OVAL Reference oval:org.opensuse.security:def:45650

Oval Definition:

oval:org.opensuse.security:def:45650

Revision Date:	2020-12-01	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 24 for SLE 12 SP3) (Important)
Description:	This update for the Linux Kernel 4.4.176-94_88 fixes several issues. The following security issues were fixed: - CVE-2019-14835: A buffer overflow flaw was found in the way vhost functionality, that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host (bsc#1151021). - CVE-2017-18379: Fixed an out of boundary access that happened in drivers/nvme/target/fc.c (bsc#1145604).
Family:	unix	Class:	patch
Status:		Reference(s):	1012382 1027519 1036304 1045735 1049825 1055857 1058115 1059893 1070851 1071995 1076192 1082023 1082318 1088705 1091624 1092413 1096803 1099847 1100028 1101349 1102429 1106284 1111331 1112066 1112695 1113668 1113669 1117267 1120843 1120943 1126088 1131565 1132472 1132666 1134537 1134848 1135281 1135603 1136035 1136586 1137586 1143215 1144333 1145604 1151021 1154366 1158785 1158787 1158788 1158789 1158790 1158791 1158792 1158793 1158795 1160770 1164692 1165629 1171475 1171847 1171988 1172105 1172116 1172121 1172205 1172428 1172963 1173798 1173954 1174205 1174689 1174699 1174757 1174784 1174910 1174913 1174978 1175112 1175127 1175213 1175228 1175515 1175518 1175691 1175749 1176069 1176410 1176733 1177143 1177513 1177943 CVE-2016-6328 CVE-2017-18379 CVE-2017-7544 CVE-2017-9269 CVE-2018-12127 CVE-2018-12130 CVE-2018-19131 CVE-2018-19132 CVE-2018-19519 CVE-2018-20030 CVE-2018-7191 CVE-2018-7685 CVE-2019-11091 CVE-2019-11190 CVE-2019-11815 CVE-2019-11833 CVE-2019-11884 CVE-2019-12382 CVE-2019-1348 CVE-2019-1349 CVE-2019-1350 CVE-2019-1351 CVE-2019-1352 CVE-2019-1353 CVE-2019-1354 CVE-2019-1387 CVE-2019-14835 CVE-2019-19604 CVE-2019-2614 CVE-2019-2627 CVE-2019-2628 CVE-2019-5489 CVE-2019-9278 CVE-2020-0093 CVE-2020-0543 CVE-2020-10135 CVE-2020-12767 CVE-2020-13112 CVE-2020-13113 CVE-2020-13114 CVE-2020-14314 CVE-2020-14331 CVE-2020-14356 CVE-2020-14361 CVE-2020-14362 CVE-2020-14386 CVE-2020-14779 CVE-2020-14781 CVE-2020-14782 CVE-2020-14792 CVE-2020-14796 CVE-2020-14797 CVE-2020-14798 CVE-2020-14803 CVE-2020-16166 CVE-2020-1749 CVE-2020-1938 CVE-2020-24394 CVE-2020-25219 CVE-2020-25645 CVE-2020-26117 CVE-2020-26154 SUSE-SU-2018:4149-1 SUSE-SU-2019:2330-1 SUSE-SU-2019:3311-1 SUSE-SU-2020:1632-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 42.3 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Containers 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP3-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP4-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP4-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information libnghttp2-14-1.31.1-lp150.1 is installed OR libnghttp2-14-32bit-1.31.1-lp150.1 is installed
Definition Synopsis
openSUSE Leap 42.3 is installed AND Package Information LibVNCServer-devel-0.9.9-15 is installed OR libvncclient0-0.9.9-15 is installed OR libvncserver0-0.9.9-15 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND ruby-1.8.7.p357-0.9.13 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND cabextract-1.2-2.12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information bzip2-1.0.6-27 is installed OR libbz2-1-1.0.6-27 is installed OR libbz2-1-32bit-1.0.6-27 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information cups-1.7.5-9 is installed OR cups-client-1.7.5-9 is installed OR cups-libs-1.7.5-9 is installed OR cups-libs-32bit-1.7.5-9 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information bash-4.3-78 is installed OR bash-doc-4.3-78 is installed OR bash-lang-4.3-78 is installed OR libreadline6-6.3-78 is installed OR libreadline6-32bit-6.3-78 is installed OR readline-doc-6.3-78 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND cvs-1.12.12-181 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libecpg6-10.5-1.3 is installed OR libpq5-10.5-1.3 is installed OR libpq5-32bit-10.5-1.3 is installed OR postgresql10-10.5-1.