| Revision Date: | 2020-12-02 | Version: | 1 |
| Title: | Security update for the Linux Kernel (Live Patch 3 for SLE 15) (Important) |
| Description: |
This update for the Linux Kernel 4.12.14-25_13 fixes several issues.
The following security issues were fixed:
- CVE-2019-3846: A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network (bsc#1136446). - CVE-2019-11477: A sequence of SACKs may have been crafted by a remote attacker such that one can trigger an integer overflow, leading to a kernel panic. (bsc#1137586). - CVE-2019-11478: It was possible to send a crafted sequence of SACKs which would fragment the TCP retransmission queue. A remote attacker may have been able to further exploit the fragmented queue to cause an expensive linked-list walk for subsequent SACKs received for that same TCP connection. (bsc#1137586) - CVE-2019-11487: The Linux kernel allowed page->_refcount reference count overflow, with resultant use-after-free issues, if about 140 GiB of RAM exists. This is related to fs/fuse/dev.c, fs/pipe.c, fs/splice.c, include/linux/mm.h, include/linux/pipe_fs_i.h, kernel/trace/trace.c, mm/gup.c, and mm/hugetlb.c. It can occur with FUSE requests (bsc#1133191). - CVE-2019-11085: Insufficient input validation in Kernel Mode Driver in Intel(R) i915 Graphics may allowed an authenticated user to potentially enable escalation of privilege via local access (bsc#1135280).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1027519
1082318
1094846
1100787
1108683
1121283
1133191
1133719
1135280
1135656
1136446
1136935
1137137
1137597
1138734
1140747
1144524
1145586
1146090
1146091
1146093
1146094
1146095
1146097
1146099
1146100
1146848
1149100
1153611
1154980
1157465
1157712
1157714
1158940
1159118
1160611
1160612
1160613
1160614
1160615
1160931
1162327
1162504
1162687
1162689
1162691
1163985
1165425
1166847
1168683
1169851
1172205
1173376
1173377
1173378
1173380
1178666
1178667
1178668
CVE-2018-11469
CVE-2018-14645
CVE-2018-20615
CVE-2019-11085
CVE-2019-11477
CVE-2019-11478
CVE-2019-11487
CVE-2019-12528
CVE-2019-13456
CVE-2019-17185
CVE-2019-17361
CVE-2019-18277
CVE-2019-18897
CVE-2019-2126
CVE-2019-3846
CVE-2019-9232
CVE-2019-9325
CVE-2019-9371
CVE-2019-9433
CVE-2019-9511
CVE-2019-9512
CVE-2019-9513
CVE-2019-9514
CVE-2019-9515
CVE-2019-9516
CVE-2019-9517
CVE-2019-9518
CVE-2020-0543
CVE-2020-10703
CVE-2020-10704
CVE-2020-15563
CVE-2020-15565
CVE-2020-15566
CVE-2020-15567
CVE-2020-1720
CVE-2020-25694
CVE-2020-25695
CVE-2020-25696
CVE-2020-8449
CVE-2020-8450
CVE-2020-8517
SUSE-SU-2018:3249-1
SUSE-SU-2019:0232-1
SUSE-SU-2019:1888-1
SUSE-SU-2019:2259-1
SUSE-SU-2019:3126-1
SUSE-SU-2020:0143-1
SUSE-SU-2020:0493-1
SUSE-SU-2020:0684-1
SUSE-SU-2020:0752-1
SUSE-SU-2020:1023-1
SUSE-SU-2020:1132-1
SUSE-SU-2020:1250-1
SUSE-SU-2020:1902-1
SUSE-SU-2020:3463-1
|
| Platform(s): | SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise for SAP 12 SP1
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 15
SUSE Linux Enterprise High Availability 15 SP1
SUSE Linux Enterprise High Availability Extension 11 SP3
SUSE Linux Enterprise High Performance Computing 15-ESPOS
SUSE Linux Enterprise High Performance Computing 15-LTSS
SUSE Linux Enterprise Live Patching 12 SP3
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Linux Enterprise Module for High Performance Computing 12
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Point of Sale 11 SP3
SUSE Linux Enterprise Real Time Extension 11 SP4
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE Linux Enterprise Workstation Extension 12 SP3
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE Linux Enterprise Workstation Extension 15 SP2
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 11 SP4 is installed AND rsync-3.0.4-2.49.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 is installed
AND Package Information
bash-4.2-75 is installed
OR bash-doc-4.2-75 is installed
OR bash-lang-4.2-75 is installed
OR libreadline6-6.2-75 is installed
OR libreadline6-32bit-6.2-75 is installed
