OVAL Reference oval:org.opensuse.security:def:4479

Oval Definition:

oval:org.opensuse.security:def:4479

Revision Date:	2021-09-16	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 9 for SLE 12 SP5) (Important)
Description:	This update for the Linux Kernel 4.12.14-122_37 fixes several issues. The following security issues were fixed: - CVE-2021-3653: Fixed missing validation of the KVM `int_ctl` VMCB field that would have allowed a malicious L1 guest to enable AVIC support for the L2 guest (bsc#1189420). - CVE-2021-3656: Fixed KVM nSVM nested VMLOAD/VMSAVE interception (bsc#1189418). - CVE-2021-38198: Fixed KVM MMU to use the correct inherited permissions to get shadow page (bsc#1189278).
Family:	unix	Class:	patch
Status:		Reference(s):	1055014 1055186 1061843 1065729 1077428 1093733 1094301 1101776 1101777 1101786 1101788 1101791 1101794 1101800 1101802 1101804 1101810 1106514 1111647 1117740 1121231 1121232 1121233 1121234 1121235 1127367 1127369 1127370 1129923 1131941 1131945 1134760 1136020 1136021 1141980 1150690 1152489 1156288 1157268 1158505 1159913 1160922 1161052 1162296 1162689 1162691 1165241 1165528 1165548 1165631 1165710 1167373 1167462 1167631 1168554 1169511 1169658 1169659 1170313 1170595 1170603 1171889 1172356 1174157 1174543 1174748 1174969 1175052 1175898 1176485 1176713 1177086 1177353 1177410 1177411 1177470 1177513 1177729 1177739 1177749 1177750 1177754 1177755 1177765 1177814 1177817 1177854 1177855 1177856 1177861 1178002 1178079 1178171 1178246 1180145 1180146 1180994 1189278 1189418 1189420 945190 957624 CVE-2014-3577 CVE-2015-5262 CVE-2018-11354 CVE-2018-11355 CVE-2018-11356 CVE-2018-11357 CVE-2018-11358 CVE-2018-11359 CVE-2018-11360 CVE-2018-11361 CVE-2018-11362 CVE-2018-12086 CVE-2018-14339 CVE-2018-14340 CVE-2018-14341 CVE-2018-14342 CVE-2018-14343 CVE-2018-14344 CVE-2018-14367 CVE-2018-14368 CVE-2018-14369 CVE-2018-14370 CVE-2018-16056 CVE-2018-16057 CVE-2018-16058 CVE-2018-18225 CVE-2018-18226 CVE-2018-18227 CVE-2018-19622 CVE-2018-19623 CVE-2018-19624 CVE-2018-19625 CVE-2018-19626 CVE-2018-19627 CVE-2018-19628 CVE-2019-10894 CVE-2019-10895 CVE-2019-10896 CVE-2019-10897 CVE-2019-10898 CVE-2019-10899 CVE-2019-10900 CVE-2019-10901 CVE-2019-10902 CVE-2019-10903 CVE-2019-12519 CVE-2019-12521 CVE-2019-12528 CVE-2019-13619 CVE-2019-16319 CVE-2019-18860 CVE-2019-18904 CVE-2019-18934 CVE-2019-19553 CVE-2019-5108 CVE-2019-5716 CVE-2019-5717 CVE-2019-5718 CVE-2019-5719 CVE-2019-5721 CVE-2019-9208 CVE-2019-9209 CVE-2019-9214 CVE-2020-10018 CVE-2020-11651 CVE-2020-11652 CVE-2020-11793 CVE-2020-11945 CVE-2020-12268 CVE-2020-12351 CVE-2020-12662 CVE-2020-12663 CVE-2020-14351 CVE-2020-14556 CVE-2020-14562 CVE-2020-14573 CVE-2020-14577 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-16120 CVE-2020-1749 CVE-2020-1752 CVE-2020-25285 CVE-2020-25645 CVE-2020-26217 CVE-2020-26258 CVE-2020-26259 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2767 CVE-2020-2773 CVE-2020-2778 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2816 CVE-2020-2830 CVE-2020-7044 CVE-2020-8517 CVE-2020-9428 CVE-2020-9429 CVE-2020-9430 CVE-2020-9431 CVE-2021-3653 CVE-2021-3656 CVE-2021-38198 SUSE-SU-2020:0693-1 SUSE-SU-2020:0820-1 SUSE-SU-2020:1109-1 SUSE-SU-2020:1151-1 SUSE-SU-2020:1156-1 SUSE-SU-2020:1179-1 SUSE-SU-2020:1220-1 SUSE-SU-2020:1511-1 SUSE-SU-2020:1819-1 SUSE-SU-2020:2143-1 SUSE-SU-2020:2159-1 SUSE-SU-2020:3122-1 SUSE-SU-2020:3151-1 SUSE-SU-2021:0176-1 SUSE-SU-2021:3073-1
Platform(s):	SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise High Availability 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise Live Patching 12 SP5 SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Storage 7 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Manager Proxy 4.1 SUSE Manager Server 4.1 SUSE Package Hub for SUSE Linux Enterprise 12 SP1	Product(s):
