OVAL Reference oval:org.opensuse.security:def:45610

Oval Definition:

oval:org.opensuse.security:def:45610

Revision Date:	2020-12-01	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP3) (Important)
Description:	This update for the Linux Kernel 4.4.162-94_72 fixes several issues. The following security issues were fixed: - CVE-2019-11477: Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an integer overflow when handling TCP Selective Acknowledgments (SACKs). A remote attacker could use this to cause a denial of service. (bsc#1137586) - CVE-2019-11478: Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment could be fragmented when handling certain TCP Selective Acknowledgment (SACK) sequences. A remote attacker could use this to cause a denial of service. (bsc#1137586) - CVE-2019-3846: A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network (bsc#1136424). This update contains a regression fix for CVE-2019-11477 and CVE-2019-11478 (bsc#1140747).
Family:	unix	Class:	patch
Status:		Reference(s):	1014524 1015567 1029912 1044231 1050549 1051510 1051858 1056686 1060463 1060644 1065600 1065729 1069591 1083647 1085030 1090174 1092874 1094932 1096748 1099162 1100453 1101506 1101644 1101645 1101651 1101656 1104967 1106812 1109911 1114279 1118338 1120386 1120930 1131233 1131237 1131239 1131241 1131245 1131291 1133021 1136157 1136446 1137325 1137597 1140747 1141493 1144333 1145051 1145929 1146539 1148868 1153674 1154385 1157424 1158552 1158983 1159037 1159142 1159198 1159199 1159285 1160571 1160659 1161951 1162929 1162931 1163403 1163508 1163897 1164078 1164284 1164507 1164893 1165019 1165111 1165182 1165404 1165488 1165527 1165741 1165813 1165873 1165949 1165984 1165985 1166003 1166101 1166102 1166103 1166104 1166632 1166730 1166731 1166732 1166733 1166734 1166735 1166780 1166860 1166861 1166862 1166864 1166866 1166867 1166868 1166870 1166940 1167005 1167288 1167290 1167316 1167421 1167423 1167629 1168075 1168202 1168276 1168295 1168424 1168443 1168486 1168760 1168762 1168763 1168764 1168765 1168829 1168854 1168881 1168884 1168952 1169057 1169390 1169514 1169625 1172140 1172437 1172515 1173389 1173455 1176315 1178588 CVE-2013-1430 CVE-2017-12652 CVE-2017-16927 CVE-2017-6967 CVE-2018-10861 CVE-2018-1128 CVE-2018-1129 CVE-2018-19840 CVE-2018-2938 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-3639 CVE-2019-0196 CVE-2019-0197 CVE-2019-0211 CVE-2019-0217 CVE-2019-0220 CVE-2019-11477 CVE-2019-11478 CVE-2019-14287 CVE-2019-15666 CVE-2019-19768 CVE-2019-19770 CVE-2019-3701 CVE-2019-3846 CVE-2019-5188 CVE-2019-9458 CVE-2020-10757 CVE-2020-10942 CVE-2020-11494 CVE-2020-11669 CVE-2020-11996 CVE-2020-15049 CVE-2020-17507 CVE-2020-26950 CVE-2020-8647 CVE-2020-8649 CVE-2020-8834 CVE-2020-9383 SUSE-SU-2019:1847-1 SUSE-SU-2019:2666-1 SUSE-SU-2020:0911-1 SUSE-SU-2020:1141-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 42.3 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Containers 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP3-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP4-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SP5 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND libgc1-7.6.4-lp150.1 is installed
Definition Synopsis
openSUSE Leap 42.3 is installed AND libmodplug1-0.8.8.5-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information gpg2-2.0.9-25.33.37 is installed OR gpg2-lang-2.0.9-25.33.37 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND wireshark-1.12.9-0.12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information libXinerama1-1.1.3-3 is installed OR libXinerama1-32bit-1.1.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libjbig2-2.0-12 is installed OR libjbig2-32bit-2.0-12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information cups-1.7.5-12 is installed OR cups-client-1.7.5-12 is installed OR cups-libs-1.7.5-12 is installed OR cups-libs-32bit-1.7.5-12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information NetworkManager-1.0.12-12 is installed OR NetworkManager-lang-1.0.12-12 is installed OR libnm-glib-vpn1-1.0.12-12 is installed OR libnm-glib4-1.0.12-12 is installed OR libnm-util2-1.0.12-12 is installed OR libnm0-1.0.12-12 is installed OR typelib-1_0-NM-1_0-1.0.12-12 is installed OR typelib-1_0-NMClient-1_0-1.0.12-12 is installed OR typelib-1_0-NetworkManager-1_0-1.0.12-12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information lcms2-2.7-9.7 is installed OR liblcms2-2-2.7-9.7 is installed OR liblcms2-2-32bit-2.7-9.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information glib2-2.54.3-4.7 is installed OR glib2-devel-32bit-2.54.3-4.7 is installed OR glib2-tools-32bit-2.54.3-4.7 is installed OR libgthread-2_0-0-32bit-2.54.3-4.