Oval Definition:	oval:org.opensuse.security:def:4411
Revision Date: 2021-05-25 Version: 1 Title: Security update for the Linux Kernel (Live Patch 15 for SLE 12 SP5) (Important) Description: This update for the Linux Kernel 4.12.14-122_60 fixes several issues. The following security issues were fixed: - CVE-2020-36322: Fixed an issue inside the FUSE filesystem implementation where fuse_do_getattr() calls make_bad_inode() in inappropriate situations, could have caused a system crash. NOTE: the original fix for this vulnerability was incomplete, and its incompleteness is tracked as CVE-2021-28950 (bsc#1184952). - CVE-2021-29154: Fixed BPF JIT compilers that allowed to execute arbitrary code within the kernel context (bsc#1184710) - Fix system crash on kernfs_kill_sb() as a sysfs superblock's kernfs_super_info node list was NULL (bsc#1183452). Family: unix Class: patch Status: Reference(s): 1051510 1058115 1065729 1082555 1083647 1089895 1093447 1103990 1103991 1103992 1104745 1109837 1111666 1112178 1112374 1113956 1114279 1124278 1127354 1127355 1127371 1133021 1137835 1142685 1144333 1151794 1152489 1153108 1154824 1156317 1156321 1157169 1157465 1157770 1158265 1159284 1160388 1160947 1160968 1162327 1162629 1162632 1164780 1164871 1165183 1165280 1165289 1165478 1165572 1165741 1166969 1166978 1167437 1167574 1167851 1167867 1168332 1168340 1168670 1168789 1168994 1169020 1169511 1169514 1169525 1169604 1169762 1169800 1170056 1170104 1170125 1170145 1170284 1170288 1170345 1170457 1170522 1170592 1170595 1170617 1170618 1170620 1170621 1170770 1170778 1170791 1170901 1171078 1171098 1171118 1171189 1171191 1171195 1171202 1171205 1171214 1171217 1171218 1171219 1171220 1171244 1171293 1171352 1171417 1171527 1171599 1171600 1171601 1171602 1171604 1171605 1171606 1171607 1171608 1171609 1171610 1171611 1171612 1171613 1171614 1171615 1171616 1171617 1171618 1171619 1171620 1171621 1171622 1171623 1171624 1171625 1171626 1171662 1171679 1171691 1171692 1171694 1171695 1171736 1171817 1171906 1171948 1171949 1171951 1171952 1171979 1171982 1171983 1172017 1172075 1172096 1172097 1172098 1172099 1172101 1172102 1172103 1172104 1172127 1172130 1172185 1172186 1172188 1172199 1172201 1172202 1172221 1172249 1172251 1172277 1172317 1172342 1172343 1172344 1172366 1172378 1172391 1172397 1172453 1172810 1173072 1173812 1173902 1173994 1174165 1174463 1174570 1174910 1174913 1176579 1177613 1183452 1184710 1184952 CVE-2018-1000199 CVE-2018-10196 CVE-2019-10220 CVE-2019-12779 CVE-2019-13272 CVE-2019-15239 CVE-2019-18897 CVE-2019-19462 CVE-2019-20806 CVE-2019-20812 CVE-2019-2949 CVE-2019-9455 CVE-2020-0543 CVE-2020-10690 CVE-2020-10711 CVE-2020-10713 CVE-2020-10720 CVE-2020-10732 CVE-2020-10751 CVE-2020-10757 CVE-2020-11651 CVE-2020-11652 CVE-2020-12114 CVE-2020-12464 CVE-2020-12652 CVE-2020-12653 CVE-2020-12654 CVE-2020-12655 CVE-2020-12656 CVE-2020-12657 CVE-2020-12659 CVE-2020-12768 CVE-2020-12769 CVE-2020-13143 CVE-2020-14308 CVE-2020-14309 CVE-2020-14310 CVE-2020-14311 CVE-2020-14318 CVE-2020-14323 CVE-2020-14361 CVE-2020-14362 CVE-2020-14383 CVE-2020-1472 CVE-2020-1472 CVE-2020-15706 CVE-2020-15707 CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2654 CVE-2020-2655 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 CVE-2020-36322 CVE-2020-7059 CVE-2020-7060 CVE-2020-7062 CVE-2020-7063 CVE-2020-8165 CVE-2021-29154 SUSE-SU-2019:1791-1 SUSE-SU-2019:3249-1 SUSE-SU-2020:0213-1 SUSE-SU-2020:0622-1 SUSE-SU-2020:1599-1 SUSE-SU-2020:1684-1 SUSE-SU-2020:1973-1 SUSE-SU-2020:2073-1 SUSE-SU-2020:2346-1 SUSE-SU-2020:2398-1 SUSE-SU-2020:2719-1 SUSE-SU-2020:2722-1 SUSE-SU-2020:2730-1 SUSE-SU-2020:2899-1 SUSE-SU-2020:3087-1 SUSE-SU-2021:1724-1 Platform(s): SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise High Availability 15 SP1 SUSE Linux Enterprise High Availability 15 SP2 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise Live Patching 12 SP4 SUSE Linux Enterprise Live Patching 12 SP5 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for High Performance Computing 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE Package Hub for SUSE Linux Enterprise 12 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information ruby2.1-rubygem-chef-10.32.2-3 is installed OR rubygem-chef-10.32.2-3 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 is installed AND kernel-zfcpdump-3.12.43-52.6 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND Package Information libreoffice-5.1.3.2-22 is installed OR libreoffice-sdk-5.1.3.2-22 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND Package Information libpoppler-cpp0-0.43.0-16.5 is installed OR poppler-0.43.0-16.5 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND python-pycrypto-2.6.1-10.