OVAL Reference oval:org.opensuse.security:def:4462

Oval Definition:

oval:org.opensuse.security:def:4462

Revision Date:	2021-07-27	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 8 for SLE 12 SP5) (Important)
Description:	This update for the Linux Kernel 4.12.14-122_32 fixes several issues. The following security issues were fixed: - CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to andobtain full root privileges. (bsc#1188062) - CVE-2021-22555: Fixed an heap out-of-bounds write in net/netfilter/x_tables.c that could allow local provilege escalation. (bsc#1188116) - CVE-2020-36385: Fixed a use-after-free vulnerability reached via the ctx_list in some ucma_migrate_id situations where ucma_close is called. (bnc#1187050)
Family:	unix	Class:	patch
Status:		Reference(s):	1015141 1065729 1069468 1084671 1092920 1093733 1094301 1101776 1101777 1101786 1101788 1101791 1101794 1101800 1101802 1101804 1101810 1106383 1106514 1111647 1117740 1121231 1121232 1121233 1121234 1121235 1125401 1127367 1127369 1127370 1131941 1131945 1133495 1136021 1140683 1141980 1150164 1150690 1151377 1154256 1155207 1155574 1156213 1156288 1156482 1158280 1158485 1158505 1159329 1159814 1160611 1160612 1160613 1160614 1160615 1160790 1161052 1161088 1161089 1161436 1161670 1161719 1161913 1162108 1162689 1162691 1163809 1165241 1165710 1167171 1167373 1167939 1168669 1169659 1169740 1170313 1171355 1172175 1172176 1172538 1172651 1172798 1173032 1173334 1173668 1174748 1175520 1175557 1176069 1176262 1176400 1176946 1177027 1177340 1177511 1177513 1177685 1177724 1177725 1177729 1177916 1178577 1178614 1178624 1178675 1187052 1188117 1188257 949238 957624 992038 CVE-2018-11354 CVE-2018-11355 CVE-2018-11356 CVE-2018-11357 CVE-2018-11358 CVE-2018-11359 CVE-2018-11360 CVE-2018-11361 CVE-2018-11362 CVE-2018-12086 CVE-2018-14339 CVE-2018-14340 CVE-2018-14341 CVE-2018-14342 CVE-2018-14343 CVE-2018-14344 CVE-2018-14367 CVE-2018-14368 CVE-2018-14369 CVE-2018-14370 CVE-2018-16056 CVE-2018-16057 CVE-2018-16058 CVE-2018-18225 CVE-2018-18226 CVE-2018-18227 CVE-2018-19044 CVE-2018-19045 CVE-2018-19046 CVE-2018-19622 CVE-2018-19623 CVE-2018-19624 CVE-2018-19625 CVE-2018-19626 CVE-2018-19627 CVE-2018-19628 CVE-2018-8956 CVE-2019-10894 CVE-2019-10895 CVE-2019-10896 CVE-2019-10897 CVE-2019-10898 CVE-2019-10899 CVE-2019-10900 CVE-2019-10901 CVE-2019-10902 CVE-2019-10903 CVE-2019-12519 CVE-2019-12521 CVE-2019-12528 CVE-2019-13619 CVE-2019-16319 CVE-2019-16785 CVE-2019-16786 CVE-2019-16789 CVE-2019-16792 CVE-2019-18860 CVE-2019-19553 CVE-2019-20386 CVE-2019-20916 CVE-2019-2126 CVE-2019-5716 CVE-2019-5717 CVE-2019-5718 CVE-2019-5719 CVE-2019-5721 CVE-2019-8835 CVE-2019-8844 CVE-2019-8846 CVE-2019-9208 CVE-2019-9209 CVE-2019-9214 CVE-2019-9232 CVE-2019-9325 CVE-2019-9371 CVE-2019-9433 CVE-2020-11076 CVE-2020-11077 CVE-2020-11868 CVE-2020-11945 CVE-2020-12351 CVE-2020-12352 CVE-2020-12402 CVE-2020-13817 CVE-2020-13844 CVE-2020-14386 CVE-2020-15025 CVE-2020-1712 CVE-2020-25645 CVE-2020-25654 CVE-2020-36385 CVE-2020-3862 CVE-2020-3864 CVE-2020-3865 CVE-2020-3867 CVE-2020-3868 CVE-2020-7044 CVE-2020-8517 CVE-2020-9428 CVE-2020-9429 CVE-2020-9430 CVE-2020-9431 CVE-2021-22555 CVE-2021-33909 SUSE-SU-2020:0143-1 SUSE-SU-2020:0335-1 SUSE-SU-2020:0468-1 SUSE-SU-2020:0693-1 SUSE-SU-2020:0779-1 SUSE-SU-2020:1156-1 SUSE-SU-2020:1823-1 SUSE-SU-2020:1850-1 SUSE-SU-2020:1919-1 SUSE-SU-2020:2577-1 SUSE-SU-2020:2784-1 SUSE-SU-2020:2972-1 SUSE-SU-2020:3054-1 SUSE-SU-2020:3269-1 SUSE-SU-2020:3749-1