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND tiff-4.0.9-5.27 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information ecryptfs-utils-111-2 is installed OR ecryptfs-utils-devel-111-2 is installed OR libecryptfs1-111-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information binutils-2.31-5 is installed OR binutils-devel-2.31-5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 15 SP1 is installed AND slirp4netns-0.4.5-3.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND libXcursor1-32bit-1.1.15-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information gnome-settings-daemon-3.26.2-6 is installed OR gnome-settings-daemon-devel-3.26.2-6 is installed OR gnome-settings-daemon-lang-3.26.2-6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 is installed AND aaa_base-malloccheck-84.87+git20180409.04c9dae-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information openldap2-2.4.46-9.19 is installed OR openldap2-back-meta-2.4.46-9.19 is installed OR openldap2-back-perl-2.4.46-9.19 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_17-default-3-2 is installed OR kernel-livepatch-SLE15_Update_10-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_15-default-3-2 is installed OR kernel-livepatch-SLE15-SP1_Update_4-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information liburiparser1-0.8.5-3.5 is installed OR uriparser-0.8.5-3.5 is installed OR uriparser-devel-0.8.5-3.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-32bit-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-demo-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-devel-32bit-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-src-1.8.0_sr5.35-3.20 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information MozillaFirefox-68.9.0-3.91 is installed OR MozillaFirefox-branding-upstream-68.9.0-3.91 is installed OR MozillaFirefox-buildsymbols-68.9.0-3.91 is installed OR MozillaFirefox-devel-68.9.0-3.91 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libecpg6-10.6-4.8 is installed OR postgresql10-10.6-4.8 is installed OR postgresql10-contrib-10.6-4.8 is installed OR postgresql10-devel-10.6-4.8 is installed OR postgresql10-docs-10.6-4.8 is installed OR postgresql10-plperl-10.6-4.8 is installed OR postgresql10-plpython-10.6-4.8 is installed OR postgresql10-pltcl-10.6-4.8 is installed OR postgresql10-server-10.6-4.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information ovmf-2017+git1510945757.b2662641d5-5.22 is installed OR ovmf-tools-2017+git1510945757.b2662641d5-5.22 is installed OR qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-5.22 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information openslp-2.0.0-18.17 is installed OR openslp-32bit-2.0.0-18.17 is installed OR openslp-server-2.0.0-18.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_120-92_70-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_20-9-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-devel-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_nss-1.0.14-18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information ibus-1.5.13-15.11 is installed OR ibus-gtk-1.5.13-15.11 is installed OR ibus-gtk3-1.5.13-15.11 is installed OR ibus-lang-1.5.13-15.11 is installed OR libibus-1_0-5-1.5.13-15.11 is installed OR typelib-1_0-IBus-1_0-1.5.13-15.11 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND xorg-x11-server-7.6_1.18.3-76.29 is installed OR xorg-x11-server-extra-7.6_1.18.3-76.29 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS is installed AND xorg-x11-server-7.6_1.18.3-76.29 is installed OR xorg-x11-server-extra-7.6_1.18.3-76.29 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND kgraft-patch-4_4_176-94_88-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_24-4-2 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-LTSS is installed AND kgraft-patch-4_4_176-94_88-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_24-4-2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND libzypp-16.17.20-2.33 is installed OR zypper-1.13.45-21.21 is installed OR zypper-log-1.13.45-21.21 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA is installed AND libzypp-16.17.20-2.33 is installed OR zypper-1.13.45-21.21 is installed OR zypper-log-1.13.45-21.21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information