Oval Definition:	oval:org.opensuse.security:def:44697
Revision Date: 2020-12-01 Version: 1 Title: Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP2) (Important) Description: This update for the Linux Kernel 4.4.121-92_80 fixes several issues. The following security issues were fixed: - CVE-2018-17182: The vmacache_flush_all function in mm/vmacache.c mishandled sequence number overflows. An attacker can trigger a use-after-free (and possibly gain privileges) via certain thread creation, map, unmap, invalidation, and dereference operations (bsc#1110233). - CVE-2018-14633: A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack. The attack requires the iSCSI target to be enabled on the victim host. Depending on how the target's code was built (i.e. depending on a compiler, compile flags and hardware architecture) an attack may lead to a system crash and thus to a denial-of-service or possibly to a non-authorized access to data exported by an iSCSI target. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is highly unlikely. (bsc#1107832). Family: unix Class: patch Status: Reference(s): 1017711 1017712 1042948 1047044 1047898 1049373 1049825 1050120 1050129 1050606 1051412 1051446 1052252 1052468 1052550 1052710 1052720 1052731 1052732 1052771 1055065 1055323 1055434 1055855 1058082 1058640 1059751 1072902 1074122 1074123 1074425 1074610 1074969 1074973 1074975 1081493 1088004 1088009 1089039 1094327 1101246 1101470 1102062 1102068 1102073 1104789 1105592 1106197 1106222 1106989 1107604 1107609 1107612 1107616 1107619 1107832 1108282 1108283 1109893 1110233 1110542 1110910 1111006 1111010 1111013 1111319 1111647 1112911 1113296 1114422 1114674 1116995 1120629 1120630 1120631 1127155 1130840 1131823 1134226 1137443 1137977 1140039 1141853 1145521 1145604 1149955 1151021 1153238 1156146 1162423 1171477 1171930 1173027 1173274 1174091 1174543 1174701 997043 CVE-2016-9941 CVE-2016-9942 CVE-2017-1000445 CVE-2017-1000476 CVE-2017-10800 CVE-2017-11141 CVE-2017-11449 CVE-2017-11529 CVE-2017-11532 CVE-2017-11644 CVE-2017-11724 CVE-2017-11751 CVE-2017-12430 CVE-2017-12434 CVE-2017-12564 CVE-2017-12642 CVE-2017-12667 CVE-2017-12670 CVE-2017-12672 CVE-2017-12675 CVE-2017-13060 CVE-2017-13146 CVE-2017-13648 CVE-2017-13658 CVE-2017-14249 CVE-2017-14326 CVE-2017-14533 CVE-2017-17680 CVE-2017-17881 CVE-2017-17882 CVE-2017-18022 CVE-2017-18379 CVE-2017-9409 CVE-2018-0737 CVE-2018-10839 CVE-2018-12086 CVE-2018-14598 CVE-2018-14599 CVE-2018-14600 CVE-2018-14633 CVE-2018-14647 CVE-2018-15746 CVE-2018-16413 CVE-2018-16640 CVE-2018-16642 CVE-2018-16643 CVE-2018-16644 CVE-2018-16645 CVE-2018-16749 CVE-2018-16750 CVE-2018-17182 CVE-2018-17958 CVE-2018-17962 CVE-2018-17963 CVE-2018-18227 CVE-2018-18311 CVE-2018-18849 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2018-20852 CVE-2018-5246 CVE-2018-5247 CVE-2018-7225 CVE-2019-12735 CVE-2019-14818 CVE-2019-14835 CVE-2019-16056 CVE-2019-16935 CVE-2019-20907 CVE-2019-9947 CVE-2020-10722 CVE-2020-14422 CVE-2020-8177 SUSE-SU-2018:0055-1 SUSE-SU-2018:0130-1 SUSE-SU-2018:0830-1 SUSE-SU-2018:3590-1 SUSE-SU-2019:1456-1 SUSE-SU-2019:2265-1 SUSE-SU-2019:2600-1 SUSE-SU-2020:1732-1 SUSE-SU-2020:2194-1 Platform(s): openSUSE Leap 42.3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Realtime packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP2-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP3-BCL SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP3-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP4-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 7 Product(s): Definition Synopsis openSUSE Leap 42.3 is installed AND Package Information FastCGI-2.4.0-173 is installed OR perl-FastCGI-2.4.0-173 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information fuse-2.9.3-3 is installed OR libfuse2-2.9.3-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libXtst6-1.2.2-3 is installed OR libXtst6-32bit-1.2.2-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND binutils-2.26.1-9.12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND cifs-utils-6.5-8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information g3utils-1.1.36-58.3 is installed OR mgetty-1.1.36-58.3 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information opencv-3.3.1-6.6 is installed OR python2-opencv-3.3.1-6.6 is installed OR python3-opencv-3.3.1-6.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information libFS-devel-1.0.7-1 is installed OR libFS6-1.0.7-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND axis-1.4-5.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND libcups2-32bit-2.2.7-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information gdk-pixbuf-query-loaders-32bit-2.36.11-3 is installed OR libgdk_pixbuf-2_0-0-32bit-2.36.11-3 is installed Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 is installed AND bsdtar-3.3.2-1 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information pdsh-2.33-7.6 is installed OR pdsh-dshgroup-2.33-7.6 is installed OR pdsh-genders-2.33-7.6 is installed OR pdsh-machines-2.33-7.6 is installed OR pdsh-netgroup-2.33-7.6 is installed OR pdsh-slurm-2.33-7.6 is installed OR pdsh-slurm_18_08-2.33-7.