Oval Definition:	oval:org.opensuse.security:def:4467
Revision Date: 2021-08-17 Version: 1 Title: Security update for the Linux Kernel (Live Patch 19 for SLE 12 SP5) (Important) Description: This update for the Linux Kernel 4.12.14-122_74 fixes several issues. The following security issues were fixed: - CVE-2021-22543: Fixed an issue with KVM, related to the handling of VM_IO|VM_PFNMAP vmas, which allowed users with the ability to start and control a VM to read/write random pages of memory and could result in local privilege escalation (bsc#1186482). - CVE-2021-37576: On the powerpc platform KVM guest OS users could cause host OS memory corruption via rtas_args.nargs (bsc#1188838). - CVE-2021-3609: Fixed a local privilege escalation via a race condition in net/can/bcm.c (bsc#1187215). Family: unix Class: patch Status: Reference(s): 1058115 1084671 1092920 1093733 1094301 1101776 1101777 1101786 1101788 1101791 1101794 1101800 1101802 1101804 1101810 1106383 1106514 1111647 1117740 1121231 1121232 1121233 1121234 1121235 1127367 1127369 1127370 1131941 1131945 1133495 1136021 1141320 1141980 1150690 1151377 1152692 1154256 1155207 1155327 1155574 1156213 1156288 1156482 1158485 1158505 1159133 1159814 1161052 1161436 1162108 1162680 1163102 1163103 1163104 1163581 1163592 1165241 1165710 1166881 1166916 1167030 1168345 1168422 1169095 1169521 1169850 1169851 1170643 1171437 1172177 1172307 1172442 1172443 1172873 1173159 1173160 1173161 1173359 1173376 1173377 1173378 1173380 1173580 1174120 1175306 1175721 1175992 1176012 1176072 1176382 1176569 1176733 1176855 1176896 1176907 1176983 1177703 1177819 1177820 1178123 1178393 1178589 1178622 1178686 1178765 1178782 1184221 1186483 1188323 1188842 927455 957624 CVE-2018-11354 CVE-2018-11355 CVE-2018-11356 CVE-2018-11357 CVE-2018-11358 CVE-2018-11359 CVE-2018-11360 CVE-2018-11361 CVE-2018-11362 CVE-2018-12086 CVE-2018-14339 CVE-2018-14340 CVE-2018-14341 CVE-2018-14342 CVE-2018-14343 CVE-2018-14344 CVE-2018-14367 CVE-2018-14368 CVE-2018-14369 CVE-2018-14370 CVE-2018-16056 CVE-2018-16057 CVE-2018-16058 CVE-2018-18225 CVE-2018-18226 CVE-2018-18227 CVE-2018-19622 CVE-2018-19623 CVE-2018-19624 CVE-2018-19625 CVE-2018-19626 CVE-2018-19627 CVE-2018-19628 CVE-2019-10894 CVE-2019-10895 CVE-2019-10896 CVE-2019-10897 CVE-2019-10898 CVE-2019-10899 CVE-2019-10900 CVE-2019-10901 CVE-2019-10902 CVE-2019-10903 CVE-2019-12420 CVE-2019-13619 CVE-2019-15604 CVE-2019-15605 CVE-2019-15606 CVE-2019-16319 CVE-2019-19553 CVE-2019-20386 CVE-2019-5716 CVE-2019-5717 CVE-2019-5718 CVE-2019-5719 CVE-2019-5721 CVE-2019-9208 CVE-2019-9209 CVE-2019-9214 CVE-2020-0431 CVE-2020-10700 CVE-2020-10704 CVE-2020-10730 CVE-2020-10745 CVE-2020-10760 CVE-2020-11080 CVE-2020-11501 CVE-2020-14303 CVE-2020-14381 CVE-2020-14386 CVE-2020-15563 CVE-2020-15565 CVE-2020-15566 CVE-2020-15567 CVE-2020-1712 CVE-2020-1946 CVE-2020-24394 CVE-2020-25212 CVE-2020-25668 CVE-2020-25704 CVE-2020-25705 CVE-2020-26117 CVE-2020-3898 CVE-2020-3899 CVE-2020-4044 CVE-2020-7044 CVE-2020-7598 CVE-2020-8164 CVE-2020-8174 CVE-2020-9428 CVE-2020-9429 CVE-2020-9430 CVE-2020-9431 CVE-2021-22543 CVE-2021-3609 CVE-2021-37576 SUSE-SU-2020:0335-1 SUSE-SU-2020:0454-1 SUSE-SU-2020:0693-1 SUSE-SU-2020:0948-1 SUSE-SU-2020:1083-1 SUSE-SU-2020:1198-1 SUSE-SU-2020:1576-1 SUSE-SU-2020:1933-1 SUSE-SU-2020:1948-1 SUSE-SU-2020:2710-1 SUSE-SU-2020:2882-1 SUSE-SU-2020:2913-1 