OR readline-doc-6.2-75 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP1 is installed
AND Package Information
libHX28-3.18-1 is installed
OR libHX28-32bit-3.18-1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP2 is installed
AND Package Information
ImageMagick-6.8.8.1-33 is installed
OR libMagick++-6_Q16-3-6.8.8.1-33 is installed
OR libMagickCore-6_Q16-1-6.8.8.1-33 is installed
OR libMagickCore-6_Q16-1-32bit-6.8.8.1-33 is installed
OR libMagickWand-6_Q16-1-6.8.8.1-33 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP3 is installed
AND Package Information
aaa_base-13.2+git20140911.61c1681-36 is installed
OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP4 is installed
AND clamav-0.100.2-33.18 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise for SAP 12 SP1 is installed
AND unrar-5.0.14-3.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP2 is installed
AND ctdb-4.4.2-29 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP3 is installed
AND conntrack-tools-1.4.2-5 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP4 is installed
AND Package Information
cluster-md-kmp-default-4.12.14-94.41 is installed
OR dlm-kmp-default-4.12.14-94.41 is installed
OR gfs2-kmp-default-4.12.14-94.41 is installed
OR ocfs2-kmp-default-4.12.14-94.41 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 15 is installed
AND haproxy-1.8.14~git0.52e4d43b-3.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 15 SP1 is installed
AND haproxy-2.0.10+git0.ac198b92-8.8 is installed
|
| Definition Synopsis |
| Release Information
SUSE Linux Enterprise High Performance Computing 15-ESPOS is installed
AND
freeradius-server-3.0.16-3.6 is installed
OR freeradius-server-devel-3.0.16-3.6 is installed
OR freeradius-server-krb5-3.0.16-3.6 is installed
OR freeradius-server-ldap-3.0.16-3.6 is installed
OR freeradius-server-libs-3.0.16-3.6 is installed
OR freeradius-server-mysql-3.0.16-3.6 is installed
OR freeradius-server-perl-3.0.16-3.6 is installed
OR freeradius-server-postgresql-3.0.16-3.6 is installed
OR freeradius-server-python-3.0.16-3.6 is installed
OR freeradius-server-sqlite-3.0.16-3.6 is installed
OR freeradius-server-utils-3.0.16-3.6 is installed
OR Package Information
SUSE Linux Enterprise High Performance Computing 15-LTSS is installed
AND
freeradius-server-3.0.16-3.6 is installed
OR freeradius-server-devel-3.0.16-3.6 is installed
OR freeradius-server-krb5-3.0.16-3.6 is installed
OR freeradius-server-ldap-3.0.16-3.6 is installed
OR freeradius-server-libs-3.0.16-3.6 is installed
OR freeradius-server-mysql-3.0.16-3.6 is installed
OR freeradius-server-perl-3.0.16-3.6 is installed
OR freeradius-server-postgresql-3.0.16-3.6 is installed
OR freeradius-server-python-3.0.16-3.6 is installed
OR freeradius-server-sqlite-3.0.16-3.6 is installed
OR freeradius-server-utils-3.0.16-3.6 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Live Patching 12 SP3 is installed
AND Package Information
kgraft-patch-4_4_114-94_11-default-8-2 is installed
OR kgraft-patch-SLE12-SP3_Update_8-8-2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
AND facter-2.0.2-1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for High Performance Computing 12 is installed
AND Package Information
libslurm29-16.05.8.1-5 is installed
OR perl-slurm-16.05.8.1-5 is installed
OR slurm-16.05.8.1-5 is installed
OR slurm-auth-none-16.05.8.1-5 is installed
OR slurm-devel-16.05.8.1-5 is installed
OR slurm-doc-16.05.8.1-5 is installed
OR slurm-lua-16.05.8.1-5 is installed
OR slurm-munge-16.05.8.1-5 is installed
OR slurm-pam_slurm-16.05.8.1-5 is installed
OR slurm-plugins-16.05.8.1-5 is installed
OR slurm-sched-wiki-16.05.8.1-5 is installed
OR slurm-slurmdbd-16.05.8.1-5 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Live Patching 15 is installed
AND Package Information
kernel-livepatch-4_12_14-25_13-default-7-2 is installed
OR kernel-livepatch-SLE15_Update_3-7-2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Public Cloud 12 is installed
AND Package Information
kernel-ec2-3.12.74-60.64.40.1 is installed
