OVAL Reference oval:org.opensuse.security:def:4452

Oval Definition:

oval:org.opensuse.security:def:4452

Revision Date:	2021-07-27	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 18 for SLE 12 SP5) (Important)
Description:	This update for the Linux Kernel 4.12.14-122_71 fixes several issues. The following security issues were fixed: - CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to andobtain full root privileges. (bsc#1188062) - CVE-2021-22555: Fixed an heap out-of-bounds write in net/netfilter/x_tables.c that could allow local provilege escalation. (bsc#1188116) - CVE-2020-36385: Fixed a use-after-free vulnerability reached via the ctx_list in some ucma_migrate_id situations where ucma_close is called. (bnc#1187050)
Family:	unix	Class:	patch
Status:		Reference(s):	1114828 1116600 1129991 1141122 1141320 1152763 1153921 1157119 1159548 1159819 1160673 1160922 1162680 1166844 1167171 1169095 1169521 1169746 1169850 1169851 1170771 1171437 1171978 1172186 1172307 1173100 1173159 1173160 1173161 1173359 1173659 1173661 1173663 1173668 1173869 1173942 1173963 1174120 1174186 1174247 1175070 1175071 1175557 1175992 1176012 1176072 1176086 1176181 1176382 1176410 1176671 1176896 1177143 1177916 1178074 1187052 1188117 1188257 CVE-2018-16471 CVE-2019-0155 CVE-2019-14895 CVE-2019-14901 CVE-2019-16746 CVE-2019-16782 CVE-2019-17006 CVE-2019-17006 CVE-2019-18904 CVE-2019-19447 CVE-2019-3695 CVE-2019-3696 CVE-2019-9458 CVE-2020-0431 CVE-2020-10531 CVE-2020-10700 CVE-2020-10704 CVE-2020-10730 CVE-2020-10745 CVE-2020-10760 CVE-2020-11668 CVE-2020-11993 CVE-2020-12243 CVE-2020-12399 CVE-2020-12399 CVE-2020-14303 CVE-2020-14331 CVE-2020-14381 CVE-2020-14386 CVE-2020-15780 CVE-2020-24394 CVE-2020-24659 CVE-2020-25212 CVE-2020-25219 CVE-2020-25654 CVE-2020-26154 CVE-2020-36385 CVE-2020-8165 CVE-2020-9490 CVE-2021-22555 CVE-2021-33909 SUSE-SU-2020:0260-1 SUSE-SU-2020:0357-1 SUSE-SU-2020:0359-1 SUSE-SU-2020:0819-1 SUSE-SU-2020:1219-1 SUSE-SU-2020:1677-1 SUSE-SU-2020:1948-1 SUSE-SU-2020:2899-1 SUSE-SU-2020:2901-1 SUSE-SU-2020:2988-1 SUSE-SU-2020:3067-1 SUSE-SU-2020:3073-1
Platform(s):	SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 15 SP1 SUSE Linux Enterprise High Availability 15 SP2 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise Live Patching 12 SP5 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND python-Beaker-1.6.4-0.7 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 is installed AND Package Information libreoffice-4.3.3.2-6 is installed OR libreoffice-sdk-4.3.3.2-6 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND Package Information krb5-mini-1.12.1-22 is installed OR krb5-mini-devel-1.12.1-22 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND Package Information libudev-mini-devel-228-150.7 is installed OR libudev-mini1-228-150.7 is installed OR systemd-mini-228-150.7 is installed OR systemd-mini-devel-228-150.7 is installed OR udev-mini-228-150.7 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND Package Information krb5-mini-1.12.5-40.16 is installed OR krb5-mini-devel-1.12.5-40.16 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information alsa-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information bzip2-1.0.6-27 is installed OR libbz2-1-1.0.6-27 is installed OR libbz2-1-32bit-1.0.6-27 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND binutils-2.26.1-9.12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND binutils-2.26.1-9.12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP1 is installed AND Package Information ruby2.5-rubygem-activesupport-5_1-5.1.4-3.3 is installed OR rubygem-activesupport-5_1-5.1.4-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP2 is installed AND Package Information ctdb-4.11.11+git.180.2cf3b203f07-4.5 is installed OR samba-4.11.11+git.180.2cf3b203f07-4.5 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 15-ESPOS is installed AND libldap-2_4-2-2.4.46-9.28 is installed OR libldap-2_4-2-32bit-2.4.46-9.28 is installed OR libldap-data-2.4.46-9.28 is installed OR openldap2-2.4.46-9.28 is installed OR openldap2-client-2.4.46-9.28 is installed OR openldap2-devel-2.4.46-9.28 is installed OR openldap2-devel-32bit-2.4.46-9.28 is installed OR openldap2-devel-static-2.4.46-9.28 is installed OR openldap2-ppolicy-check-password-1.2-9.28 is installed OR Package Information SUSE Linux Enterprise High Performance Computing 15-LTSS is installed AND libldap-2_4-2-2.4.46-9.28 is installed OR libldap-2_4-2-32bit-2.4.46-9.28 is installed OR libldap-data-2.4.46-9.28 is installed OR openldap2-2.4.46-9.28 is installed OR openldap2-client-2.4.46-9.28 is installed OR openldap2-devel-2.4.46-9.28 is installed OR openldap2-devel-32bit-2.4.46-9.28 is installed OR openldap2-devel-static-2.4.46-9.28 is installed OR openldap2-ppolicy-check-password-1.2-9.28 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 SP5 is installed AND kgraft-patch-4_12_14-122_71-default-4-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND sles12-docker-image-1.1.4-20171002 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information compat-openssl098-0.9.8j-106.12 is installed OR libopenssl0_9_8-0.9.8j-106.12 is installed OR libopenssl0_9_8-32bit-0.9.8j-106.