Oval Definition:	oval:org.opensuse.security:def:4407
Revision Date: 2021-04-28 Version: 1 Title: Security update for the Linux Kernel (Live Patch 7 for SLE 12 SP5) (Important) Description: This update for the Linux Kernel 4.12.14-122_29 fixes several issues. The following security issues were fixed: - CVE-2021-3444: Fixed an issue with the bpf verifier which did not properly handle mod32 destination register truncation when the source register was known to be 0 leading to out of bounds read (bsc#1184171). - CVE-2021-28660: Fixed an out of bounds write in rtw_wx_set_scan (bsc#1183658). - CVE-2021-28688: Fixed an issue introduced by XSA-365 (bsc##1182294, bsc#1183646). - CVE-2021-26930: Fixed an improper error handling in blkback's grant mapping (XSA-365 bsc#1182294). - CVE-2021-26931: Fixed an issue where Linux kernel was treating grant mapping errors as bugs (XSA-362 bsc#1183022). Family: unix Class: patch Status: Reference(s): 1058115 1065729 1071995 1085030 1093447 1132091 1141320 1148868 1152472 1152489 1153108 1153274 1154353 1154492 1155518 1155798 1156317 1156395 1157169 1157465 1157770 1158050 1158242 1158265 1158748 1158765 1158983 1159284 1159329 1159781 1159867 1160850 1160852 1160888 1160903 1160905 1160947 1161495 1161719 1162002 1162063 1162327 1162400 1162702 1163809 1164648 1164777 1164780 1165211 1165572 1165933 1165975 1166985 1167104 1167152 1167437 1167651 1167773 1168140 1168142 1168143 1168230 1168340 1168779 1168838 1168959 1168994 1169021 1169094 1169194 1169392 1169514 1169604 1169614 1169681 1169771 1169800 1170011 1170104 1170284 1170288 1170442 1170595 1170617 1170774 1170879 1170891 1170895 1171150 1171189 1171191 1171219 1171220 1171246 1171252 1171254 1171417 1171513 1171529 1171530 1171662 1171688 1171699 1171732 1171739 1171743 1171759 1171828 1171857 1171868 1171883 1171904 1171906 1171915 1171982 1171983 1171988 1172017 1172046 1172061 1172062 1172063 1172064 1172065 1172066 1172067 1172068 1172069 1172073 1172075 1172086 1172095 1172169 1172170 1172175 1172176 1172201 1172205 1172208 1172223 1172342 1172343 1172344 1172365 1172366 1172374 1172391 1172393 1172394 1172453 1172458 1172467 1172484 1172537 1172543 1172687 1172719 1172739 1172751 1172759 1172775 1172781 1172782 1172783 1172810 1172814 1172823 1172841 1172871 1172938 1172939 1172940 1172956 1172983 1172984 1172985 1172986 1172987 1172988 1172989 1172990 1172999 1173060 1173068 1173072 1173074 1173085 1173139 1173206 1173271 1173280 1173284 1173428 1173438 1173461 1173514 1173552 1173573 1173625 1173746 1173776 1173812 1173817 1173818 1173820 1173822 1173823 1173824 1173825 1173826 1173827 1173828 1173830 1173831 1173832 1173833 1173834 1173836 1173837 1173838 1173839 1173841 1173843 1173844 1173845 1173847 1173849 1173860 1173894 1173941 1174018 1174072 1174116 1174126 1174127 1174128 1174129 1174165 1174185 1174244 1174263 1174264 1174331 1174332 1174333 1174345 1174356 1174396 1174398 1174407 1174409 1174411 1174438 1174462 1174463 1174513 1174527 1174543 1174570 1174627 1174922 1174923 1176579 1182294 1183658 1184171 962849 CVE-2018-10196 CVE-2019-10220 CVE-2019-11023 CVE-2019-14902 CVE-2019-14907 CVE-2019-15239 CVE-2019-18897 CVE-2019-18902 CVE-2019-19344 CVE-2019-19462 CVE-2019-20810 CVE-2019-20812 CVE-2019-8835 CVE-2019-8844 CVE-2019-8846 CVE-2020-0305 CVE-2020-0543 CVE-2020-10135 CVE-2020-10711 CVE-2020-10713 CVE-2020-10732 CVE-2020-10751 CVE-2020-10766 CVE-2020-10767 CVE-2020-10768 CVE-2020-10773 CVE-2020-10781 