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-openjdk-1.8.0.181-3.10 is installed OR java-1_8_0-openjdk-demo-1.8.0.181-3.10 is installed OR java-1_8_0-openjdk-devel-1.8.0.181-3.10 is installed OR java-1_8_0-openjdk-headless-1.8.0.181-3.10 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.4 is installed OR reiserfs-kmp-default-4.12.14-197.4 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_14-default-7-2 is installed OR kernel-livepatch-SLE15_Update_9-7-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_7-default-3-2 is installed OR kernel-livepatch-SLE15-SP1_Update_2-3-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information libsystemd0-mini-234-24.15 is installed OR libudev-mini-devel-234-24.15 is installed OR libudev-mini1-234-24.15 is installed OR nss-myhostname-234-24.15 is installed OR nss-mymachines-234-24.15 is installed OR nss-systemd-234-24.15 is installed OR systemd-234-24.15 is installed OR systemd-logger-234-24.15 is installed OR systemd-mini-234-24.15 is installed OR systemd-mini-bash-completion-234-24.15 is installed OR systemd-mini-container-mini-234-24.15 is installed OR systemd-mini-coredump-mini-234-24.15 is installed OR systemd-mini-devel-234-24.15 is installed OR systemd-mini-sysvinit-234-24.15 is installed OR udev-mini-234-24.15 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libgcrypt-1.8.2-8.6 is installed OR libgcrypt-cavs-1.8.2-8.6 is installed OR libgcrypt-devel-32bit-1.8.2-8.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information cni-0.7.1-3.3 is installed OR cni-plugins-0.8.4-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Realtime packages 15 SP1 is installed AND Package Information cluster-md-kmp-rt-4.12.14-14.23 is installed OR dlm-kmp-rt-4.12.14-14.23 is installed OR gfs2-kmp-rt-4.12.14-14.23 is installed OR kernel-devel-rt-4.12.14-14.23 is installed OR kernel-rt-4.12.14-14.23 is installed OR kernel-rt-base-4.12.14-14.23 is installed OR kernel-rt-devel-4.12.14-14.23 is installed OR kernel-rt_debug-4.12.14-14.23 is installed OR kernel-rt_debug-devel-4.12.14-14.23 is installed OR kernel-source-rt-4.12.14-14.23 is installed OR kernel-syms-rt-4.12.14-14.23 is installed OR ocfs2-kmp-rt-4.12.14-14.23 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information xen-4.10.3_02-3.14 is installed OR xen-devel-4.10.3_02-3.14 is installed OR xen-tools-4.10.3_02-3.14 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND grub2-x86_64-xen-2.02-24 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs8-8.15.0-3.11 is installed OR nodejs8-devel-8.15.0-3.11 is installed OR nodejs8-docs-8.15.0-3.11 is installed OR npm8-8.15.0-3.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information curl-7.37.0-37.37 is installed OR libcurl4-7.37.0-37.37 is installed OR libcurl4-32bit-7.37.0-37.37 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND hyper-v-7-13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information kernel-default-4.4.121-92.92 is installed OR kernel-default-base-4.4.121-92.92 is installed OR kernel-default-devel-4.4.121-92.92 is installed OR kernel-devel-4.4.121-92.92 is installed OR kernel-macros-4.4.121-92.92 is installed OR kernel-source-4.4.121-92.92 is installed OR kernel-syms-4.4.121-92.92 is installed OR kgraft-patch-4_4_121-92_92-default-1-3.7 is installed OR kgraft-patch-SLE12-SP2_Update_24-1-3.7 is installed OR lttng-modules-2.7.1-9.4 is installed OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.92-9.4 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND kgraft-patch-4_4_121-92_80-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_22-6-2 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP2-ESPOS is installed AND kgraft-patch-4_4_121-92_80-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_22-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.30-38.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND clamav-0.100.1-33.15 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND libwireshark9-2.4.10-48.32 is installed OR libwiretap7-2.4.10-48.32 is installed OR libwscodecs1-2.4.10-48.32 is installed OR libwsutil8-2.4.10-48.32 is installed OR wireshark-2.4.10-48.32 is installed OR wireshark-gtk-2.4.10-48.32 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND libwireshark9-2.4.10-48.32 is installed OR libwiretap7-2.4.10-48.32 is installed OR libwscodecs1-2.4.10-48.32 is installed OR libwsutil8-2.4.10-48.32 is installed OR wireshark-2.4.10-48.32 is installed OR wireshark-gtk-2.4.10-48.32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND lftp-4.7.4-1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP3-BCL