SUSE-SU-2020:3507-1 SUSE-SU-2021:1163-1 Platform(s): SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise High Availability 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise Live Patching 12 SP5 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for High Performance Computing 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Real Time Extension 12 SP1 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Storage 7 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE Manager Proxy 4.1 SUSE Manager Server 4.1 Product(s): Definition Synopsis SUSE Linux Enterprise Build System Kit 12 is installed AND Package Information libreoffice-4.3.3.2-6 is installed OR libreoffice-sdk-4.3.3.2-6 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND kernel-zfcpdump-3.12.59-60.45 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND kernel-zfcpdump-4.4.49-92.14 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND Package Information libpoppler-cpp0-0.43.0-16.5 is installed OR poppler-0.43.0-16.5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND bogofilter-1.2.4-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information bash-4.2-75 is installed OR bash-doc-4.2-75 is installed OR bash-lang-4.2-75 is installed OR libreadline6-6.2-75 is installed OR libreadline6-32bit-6.2-75 is installed OR readline-doc-6.2-75 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information cups-filters-1.0.58-13 is installed OR cups-filters-cups-browsed-1.0.58-13 is installed OR cups-filters-foomatic-rip-1.0.58-13 is installed OR cups-filters-ghostscript-1.0.58-13 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information cups-filters-1.0.58-17 is installed OR cups-filters-cups-browsed-1.0.58-17 is installed OR cups-filters-foomatic-rip-1.0.58-17 is installed OR cups-filters-ghostscript-1.0.58-17 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-38.8 is installed OR aaa_base-extras-13.2+git20140911.61c1681-38.8 is installed Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed AND perl-Mail-SpamAssassin-Plugin-iXhash2-2.05-12.10.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 15 SP2 is installed AND Package Information ctdb-4.11.11+git.180.2cf3b203f07-4.5 is installed OR samba-4.11.11+git.180.2cf3b203f07-4.5 is installed Definition Synopsis Release Information SUSE Linux Enterprise High Performance Computing 15-ESPOS is installed AND cups-2.2.7-3.17 is installed OR cups-client-2.2.7-3.17 is installed OR cups-config-2.2.7-3.17 is installed OR cups-ddk-2.2.7-3.17 is installed OR cups-devel-2.2.7-3.17 is installed OR libcups2-2.2.7-3.17 is installed OR libcups2-32bit-2.2.7-3.17 is installed OR libcupscgi1-2.2.7-3.17 is installed OR libcupsimage2-2.2.7-3.17 is installed OR libcupsmime1-2.2.7-3.17 is installed OR libcupsppdc1-2.2.7-3.17 is installed OR Package Information SUSE Linux Enterprise High Performance Computing 15-LTSS is installed AND cups-2.2.7-3.17 is installed OR cups-client-2.2.7-3.17 is installed OR cups-config-2.2.7-3.17 is installed OR cups-ddk-2.2.7-3.17 is installed OR cups-devel-2.2.7-3.17 is installed OR libcups2-2.2.7-3.17 is installed OR libcups2-32bit-2.2.7-3.17 is installed OR libcupscgi1-2.2.7-3.17 is installed OR libcupsimage2-2.2.7-3.17 is installed OR libcupsmime1-2.2.7-3.17 is installed OR libcupsppdc1-2.2.7-3.17 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 SP5 is installed AND kgraft-patch-4_12_14-122_74-default-3-2.