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 is installed AND kernel-zfcpdump-3.12.39-47 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND Package Information krb5-mini-1.12.1-22 is installed OR krb5-mini-devel-1.12.1-22 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND Package Information libudev-mini-devel-228-149 is installed OR libudev-mini1-228-149 is installed OR systemd-mini-228-149 is installed OR systemd-mini-devel-228-149 is installed OR udev-mini-228-149 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND Package Information libpoppler-cpp0-0.43.0-16.5 is installed OR poppler-0.43.0-16.5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information cups-pk-helper-0.2.5-3 is installed OR cups-pk-helper-lang-0.2.5-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information MozillaFirefox-38.4.0esr-51 is installed OR MozillaFirefox-translations-38.4.0esr-51 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information e2fsprogs-1.42.11-7 is installed OR libcom_err2-1.42.11-7 is installed OR libcom_err2-32bit-1.42.11-7 is installed OR libext2fs2-1.42.11-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed AND xstream-1.4.15-3.3.2 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 is installed AND Package Information kgraft-patch-3_12_51-52_31-default-5-2.2 is installed OR kgraft-patch-3_12_51-52_31-xen-5-2.2 is installed OR kgraft-patch-SLE12_Update_9-5-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP2 is installed AND Package Information cluster-md-kmp-default-5.3.18-24.34 is installed OR dlm-kmp-default-5.3.18-24.34 is installed OR gfs2-kmp-default-5.3.18-24.34 is installed OR kernel-default-5.3.18-24.34 is installed OR ocfs2-kmp-default-5.3.18-24.34 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 15-ESPOS is installed AND libjavascriptcoregtk-4_0-18-2.28.1-3.49 is installed OR libwebkit2gtk-4_0-37-2.28.1-3.49 is installed OR libwebkit2gtk3-lang-2.28.1-3.49 is installed OR webkit2gtk-4_0-injected-bundles-2.28.1-3.49 is installed OR webkit2gtk3-2.28.1-3.49 is installed OR webkit2gtk3-devel-2.28.1-3.49 is installed OR Package Information SUSE Linux Enterprise High Performance Computing 15-LTSS is installed AND libjavascriptcoregtk-4_0-18-2.28.1-3.49 is installed OR libwebkit2gtk-4_0-37-2.28.1-3.49 is installed OR libwebkit2gtk3-lang-2.28.1-3.49 is installed OR webkit2gtk-4_0-injected-bundles-2.28.1-3.49 is installed OR webkit2gtk3-2.28.1-3.49 is installed OR webkit2gtk3-devel-2.28.1-3.49 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 SP5 is installed AND kgraft-patch-4_12_14-122_37-default-16-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information compat-libldap-2_3-0-2.3.37-16 is installed OR openldap2-2.4.39-16 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_40-default-6-2 is installed OR kernel-livepatch-SLE15-SP1_Update_11-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.60-52.60 is installed OR kernel-ec2-devel-3.12.60-52.60 is installed OR kernel-ec2-extra-3.12.60-52.60 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php5-5.5.14-68 is installed OR php5-5.5.14-68 is installed OR php5-bcmath-5.5.14-68 is installed OR php5-bz2-5.5.14-68 is installed OR php5-calendar-5.5.14-68 is installed OR php5-ctype-5.5.14-68 is installed OR php5-curl-5.5.14-68 is installed OR php5-dba-5.5.14-68 is installed OR php5-dom-5.5.14-68 is installed OR php5-enchant-5.5.14-68 is installed OR php5-exif-5.5.14-68 is installed OR php5-fastcgi-5.5.14-68 is installed OR php5-fileinfo-5.5.14-68 is installed OR php5-fpm-5.5.14-68 is installed OR php5-ftp-5.5.14-68 is installed OR php5-gd-5.5.14-68 is installed OR php5-gettext-5.5.14-68 is installed OR php5-gmp-5.5.14-68 is installed OR php5-iconv-5.5.14-68 is installed OR php5-imap-5.5.14-68 is installed OR php5-intl-5.5.14-68 is installed OR php5-json-5.5.14-68 is installed OR php5-ldap-5.5.14-68 is installed OR php5-mbstring-5.5.14-68 is installed OR php5-mcrypt-5.5.14-68 is installed OR php5-mysql-5.5.14-68 is installed OR php5-odbc-5.5.14-68 is installed OR php5-opcache-5.5.14-68 is installed OR php5-openssl-5.5.14-68 is installed OR php5-pcntl-5.5.14-68 is installed OR php5-pdo-5.5.14-68 is installed OR php5-pear-5.5.14-68 is installed OR php5-pgsql-5.5.14-68 is installed OR php5-phar-5.5.14-68 is installed OR php5-posix-5.5.14-68 is installed OR php5-pspell-5.5.14-68 is installed OR php5-shmop-5.5.14-68 is installed OR php5-snmp-5.5.14-68 is installed OR php5-soap-5.5.14-68 is installed OR php5-sockets-5.5.14-68 is installed OR php5-sqlite-5.5.14-68 is installed OR php5-suhosin-5.5.14-68 is installed OR php5-sysvmsg-5.5.14-68 is installed OR php5-sysvsem-5.5.14-68 is installed OR php5-sysvshm-5.5.14-68 is installed OR php5-tokenizer-5.5.14-68 is installed OR php5-wddx-5.5.14-68 is installed OR php5-xmlreader-5.5.14-68 is installed OR php5-xmlrpc-5.5.14-68 is installed OR php5-xmlwriter-5.5.14-68 is installed OR php5-xsl-5.5.14-68 is installed OR php5-zip-5.5.14-68 is installed OR php5-zlib-5.5.14-68 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP1-LTSS is installed AND Package Information Mesa-7.7-5.12.38 is installed OR Mesa-32bit-7.7-5.12.38 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information nagios-3.0.6-1.25.36.1 is installed OR nagios-www-3.0.6-1.25.36.