OVAL Reference oval:org.opensuse.security:def:44800

Oval Definition:

oval:org.opensuse.security:def:44800

Revision Date:	2020-12-01	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 28 for SLE 12 SP2) (Important)
Description:	This update for the Linux Kernel 4.4.121-92_104 fixes several issues. The following security issues were fixed: - CVE-2019-3846: A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network (bsc#1136446). - CVE-2019-11477: A sequence of SACKs may have been crafted by a remote attacker such that one can trigger an integer overflow, leading to a kernel panic. (bsc#1137586). - CVE-2019-11478: It was possible to send a crafted sequence of SACKs which would fragment the TCP retransmission queue. A remote attacker may have been able to further exploit the fragmented queue to cause an expensive linked-list walk for subsequent SACKs received for that same TCP connection. (bsc#1137586) - CVE-2019-11487: The Linux kernel allowed page->_refcount reference count overflow, with resultant use-after-free issues, if about 140 GiB of RAM exists. This is related to fs/fuse/dev.c, fs/pipe.c, fs/splice.c, include/linux/mm.h, include/linux/pipe_fs_i.h, kernel/trace/trace.c, mm/gup.c, and mm/hugetlb.c. It can occur with FUSE requests (bsc#1133191).
Family:	unix	Class:	patch
Status:		Reference(s):	1013708 1013712 1013893 1015171 1015173 1061343 1074186 1077445 1082063 1082210 1083417 1083420 1083422 1083424 1083426 1092480 1094717 1101428 1101566 1101567 1101568 1101569 1101570 1101571 1101573 1101576 1101577 1101578 1101581 1101582 1101583 1101588 1101589 1102840 1104129 1114612 1123371 1123377 1123378 1126068 1126069 1128481 1129346 1133037 1133185 1133191 1136446 1136570 1136935 1137597 1139073 1141035 1141619 1154043 1155988 1156146 1160039 1167890 1168930 1170601 1171477 1171863 1171864 1171866 1171930 1174543 980830 982129 983440 986534 CVE-2014-9116 CVE-2016-1549 CVE-2016-5319 CVE-2016-9797 CVE-2016-9798 CVE-2016-9802 CVE-2016-9917 CVE-2016-9918 CVE-2017-17942 CVE-2018-10779 CVE-2018-11759 CVE-2018-14349 CVE-2018-14350 CVE-2018-14351 CVE-2018-14352 CVE-2018-14353 CVE-2018-14354 CVE-2018-14355 CVE-2018-14356 CVE-2018-14357 CVE-2018-14358 CVE-2018-14359 CVE-2018-14360 CVE-2018-14361 CVE-2018-14362 CVE-2018-14363 CVE-2018-16890 CVE-2018-5740 CVE-2018-5740 CVE-2018-5743 CVE-2018-5743 CVE-2018-5745 CVE-2018-5745 CVE-2018-7170 CVE-2018-7182 CVE-2018-7183 CVE-2018-7184 CVE-2018-7185 CVE-2019-1010006 CVE-2019-11135 CVE-2019-11139 CVE-2019-11459 CVE-2019-11477 CVE-2019-11478 CVE-2019-11487 CVE-2019-14818 CVE-2019-3822 CVE-2019-3823 CVE-2019-3846 CVE-2019-3860 CVE-2019-6465 CVE-2019-6465 CVE-2019-9636 CVE-2020-10543 CVE-2020-10722 CVE-2020-10878 CVE-2020-12723 CVE-2020-5260 SUSE-SU-2018:0956-1 SUSE-SU-2019:0961-1 SUSE-SU-2019:1196-1 SUSE-SU-2019:2080-1 SUSE-SU-2019:2959-1 SUSE-SU-2020:0992-1 SUSE-SU-2020:2194-1
Platform(s):	openSUSE Leap 42.3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP2-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP3-BCL SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP3-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8	Product(s):
Definition Synopsis
openSUSE Leap 42.3 is installed AND Package Information fontconfig-2.11.1-4 is installed OR fontconfig-32bit-2.11.1-4 is installed OR fontconfig-devel-2.11.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information alsa-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND coolkey-1.1.0-147 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND cvs-1.12.12-181 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information cpp48-4.8.5-30 is installed OR gcc48-4.8.5-30 is installed OR gcc48-32bit-4.8.5-30 is installed OR gcc48-c++-4.8.5-30 is installed OR gcc48-gij-4.8.5-30 is installed OR gcc48-gij-32bit-4.8.5-30 is installed OR gcc48-info-4.8.5-30 is installed OR libasan0-4.8.5-30 is installed OR libasan0-32bit-4.8.5-30 is installed OR libgcj48-4.8.5-30 is installed OR libgcj48-32bit-4.8.5-30 is installed OR libgcj48-jar-4.8.5-30 is installed OR libgcj_bc1-4.8.5-30 is installed OR libstdc++48-devel-4.8.5-30 is installed OR libstdc++48-devel-32bit-4.8.5-30 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information cups-filters-1.0.58-19.2 is installed OR cups-filters-cups-browsed-1.0.58-19.2 is installed OR cups-filters-foomatic-rip-1.0.58-19.2 is installed OR cups-filters-ghostscript-1.0.58-19.2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information ffmpeg-3.4.2-4.27 is installed OR libavdevice57-3.4.2-4.27 is installed OR libavfilter6-3.4.2-4.27 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND libvpx4-1.6.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND libcolord2-1.4.