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND dracut-037-34 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information MozillaFirefox-38.4.0esr-51 is installed OR MozillaFirefox-translations-38.4.0esr-51 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND kdump-0.8.15-28 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-36 is installed OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise High Availability 15 is installed AND Package Information graphviz-addons-2.40.1-6.6 is installed OR graphviz-gd-2.40.1-6.6 is installed OR graphviz-python-2.40.1-6.6 is installed Definition Synopsis SUSE Linux Enterprise High Availability 15 SP1 is installed AND Package Information libqb-1.0.3+20190326.a521604-3.3 is installed OR libqb-devel-1.0.3+20190326.a521604-3.3 is installed OR libqb-tests-1.0.3+20190326.a521604-3.3 is installed OR libqb-tools-1.0.3+20190326.a521604-3.3 is installed OR libqb20-1.0.3+20190326.a521604-3.3 is installed Definition Synopsis SUSE Linux Enterprise High Availability 15 SP2 is installed AND Package Information ctdb-4.11.13+git.189.e9bd318cd13-4.11 is installed OR samba-4.11.13+git.189.e9bd318cd13-4.11 is installed Definition Synopsis Release Information SUSE Linux Enterprise High Performance Computing 15-ESPOS is installed AND grub2-2.02-19.48 is installed OR grub2-arm64-efi-2.02-19.48 is installed OR grub2-i386-pc-2.02-19.48 is installed OR grub2-snapper-plugin-2.02-19.48 is installed OR grub2-systemd-sleep-plugin-2.02-19.48 is installed OR grub2-x86_64-efi-2.02-19.48 is installed OR grub2-x86_64-xen-2.02-19.48 is installed OR Package Information SUSE Linux Enterprise High Performance Computing 15-LTSS is installed AND grub2-2.02-19.48 is installed OR grub2-arm64-efi-2.02-19.48 is installed OR grub2-i386-pc-2.02-19.48 is installed OR grub2-snapper-plugin-2.02-19.48 is installed OR grub2-systemd-sleep-plugin-2.02-19.48 is installed OR grub2-x86_64-efi-2.02-19.48 is installed OR grub2-x86_64-xen-2.02-19.48 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 SP4 is installed AND Package Information kernel-default-4.12.14-95.40 is installed OR kernel-default-kgraft-4.12.14-95.40 is installed OR kernel-default-kgraft-devel-4.12.14-95.40 is installed OR kgraft-patch-4_12_14-95_40-default-1-6.3 is installed OR kgraft-patch-SLE12-SP4_Update_10-1-6.3 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 SP5 is installed AND kgraft-patch-4_12_14-122_60-default-5-2.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 12 is installed AND Package Information containerd-1.2.5-16.17 is installed OR docker-18.09.6_ce-98.37 is installed OR docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-19 is installed OR docker-runc-1.0.0rc6+gitr3804_2b18fe1d885e-1.23 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-19 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 12 is installed AND Package Information libpmi0-17.02.11-6.19 is installed OR libslurm31-17.02.11-6.19 is installed OR perl-slurm-17.02.11-6.19 is installed OR slurm-17.02.11-6.19 is installed OR slurm-auth-none-17.02.11-6.19 is installed OR slurm-config-17.02.11-6.19 is installed OR slurm-devel-17.02.11-6.19 is installed OR slurm-doc-17.02.11-6.19 is installed OR slurm-lua-17.02.11-6.19 is installed OR slurm-munge-17.02.11-6.19 is installed OR slurm-pam_slurm-17.02.11-6.19 is installed OR slurm-plugins-17.02.11-6.19 is installed OR slurm-sched-wiki-17.02.11-6.19 is installed OR slurm-slurmdb-direct-17.02.11-6.19 is installed OR slurm-slurmdbd-17.02.11-6.19 is installed OR