Oval Definition:oval:org.opensuse.security:def:4647
Revision Date:2022-07-19Version:1
Title:Security update for the Linux Kernel (Live Patch 30 for SLE 12 SP5) (Important)
Description:

This update for the Linux Kernel 4.12.14-122_116 fixes several issues.

The following security issues were fixed:

- CVE-2022-20154: Fixed a use after free due to a race condition in lock_sock_nested of sock.c. This could lead to local escalation of privilege with System execution privileges needed (bsc#1200599). - CVE-2022-21499: Reinforced the kernel lockdown feature, until now it's been trivial to break out of it with kgdb or kdb (bsc#1199426). - CVE-2022-1729: Fixed a sys_perf_event_open() race condition against self (bsc#1199507).
Family:unixClass:patch
Status:Reference(s):1013712
1106531
1128858
1129271
1129392
1132160
1132690
1134190
1134428
1135222
1136020
1136081
1138316
1140492
1140868
1141322
1149296
1149297
1149298
1149299
1149303
1149304
1150939
1152375
1154063
1154824
1156353
1160968
1166916
1169511
1171352
1171883
1172177
1172182
1172184
1172186
1172277
1172356
1172405
1172442
1172443
1172466
1173351
1173376
1173377
1173378
1173380
1174543
1176086
1176181
1176671
1178171
1199697
1200059
1200608
945190
CVE-2014-3577
CVE-2015-5262
CVE-2016-9798
CVE-2018-16140
CVE-2019-11068
CVE-2019-11709
CVE-2019-11710
CVE-2019-11711
CVE-2019-11712
CVE-2019-11713
CVE-2019-11714
CVE-2019-11715
CVE-2019-11716
CVE-2019-11717
CVE-2019-11719
CVE-2019-11720
CVE-2019-11721
CVE-2019-11723
CVE-2019-11724
CVE-2019-11725
CVE-2019-11727
CVE-2019-11728
CVE-2019-11729
CVE-2019-11730
CVE-2019-11739
CVE-2019-11740
CVE-2019-11742
CVE-2019-11743
CVE-2019-11744
CVE-2019-11746
CVE-2019-11752
CVE-2019-11755
CVE-2019-16770
CVE-2019-2949
CVE-2019-5418
CVE-2019-5419
CVE-2019-5420
CVE-2020-0543
CVE-2020-0548
CVE-2020-0549
CVE-2020-11076
CVE-2020-11077
CVE-2020-11080
CVE-2020-15169
CVE-2020-15563
CVE-2020-15565
CVE-2020-15566
CVE-2020-15567
CVE-2020-24659
CVE-2020-2654
CVE-2020-2754
CVE-2020-2755
CVE-2020-2756
CVE-2020-2757
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2830
CVE-2020-5247
CVE-2020-5249
CVE-2020-5267
CVE-2020-7598
CVE-2020-8022
CVE-2020-8164
CVE-2020-8165
CVE-2020-8166
CVE-2020-8167
CVE-2020-8174
CVE-2020-8184
CVE-2020-8185
CVE-2022-1729
CVE-2022-20154
CVE-2022-21499
SUSE-SU-2019:1291-1
SUSE-SU-2019:1973-1
SUSE-SU-2019:2515-1
SUSE-SU-2019:3046-1
SUSE-SU-2020:1576-1
SUSE-SU-2020:1600-1
SUSE-SU-2020:1684-1
SUSE-SU-2020:1789-1
SUSE-SU-2020:1858-1
SUSE-SU-2020:1888-1
SUSE-SU-2020:2159-1
SUSE-SU-2020:2583-1
SUSE-SU-2020:2988-1
SUSE-SU-2020:3151-1
SUSE-SU-2020:3160-1
Platform(s):SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Build System Kit 12 SP2
SUSE Linux Enterprise Build System Kit 12 SP3
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise for SAP 12 SP1
SUSE Linux Enterprise High Availability 12
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP5
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12 SP5
SUSE Linux Enterprise Module for Public Cloud 15 SP1
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Point of Sale 12 SP2
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE Linux Enterprise Workstation Extension 15 SP2
SUSE OpenStack Cloud 5
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND Package Information
  • dnsmasq-2.71-4.1 is installed
  • OR dnsmasq-utils-2.71-4.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP2 is installed
  • AND Package Information
  • ghostscript-mini-9.15-20 is installed
  • OR ghostscript-mini-devel-9.15-20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP3 is installed
  • AND Package Information
  • libreoffice-5.3.5.2-43.5 is installed
  • OR libreoffice-sdk-5.3.5.2-43.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • MozillaFirefox-31.1.0esr-1 is installed
  • OR MozillaFirefox-translations-31.1.0esr-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND autofs-5.0.9-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • finch-2.11.0-12 is installed
