Oval Definition:	oval:org.opensuse.security:def:4644
Revision Date: 2022-07-19 Version: 1 Title: Security update for the Linux Kernel (Live Patch 24 for SLE 12 SP5) (Important) Description: This update for the Linux Kernel 4.12.14-122_91 fixes several issues. The following security issues were fixed: - CVE-2022-20154: Fixed a use after free due to a race condition in lock_sock_nested of sock.c. This could lead to local escalation of privilege with System execution privileges needed (bsc#1200599). - CVE-2022-21499: Reinforced the kernel lockdown feature, until now it's been trivial to break out of it with kgdb or kdb (bsc#1199426). - CVE-2022-1729: Fixed a sys_perf_event_open() race condition against self (bsc#1199507). Family: unix Class: patch Status: Reference(s): 1050244 1051510 1051858 1058115 1061840 1065600 1065729 1071995 1085030 1086301 1086313 1086314 1089895 1100369 1109160 1109911 1112178 1114279 1118338 1118367 1118368 1120386 1127838 1128220 1130165 1133534 1134973 1136666 1141861 1141862 1143959 1144333 1146098 1146105 1146107 1149126 1149429 1151186 1151910 1151927 1152778 1153879 1153917 1154243 1154738 1154824 1156205 1156286 1157051 1157155 1157157 1157692 1158013 1158021 1158026 1158265 1158819 1159028 1159198 1159271 1159285 1159394 1159483 1159484 1159569 1159588 1159841 1159908 1159909 1159910 1159911 1159955 1160195 1160210 1160211 1160218 1160398 1160433 1160442 1160476 1160560 1160755 1160756 1160784 1160787 1160802 1160803 1160804 1160917 1160966 1160968 1161087 1161168 1161514 1161518 1161522 1161523 1161549 1161552 1161555 1161674 1161931 1161933 1161934 1161935 1161936 1161937 1161951 1162067 1162109 1162139 1162928 1162929 1162931 1163971 1164051 1164069 1164078 1164705 1164712 1164727 1164728 1164729 1164730 1164731 1164732 1164733 1164734 1164735 1164871 1165111 1165741 1165873 1165881 1165984 1165985 1166969 1167421 1167423 1167629 1168075 1168276 1168295 1168424 1168669 1168670 1168829 1168854 1169390 1169511 1169514 1169625 1170056 1170345 1170617 1170618 1170621 1170667 1170713 1170778 1170901 1171098 1171189 1171191 1171195 1171202 1171205 1171217 1171218 1171219 1171220 1171313 1171352 1171558 1171689 1171740 1171982 1171983 1172221 1172225 1172317 1172453 1172458 1172958 1173032 1173060 1173304 1173307 1173311 1173389 1173983 1174910 1174913 1175070 1175071 1175443 1175691 1176069 1176092 1176674 1178074 1199697 1200059 1200608 906079 CVE-2017-3136 CVE-2018-1000199 CVE-2018-5741 CVE-2019-0804 CVE-2019-11757 CVE-2019-11758 CVE-2019-11759 CVE-2019-11760 CVE-2019-11761 CVE-2019-11762 CVE-2019-11763 CVE-2019-11764 CVE-2019-14615 CVE-2019-14896 CVE-2019-14897 CVE-2019-15903 CVE-2019-16994 CVE-2019-19036 CVE-2019-19045 CVE-2019-19054 CVE-2019-19318 CVE-2019-19319 CVE-2019-19447 CVE-2019-19462 CVE-2019-19768 CVE-2019-19770 CVE-2019-19965 CVE-2019-19966 CVE-2019-20054 CVE-2019-20095 CVE-2019-20096 CVE-2019-20807 CVE-2019-20810 CVE-2019-20812 CVE-2019-3701 CVE-2019-6477 CVE-2019-9455 CVE-2019-9458 CVE-2019-9755 CVE-2019-9848 CVE-2019-9849 CVE-2019-9850 CVE-2019-9851 CVE-2019-9852 CVE-2020-0543 CVE-2020-10690 CVE-2020-10711 CVE-2020-10720 CVE-2020-10732 CVE-2020-10751 CVE-2020-10757 CVE-2020-10942 CVE-2020-11494 CVE-2020-11608 CVE-2020-11609 CVE-2020-11669 CVE-2020-11993 CVE-2020-11996 CVE-2020-12114 CVE-2020-12402 CVE-2020-12464 CVE-2020-12652 CVE-2020-12653 CVE-2020-12654 CVE-2020-12655 CVE-2020-12656 CVE-2020-12657 CVE-2020-12769 CVE-2020-13143 CVE-2020-14059 CVE-2020-14361 CVE-2020-14362 CVE-2020-14386 CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2654 CVE-2020-2655 CVE-2020-2732 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2773 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 CVE-2020-7053 CVE-2020-8428 CVE-2020-8616 CVE-2020-8617 CVE-2020-8618 CVE-2020-8619 CVE-2020-8620 CVE-2020-8621 CVE-2020-8622 CVE-2020-8623 CVE-2020-8624 CVE-2020-8647 CVE-2020-8648 CVE-2020-8649 CVE-2020-8834 CVE-2020-8992 CVE-2020-9383 CVE-2020-9490 CVE-2022-1729 CVE-2022-20154 CVE-2022-21499 SUSE-SU-2019:0603-1 SUSE-SU-2019:1001-1 SUSE-SU-2019:2231-1 SUSE-SU-2019:2912-1 SUSE-SU-2020:0213-1 SUSE-SU-2020:1551-1 SUSE-SU-2020:1569-1 SUSE-SU-2020:1663-1 SUSE-SU-2020:1769-1 SUSE-SU-2020:1841-1 SUSE-SU-2020:1850-1 SUSE-SU-2020:2398-1 SUSE-SU-2020:2579-1 SUSE-SU-2020:2914-1 SUSE-SU-2020:3067-1 SUSE-SU-2022:2438-1 Platform(s): SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise for SAP 12 SP2 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SP5 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 5 