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 12 is installed AND Package Information containerd-1.2.2-16.14 is installed OR docker-18.09.1_ce-98.34 is installed OR docker-libnetwork-0.7.0.1+gitr2711_2cfbf9b1f981-16 is installed OR docker-runc-1.0.0rc6+gitr3748_96ec2177ae84-1.17 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2711_2cfbf9b1f981-16 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 12 is installed AND Package Information libpmi0-17.02.9-6.10 is installed OR libslurm29-16.05.8.1-6 is installed OR libslurm31-17.02.9-6.10 is installed OR pdsh-2.33-7.5 is installed OR perl-slurm-17.02.9-6.10 is installed OR slurm-17.02.9-6.10 is installed OR slurm-auth-none-17.02.9-6.10 is installed OR slurm-devel-17.02.9-6.10 is installed OR slurm-doc-17.02.9-6.10 is installed OR slurm-lua-17.02.9-6.10 is installed OR slurm-munge-17.02.9-6.10 is installed OR slurm-pam_slurm-17.02.9-6.10 is installed OR slurm-plugins-17.02.9-6.10 is installed OR slurm-sched-wiki-17.02.9-6.10 is installed OR slurm-slurmdb-direct-17.02.9-6.10 is installed OR slurm-slurmdbd-17.02.9-6.10 is installed OR slurm-sql-17.02.9-6.10 is installed OR slurm-torque-17.02.9-6.10 is installed OR slurmlibs-16.05.8.1-6 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information compat-libldap-2_3-0-2.3.37-16 is installed OR openldap2-2.4.39-16 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_29-default-7-2 is installed OR kernel-livepatch-SLE15-SP1_Update_8-7-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.60-52.49 is installed OR kernel-ec2-devel-3.12.60-52.49 is installed OR kernel-ec2-extra-3.12.60-52.49 is installed Definition Synopsis SUSE Linux Enterprise Real Time Extension 12 SP1 is installed AND Package Information kernel-compute-3.12.61-60.18.1 is installed OR kernel-compute-base-3.12.61-60.18.1 is installed OR kernel-compute-devel-3.12.61-60.18.1 is installed OR kernel-compute_debug-3.12.61-60.18.1 is installed OR kernel-compute_debug-devel-3.12.61-60.18.1 is installed OR kernel-devel-rt-3.12.61-60.18.1 is installed OR kernel-rt-3.12.61-60.18.1 is installed OR kernel-rt-base-3.12.61-60.18.1 is installed OR kernel-rt-devel-3.12.61-60.18.1 is installed OR kernel-rt_debug-3.12.61-60.18.1 is installed OR kernel-rt_debug-devel-3.12.61-60.18.1 is installed OR kernel-source-rt-3.12.61-60.18.1 is installed OR kernel-syms-rt-3.12.61-60.18.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 is installed AND systemtap-0.7.1-42.5.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP4 is installed AND logrotate-3.7.7-10.30.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information gnome-keyring-3.10.1-4 is installed OR gnome-keyring-32bit-3.10.1-4 is installed OR gnome-keyring-lang-3.10.1-4 is installed OR gnome-keyring-pam-3.10.1-4 is installed OR gnome-keyring-pam-32bit-3.10.1-4 is installed OR libgck-modules-gnome-keyring-3.10.