE-SU-2022:0293-1
Platform(s):	SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 15 SP1 SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Containers 15 SUSE Linux Enterprise Module for Containers 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP3 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Storage 6 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Manager Proxy 4.0 SUSE Manager Server 4.0	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND libfbembed2_5-2.5.2.26539-13 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-9 is installed OR aaa_base-extras-13.2+git20140911.61c1681-9 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information ImageMagick-6.8.8.1-33 is installed OR libMagick++-6_Q16-3-6.8.8.1-33 is installed OR libMagickCore-6_Q16-1-6.8.8.1-33 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-33 is installed OR libMagickWand-6_Q16-1-6.8.8.1-33 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information NetworkManager-1.0.12-12 is installed OR NetworkManager-lang-1.0.12-12 is installed OR libnm-glib-vpn1-1.0.12-12 is installed OR libnm-glib4-1.0.12-12 is installed OR libnm-util2-1.0.12-12 is installed OR libnm0-1.0.12-12 is installed OR typelib-1_0-NM-1_0-1.0.12-12 is installed OR typelib-1_0-NMClient-1_0-1.0.12-12 is installed OR typelib-1_0-NetworkManager-1_0-1.0.12-12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information accountsservice-0.6.45-6.10.1 is installed OR accountsservice-devel-0.6.45-6.10.1 is installed OR accountsservice-lang-0.6.45-6.10.1 is installed OR libaccountsservice0-0.6.45-6.10.1 is installed OR typelib-1_0-AccountsService-1_0-0.6.45-6.10.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Micro 5.1 is installed OR SUSE Linux Enterprise Micro 5.2 is installed OR SUSE Linux Enterprise Module for Live Patching 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed AND kernel-livepatch-5_3_18-57-default-10-3.2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information postgresql10-10.9-4.13 is installed OR postgresql10-test-10.9-4.13 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information binutils-2.32-7.5 is installed OR binutils-gold-2.32-7.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information avahi-0.6.32-5.3 is installed OR avahi-compat-howl-devel-0.6.32-5.3 is installed OR avahi-compat-mDNSResponder-devel-0.6.32-5.3 is installed OR avahi-glib2-0.6.32-5.3 is installed OR avahi-lang-0.6.32-5.3 is installed OR avahi-utils-0.6.32-5.3 is installed OR libavahi-client3-0.6.32-5.3 is installed OR libavahi-common3-0.6.32-5.3 is installed OR libavahi-core7-0.6.32-5.3 is installed OR libavahi-devel-0.6.32-5.3 is installed OR libavahi-glib-devel-0.6.32-5.3 is installed OR libavahi-glib1-0.6.32-5.3 is installed OR libavahi-gobject0-0.6.32-5.3 is installed OR libavahi-ui-gtk3-0-0.6.32-5.3 is installed OR libavahi-ui0-0.6.32-5.3 is installed OR libdns_sd-0.6.32-5.3 is installed OR libhowl0-0.6.32-5.3 is installed OR typelib-1_0-Avahi-0_6-0.6.32-5.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information bzip2-1.0.6-5.3 is installed OR libbz2-1-1.0.6-5.3 is installed OR libbz2-1-32bit-1.0.6-5.3 is installed OR libbz2-devel-1.0.6-5.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 15 is installed AND Package Information docker-18.09.6_ce-6.20 is installed OR docker-bash-completion-18.09.6_ce-6.20 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 15 SP1 is installed AND Package Information containerd-1.2.5-5.13 is installed OR docker-18.09.6_ce-6.17 is installed OR docker-bash-completion-18.09.6_ce-6.17 is installed OR docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed OR docker-runc-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information libtiff5-32bit-4.0.9-5.9 is installed OR tiff-4.0.9-5.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed AND perl-DNS-LDNS-1.7.0-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_18-default-2-2 is installed OR kernel-livepatch-SLE15-SP1_Update_5-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information kernel-azure-4.12.14-8.16 is installed OR kernel-azure-base-4.12.14-8.16 is installed OR kernel-azure-devel-4.12.14-8.16 is installed OR kernel-devel-azure-4.12.14-8.16 is installed OR kernel-source-azure-4.12.14-8.16 is installed OR kernel-syms-azure-4.12.14-8.16 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-9 is installed OR aaa_base-extras-13.2+git20140911.61c1681-9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr3.50-28.2 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr3.50-28.2 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr3.50-28.2 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr3.50-28.2 is installed

BACK