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND hyper-v-6-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information automake-1.13.4-4 is installed OR m4-1.4.16-15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-28 is installed OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_60-52_54-default-2-2.2 is installed OR kgraft-patch-3_12_60-52_54-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_15-2-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information rmt-server-2.5.7-3.31 is installed OR rmt-server-config-2.5.7-3.31 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND dbus-1-glib-0.100.2-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information python2-salt-2019.2.0-5.67 is installed OR python3-salt-2019.2.0-5.67 is installed OR salt-2019.2.0-5.67 is installed OR salt-api-2019.2.0-5.67 is installed OR salt-bash-completion-2019.2.0-5.67 is installed OR salt-cloud-2019.2.0-5.67 is installed OR salt-doc-2019.2.0-5.67 is installed OR salt-fish-completion-2019.2.0-5.67 is installed OR salt-master-2019.2.0-5.67 is installed OR salt-minion-2019.2.0-5.67 is installed OR salt-proxy-2019.2.0-5.67 is installed OR salt-ssh-2019.2.0-5.67 is installed OR salt-standalone-formulas-configuration-2019.2.0-5.67 is installed OR salt-syndic-2019.2.0-5.67 is installed OR salt-zsh-completion-2019.2.0-5.67 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND Package Information libQtWebKit-devel-4.6.3-5.20.23.1 is installed OR libQtWebKit4-32bit-4.6.3-5.20.23.1 is installed OR libQtWebKit4-x86-4.6.3-5.20.23.1 is installed OR libqt4-devel-4.6.3-5.20.23.1 is installed OR libqt4-devel-doc-4.6.3-5.20.23.1 is installed OR libqt4-devel-doc-data-4.6.3-5.20.23.1 is installed OR libqt4-sql-mysql-32bit-4.6.3-5.20.23.1 is installed OR libqt4-sql-mysql-x86-4.6.3-5.20.23.1 is installed OR libqt4-sql-postgresql-4.6.3-5.20.23.1 is installed OR libqt4-sql-postgresql-32bit-4.6.3-5.20.23.1 is installed OR libqt4-sql-postgresql-x86-4.6.3-5.20.23.1 is installed OR libqt4-sql-sqlite-32bit-4.6.3-5.20.23.1 is installed OR libqt4-sql-sqlite-x86-4.6.3-5.20.23.1 is installed OR libqt4-sql-unixODBC-4.6.3-5.20.23.1 is installed OR libqt4-sql-unixODBC-32bit-4.6.3-5.20.23.1 is installed OR libqt4-sql-unixODBC-x86-4.6.3-5.20.23.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information LibVNCServer-0.9.1-156.1 is installed OR LibVNCServer-devel-0.9.1-156.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information avahi-compat-howl-devel-0.6.31-20 is installed OR avahi-compat-mDNSResponder-devel-0.6.31-20 is installed OR libavahi-devel-0.6.31-20 is installed OR libhowl0-0.6.31-20 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND aaa_base-malloccheck-13.2+git20140911.61c1681-9 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information libX11-1.6.2-11.1 is installed OR libX11-devel-1.6.2-11.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information finch-2.10.9-8.1 is installed OR libpurple-2.10.9-8.1 is installed OR libpurple-lang-2.10.9-8.1 is installed OR libpurple-meanwhile-2.10.9-8.1 is installed OR libpurple-tcl-2.10.9-8.1 is installed OR pidgin-2.10.9-8.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information kernel-default-3.12.59-60.41.2 is installed OR kernel-default-extra-3.12.59-60.41.2 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND bash-lang-4.3-82 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND enigmail-2.0.7-3.7 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information gnome-shell-3.26.2+20180130.0d9c74212-4.19 is installed OR gnome-shell-calendar-3.26.2+20180130.0d9c74212-4.19 is installed
Definition Synopsis
SUSE Package Hub for SUSE Linux Enterprise 12 SP1 is installed AND Package Information kinit-5.20.0-6 is installed OR kinit-devel-5.20.0-6 is installed OR kinit-lang-5.20.0-6 is installed

BACK