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND libical-devel-2.0.0-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND libXi6-32bit-1.7.9-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 is installed AND cvs-1.12.12-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information kernel-default-4.12.14-150.32 is installed OR reiserfs-kmp-default-4.12.14-150.32 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information libopenssl-1_0_0-devel-1.0.2p-3.14 is installed OR libopenssl1_0_0-1.0.2p-3.14 is installed OR openssl-1_0_0-1.0.2p-3.14 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-25.6 is installed OR kernel-default-livepatch-4.12.14-25.6 is installed OR kernel-livepatch-4_12_14-25_6-default-1-1.3 is installed OR kernel-livepatch-SLE15_Update_2-1-1.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information libnettle-3.4-4.3 is installed OR nettle-3.4-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information java-1_8_0-openjdk-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-accessibility-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-javadoc-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-src-1.8.0.212-3.19 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.5 is installed OR kernel-azure-base-4.12.14-5.5 is installed OR kernel-azure-devel-4.12.14-5.5 is installed OR kernel-devel-azure-4.12.14-5.5 is installed OR kernel-source-azure-4.12.14-5.5 is installed OR kernel-syms-azure-4.12.14-5.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information qemu-2.11.2-9.25 is installed OR qemu-arm-2.11.2-9.25 is installed OR qemu-block-curl-2.11.2-9.25 is installed OR qemu-block-iscsi-2.11.2-9.25 is installed OR qemu-block-rbd-2.11.2-9.25 is installed OR qemu-block-ssh-2.11.2-9.25 is installed OR qemu-guest-agent-2.11.2-9.25 is installed OR qemu-ipxe-1.0.0+-9.25 is installed OR qemu-kvm-2.11.2-9.25 is installed OR qemu-lang-2.11.2-9.25 is installed OR qemu-ppc-2.11.2-9.25 is installed OR qemu-s390-2.11.2-9.25 is installed OR qemu-seabios-1.11.0-9.25 is installed OR qemu-sgabios-8-9.25 is installed OR qemu-vgabios-1.11.0-9.25 is installed OR qemu-x86-2.11.2-9.25 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information apache2-2.4.33-3.21 is installed OR apache2-devel-2.4.33-3.21 is installed OR apache2-doc-2.4.33-3.21 is installed OR apache2-prefork-2.4.33-3.21 is installed OR apache2-utils-2.4.33-3.21 is installed OR apache2-worker-2.4.33-3.21 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs8-8.17.0-3.28 is installed OR nodejs8-devel-8.17.0-3.28 is installed OR nodejs8-docs-8.17.0-3.28 is installed OR npm8-8.17.0-3.28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libIlmImf-Imf_2_1-21-2.1.0-4 is installed OR openexr-2.1.0-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libwireshark9-2.4.9-48.29 is installed OR libwiretap7-2.4.9-48.29 is installed OR libwscodecs1-2.4.9-48.29 is installed OR libwsutil8-2.4.9-48.29 is installed OR wireshark-2.4.9-48.29 is installed OR wireshark-gtk-2.4.9-48.29 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND kgraft-patch-4_4_121-92_104-default-3-2 is installed OR kgraft-patch-SLE12-SP2_Update_28-3-2 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP2-ESPOS is installed AND kgraft-patch-4_4_121-92_104-default-3-2 is installed OR kgraft-patch-SLE12-SP2_Update_28-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND ucode-intel-20180703-13.25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND ucode-intel-20180425-13.20 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND ntp-4.2.8p11-64.3 is installed OR ntp-doc-4.2.8p11-64.3 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND ntp-4.2.8p11-64.3 is installed OR ntp-doc-4.2.8p11-64.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information avahi-0.6.32-30 is installed OR avahi-lang-0.6.32-30 is installed OR avahi-utils-0.6.32-30 is installed OR libavahi-client3-0.6.32-30 is installed OR libavahi-client3-32bit-0.6.32-30 is installed OR libavahi-common3-0.6.32-30 is installed OR libavahi-common3-32bit-0.6.32-30 is installed OR libavahi-core7-0.6.32-30 is installed OR libdns_sd-0.6.32-30 is installed OR libdns_sd-32bit-0.6.32-30 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-BCL is installed AND dpdk-16.11.9-8.15 is installed OR dpdk-kmp-default-16.11.9_k4.4.180_94.127-8.15 is installed OR dpdk-tools-16.11.9-8.15 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-BCL is installed AND dpdk-16.11.9-8.15 is installed OR dpdk-kmp-default-16.11.9_k4.4.180_94.127-8.15 is installed OR dpdk-tools-16.11.9-8.15 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS is installed AND libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND evince-3.20.2-6.27 is installed OR evince-browser-plugin-3.20.2-6.27 is installed OR evince-lang-3.20.2-6.27 is installed OR evince-plugin-djvudocument-3.20.2-6.27 is installed OR evince-plugin-dvidocument-3.20.2-6.27 is installed OR evince-plugin-pdfdocument-3.20.2-6.27 is installed OR evince-plugin-psdocument-3.20.2-6.27 is installed OR evince-plugin-tiffdocument-3.20.2-6.27 is installed OR evince-plugin-xpsdocument-3.20.2-6.27 is installed OR libevdocument3-4-3.20.2-6.27 is installed OR libevview3-3-3.20.2-6.27 is installed OR nautilus-evince-3.20.2-6.27 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-LTSS is installed AND evince-3.20.2-6.27 is installed OR evince-browser-plugin-3.20.2-6.27 is installed OR evince-lang-3.20.2-6.27 is installed OR evince-plugin-djvudocument-3.20.2-6.27 is installed OR evince-plugin-dvidocument-3.20.2-6.27 is installed OR evince-plugin-pdfdocument-3.20.2-6.27 is installed OR evince-plugin-psdocument-3.20.2-6.27 is installed OR evince-plugin-tiffdocument-3.20.2-6.27 is installed OR evince-plugin-xpsdocument-3.20.2-6.27 is installed OR libevdocument3-4-3.20.2-6.27 is installed OR libevview3-3-3.20.2-6.27 is installed OR nautilus-evince-3.20.2-6.27 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND libtiff5-4.0.9-44.21 is installed OR libtiff5-32bit-4.0.9-44.21 is installed OR tiff-4.0.9-44.21 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA is installed AND libtiff5-4.0.9-44.21 is installed OR libtiff5-32bit-4.0.9-44.21 is installed OR tiff-4.0.9-44.21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libprocps3-3.3.9-11.14 is installed OR procps-3.3.9-11.14 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND squid-3.5.21-26.12 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND squid-3.5.21-26.12 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND libopenssl-1_0_0-devel-1.0.2p-3.14 is installed OR libopenssl1_0_0-1.0.2p-3.14 is installed OR libopenssl1_0_0-32bit-1.0.2p-3.14 is installed OR libopenssl1_0_0-hmac-1.0.2p-3.14 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2p-3.14 is installed OR openssl-1_0_0-1.0.2p-3.14 is installed OR openssl-1_0_0-doc-1.0.2p-3.14 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND libopenssl-1_0_0-devel-1.0.2p-3.14 is installed OR libopenssl1_0_0-1.0.2p-3.14 is installed OR libopenssl1_0_0-32bit-1.0.2p-3.14 is installed OR libopenssl1_0_0-hmac-1.0.2p-3.14 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2p-3.14 is installed OR openssl-1_0_0-1.0.2p-3.14 is installed OR openssl-1_0_0-doc-1.0.2p-3.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.1-3.49 is installed OR libwebkit2gtk-4_0-37-2.28.1-3.49 is installed OR libwebkit2gtk3-lang-2.28.1-3.49 is installed OR webkit2gtk-4_0-injected-bundles-2.28.1-3.49 is installed OR webkit2gtk3-2.28.1-3.49 is installed OR webkit2gtk3-devel-2.28.1-3.49 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information flash-player-11.2.202.535-105 is installed OR flash-player-gnome-11.2.202.535-105 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information flash-player-11.2.202.559-117 is installed OR flash-player-gnome-11.2.202.559-117 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information gegl-0.2.0-14 is installed OR gegl-0_2-0.2.0-14 is installed OR gegl-0_2-lang-0.2.0-14 is installed OR libgegl-0_2-0-0.2.0-14 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information libpolkit0-32bit-0.113-5.9 is installed OR polkit-0.113-5.9 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND Package Information bluez-5.13-5.7 is installed OR bluez-cups-5.13-5.7 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information ffmpeg-3.4.2-4.5 is installed OR libavcodec-devel-3.4.2-4.5 is installed OR libavformat-devel-3.4.2-4.5 is installed OR libavformat57-3.4.2-4.5 is installed OR libavresample-devel-3.4.2-4.5 is installed OR libavresample3-3.4.2-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND bluez-cups-5.48-5.13 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information apache2-2.4.23-29.24 is installed OR apache2-doc-2.4.23-29.24 is installed OR apache2-example-pages-2.4.23-29.24 is installed OR apache2-prefork-2.4.23-29.24 is installed OR apache2-utils-2.4.23-29.24 is installed OR apache2-worker-2.4.23-29.24 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libsolv-0.6.36-2.16 is installed OR libsolv-tools-0.6.36-2.16 is installed OR libzypp-16.20.0-2.39 is installed OR perl-solv-0.6.36-2.16 is installed OR python-solv-0.6.36-2.16 is installed OR zypper-1.13.51-21.26 is installed OR zypper-log-1.13.51-21.26 is installed

BACK