CVE-2020-11076 CVE-2020-11077 CVE-2020-11651 CVE-2020-11652 CVE-2020-11739 CVE-2020-11740 CVE-2020-11741 CVE-2020-11742 CVE-2020-11743 CVE-2020-12653 CVE-2020-12654 CVE-2020-12656 CVE-2020-12673 CVE-2020-12674 CVE-2020-12769 CVE-2020-12771 CVE-2020-12888 CVE-2020-13143 CVE-2020-13974 CVE-2020-14308 CVE-2020-14309 CVE-2020-14310 CVE-2020-14311 CVE-2020-14416 CVE-2020-1472 CVE-2020-15393 CVE-2020-15706 CVE-2020-15707 CVE-2020-15780 CVE-2020-3862 CVE-2020-3864 CVE-2020-3865 CVE-2020-3867 CVE-2020-3868 CVE-2020-7216 CVE-2021-26930 CVE-2021-26931 CVE-2021-28660 CVE-2021-28688 CVE-2021-3444 SUSE-SU-2019:1267-2 SUSE-SU-2020:0223-1 SUSE-SU-2020:0263-1 SUSE-SU-2020:0468-1 SUSE-SU-2020:1858-1 SUSE-SU-2020:1919-1 SUSE-SU-2020:1973-1 SUSE-SU-2020:2073-1 SUSE-SU-2020:2105-1 SUSE-SU-2020:2266-1 SUSE-SU-2020:2346-1 SUSE-SU-2020:2719-1 SUSE-SU-2020:3613-1 Platform(s): SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Desktop 15 SP1 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise High Availability 15 SP1 SUSE Linux Enterprise High Availability 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise Live Patching 12 SP4 SUSE Linux Enterprise Live Patching 12 SP5 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Development Tools 15 SP1 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Storage 6 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE Manager Proxy 4.0 SUSE Manager Server 4.0 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information python-keystoneclient-1.0.0-14 is installed OR python-keystoneclient-doc-1.0.0-14 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 is installed AND kernel-zfcpdump-3.12.38-44 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND Package Information krb5-mini-1.12.1-22 is installed OR krb5-mini-devel-1.12.1-22 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND Package Information libudev-mini-devel-228-149 is installed OR libudev-mini1-228-149 is installed OR systemd-mini-228-149 is installed OR systemd-mini-devel-228-149 is installed OR udev-mini-228-149 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND Package Information libpoppler-cpp0-0.43.0-16.5 is installed OR poppler-0.43.0-16.5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information dbus-1-1.8.8-1 is installed OR dbus-1-x11-1.8.8-1 is installed OR libdbus-1-3-1.8.8-1 is installed OR libdbus-1-3-32bit-1.8.8-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND kbd-1.15.5-8.4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information java-1_7_0-openjdk-1.7.0.111-33 is installed OR java-1_7_0-openjdk-headless-1.7.0.111-33 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information colord-1.3.3-12 is installed OR colord-gtk-lang-0.1.26-6 is installed OR colord-lang-1.3.3-12 is installed OR libcolord-gtk1-0.1.26-6 is installed OR libcolord2-1.3.3-12 is installed OR libcolord2-32bit-1.3.3-12 is installed OR libcolorhug2-1.3.3-12 is installed Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND rpmlint-1.10-7.22.