is installed AND libsolv-0.6.36-2.27.19 is installed OR libsolv-tools-0.6.36-2.27.19 is installed OR libzypp-16.20.2-27.60 is installed OR perl-solv-0.6.36-2.27.19 is installed OR python-solv-0.6.36-2.27.19 is installed OR zypper-1.13.54-18.40 is installed OR zypper-log-1.13.54-18.40 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-BCL is installed AND libsolv-0.6.36-2.27.19 is installed OR libsolv-tools-0.6.36-2.27.19 is installed OR libzypp-16.20.2-27.60 is installed OR perl-solv-0.6.36-2.27.19 is installed OR python-solv-0.6.36-2.27.19 is installed OR zypper-1.13.54-18.40 is installed OR zypper-log-1.13.54-18.40 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND perl-5.18.2-12.20 is installed OR perl-32bit-5.18.2-12.20 is installed OR perl-base-5.18.2-12.20 is installed OR perl-doc-5.18.2-12.20 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS is installed AND perl-5.18.2-12.20 is installed OR perl-32bit-5.18.2-12.20 is installed OR perl-base-5.18.2-12.20 is installed OR perl-doc-5.18.2-12.20 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND kgraft-patch-4_4_156-94_61-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_19-8-2 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-LTSS is installed AND kgraft-patch-4_4_156-94_61-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_19-8-2 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND libopenssl-devel-1.0.2j-60.39 is installed OR libopenssl1_0_0-1.0.2j-60.39 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.39 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.39 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.39 is installed OR openssl-1.0.2j-60.39 is installed OR openssl-doc-1.0.2j-60.39 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA is installed AND libopenssl-devel-1.0.2j-60.39 is installed OR libopenssl1_0_0-1.0.2j-60.39 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.39 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.39 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.39 is installed OR openssl-1.0.2j-60.39 is installed OR openssl-doc-1.0.2j-60.39 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information dovecot22-2.2.31-19.11 is installed OR dovecot22-backend-mysql-2.2.31-19.11 is installed OR dovecot22-backend-pgsql-2.2.31-19.11 is installed OR dovecot22-backend-sqlite-2.2.31-19.11 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND audiofile-0.3.6-11.3 is installed OR libaudiofile1-0.3.6-11.3 is installed OR libaudiofile1-32bit-0.3.6-11.3 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND audiofile-0.3.6-11.3 is installed OR libaudiofile1-0.3.6-11.3 is installed OR libaudiofile1-32bit-0.3.6-11.3 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND xen-4.11.4_04-2.30 is installed OR xen-doc-html-4.11.4_04-2.30 is installed OR xen-libs-4.11.4_04-2.30 is installed OR xen-libs-32bit-4.11.4_04-2.30 is installed OR xen-tools-4.11.4_04-2.30 is installed OR xen-tools-domU-4.11.4_04-2.30 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4-ESPOS is installed AND xen-4.11.4_04-2.30 is installed OR xen-doc-html-4.11.4_04-2.30 is installed OR xen-libs-4.11.4_04-2.30 is installed OR xen-libs-32bit-4.11.4_04-2.30 is installed OR xen-tools-4.11.4_04-2.30 is installed OR xen-tools-domU-4.11.4_04-2.30 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND cups-1.7.5-20.26 is installed OR cups-client-1.7.5-20.26 is installed OR cups-libs-1.7.5-20.26 is installed OR cups-libs-32bit-1.7.5-20.26 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND cups-1.7.5-20.26 is installed OR cups-client-1.7.5-20.26 is installed OR cups-libs-1.7.5-20.26 is installed OR cups-libs-32bit-1.7.5-20.26 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information nodejs8-8.17.0-3.28 is installed OR nodejs8-devel-8.17.0-3.28 is installed OR nodejs8-docs-8.17.0-3.28 is installed OR npm8-8.17.0-3.28 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information libpcrecpp0-8.39-7 is installed OR libpcrecpp0-32bit-8.39-7 is installed OR pcre-8.39-7 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information libraw-0.15.4-9 is installed OR libraw9-0.15.4-9 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information kernel-default-4.4.140-94.42 is installed OR kernel-default-extra-4.4.140-94.42 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-60.2.1-3.13 is installed OR MozillaThunderbird-translations-common-60.2.1-3.13 is installed OR MozillaThunderbird-translations-other-60.2.1-3.13 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information freerdp-2.0.0~rc4-10.4 is installed OR freerdp-devel-2.0.0~rc4-10.4 is installed OR libfreerdp2-2.0.0~rc4-10.4 is installed OR libwinpr2-2.0.0~rc4-10.4 is installed OR winpr2-devel-2.0.0~rc4-10.4 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND python-tablib-0.9.11-3 is installed
BACK