OVAL Reference oval:org.opensuse.security:def:4450

Oval Definition:

oval:org.opensuse.security:def:4450

Revision Date:	2021-07-27	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 20 for SLE 12 SP5) (Important)
Description:	This update for the Linux Kernel 4.12.14-122_77 fixes several issues. The following security issues were fixed: - CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to andobtain full root privileges. (bsc#1188062) - CVE-2021-22555: Fixed an heap out-of-bounds write in net/netfilter/x_tables.c that could allow local provilege escalation. (bsc#1188116) - CVE-2020-36385: Fixed a use-after-free vulnerability reached via the ctx_list in some ucma_migrate_id situations where ucma_close is called. (bnc#1187050)
Family:	unix	Class:	patch
Status:		Reference(s):	1055014 1061843 1065600 1065729 1066382 1077428 1084671 1092920 1106383 1112178 1131277 1132091 1133495 1134760 1136020 1140844 1151377 1152990 1152992 1152994 1152995 1154256 1155207 1155574 1156213 1156482 1158485 1159814 1160922 1161436 1162108 1162296 1162396 1163581 1164804 1165548 1167152 1168140 1168142 1168143 1168554 1169392 1170415 1171558 1172177 1172205 1172686 1172798 1172846 1173100 1173432 1173659 1173661 1173663 1173786 1173869 1173934 1173937 1173942 1173963 1173972 1174157 1174186 1174247 1174748 1174753 1174817 1175168 1175259 1175992 1176012 1176072 1176354 1176382 1176485 1176560 1176569 1176589 1176713 1176723 1176896 1177086 1177101 1177271 1177281 1177351 1177352 1177410 1177411 1177470 1177687 1177719 1177740 1177749 1177750 1177753 1177754 1177755 1177766 1177855 1177856 1177861 1178003 1178027 1178166 1178185 1178187 1178188 1178202 1178234 1178330 1187052 1188117 1188257 CVE-2012-6708 CVE-2015-9251 CVE-2019-0155 CVE-2019-11023 CVE-2019-14895 CVE-2019-14901 CVE-2019-15117 CVE-2019-15845 CVE-2019-16201 CVE-2019-16254 CVE-2019-16255 CVE-2019-16746 CVE-2019-17639 CVE-2019-18904 CVE-2019-19447 CVE-2019-20386 CVE-2019-9458 CVE-2020-0430 CVE-2020-0431 CVE-2020-0543 CVE-2020-0543 CVE-2020-11668 CVE-2020-11739 CVE-2020-11739 CVE-2020-11740 CVE-2020-11740 CVE-2020-11741 CVE-2020-11741 CVE-2020-11742 CVE-2020-11742 CVE-2020-11743 CVE-2020-11743 CVE-2020-13844 CVE-2020-14331 CVE-2020-14351 CVE-2020-14381 CVE-2020-14386 CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-15095 CVE-2020-15780 CVE-2020-16120 CVE-2020-1712 CVE-2020-24394 CVE-2020-25212 CVE-2020-25285 CVE-2020-25656 CVE-2020-27673 CVE-2020-27675 CVE-2020-36385 CVE-2020-7069 CVE-2020-7070 CVE-2020-8130 CVE-2020-8164 CVE-2020-8252 CVE-2020-8694 CVE-2021-22555 CVE-2021-33909 SUSE-SU-2019:1267-3 SUSE-SU-2020:0335-1 SUSE-SU-2020:0737-1 SUSE-SU-2020:1179-1 SUSE-SU-2020:1634-1 SUSE-SU-2020:2453-1 SUSE-SU-2020:2526-1 SUSE-SU-2020:2710-1 SUSE-SU-2020:2829-1 SUSE-SU-2020:2928-1 SUSE-SU-2020:2947-1 SUSE-SU-2020:2997-1 SUSE-SU-2020:3272-1 SUSE-SU-2021:2538-1
Platform(s):	SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 15 SP1 SUSE Linux Enterprise High Availability 15 SP2 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise Live Patching 12 SP5 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information openstack-cinder-2014.2.3.dev13-1 is installed OR openstack-cinder-volume-2014.2.3.dev13-1 is installed OR python-cinder-2014.2.3.dev13-1 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 is installed AND kernel-zfcpdump-3.12.44-52.10 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND kernel-zfcpdump-3.12.62-60.62 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND Package Information libreoffice-5.3.3.2-40.5 is installed OR libreoffice-sdk-5.3.3.2-40.5 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND Package Information krb5-mini-1.12.5-40.13 is installed OR krb5-mini-devel-1.12.5-40.13 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-1 is installed OR aaa_base-extras-13.2+git20140911.61c1681-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND bogofilter-1.2.4-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information bash-4.3-78 is installed OR bash-doc-4.3-78 is installed OR bash-lang-4.3-78 is installed OR libreadline6-6.3-78 is installed OR libreadline6-32bit-6.3-78 is installed OR readline-doc-6.3-78 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information bash-4.3-82 is installed OR bash-doc-4.3-82 is installed OR bash-lang-4.3-82 is installed OR libreadline6-6.3-82 is installed OR libreadline6-32bit-6.3-82 is installed OR readline-doc-6.3-82 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP1 is installed AND Package Information ruby2.5-rubygem-actionpack-5_1-5.1.4-3.6 is installed OR rubygem-actionpack-5_1-5.1.4-3.6 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP2 is installed AND Package Information graphviz-addons-2.40.1-6.3 is installed OR graphviz-gd-2.40.1-6.3 is installed OR graphviz-python-2.40.1-6.