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information accountsservice-0.6.35-3 is installed OR accountsservice-lang-0.6.35-3 is installed OR libaccountsservice0-0.6.35-3 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_60-52_54-default-2-2.2 is installed OR kgraft-patch-3_12_60-52_54-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_15-2-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.2-3.54 is installed OR libwebkit2gtk-4_0-37-2.28.2-3.54 is installed OR libwebkit2gtk3-lang-2.28.2-3.54 is installed OR webkit2gtk-4_0-injected-bundles-2.28.2-3.54 is installed OR webkit2gtk3-2.28.2-3.54 is installed OR webkit2gtk3-devel-2.28.2-3.54 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND cpp48-4.8.5-30 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.2-3.54 is installed OR libwebkit2gtk-4_0-37-2.28.2-3.54 is installed OR libwebkit2gtk3-lang-2.28.2-3.54 is installed OR webkit2gtk-4_0-injected-bundles-2.28.2-3.54 is installed OR webkit2gtk3-2.28.2-3.54 is installed OR webkit2gtk3-devel-2.28.2-3.54 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND Package Information ibutils-1.5.4-0.7.7.1 is installed OR ibutils-32bit-1.5.4-0.7.7.1 is installed OR ibutils-devel-1.5.4-0.7.7.1 is installed OR ibutils-devel-32bit-1.5.4-0.7.7.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information libQtWebKit-devel-4.6.3-5.34.2 is installed OR libQtWebKit4-32bit-4.6.3-5.34.2 is installed OR libQtWebKit4-x86-4.6.3-5.34.2 is installed OR libqt4-devel-4.6.3-5.34.2 is installed OR libqt4-devel-doc-4.6.3-5.34.2 is installed OR libqt4-devel-doc-data-4.6.3-5.34.2 is installed OR libqt4-sql-mysql-32bit-4.6.3-5.34.2 is installed OR libqt4-sql-mysql-x86-4.6.3-5.34.2 is installed OR libqt4-sql-postgresql-4.6.3-5.34.2 is installed OR libqt4-sql-postgresql-32bit-4.6.3-5.34.2 is installed OR libqt4-sql-postgresql-x86-4.6.3-5.34.2 is installed OR libqt4-sql-sqlite-32bit-4.6.3-5.34.2 is installed OR libqt4-sql-sqlite-x86-4.6.3-5.34.2 is installed OR libqt4-sql-unixODBC-4.6.3-5.34.2 is installed OR libqt4-sql-unixODBC-32bit-4.6.3-5.34.2 is installed OR libqt4-sql-unixODBC-x86-4.6.3-5.34.2 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND automake-1.13.4-4 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND aaa_base-malloccheck-13.2+git20140911.61c1681-9 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information libpacemaker-devel-1.1.15-21.1 is installed OR pacemaker-1.1.15-21.1 is installed OR pacemaker-cts-1.1.15-21.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information finch-2.10.9-8.1 is installed OR libpurple-2.10.9-8.1 is installed OR libpurple-lang-2.10.9-8.1 is installed OR libpurple-meanwhile-2.10.9-8.1 is installed OR libpurple-tcl-2.10.9-8.1 is installed OR pidgin-2.10.9-8.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information gimp-2.8.10-7.8 is installed OR gimp-lang-2.8.10-7.8 is installed OR gimp-plugins-python-2.8.10-7.8 is installed OR libgimp-2_0-0-2.8.10-7.8 is installed OR libgimpui-2_0-0-2.8.10-7.8 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND pidgin-otr-4.0.0-11 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information freerdp-2.0.0~git.1463131968.4e66df7-11 is installed OR libfreerdp2-2.0.0~git.1463131968.4e66df7-11 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-52.9.1-3.7 is installed OR MozillaThunderbird-devel-52.9.1-3.7 is installed OR MozillaThunderbird-translations-common-52.9.1-3.7 is installed OR MozillaThunderbird-translations-other-52.9.1-3.7 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information gnome-shell-3.26.2+20180130.0d9c74212-4.19 is installed OR gnome-shell-calendar-3.26.2+20180130.0d9c74212-4.19 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information openconnect-7.08-6.9 is installed OR openconnect-devel-7.08-6.9 is installed OR openconnect-lang-7.08-6.9 is installed
BACK