Oval Definition:	oval:org.opensuse.security:def:4311
Revision Date: 2020-12-02 Version: 1 Title: Security update for the Linux Kernel (Live Patch 11 for SLE 15) (Important) Description: This update for the Linux Kernel 4.12.14-150_22 fixes several issues. The following security issues were fixed: - CVE-2019-13272: Fixed a privilege escalation from user to root due to improper handling of credentials by leveraging certain scenarios with a parent-child process relationship (bsc#1156321). - CVE-2019-15239: Fixed a vulnerability where a local attacker could have triggered multiple use-after-free conditions resulted in privilege escalation (bsc#1156317). - CVE-2019-10220: Fixed an issue where samba servers could inject relative paths in directory entry lists (bsc#1153108). The following bugs were fixed: - Fixed boot up hang revealed by int3 self test (bsc#1157770). Family: unix Class: patch Status: Reference(s): 1012382 1037697 1046299 1046300 1046302 1046303 1046305 1046306 1046307 1046533 1046543 1050242 1050244 1050536 1050538 1050540 1050549 1051510 1051858 1054245 1054914 1055117 1056651 1056787 1058169 1058659 1060463 1061840 1065600 1065729 1068032 1071995 1075087 1075360 1077338 1077761 1077989 1082555 1083647 1085030 1085042 1085536 1085539 1086301 1086313 1086314 1086324 1086457 1087092 1087202 1087217 1087233 1088810 1090098 1090888 1091041 1091171 1093148 1093447 1093666 1094119 1096330 1097583 1097584 1097585 1097586 1097587 1097588 1098633 1099193 1100132 1100884 1101143 1101337 1101352 1101564 1101669 1101674 1101789 1101813 1101816 1102088 1102097 1102147 1102340 1102512 1102851 1103216 1103220 1103230 1103421 1103989 1103990 1103991 1104353 1104427 1104745 1104967 1105392 1109158 1109837 1111666 1112178 1112374 1112504 1113722 1113956 1114279 1114685 1115026 1118338 1118661 1119086 1123034 1123328 1126206 1127371 1127611 1127682 1127988 1129551 1129770 1131304 1133021 1133147 1134973 1137069 1137865 1137959 1137982 1138172 1138173 1139924 1140025 1140155 1141013 1142076 1142635 1142685 1143959 1144162 1144333 1146042 1146090 1146091 1146093 1146094 1146095 1146097 1146099 1146100 1146519 1146540 1146544 1146664 1148133 1148712 1148868 1149313 1149446 1149555 1149651 1150305 1150381 1150423 1150846 1151067 1151192 1151350 1151548 1151610 1151661 1151662 1151667 1151680 1151891 1151910 1151927 1151955 1152024 1152025 1152026 1152107 1152161 1152187 1152243 1152325 1152457 1152460 1152466 1152525 1152631 1152972 1152974 1152975 1153108 1153535 1153917 1154243 1154601 1154768 1154916 1154999 1155331 1155334 1155689 1156259 1156286 1156317 1156321 1156462 1157155 1157157 1157169 1157303 1157424 1157480 1157692 1157770 1157853 1157895 1157908 1157966 1158013 1158021 1158026 1158071 1158094 1158132 1158381 1158533 1158637 1158638 1158639 1158640 1158641 1158643 1158644 1158645 1158646 1158647 1158649 1158651 1158652 1158819 1158823 1158824 1158827 1158834 1158893 1158900 1158903 1158904 1158954 1159024 1159028 1159271 1159297 1159377 1159394 1159483 1159484 1159500 1159569 1159588 1159723 1159729 1159841 1159908 1159909 1159910 1159911 1159955 1160147 1160195 1160210 1160211 1160218 1160433 1160442 1160469 1160470 1160476 1160560 1160618 1160678 1160755 1160756 1160784 1160787 1160802 1160803 1160804 1160917 1160966 1160979 1161087 1161243 1161360 1161472 1161514 1161518 1161522 1161523 1161549 1161552 1161674 1161702 1161907 1161931 1161933 1161934 1161935 1161936 1161937 1162028 1162067 1162109 1162139 1162557 1162617 1162618 1162619 1162623 1162928 1162943 1163102 1163103 1163104 1163206 1163383 1163384 