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 15-ESPOS is installed AND rmt-server-2.5.7-3.31 is installed OR rmt-server-config-2.5.7-3.31 is installed OR Package Information SUSE Linux Enterprise High Performance Computing 15-LTSS is installed AND rmt-server-2.5.7-3.31 is installed OR rmt-server-config-2.5.7-3.31 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 SP5 is installed AND kgraft-patch-4_12_14-122_77-default-2-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND docker-1.10.3-66 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information compat-openssl098-0.9.8j-106.6 is installed OR libopenssl0_9_8-0.9.8j-106.6 is installed OR libopenssl0_9_8-32bit-0.9.8j-106.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_18-default-8-2 is installed OR kernel-livepatch-SLE15-SP1_Update_5-8-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.32-33 is installed OR kernel-ec2-devel-3.12.32-33 is installed OR kernel-ec2-extra-3.12.32-33 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 is installed AND Package Information libopenssl0_9_8-0.9.8h-30.18.1 is installed OR libopenssl0_9_8-32bit-0.9.8h-30.18.1 is installed OR libopenssl0_9_8-x86-0.9.8h-30.18.1 is installed OR openssl-0.9.8h-30.18.1 is installed OR openssl-doc-0.9.8h-30.18.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information libsnmp15-5.4.2.1-8.12.22.1 is installed OR libsnmp15-32bit-5.4.2.1-8.12.22.1 is installed OR libsnmp15-x86-5.4.2.1-8.12.22.1 is installed OR net-snmp-5.4.2.1-8.12.22.1 is installed OR perl-SNMP-5.4.2.1-8.12.22.1 is installed OR snmp-mibs-5.4.2.1-8.12.22.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information elfutils-0.158-3 is installed OR libasm1-0.158-3 is installed OR libasm1-32bit-0.158-3 is installed OR libdw1-0.158-3 is installed OR libdw1-32bit-0.158-3 is installed OR libebl1-0.158-3 is installed OR libebl1-32bit-0.158-3 is installed OR libelf1-0.158-3 is installed OR libelf1-32bit-0.158-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND apache2-mod_nss-1.0.8-13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information avahi-0.6.32-30 is installed OR avahi-lang-0.6.32-30 is installed OR avahi-utils-0.6.32-30 is installed OR libavahi-client3-0.6.32-30 is installed OR libavahi-client3-32bit-0.6.32-30 is installed OR libavahi-common3-0.6.32-30 is installed OR libavahi-common3-32bit-0.6.32-30 is installed OR libavahi-core7-0.6.32-30 is installed OR libdns_sd-0.6.32-30 is installed OR libdns_sd-32bit-0.6.32-30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND ant-1.9.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_55-52_45-default-2-2.3 is installed OR kgraft-patch-3_12_55-52_45-xen-2-2.3 is installed OR kgraft-patch-SLE12_Update_13-2-2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information xen-4.10.4_10-3.31 is installed OR xen-devel-4.10.4_10-3.31 is installed OR xen-libs-4.10.4_10-3.31 is installed OR xen-tools-4.10.4_10-3.31 is installed OR xen-tools-domU-4.10.4_10-3.31 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information at-3.1.14-7 is installed OR flex-2.5.37-8 is installed OR libQtWebKit4-4.8.6+2.3.3-3 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-doc-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed OR libkde4-4.12.0-7 is installed OR libkdecore4-4.12.0-7 is installed OR libksuseinstall1-4.12.0-7 is installed OR libnetpbm11-10.66.3-4 is installed OR netpbm-10.66.3-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libmariadb-devel-3.1.8-3.18 is installed OR libmariadb3-3.1.8-3.18 is installed OR libmariadb_plugins-3.1.8-3.18 is installed OR libmariadbprivate-3.1.8-3.18 is installed OR mariadb-connector-c-3.1.8-3.18 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND Package Information dbus-1-devel-1.2.10-3.25.1 is installed OR dbus-1-devel-doc-1.2.10-3.25.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information libgcrypt-1.5.0-0.19.1 is installed OR libgcrypt-devel-1.5.0-0.19.1 is installed OR libgcrypt-devel-32bit-1.5.0-0.19.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND accountsservice-devel-0.6.35-1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information ant-1.9.4-1 is installed OR ant-jmf-1.9.4-1 is installed OR ant-scripts-1.9.4-1 is installed OR ant-swing-1.9.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information bind-9.9.9P1-49.1 is installed OR bind-devel-9.9.9P1-49.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information finch-2.10.9-8.1 is installed OR libpurple-2.10.9-8.1 is installed OR libpurple-lang-2.10.9-8.1 is installed OR libpurple-meanwhile-2.10.9-8.1 is installed OR libpurple-tcl-2.10.9-8.1 is installed OR pidgin-2.10.9-8.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND libnewt0_52-0.52.16-1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND argyllcms-1.6.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information evolution-3.26.6-4.3 is installed OR evolution-devel-3.26.6-4.3 is installed OR evolution-lang-3.26.6-4.3 is installed OR evolution-plugin-bogofilter-3.26.6-4.3 is installed OR evolution-plugin-pst-import-3.26.6-4.3 is installed OR evolution-plugin-spamassassin-3.26.6-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-60.8.0-3.46 is installed OR MozillaThunderbird-translations-common-60.8.0-3.46 is installed OR MozillaThunderbird-translations-other-60.8.0-3.46 is installed

BACK