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND python-requests-2.3.0-1 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND lynx-2.8.7-27 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND Package Information libpoppler-cpp0-0.43.0-16.5 is installed OR poppler-0.43.0-16.5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information bzip2-1.0.6-27 is installed OR libbz2-1-1.0.6-27 is installed OR libbz2-1-32bit-1.0.6-27 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information accountsservice-0.6.35-3 is installed OR accountsservice-lang-0.6.35-3 is installed OR libaccountsservice0-0.6.35-3 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND facter-2.0.2-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND clamav-0.99.2-32 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information ImageMagick-6.8.8.1-71.85 is installed OR libMagick++-6_Q16-3-6.8.8.1-71.85 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.85 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-71.85 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.85 is installed Definition Synopsis SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information kgraft-patch-3_12_74-60_64_45-default-2-2.1 is installed OR kgraft-patch-3_12_74-60_64_45-xen-2-2.1 is installed OR kgraft-patch-SLE12-SP1_Update_16-2-2.1 is installed Definition Synopsis SUSE Linux Enterprise for SAP 12 SP2 is installed AND Package Information compat-openssl098-0.9.8j-105.1 is installed OR libopenssl0_9_8-0.9.8j-105.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 is installed AND python-PyYAML-3.10-15.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP1 is installed AND Package Information ctdb-4.2.4-28.14.1 is installed OR samba-4.2.4-28.14.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND lighttpd-1.4.35-1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP5 is installed AND conntrack-tools-1.4.2-5 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information apache2-2.4.23-29.43 is installed OR apache2-doc-2.4.23-29.43 is installed OR apache2-example-pages-2.4.23-29.43 is installed OR apache2-prefork-2.4.23-29.43 is installed OR apache2-utils-2.4.23-29.43 is installed OR apache2-worker-2.4.23-29.43 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 SP5 is installed AND kgraft-patch-4_12_14-122_91-default-14-2.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 is installed AND python-azure-agent-2.2.36-7.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information kernel-azure-4.12.14-8.44 is installed OR kernel-azure-base-4.12.14-8.44 is installed OR kernel-azure-devel-4.12.14-8.44 is installed OR kernel-devel-azure-4.12.14-8.44 is installed OR kernel-source-azure-4.12.14-8.44 is installed OR kernel-syms-azure-4.12.14-8.44 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php7-7.0.7-50.49 is installed OR php7-7.0.7-50.49 is installed OR php7-bcmath-7.0.7-50.49 is installed OR php7-bz2-7.0.7-50.49 is installed OR php7-calendar-7.0.7-50.49 is installed OR php7-ctype-7.0.7-50.49 is installed OR php7-curl-7.0.7-50.49 is installed OR php7-dba-7.0.7-50.49 is installed OR php7-dom-7.0.7-50.49 is installed OR php7-enchant-7.0.7-50.49 is installed OR php7-exif-7.0.7-50.49 is installed OR php7-fastcgi-7.0.7-50.49 is installed OR php7-fileinfo-7.0.7-50.49 is installed OR php7-fpm-7.0.7-50.49 is installed OR php7-ftp-7.0.7-50.49 is installed OR php7-gd-7.0.7-50.49 is installed OR php7-gettext-7.0.7-50.49 is installed OR php7-gmp-7.0.7-50.49 is installed OR php7-iconv-7.0.7-50.49 is installed OR php7-imap-7.0.7-50.49 is installed OR php7-intl-7.0.7-50.49 is installed OR php7-json-7.0.7-50.49 is installed OR php7-ldap-7.0.7-50.49 is installed OR php7-mbstring-7.0.7-50.49 is installed OR php7-mcrypt-7.0.7-50.49 is installed OR php7-mysql-7.0.7-50.49 is installed OR php7-odbc-7.0.7-50.49 is installed OR php7-opcache-7.0.7-50.49 is installed OR php7-openssl-7.0.7-50.49 is installed OR php7-pcntl-7.0.7-50.49 is installed OR php7-pdo-7.0.7-50.49 is installed OR php7-pear-7.0.7-50.49 is installed OR php7-pear-Archive_Tar-7.0.7-50.49 is installed OR php7-pgsql-7.0.7-50.49 is installed OR php7-phar-7.0.7-50.49 is installed OR php7-posix-7.0.7-50.49 is installed OR php7-pspell-7.0.7-50.49 is installed OR php7-shmop-7.0.7-50.49 is installed OR php7-snmp-7.0.7-50.49 is installed OR php7-soap-7.0.7-50.49 is installed OR php7-sockets-7.0.7-50.49 is installed OR php7-sqlite-7.0.7-50.49 is installed OR php7-sysvmsg-7.0.7-50.49 is installed OR php7-sysvsem-7.0.7-50.49 