Platform(s):	SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise High Availability 15 SP1 SUSE Linux Enterprise High Availability 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise Live Patching 12 SP5 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Storage 7 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE Manager Proxy 4.1 SUSE Manager Server 4.1	Product(s):
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 is installed AND Package Information libreoffice-4.3.5.2-10 is installed OR libreoffice-sdk-4.3.5.2-10 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND kernel-zfcpdump-3.12.51-60.20 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND lynx-2.8.7-28.3 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND Package Information libpoppler-cpp0-0.43.0-16.5 is installed OR poppler-0.43.0-16.5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information alsa-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information accountsservice-0.6.35-3 is installed OR accountsservice-lang-0.6.35-3 is installed OR libaccountsservice0-0.6.35-3 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information cpp48-4.8.5-30 is installed OR gcc48-4.8.5-30 is installed OR gcc48-32bit-4.8.5-30 is installed OR gcc48-c++-4.8.5-30 is installed OR gcc48-gij-4.8.5-30 is installed OR gcc48-gij-32bit-4.8.5-30 is installed OR gcc48-info-4.8.5-30 is installed OR libasan0-4.8.5-30 is installed OR libasan0-32bit-4.8.5-30 is installed OR libgcj48-4.8.5-30 is installed OR libgcj48-32bit-4.8.5-30 is installed OR libgcj48-jar-4.8.5-30 is installed OR libgcj_bc1-4.8.5-30 is installed OR libstdc++48-devel-4.8.5-30 is installed OR libstdc++48-devel-32bit-4.8.5-30 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information cpp48-4.8.5-30 is installed OR gcc48-4.8.5-30 is installed OR gcc48-32bit-4.8.5-30 is installed OR gcc48-c++-4.8.5-30 is installed OR gcc48-gij-4.8.5-30 is installed OR gcc48-gij-32bit-4.8.5-30 is installed OR gcc48-info-4.8.5-30 is installed OR libasan0-4.8.5-30 is installed OR libasan0-32bit-4.8.5-30 is installed OR libgcj48-4.8.5-30 is installed OR libgcj48-32bit-4.8.5-30 is installed OR libgcj48-jar-4.8.5-30 is installed OR libgcj_bc1-4.8.5-30 is installed OR libstdc++48-devel-4.8.5-30 is installed OR libstdc++48-devel-32bit-4.8.5-30 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed AND Package Information cross-nvptx-gcc7-7.5.0+r278197-4.19.2 is installed OR cross-nvptx-newlib7-devel-7.5.0+r278197-4.19.2 is installed OR gcc7-32bit-7.5.0+r278197-4.19.2 is installed OR gcc7-ada-7.5.0+r278197-4.19.2 is installed OR gcc7-c++-32bit-7.5.0+r278197-4.19.2 is installed OR gcc7-fortran-32bit-7.5.0+r278197-4.19.2 is installed OR gcc7-info-7.5.0+r278197-4.19.2 is installed OR gcc7-locale-7.5.0+r278197-4.19.2 is installed OR gcc7-objc-7.5.0+r278197-4.19.2 is installed OR libada7-7.5.0+r278197-4.19.2 is installed OR libasan4-32bit-7.5.0+r278197-4.19.2 is installed OR libcilkrts5-32bit-7.5.0+r278197-4.19.2 is installed OR libstdc++6-devel-gcc7-32bit-7.5.0+r278197-4.19.2 is installed OR libubsan0-32bit-7.5.0+r278197-4.19.2 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP1 is installed AND keepalived-2.0.19-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP2 is installed AND Package Information ruby2.5-rubygem-puma-4.3.5-3.3 is installed OR rubygem-puma-4.3.5-3.