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_26-default-6-2 is installed OR kernel-livepatch-SLE15-SP1_Update_7-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.39-47 is installed OR kernel-ec2-devel-3.12.39-47 is installed OR kernel-ec2-extra-3.12.39-47 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 is installed AND Package Information pango-1.22.1-3.17.3 is installed OR pango-32bit-1.22.1-3.17.3 is installed OR pango-doc-1.22.1-3.17.3 is installed OR pango-x86-1.22.1-3.17.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND libssh2-1-1.2.9-4.2.4.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information evince-3.10.3-1 is installed OR evince-lang-3.10.3-1 is installed OR libevdocument3-4-3.10.3-1 is installed OR libevview3-3-3.10.3-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information MozillaFirefox-38.4.0esr-51 is installed OR MozillaFirefox-translations-38.4.0esr-51 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information bind-9.9.9P1-46 is installed OR bind-chrootenv-9.9.9P1-46 is installed OR bind-doc-9.9.9P1-46 is installed OR bind-libs-9.9.9P1-46 is installed OR bind-libs-32bit-9.9.9P1-46 is installed OR bind-utils-9.9.9P1-46 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache-commons-daemon-1.0.15-6 is installed OR apache-commons-daemon-javadoc-1.0.15-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_60-52_54-default-2-2.2 is installed OR kgraft-patch-3_12_60-52_54-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_15-2-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libfreebl3-3.53-3.40 is installed OR libfreebl3-32bit-3.53-3.40 is installed OR libfreebl3-hmac-3.53-3.40 is installed OR libfreebl3-hmac-32bit-3.53-3.40 is installed OR libsoftokn3-3.53-3.40 is installed OR libsoftokn3-32bit-3.53-3.40 is installed OR libsoftokn3-hmac-3.53-3.40 is installed OR libsoftokn3-hmac-32bit-3.53-3.40 is installed OR mozilla-nspr-4.25-3.12 is installed OR mozilla-nspr-32bit-4.25-3.12 is installed OR mozilla-nspr-devel-4.25-3.12 is installed OR mozilla-nss-3.53-3.40 is installed OR mozilla-nss-32bit-3.53-3.40 is installed OR mozilla-nss-certs-3.53-3.40 is installed OR mozilla-nss-certs-32bit-3.53-3.40 is installed OR mozilla-nss-devel-3.53-3.40 is installed OR mozilla-nss-sysinit-3.53-3.40 is installed OR mozilla-nss-tools-3.53-3.40 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND autofs-5.0.9-21 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information java-11-openjdk-11.0.7.0-3.42 is installed OR java-11-openjdk-demo-11.0.7.0-3.42 is installed OR java-11-openjdk-devel-11.0.7.0-3.42 is installed OR java-11-openjdk-headless-11.0.7.0-3.42 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND fastjar-0.95-1.24.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND libksba-devel-1.0.4-1.18.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information ant-jmf-1.9.4-1 is installed OR ant-scripts-1.9.4-1 is installed OR ant-swing-1.9.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information DirectFB-devel-1.7.1-4 is installed OR lib++dfb-devel-1.7.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information ghostscript-9.15-17.2 is installed OR ghostscript-devel-9.15-17.2 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information ImageMagick-6.8.8.1-8.2 is installed OR libMagick++-6_Q16-3-6.8.8.1-8.2 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-8.2 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND libpolkit0-32bit-0.113-5.6 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information ImageMagick-6.8.8.1-70 is installed OR libMagick++-6_Q16-3-6.8.8.1-70 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-70 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information ffmpeg-3.4.2-4.17 is installed OR libavcodec-devel-3.4.2-4.17 is installed OR libavformat-devel-3.4.2-4.17 is installed OR libavformat57-3.4.2-4.17 is installed OR libavresample-devel-3.4.2-4.17 is installed OR libavresample3-3.4.2-4.17 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.15 is installed OR kernel-default-extra-4.12.14-197.15 is installed

BACK