is installed OR php7-sysvshm-7.0.7-50.49 is installed OR php7-tokenizer-7.0.7-50.49 is installed OR php7-wddx-7.0.7-50.49 is installed OR php7-xmlreader-7.0.7-50.49 is installed OR php7-xmlrpc-7.0.7-50.49 is installed OR php7-xmlwriter-7.0.7-50.49 is installed OR php7-xsl-7.0.7-50.49 is installed OR php7-zip-7.0.7-50.49 is installed OR php7-zlib-7.0.7-50.49 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2 is installed AND python-pycrypto-2.6.1-10.3 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed AND Package Information glibc-2.22-62.13 is installed OR glibc-32bit-2.22-62.13 is installed OR glibc-devel-2.22-62.13 is installed OR glibc-devel-32bit-2.22-62.13 is installed OR glibc-html-2.22-62.13 is installed OR glibc-i18ndata-2.22-62.13 is installed OR glibc-info-2.22-62.13 is installed OR glibc-locale-2.22-62.13 is installed OR glibc-locale-32bit-2.22-62.13 is installed OR glibc-profile-2.22-62.13 is installed OR glibc-profile-32bit-2.22-62.13 is installed OR nscd-2.22-62.13 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND amavisd-new-2.7.0-18.7.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2-LTSS is installed AND Package Information java-1_7_0-ibm-1.7.0_sr9.60-58.2 is installed OR java-1_7_0-ibm-alsa-1.7.0_sr9.60-58.2 is installed OR java-1_7_0-ibm-devel-1.7.0_sr9.60-58.2 is installed OR java-1_7_0-ibm-jdbc-1.7.0_sr9.60-58.2 is installed OR java-1_7_0-ibm-plugin-1.7.0_sr9.60-58.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information tigervnc-1.3.0-22.3 is installed OR xorg-x11-Xvnc-1.3.0-22.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information MozillaFirefox-38.4.0esr-51 is installed OR MozillaFirefox-translations-38.4.0esr-51 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information alsa-1.0.27.2-11 is installed OR alsa-docs-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND apache-commons-httpclient-3.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information MozillaFirefox-45.3.0esr-78.1 is installed OR MozillaFirefox-translations-45.3.0esr-78.1 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information vim-8.0.1568-5.6 is installed OR vim-data-8.0.1568-5.6 is installed OR vim-data-common-8.0.1568-5.6 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information libvncclient0-0.9.9-16 is installed OR libvncserver0-0.9.9-16 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information java-1_8_0-openjdk-1.8.0.252-3.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.252-3.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.252-3.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.252-3.35 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND Package Information openCryptoki-2.4-0.11.1 is installed OR openCryptoki-devel-2.4-0.11.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information libblkid-devel-2.19.1-6.62.1 is installed OR libblkid-devel-32bit-2.19.1-6.62.1 is installed OR libuuid-devel-2.19.1-6.62.1 is installed OR libuuid-devel-32bit-2.19.1-6.62.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information gnutls-2.4.1-24.39.57.1 is installed OR libgnutls-devel-2.4.1-24.39.57.1 is installed OR libgnutls-extra-devel-2.4.1-24.39.57.1 is installed OR libgnutls-extra26-2.4.1-24.39.57.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND apache2-devel-2.4.10-6 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND accountsservice-devel-0.6.35-3 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND aaa_base-malloccheck-13.2+git20140911.61c1681-28 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information libvirt-1.2.5-27.10.1 is installed OR libvirt-client-32bit-1.2.5-27.10.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information ImageMagick-6.8.8.1-33.1 is installed OR libMagick++-6_Q16-3-6.8.8.1-33.1 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-33.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information kernel-default-4.4.21-90.1 is installed OR kernel-default-extra-4.4.21-90.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information libntfs-3g87-2016.2.22-3.3 is installed OR ntfs-3g-2016.2.22-3.3 is installed OR ntfs-3g_ntfsprogs-2016.2.22-3.3 is installed OR ntfsprogs-2016.2.22-3.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information libopencv3_3-3.3.1-6.6 is installed OR opencv-3.3.1-6.6 is installed OR opencv-devel-3.3.1-6.6 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information kernel-default-5.3.18-24.12 is installed OR kernel-default-extra-5.3.18-24.12 is installed
BACK