apache2-2.4.23-29.21 is installed OR apache2-doc-2.4.23-29.21 is installed OR apache2-example-pages-2.4.23-29.21 is installed OR apache2-prefork-2.4.23-29.21 is installed OR apache2-utils-2.4.23-29.21 is installed OR apache2-worker-2.4.23-29.21 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND tcpdump-4.9.2-14.8 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND tcpdump-4.9.2-14.8 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND kernel-default-4.12.14-95.60 is installed OR kernel-default-base-4.12.14-95.60 is installed OR kernel-default-devel-4.12.14-95.60 is installed OR kernel-devel-4.12.14-95.60 is installed OR kernel-macros-4.12.14-95.60 is installed OR kernel-source-4.12.14-95.60 is installed OR kernel-syms-4.12.14-95.60 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4-ESPOS is installed AND kernel-default-4.12.14-95.60 is installed OR kernel-default-base-4.12.14-95.60 is installed OR kernel-default-devel-4.12.14-95.60 is installed OR kernel-devel-4.12.14-95.60 is installed OR kernel-macros-4.12.14-95.60 is installed OR kernel-source-4.12.14-95.60 is installed OR kernel-syms-4.12.14-95.60 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND tomcat-9.0.36-3.42 is installed OR tomcat-admin-webapps-9.0.36-3.42 is installed OR tomcat-docs-webapp-9.0.36-3.42 is installed OR tomcat-el-3_0-api-9.0.36-3.42 is installed OR tomcat-javadoc-9.0.36-3.42 is installed OR tomcat-jsp-2_3-api-9.0.36-3.42 is installed OR tomcat-lib-9.0.36-3.42 is installed OR tomcat-servlet-4_0-api-9.0.36-3.42 is installed OR tomcat-webapps-9.0.36-3.42 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4-LTSS is installed AND tomcat-9.0.36-3.42 is installed OR tomcat-admin-webapps-9.0.36-3.42 is installed OR tomcat-docs-webapp-9.0.36-3.42 is installed OR tomcat-el-3_0-api-9.0.36-3.42 is installed OR tomcat-javadoc-9.0.36-3.42 is installed OR tomcat-jsp-2_3-api-9.0.36-3.42 is installed OR tomcat-lib-9.0.36-3.42 is installed OR tomcat-servlet-4_0-api-9.0.36-3.42 is installed OR tomcat-webapps-9.0.36-3.42 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND libldap-2_4-2-2.4.41-18.68 is installed OR libldap-2_4-2-32bit-2.4.41-18.68 is installed OR openldap2-2.4.41-18.68 is installed OR openldap2-back-meta-2.4.41-18.68 is installed OR openldap2-client-2.4.41-18.68 is installed OR openldap2-doc-2.4.41-18.68 is installed OR openldap2-ppolicy-check-password-1.2-18.68 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND libldap-2_4-2-2.4.41-18.68 is installed OR libldap-2_4-2-32bit-2.4.41-18.68 is installed OR openldap2-2.4.41-18.68 is installed OR openldap2-back-meta-2.4.41-18.68 is installed OR openldap2-client-2.4.41-18.68 is installed OR openldap2-doc-2.4.41-18.68 is installed OR openldap2-ppolicy-check-password-1.2-18.68 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information kernel-default-3.12.43-52.6 is installed OR kernel-default-extra-3.12.43-52.6 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information flash-player-11.2.202.559-117 is installed OR flash-player-gnome-11.2.202.559-117 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information ImageMagick-6.8.8.1-54 is installed OR libMagick++-6_Q16-3-6.8.8.1-54 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-54 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information python-base-2.7.13-28.6 is installed OR python-devel-2.7.13-28.6 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND Package Information libSoundTouch0-32bit-1.7.1-5.6 is installed OR soundtouch-1.7.1-5.6 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-150.32 is installed OR kernel-default-extra-4.12.14-150.32 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.10 is installed OR kernel-default-extra-4.12.14-197.10 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND python-SQLAlchemy-1.1.12-3.5 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information mariadb-10.2.22-4.11 is installed OR mariadb-client-10.2.22-4.11 is installed OR mariadb-errormessages-10.2.22-4.11 is installed OR mariadb-galera-10.2.22-4.11 is installed OR mariadb-tools-10.2.22-4.11 is installed

BACK