1163762 1163774 1163836 1163840 1163841 1163842 1163843 1163844 1163845 1163846 1163849 1163850 1163851 1163852 1163853 1163855 1163856 1163857 1163858 1163859 1163860 1163861 1163862 1163863 1163867 1163869 1163880 1163971 1164051 1164069 1164098 1164115 1164314 1164315 1164388 1164471 1164598 1164632 1164705 1164712 1164727 1164728 1164729 1164730 1164731 1164732 1164733 1164734 1164735 1170603 1171252 1171254 1173455 1174628 1175664 1175665 1175671 1176409 1176412 CVE-2017-18344 CVE-2017-18595 CVE-2018-10196 CVE-2018-5390 CVE-2019-10072 CVE-2019-10220 CVE-2019-11039 CVE-2019-11040 CVE-2019-11043 CVE-2019-12418 CVE-2019-13272 CVE-2019-14615 CVE-2019-14821 CVE-2019-14896 CVE-2019-14897 CVE-2019-15213 CVE-2019-15239 CVE-2019-15291 CVE-2019-15604 CVE-2019-15605 CVE-2019-15606 CVE-2019-16746 CVE-2019-16994 CVE-2019-17563 CVE-2019-18808 CVE-2019-19036 CVE-2019-19045 CVE-2019-19051 CVE-2019-19054 CVE-2019-19066 CVE-2019-19318 CVE-2019-19319 CVE-2019-19332 CVE-2019-19338 CVE-2019-19447 CVE-2019-19523 CVE-2019-19526 CVE-2019-19527 CVE-2019-19532 CVE-2019-19533 CVE-2019-19535 CVE-2019-19537 CVE-2019-19767 CVE-2019-19927 CVE-2019-19965 CVE-2019-19966 CVE-2019-20054 CVE-2019-20095 CVE-2019-20096 CVE-2019-9506 CVE-2019-9511 CVE-2019-9512 CVE-2019-9513 CVE-2019-9514 CVE-2019-9515 CVE-2019-9516 CVE-2019-9517 CVE-2019-9518 CVE-2020-12268 CVE-2020-12653 CVE-2020-12654 CVE-2020-14344 CVE-2020-14392 CVE-2020-14393 CVE-2020-15049 CVE-2020-15810 CVE-2020-15811 CVE-2020-24606 CVE-2020-2732 CVE-2020-7053 CVE-2020-8428 CVE-2020-8648 CVE-2020-8992 SUSE-SU-2018:2223-1 SUSE-SU-2019:1832-1 SUSE-SU-2019:2259-1 SUSE-SU-2019:2710-1 SUSE-SU-2019:2819-1 SUSE-SU-2019:3249-1 SUSE-SU-2020:0029-1 SUSE-SU-2020:0454-1 SUSE-SU-2020:1220-1 SUSE-SU-2020:2116-1 SUSE-SU-2020:2346-1 SUSE-SU-2020:2442-1 SUSE-SU-2020:2645-1 Platform(s): SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 11 SP3 SUSE Linux Enterprise for SAP 11 SP4 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise High Availability 15 SP1 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Live Patching 12 SP4 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Point of Sale 11 SP3 SUSE Linux Enterprise Real Time Extension 11 SP3 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 Product(s): Definition Synopsis SUSE Linux Enterprise Build System Kit 12 is installed AND Package Information cups-1.7.5-5 is installed OR cups-ddk-1.7.5-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND clamav-0.98.4-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information DirectFB-1.7.1-4 is installed OR lib++dfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-32bit-1.7.1-4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information fuse-2.9.3-5 is installed OR libfuse2-2.9.3-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND busybox-1.21.1-3 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND python-PyYAML-3.10-17 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND ruby2.1-rubygem-bundler-1.7.3-3 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND lighttpd-1.4.35-3 is installed Definition Synopsis SUSE Linux Enterprise High Availability 15 is installed AND Package Information cluster-md-kmp-default-4.12.14-25.6 is installed OR dlm-kmp-default-4.12.14-25.6 is installed OR gfs2-kmp-default-4.12.14-25.6 is installed OR kernel-default-4.12.14-25.6 is installed OR ocfs2-kmp-default-4.12.14-25.6 is installed Definition Synopsis SUSE Linux Enterprise High Availability 15 SP1 is installed AND Package Information cluster-md-kmp-default-4.12.14-197.21 is installed OR