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information giflib-devel-5.1.4-2 is installed OR libgif7-5.1.4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND fetchmail-6.3.26-3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information libzstd-devel-1.4.4-1.3 is installed OR libzstd1-1.4.4-1.3 is installed OR libzstd1-32bit-1.4.4-1.3 is installed OR zstd-1.4.4-1.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 15 SP1 is installed AND Package Information docker-18.09.1_ce-6.14 is installed OR docker-bash-completion-18.09.1_ce-6.14 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND perl-CGI-4.38-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND libXcursor1-32bit-1.1.15-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information libpmi0-17.11.13-6.18 is installed OR libslurm32-17.11.13-6.18 is installed OR perl-slurm-17.11.13-6.18 is installed OR slurm-17.11.13-6.18 is installed OR slurm-auth-none-17.11.13-6.18 is installed OR slurm-config-17.11.13-6.18 is installed OR slurm-devel-17.11.13-6.18 is installed OR slurm-doc-17.11.13-6.18 is installed OR slurm-lua-17.11.13-6.18 is installed OR slurm-munge-17.11.13-6.18 is installed OR slurm-node-17.11.13-6.18 is installed OR slurm-pam_slurm-17.11.13-6.18 is installed OR slurm-plugins-17.11.13-6.18 is installed OR slurm-slurmdbd-17.11.13-6.18 is installed OR slurm-sql-17.11.13-6.18 is installed OR slurm-torque-17.11.13-6.18 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_6-default-4-2 is installed OR kernel-livepatch-SLE15_Update_2-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information tomcat-9.0.21-3.27 is installed OR tomcat-docs-webapp-9.0.21-3.27 is installed OR tomcat-embed-9.0.21-3.27 is installed OR tomcat-javadoc-9.0.21-3.27 is installed OR tomcat-jsvc-9.0.21-3.27 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information bind-9.11.2-12.11 is installed OR bind-lwresd-9.11.2-12.11 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information libsamba-policy0-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-ad-dc-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-dsdb-modules-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-libs-python-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-python-4.9.5+git.187.71edee57d5a-3.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND vsftpd-3.0.3-5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND apache2-mod_nss-1.0.17-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libsystemd0-228-150.29 is installed OR libsystemd0-32bit-228-150.29 is installed OR libudev1-228-150.29 is installed OR libudev1-32bit-228-150.29 is installed OR systemd-228-150.29 is installed OR systemd-32bit-228-150.29 is installed OR systemd-bash-completion-228-150.29 is installed OR systemd-sysvinit-228-150.29 is installed OR udev-228-150.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information kernel-firmware-20170530-21.22 is installed OR ucode-amd-20170530-21.22 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_73-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_21-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information dbus-1-glib-0.100.2-3 is installed OR dbus-1-glib-32bit-0.100.2-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND kgraft-patch-4_4_180-94_97-default-10-2 is installed OR kgraft-patch-SLE12-SP3_Update_26-10-2 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS is installed AND kgraft-patch-4_4_180-94_97-default-10-2 is installed OR kgraft-patch-SLE12-SP3_Update_26-10-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information curl-7.37.0-37.43 is installed OR libcurl4-7.37.0-37.43 is installed OR libcurl4-32bit-7.37.0-37.43 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND kgraft-patch-4_4_162-94_72-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_22-5-2 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-LTSS is installed AND kgraft-patch-4_4_162-94_72-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_22-5-2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND ceph-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR ceph-common-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR libcephfs2-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR librados2-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR libradosstriper1-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR librbd1-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR librgw2-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR python-cephfs-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR python-rados-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR python-rbd-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR python-rgw-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA is installed AND ceph-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR ceph-common-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR libcephfs2-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR librados2-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR libradosstriper1-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR librbd1-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR librgw2-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR python-cephfs-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR python-rados-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR python-rbd-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR python-rgw-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libgcrypt-1.6.1-16.62 is installed OR libgcrypt20-1.6.1-16.62 is installed OR libgcrypt20-32bit-1.6.1-16.62 is installed OR libgcrypt20-hmac-1.6.1-16.62 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.62 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND xrdp-0.9.0~git.1456906198.f422461-21.9 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND xrdp-0.9.0~git.1456906198.f422461-21.9 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND squid-3.5.21-26.29 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4-ESPOS is installed AND squid-3.5.21-26.29 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND cups-1.7.5-20.26 is installed OR cups-client-1.7.5-20.26 is installed OR cups-libs-1.7.5-20.26 is installed OR cups-libs-32bit-1.7.5-20.26 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND cups-1.7.5-20.26 is installed OR cups-client-1.7.5-20.26 is installed OR cups-libs-1.7.5-20.26 is installed OR cups-libs-32bit-1.7.5-20.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information git-2.16.4-3.20 is installed OR git-arch-2.16.4-3.20 is installed OR git-core-2.16.4-3.20 is installed OR git-cvs-2.16.4-3.20 is installed OR git-daemon-2.16.4-3.20 is installed OR git-doc-2.16.4-3.20 is installed OR git-email-2.16.4-3.20 is installed OR git-gui-2.16.4-3.20 is installed OR git-svn-2.16.4-3.20 is installed OR git-web-2.16.4-3.20 is installed OR gitk-2.16.4-3.20 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information flash-player-11.2.202.559-117 is installed OR flash-player-gnome-11.2.202.559-117 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information imap-2007e_suse-19 is installed OR libc-client2007e_suse-2007e_suse-19 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information libmysqlclient_r18-10.0.28-17 is installed OR libmysqlclient_r18-32bit-10.0.28-17 is installed OR mariadb-10.0.28-17 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information ImageMagick-6.8.8.1-71.5 is installed OR libMagick++-6_Q16-3-6.8.8.1-71.5 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-71.5 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND Package Information gstreamer-plugins-base-1.8.3-13.3 is installed OR libgstfft-1_0-0-32bit-1.8.3-13.3 is installed OR typelib-1_0-GstAudio-1_0-1.8.3-13.3 is installed OR typelib-1_0-GstPbutils-1_0-1.8.3-13.3 is installed OR typelib-1_0-GstTag-1_0-1.8.3-13.3 is installed OR typelib-1_0-GstVideo-1_0-1.8.3-13.3 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND Package Information libmysqlclient_r18-10.0.40.3-2.15 is installed OR libmysqlclient_r18-32bit-10.0.40.3-2.15 is installed OR mariadb-100-10.0.40.3-2.15 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.16 is installed OR kernel-default-extra-4.12.14-25.16 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.18 is installed OR kernel-default-extra-4.12.14-197.18 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND python-Django-1.11.23-3.12 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information MozillaFirefox-60.8.0-109.83 is installed OR MozillaFirefox-translations-common-60.8.0-109.83 is installed OR libfreebl3-3.44.1-58.28 is installed OR libfreebl3-32bit-3.44.1-58.28 is installed OR libfreebl3-hmac-3.44.1-58.28 is installed OR libfreebl3-hmac-32bit-3.44.1-58.28 is installed OR libsoftokn3-3.44.1-58.28 is installed OR libsoftokn3-32bit-3.44.1-58.28 is installed OR libsoftokn3-hmac-3.44.1-58.28 is installed OR libsoftokn3-hmac-32bit-3.44.1-58.28 is installed OR mozilla-nss-3.44.1-58.28 is installed OR mozilla-nss-32bit-3.44.1-58.28 is installed OR mozilla-nss-certs-3.44.1-58.28 is installed OR mozilla-nss-certs-32bit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-32bit-3.44.1-58.28 is installed OR mozilla-nss-tools-3.44.1-58.28 is installed

BACK