OR kernel-ec2-devel-3.12.74-60.64.40.1 is installed
OR kernel-ec2-extra-3.12.74-60.64.40.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
AND squid-4.10-5.14 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
AND Package Information
xen-4.13.1_04-3.4 is installed
OR xen-devel-4.13.1_04-3.4 is installed
OR xen-tools-4.13.1_04-3.4 is installed
OR xen-tools-xendomains-wait-disk-4.13.1_04-3.4 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Web Scripting 12 is installed
AND Package Information
apache2-mod_php5-5.5.14-36.1 is installed
OR php5-5.5.14-36.1 is installed
OR php5-bcmath-5.5.14-36.1 is installed
OR php5-bz2-5.5.14-36.1 is installed
OR php5-calendar-5.5.14-36.1 is installed
OR php5-ctype-5.5.14-36.1 is installed
OR php5-curl-5.5.14-36.1 is installed
OR php5-dba-5.5.14-36.1 is installed
OR php5-dom-5.5.14-36.1 is installed
OR php5-enchant-5.5.14-36.1 is installed
OR php5-exif-5.5.14-36.1 is installed
OR php5-fastcgi-5.5.14-36.1 is installed
OR php5-fileinfo-5.5.14-36.1 is installed
OR php5-fpm-5.5.14-36.1 is installed
OR php5-ftp-5.5.14-36.1 is installed
OR php5-gd-5.5.14-36.1 is installed
OR php5-gettext-5.5.14-36.1 is installed
OR php5-gmp-5.5.14-36.1 is installed
OR php5-iconv-5.5.14-36.1 is installed
OR php5-intl-5.5.14-36.1 is installed
OR php5-json-5.5.14-36.1 is installed
OR php5-ldap-5.5.14-36.1 is installed
OR php5-mbstring-5.5.14-36.1 is installed
OR php5-mcrypt-5.5.14-36.1 is installed
OR php5-mysql-5.5.14-36.1 is installed
OR php5-odbc-5.5.14-36.1 is installed
OR php5-opcache-5.5.14-36.1 is installed
OR php5-openssl-5.5.14-36.1 is installed
OR php5-pcntl-5.5.14-36.1 is installed
OR php5-pdo-5.5.14-36.1 is installed
OR php5-pear-5.5.14-36.1 is installed
OR php5-pgsql-5.5.14-36.1 is installed
OR php5-posix-5.5.14-36.1 is installed
OR php5-pspell-5.5.14-36.1 is installed
OR php5-shmop-5.5.14-36.1 is installed
OR php5-snmp-5.5.14-36.1 is installed
OR php5-soap-5.5.14-36.1 is installed
OR php5-sockets-5.5.14-36.1 is installed
OR php5-sqlite-5.5.14-36.1 is installed
OR php5-suhosin-5.5.14-36.1 is installed
OR php5-sysvmsg-5.5.14-36.1 is installed
OR php5-sysvsem-5.5.14-36.1 is installed
OR php5-sysvshm-5.5.14-36.1 is installed
OR php5-tokenizer-5.5.14-36.1 is installed
OR php5-wddx-5.5.14-36.1 is installed
OR php5-xmlreader-5.5.14-36.1 is installed
OR php5-xmlrpc-5.5.14-36.1 is installed
OR php5-xmlwriter-5.5.14-36.1 is installed
OR php5-xsl-5.5.14-36.1 is installed
OR php5-zip-5.5.14-36.1 is installed
OR php5-zlib-5.5.14-36.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Web Scripting 15 is installed
AND Package Information
nodejs10-10.16.3-1.12 is installed
OR nodejs10-devel-10.16.3-1.12 is installed
OR nodejs10-docs-10.16.3-1.12 is installed
OR npm10-10.16.3-1.12 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 11 SP3 is installed
AND Package Information
qt3-3.3.8b-88.21 is installed
OR qt3-32bit-3.3.8b-88.21 is installed
OR qt3-x86-3.3.8b-88.21 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 11 SP4 is installed
AND Package Information
krb5-1.6.3-133.49.66.1 is installed
OR krb5-32bit-1.6.3-133.49.66.1 is installed
OR krb5-apps-clients-1.6.3-133.49.66.1 is installed
OR krb5-apps-servers-1.6.3-133.49.66.1 is installed
OR krb5-client-1.6.3-133.49.66.1 is installed
OR krb5-server-1.6.3-133.49.66.1 is installed
OR krb5-x86-1.6.3-133.49.66.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 is installed
AND Package Information
cpp48-4.8.3+r212056-6 is installed
OR gcc48-4.8.3+r212056-6 is installed
OR gcc48-32bit-4.8.3+r212056-6 is installed
OR gcc48-c++-4.8.3+r212056-6 is installed
OR gcc48-info-4.8.3+r212056-6 is installed
OR gcc48-locale-4.8.3+r212056-6 is installed
OR libasan0-4.8.3+r212056-6 is installed
OR libasan0-32bit-4.8.3+r212056-6 is installed
OR libatomic1-4.8.3+r212056-6 is installed
OR libatomic1-32bit-4.8.3+r212056-6 is installed
OR libffi4-4.8.3+r212056-6 is installed
OR libffi4-32bit-4.8.3+r212056-6 is installed
OR libgcc_s1-4.8.3+r212056-6 is installed
OR libgcc_s1-32bit-4.8.3+r212056-6 is installed