dlm-kmp-default-4.12.14-197.21 is installed OR gfs2-kmp-default-4.12.14-197.21 is installed OR kernel-default-4.12.14-197.21 is installed OR ocfs2-kmp-default-4.12.14-197.21 is installed Definition Synopsis Release Information SUSE Linux Enterprise High Performance Computing 15-ESPOS is installed AND ghostscript-9.52-3.27 is installed OR ghostscript-devel-9.52-3.27 is installed OR ghostscript-x11-9.52-3.27 is installed OR Package Information SUSE Linux Enterprise High Performance Computing 15-LTSS is installed AND ghostscript-9.52-3.27 is installed OR ghostscript-devel-9.52-3.27 is installed OR ghostscript-x11-9.52-3.27 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_82-6_3-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_1-7-2 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 SP4 is installed AND Package Information kgraft-patch-4_12_14-95_16-default-2-2 is installed OR kgraft-patch-SLE12-SP4_Update_4-2-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND Package Information puppet-3.8.5-15.9 is installed OR puppet-server-3.8.5-15.9 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_22-default-5-2 is installed OR kernel-livepatch-SLE15_Update_11-5-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information apache2-mod_php7-7.2.5-4.35 is installed OR php7-7.2.5-4.35 is installed OR php7-bcmath-7.2.5-4.35 is installed OR php7-bz2-7.2.5-4.35 is installed OR php7-calendar-7.2.5-4.35 is installed OR php7-ctype-7.2.5-4.35 is installed OR php7-curl-7.2.5-4.35 is installed OR php7-dba-7.2.5-4.35 is installed OR php7-devel-7.2.5-4.35 is installed OR php7-dom-7.2.5-4.35 is installed OR php7-enchant-7.2.5-4.35 is installed OR php7-exif-7.2.5-4.35 is installed OR php7-fastcgi-7.2.5-4.35 is installed OR php7-fileinfo-7.2.5-4.35 is installed OR php7-fpm-7.2.5-4.35 is installed OR php7-ftp-7.2.5-4.35 is installed OR php7-gd-7.2.5-4.35 is installed OR php7-gettext-7.2.5-4.35 is installed OR php7-gmp-7.2.5-4.35 is installed OR php7-iconv-7.2.5-4.35 is installed OR php7-intl-7.2.5-4.35 is installed OR php7-json-7.2.5-4.35 is installed OR php7-ldap-7.2.5-4.35 is installed OR php7-mbstring-7.2.5-4.35 is installed OR php7-mysql-7.2.5-4.35 is installed OR php7-odbc-7.2.5-4.35 is installed OR php7-opcache-7.2.5-4.35 is installed OR php7-openssl-7.2.5-4.35 is installed OR php7-pcntl-7.2.5-4.35 is installed OR php7-pdo-7.2.5-4.35 is installed OR php7-pear-7.2.5-4.35 is installed OR php7-pear-Archive_Tar-7.2.5-4.35 is installed OR php7-pgsql-7.2.5-4.35 is installed OR php7-phar-7.2.5-4.35 is installed OR php7-posix-7.2.5-4.35 is installed OR php7-shmop-7.2.5-4.35 is installed OR php7-snmp-7.2.5-4.35 is installed OR php7-soap-7.2.5-4.35 is installed OR php7-sockets-7.2.5-4.35 is installed OR php7-sodium-7.2.5-4.35 is installed OR php7-sqlite-7.2.5-4.35 is installed OR php7-sysvmsg-7.2.5-4.35 is installed OR php7-sysvsem-7.2.5-4.35 is installed OR php7-sysvshm-7.2.5-4.35 is installed OR php7-tokenizer-7.2.5-4.35 is installed OR php7-wddx-7.2.5-4.35 is installed OR php7-xmlreader-7.2.5-4.35 is installed OR php7-xmlrpc-7.2.5-4.35 is installed OR php7-xmlwriter-7.2.5-4.35 is installed OR php7-xsl-7.2.5-4.35 is installed OR php7-zip-7.2.5-4.35 is installed OR php7-zlib-7.2.5-4.35 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information tomcat-9.0.30-4.10 is installed OR tomcat-admin-webapps-9.0.30-4.10 is installed OR tomcat-el-3_0-api-9.0.30-4.10 is installed OR tomcat-jsp-2_3-api-9.0.30-4.10 is installed OR tomcat-lib-9.0.30-4.10 is installed OR tomcat-servlet-4_0-api-9.0.30-4.10 is installed OR tomcat-webapps-9.0.30-4.10 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 11 SP3 is installed AND Package Information MozillaFirefox-45.5.1esr-59.1 is installed OR MozillaFirefox-translations-45.5.1esr-59.1 is installed OR libfreebl3-3.21.3-39.1 is installed OR libsoftokn3-3.21.3-39.1 is installed OR mozilla-nss-3.21.3-39.1 is installed OR mozilla-nss-tools-3.21.3-39.