slurm-sql-17.02.11-6.19 is installed OR slurm-torque-17.02.11-6.19 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information java-1_6_0-ibm-1.6.0_sr16.7-22 is installed OR java-1_6_0-ibm-fonts-1.6.0_sr16.7-22 is installed OR java-1_6_0-ibm-jdbc-1.6.0_sr16.7-22 is installed OR java-1_6_0-ibm-plugin-1.6.0_sr16.7-22 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_4-default-7-2 is installed OR kernel-livepatch-SLE15-SP1_Update_1-7-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.32-33 is installed OR kernel-ec2-devel-3.12.32-33 is installed OR kernel-ec2-extra-3.12.32-33 is installed Definition Synopsis SUSE Linux Enterprise Server 11 is installed AND Package Information kvm-78.0.10.6-0.3.1 is installed OR kvm-kmp-default-78.2.6.30.1_2.6.27.37_0.1-0.7.1 is installed OR kvm-kmp-pae-78.2.6.30.1_2.6.27.37_0.1-0.7.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information libcap-progs-2.11-2.17.1 is installed OR libcap2-2.11-2.17.1 is installed OR libcap2-32bit-2.11-2.17.1 is installed OR libcap2-x86-2.11-2.17.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information MozillaFirefox-31.1.0esr-1 is installed OR MozillaFirefox-translations-31.1.0esr-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information alsa-1.0.27.2-11 is installed OR alsa-docs-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND busybox-1.21.1-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND unzip-6.00-33.8 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.10-3.38 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.10-3.38 is installed OR java-1_8_0-ibm-devel-1.8.0_sr6.10-3.38 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.10-3.38 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information apache-commons-daemon-1.0.15-4 is installed OR apache-commons-daemon-javadoc-1.0.15-4 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information apache2-2.4.33-3.30 is installed OR apache2-devel-2.4.33-3.30 is installed OR apache2-doc-2.4.33-3.30 is installed OR apache2-prefork-2.4.33-3.30 is installed OR apache2-utils-2.4.33-3.30 is installed OR apache2-worker-2.4.33-3.30 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information glibc-2.11.3-17.87.3 is installed OR glibc-html-2.11.3-17.87.3 is installed OR glibc-info-2.11.3-17.87.3 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND alsa-devel-1.0.27.2-11 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information git-1.8.5.6-15.1 is installed OR git-arch-1.8.5.6-15.1 is installed OR git-core-1.8.5.6-15.1 is installed OR git-cvs-1.8.5.6-15.1 is installed OR git-daemon-1.8.5.6-15.1 is installed OR git-email-1.8.5.6-15.1 is installed OR git-gui-1.8.5.6-15.1 is installed OR git-svn-1.8.5.6-15.1 is installed OR git-web-1.8.5.6-15.1 is installed OR gitk-1.8.5.6-15.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information libtiff-devel-4.0.7-35.1 is installed OR tiff-4.0.7-35.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information flash-player-11.2.202.425-19.1 is installed OR flash-player-gnome-11.2.202.425-19.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND raptor-2.0.10-3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND argyllcms-1.6.3-3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information ImageMagick-6.8.8.1-70 is installed OR libMagick++-6_Q16-3-6.8.8.1-70 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-70 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.13 is installed OR kernel-default-extra-4.12.14-25.13 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.15 is installed OR kernel-default-extra-4.12.14-197.15 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information openconnect-7.08-6.9 is installed OR openconnect-devel-7.08-6.9 is installed OR openconnect-lang-7.08-6.9 is installed Definition Synopsis SUSE Package Hub for SUSE Linux Enterprise 12 is installed AND Package Information chromedriver-53.0.2785.89-96 is installed OR chromium-53.0.2785.89-96 is installed OR chromium-desktop-gnome-53.0.2785.89-96 is installed OR chromium-desktop-kde-53.0.2785.89-96 is installed OR chromium-ffmpegsumo-53.0.2785.89-96 is installed
BACK