OR libgfortran3-4.8.3+r212056-6 is installed
OR libgomp1-4.8.3+r212056-6 is installed
OR libgomp1-32bit-4.8.3+r212056-6 is installed
OR libitm1-4.8.3+r212056-6 is installed
OR libitm1-32bit-4.8.3+r212056-6 is installed
OR libquadmath0-4.8.3+r212056-6 is installed
OR libstdc++48-devel-4.8.3+r212056-6 is installed
OR libstdc++48-devel-32bit-4.8.3+r212056-6 is installed
OR libstdc++6-4.8.3+r212056-6 is installed
OR libstdc++6-32bit-4.8.3+r212056-6 is installed
OR libtsan0-4.8.3+r212056-6 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP1 is installed
AND apache2-mod_nss-1.0.8-13 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2 is installed
AND Package Information
alsa-1.0.27.2-11 is installed
OR alsa-docs-1.0.27.2-11 is installed
OR libasound2-1.0.27.2-11 is installed
OR libasound2-32bit-1.0.27.2-11 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP4 is installed
AND Package Information
libopenvswitch-2_8-0-2.8.4-3 is installed
OR openvswitch-2.8.4-3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 15-LTSS is installed
AND nginx-1.16.1-3.12 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
AND Package Information
DirectFB-1.7.1-6 is installed
OR lib++dfb-1_7-1-1.7.1-6 is installed
OR libdirectfb-1_7-1-1.7.1-6 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server for SAP Applications 15 is installed
AND Package Information
python2-salt-2019.2.0-5.67 is installed
OR python3-salt-2019.2.0-5.67 is installed
OR salt-2019.2.0-5.67 is installed
OR salt-api-2019.2.0-5.67 is installed
OR salt-bash-completion-2019.2.0-5.67 is installed
OR salt-cloud-2019.2.0-5.67 is installed
OR salt-doc-2019.2.0-5.67 is installed
OR salt-fish-completion-2019.2.0-5.67 is installed
OR salt-master-2019.2.0-5.67 is installed
OR salt-minion-2019.2.0-5.67 is installed
OR salt-proxy-2019.2.0-5.67 is installed
OR salt-ssh-2019.2.0-5.67 is installed
OR salt-standalone-formulas-configuration-2019.2.0-5.67 is installed
OR salt-syndic-2019.2.0-5.67 is installed
OR salt-zsh-completion-2019.2.0-5.67 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 11 SP2 is installed
AND mozilla-nss-devel-3.14-0.3.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 12 is installed
AND Package Information
flac-1.3.0-6.1 is installed
OR flac-devel-1.3.0-6.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
AND Package Information
libsndfile-1.0.25-25.1 is installed
OR libsndfile-devel-1.0.25-25.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
AND Package Information
libblkid-devel-2.28-42.1 is installed
OR libmount-devel-2.28-42.1 is installed
OR libsmartcols-devel-2.28-42.1 is installed
OR libuuid-devel-2.28-42.1 is installed
OR util-linux-2.28-42.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
AND libvorbis-devel-1.3.3-8 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 12 is installed
AND cyrus-sasl-digestmd5-32bit-2.1.26-7 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
AND Package Information
ImageMagick-6.8.8.1-8 is installed
OR libMagick++-6_Q16-3-6.8.8.1-8 is installed
OR libMagickCore-6_Q16-1-32bit-6.8.8.1-8 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
AND imobiledevice-tools-1.2.0-7 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 12 SP3 is installed
AND Package Information
ImageMagick-6.8.8.1-70 is installed
OR libMagick++-6_Q16-3-6.8.8.1-70 is installed
OR libMagickCore-6_Q16-1-32bit-6.8.8.1-70 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 15 is installed
AND Package Information
kernel-default-4.12.14-25.16 is installed
OR kernel-default-extra-4.12.14-25.16 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
AND Package Information
gnome-shell-3.26.2+20180130.0d9c74212-4.19 is installed
OR gnome-shell-calendar-3.26.2+20180130.0d9c74212-4.19 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
AND Package Information
MozillaThunderbird-68.11.0-3.91 is installed
OR MozillaThunderbird-translations-common-68.11.0-3.91 is installed
OR MozillaThunderbird-translations-other-68.11.0-3.91 is installed
|