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP4 is installed AND acpid-1.0.6-91.25.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND apache-commons-httpclient-3.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information DirectFB-1.7.1-4 is installed OR lib++dfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-1.7.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-28 is installed OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND ant-1.9.4-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libwireshark9-2.4.9-48.29 is installed OR libwiretap7-2.4.9-48.29 is installed OR libwscodecs1-2.4.9-48.29 is installed OR libwsutil8-2.4.9-48.29 is installed OR wireshark-2.4.9-48.29 is installed OR wireshark-gtk-2.4.9-48.29 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.1-3.49 is installed OR libwebkit2gtk-4_0-37-2.28.1-3.49 is installed OR libwebkit2gtk3-lang-2.28.1-3.49 is installed OR webkit2gtk-4_0-injected-bundles-2.28.1-3.49 is installed OR webkit2gtk3-2.28.1-3.49 is installed OR webkit2gtk3-devel-2.28.1-3.49 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information apache2-2.4.33-3.30 is installed OR apache2-devel-2.4.33-3.30 is installed OR apache2-doc-2.4.33-3.30 is installed OR apache2-prefork-2.4.33-3.30 is installed OR apache2-utils-2.4.33-3.30 is installed OR apache2-worker-2.4.33-3.30 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND rubygem-rack-1.1.6-0.9.2 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information ant-jmf-1.9.4-1 is installed OR ant-scripts-1.9.4-1 is installed OR ant-swing-1.9.4-1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information sqlite3-3.8.10.2-3.1 is installed OR sqlite3-devel-3.8.10.2-3.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information libX11-1.6.2-8.1 is installed OR libX11-devel-1.6.2-8.1 is installed OR libXfixes-5.0.1-7.1 is installed OR libXfixes-devel-5.0.1-7.1 is installed OR libXi-1.7.4-14.1 is installed OR libXi-devel-1.7.4-14.1 is installed OR libXrender-0.9.8-7.1 is installed OR libXrender-devel-0.9.8-7.1 is installed OR libXtst-1.2.2-7.1 is installed OR libXtst-devel-1.2.2-7.1 is installed OR libXv-1.0.10-7.1 is installed OR libXv-devel-1.0.10-7.1 is installed OR libXvMC-1.0.8-7.1 is installed OR libXvMC-devel-1.0.8-7.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND xorg-x11-devel-7.6-45 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 is installed AND bash-lang-4.2-75 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND bogofilter-1.2.4-3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information NetworkManager-1.0.12-8 is installed OR NetworkManager-lang-1.0.12-8 is installed OR typelib-1_0-NM-1_0-1.0.12-8 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND gd-32bit-2.1.0-23 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information libwpd-0.10.2-3.3 is installed OR libwpd-0_10-10-0.10.2-3.3 is installed OR libwpd-devel-0.10.2-3.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.26 is installed OR kernel-default-extra-4.12.14-197.26 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information xorg-x11-server-1.20.3-22.5.5 is installed OR xorg-x11-server-wayland-1.20.3-22.5.5 is installed
BACK