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 15-ESPOS is installed AND libvpx-1.6.1-6.3 is installed OR libvpx4-1.6.1-6.3 is installed OR Package Information SUSE Linux Enterprise High Performance Computing 15-LTSS is installed AND libvpx-1.6.1-6.3 is installed OR libvpx4-1.6.1-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 SP5 is installed AND kgraft-patch-4_12_14-122_32-default-15-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND suse-sles12sp3-image-2.0.2-22 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information java-1_6_0-ibm-1.6.0_sr16.2-8 is installed OR java-1_6_0-ibm-fonts-1.6.0_sr16.2-8 is installed OR java-1_6_0-ibm-jdbc-1.6.0_sr16.2-8 is installed OR java-1_6_0-ibm-plugin-1.6.0_sr16.2-8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.64 is installed OR kernel-default-livepatch-4.12.14-197.64 is installed OR kernel-default-livepatch-devel-4.12.14-197.64 is installed OR kernel-livepatch-4_12_14-197_64-default-1-3.3 is installed OR kernel-livepatch-SLE15-SP1_Update_17-1-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.36-38 is installed OR kernel-ec2-devel-3.12.36-38 is installed OR kernel-ec2-extra-3.12.36-38 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 is installed AND sendmail-8.14.3-50.20.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information libxcrypt-3.0.3-0.6.1 is installed OR libxcrypt-32bit-3.0.3-0.6.1 is installed OR libxcrypt-x86-3.0.3-0.6.1 is installed OR pam-modules-11-1.25.26 is installed OR pam-modules-32bit-11-1.25.26 is installed OR pam-modules-x86-11-1.25.26 is installed OR pwdutils-3.2.15-0.17.28 is installed OR pwdutils-plugin-audit-3.2.15-0.17.28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information gdk-pixbuf-loader-rsvg-2.40.2-1 is installed OR librsvg-2-2-2.40.2-1 is installed OR librsvg-2-2-32bit-2.40.2-1 is installed OR rsvg-view-2.40.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-28 is installed OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_60-52_49-default-2-2.2 is installed OR kgraft-patch-3_12_60-52_49-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_14-2-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND squid-4.11-5.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND clamav-0.99.2-25 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND squid-4.11-5.17 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND Package Information ghostscript-devel-8.62-32.34.1 is installed OR ghostscript-ijs-devel-8.62-32.34.1 is installed OR libgimpprint-devel-4.2.7-32.34.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information libpng-devel-1.2.31-5.35.1 is installed OR libpng-devel-32bit-1.2.31-5.35.1 is installed OR libpng12-0-1.2.31-5.35.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND accountsservice-devel-0.6.35-1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND aaa_base-malloccheck-13.2+git20140911.61c1681-9 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information bind-9.9.9P1-49.1 is installed OR bind-devel-9.9.9P1-49.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information libssh-0.6.3-4.1 is installed OR libssh4-0.6.3-4.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information kernel-default-3.12.59-60.41.2 is installed OR kernel-default-extra-3.12.59-60.41.2 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND libvirt-client-32bit-2.0.0-26 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND cyrus-sasl-digestmd5-32bit-2.1.26-7 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-150.27 is installed OR kernel-default-extra-4.12.14-150.27 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-60.7.0-3.33 is installed OR MozillaThunderbird-translations-common-60.7.0-3.33 is installed OR MozillaThunderbird-translations-other-60.7.0-3.33 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information libEMF-1.0.7-3.3 is installed OR libEMF1-1.0.7-3.3 is installed

BACK