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 15 is installed AND Package Information ruby2.5-rubygem-puma-4.3.5-3.3 is installed OR rubygem-puma-4.3.5-3.3 is installed Definition Synopsis SUSE Linux Enterprise High Availability 15 SP1 is installed AND Package Information graphviz-addons-2.40.1-6.3 is installed OR graphviz-gd-2.40.1-6.3 is installed OR graphviz-python-2.40.1-6.3 is installed Definition Synopsis SUSE Linux Enterprise High Availability 15 SP2 is installed AND Package Information cluster-md-kmp-default-5.3.18-24.9 is installed OR dlm-kmp-default-5.3.18-24.9 is installed OR gfs2-kmp-default-5.3.18-24.9 is installed OR kernel-default-5.3.18-24.9 is installed OR ocfs2-kmp-default-5.3.18-24.9 is installed Definition Synopsis Release Information SUSE Linux Enterprise High Performance Computing 15-ESPOS is installed AND python2-salt-3000-5.78 is installed OR python3-salt-3000-5.78 is installed OR salt-3000-5.78 is installed OR salt-api-3000-5.78 is installed OR salt-bash-completion-3000-5.78 is installed OR salt-cloud-3000-5.78 is installed OR salt-doc-3000-5.78 is installed OR salt-fish-completion-3000-5.78 is installed OR salt-master-3000-5.78 is installed OR salt-minion-3000-5.78 is installed OR salt-proxy-3000-5.78 is installed OR salt-ssh-3000-5.78 is installed OR salt-standalone-formulas-configuration-3000-5.78 is installed OR salt-syndic-3000-5.78 is installed OR salt-zsh-completion-3000-5.78 is installed OR Package Information SUSE Linux Enterprise High Performance Computing 15-LTSS is installed AND python2-salt-3000-5.78 is installed OR python3-salt-3000-5.78 is installed OR salt-3000-5.78 is installed OR salt-api-3000-5.78 is installed OR salt-bash-completion-3000-5.78 is installed OR salt-cloud-3000-5.78 is installed OR salt-doc-3000-5.78 is installed OR salt-fish-completion-3000-5.78 is installed OR salt-master-3000-5.78 is installed OR salt-minion-3000-5.78 is installed OR salt-proxy-3000-5.78 is installed OR salt-ssh-3000-5.78 is installed OR salt-standalone-formulas-configuration-3000-5.78 is installed OR salt-syndic-3000-5.78 is installed OR salt-zsh-completion-3000-5.78 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 SP4 is installed AND Package Information kgraft-patch-4_12_14-95_29-default-3-2 is installed OR kgraft-patch-SLE12-SP4_Update_7-3-2 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 SP5 is installed AND kgraft-patch-4_12_14-122_29-default-11-2.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 12 is installed AND Package Information ruby2.1-rubygem-passenger-5.0.18-12.5 is installed OR rubygem-passenger-5.0.18-12.5 is installed OR rubygem-passenger-apache2-5.0.18-12.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information cups154-1.5.4-9 is installed OR cups154-client-1.5.4-9 is installed OR cups154-filters-1.5.4-9 is installed OR cups154-libs-1.5.4-9 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_15-default-4-2 is installed OR kernel-livepatch-SLE15-SP1_Update_4-4-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.39-47 is installed OR kernel-ec2-devel-3.12.39-47 is installed OR kernel-ec2-extra-3.12.39-47 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information libpython3_4m1_0-3.4.1-2 is installed OR python3-base-3.4.1-2 is installed Definition Synopsis SUSE Linux Enterprise Server 11 is installed AND Package Information kdelibs3-3.5.10-23.30.1 is installed OR kdelibs3-32bit-3.5.10-23.30.1 is installed OR kdelibs3-default-style-3.5.10-23.30.1 is installed OR kdelibs3-default-style-32bit-3.5.10-23.30.1 is installed OR kdelibs3-default-style-x86-3.5.10-23.30.1 is installed OR kdelibs3-x86-3.5.10-23.30.1 is installed OR kdelibs4-4.1.3-8.21.1 is installed OR kdelibs4-core-4.1.3-8.21.1 is installed OR libkde4-4.1.3-8.21.1 is installed OR libkde4-32bit-4.1.3-8.21.1 is installed OR libkde4-x86-4.1.3-8.21.1 is installed OR libkdecore4-4.1.3-8.21.1 is installed OR libkdecore4-32bit-4.1.3-8.21.1 is installed OR libkdecore4-x86-4.1.3-8.21.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information libapr-util1-1.3.4-12.22.23.1 is installed OR libapr-util1-32bit-1.3.4-12.22.23.1 is installed OR libapr-util1-dbd-sqlite3-1.3.4-12.22.23.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information MozillaFirefox-31.1.0esr-1 is installed OR MozillaFirefox-translations-31.1.0esr-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information DirectFB-1.7.1-4 is installed OR lib++dfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-1.7.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information avahi-0.6.32-30 is installed OR avahi-lang-0.6.32-30 is installed OR avahi-utils-0.6.32-30 is installed OR libavahi-client3-0.6.32-30 is installed OR libavahi-client3-32bit-0.6.32-30 is installed OR libavahi-common3-0.6.32-30 is installed OR libavahi-common3-32bit-0.6.32-30 is installed OR libavahi-core7-0.6.32-30 is installed OR libdns_sd-0.6.32-30 is installed OR libdns_sd-32bit-0.6.32-30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND transfig-3.2.5e-2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information xen-4.10.4_10-3.31 is installed OR xen-devel-4.10.4_10-3.31 is installed OR xen-libs-4.10.4_10-3.31 is installed OR xen-tools-4.10.4_10-3.31 is installed OR xen-tools-domU-4.10.4_10-3.31 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND ucode-intel-20200602-3.43 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information gimp-2.6.2-3.34.45.1 is installed OR gimp-devel-2.6.2-3.34.45.1 is installed OR gimp-lang-2.6.2-3.34.45.1 is installed OR gimp-plugins-python-2.6.2-3.34.45.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information ImageMagick-6.8.8.1-5 is installed OR ImageMagick-devel-6.8.8.1-5 is installed OR libMagick++-6_Q16-3-6.8.8.1-5 is installed OR libMagick++-devel-6.8.8.1-5 is installed OR perl-PerlMagick-6.8.8.1-5 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information MozillaFirefox-38.5.0esr-54.1 is installed OR MozillaFirefox-devel-38.5.0esr-54.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information libsmbclient-devel-4.4.2-31.1 is installed OR libwbclient-devel-4.4.2-31.1 is installed OR samba-4.4.2-31.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information libxerces-c-3_1-3.1.1-4.1 is installed OR libxerces-c-3_1-32bit-3.1.1-4.1 is installed OR xerces-c-3.1.1-4.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND libzmq3-4.0.4-13 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information gcc48-gij-4.8.5-30 is installed OR gcc48-gij-32bit-4.8.5-30 is installed OR libgcj48-4.8.5-30 is installed OR libgcj48-32bit-4.8.5-30 is installed OR libgcj48-jar-4.8.5-30 is installed OR libgcj_bc1-4.8.5-30 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information NetworkManager-1.0.12-12 is installed OR NetworkManager-lang-1.0.12-12 is installed OR typelib-1_0-NM-1_0-1.0.12-12 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-52.9.1-3.7 is installed OR MozillaThunderbird-devel-52.9.1-3.7 is installed OR MozillaThunderbird-translations-common-52.9.1-3.7 is installed OR MozillaThunderbird-translations-other-52.9.1-3.7 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.10 is installed OR kernel-default-extra-4.12.14-197.10 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information LibVNCServer-0.9.10-4.19 is installed OR libvncclient0-0.9.10-4.19 is installed OR libvncserver0-0.9.10-4.19 is installed
BACK