  • OR libpurple-2.11.0-12 is installed
  • OR libpurple-lang-2.11.0-12 is installed
  • OR libpurple-meanwhile-2.11.0-12 is installed
  • OR libpurple-tcl-2.11.0-12 is installed
  • OR pidgin-2.11.0-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • coreutils-8.25-12 is installed
  • OR coreutils-lang-8.25-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND SuSEfirewall2-3.6.312.333-3.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 SP1 is installed
  • AND Package Information
  • kgraft-patch-3_12_69-60_64_29-default-5-3.1 is installed
  • OR kgraft-patch-3_12_69-60_64_29-xen-5-3.1 is installed
  • OR kgraft-patch-SLE12-SP1_Update_12-5-3.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 is installed
  • AND Package Information
  • conntrack-tools-1.4.2-5.2 is installed
  • OR libnetfilter_cthelper-1.0.0-7.1 is installed
  • OR libnetfilter_cthelper0-1.0.0-7.1 is installed
  • OR libnetfilter_cttimeout-1.0.0-9.1 is installed
  • OR libnetfilter_cttimeout1-1.0.0-9.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND ruby2.1-rubygem-bundler-1.7.3-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP5 is installed
  • AND fence-agents-4.4.0+git.1558595666.5f79f9e9-3.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND apache2-mod_nss-1.0.14-19.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 SP5 is installed
  • AND kgraft-patch-4_12_14-122_116-default-5-2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed
  • AND Package Information
  • rmt-server-2.3.1-3.3 is installed
  • OR rmt-server-pubcloud-2.3.1-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND Package Information
  • libpython3_4m1_0-3.4.6-25.16 is installed
  • OR python3-3.4.6-25.16 is installed
  • OR python3-base-3.4.6-25.16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Point of Sale 12 SP2 is installed
  • AND Package Information
  • salt-2016.11.4-45 is installed
  • OR salt-minion-2016.11.4-45 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed
  • AND Package Information
  • libvirt-2.0.0-27.42 is installed
  • OR libvirt-client-2.0.0-27.42 is installed
  • OR libvirt-daemon-2.0.0-27.42 is installed
  • OR libvirt-daemon-config-network-2.0.0-27.42 is installed
  • OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-network-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed
  • OR libvirt-daemon-hooks-2.0.0-27.42 is installed
  • OR libvirt-daemon-lxc-2.0.0-27.42 is installed
  • OR libvirt-daemon-qemu-2.0.0-27.42 is installed
  • OR libvirt-daemon-xen-2.0.0-27.42 is installed
  • OR libvirt-doc-2.0.0-27.42 is installed
  • OR libvirt-lock-sanlock-2.0.0-27.42 is installed
  • OR libvirt-nss-2.0.0-27.42 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND LibVNCServer-0.9.1-154.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2-LTSS is installed
  • AND Package Information
  • kernel-default-3.0.101-0.7.37.1 is installed
  • OR kernel-default-base-3.0.101-0.7.37.1 is installed
  • OR kernel-default-devel-3.0.101-0.7.37.1 is installed
  • OR kernel-default-man-3.0.101-0.7.37.1 is installed
  • OR kernel-ec2-3.0.101-0.7.37.1 is installed
  • OR kernel-ec2-base-3.0.101-0.7.37.1 is installed
  • OR kernel-ec2-devel-3.0.101-0.7.37.1 is installed
  • OR kernel-pae-3.0.101-0.7.37.1 is installed
  • OR kernel-pae-base-3.0.101-0.7.37.1 is installed
  • OR kernel-pae-devel-3.0.101-0.7.37.1 is installed
  • OR kernel-source-3.0.101-0.7.37.1 is installed
  • OR kernel-syms-3.0.101-0.7.37.1 is installed
  • OR kernel-trace-3.0.101-0.7.37.1 is installed
  • OR kernel-trace-base-3.0.101-0.7.37.1 is installed
  • OR kernel-trace-devel-3.0.101-0.7.37.1 is installed
  • OR kernel-xen-3.0.101-0.7.37.1 is installed
  • OR kernel-xen-base-3.0.101-0.7.37.1 is installed
  • OR kernel-xen-devel-3.0.101-0.7.37.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • docker-1.3.2-9.1 is installed
  • OR ruby2.1-rubygem-sle2docker-0.2.3-5.1 is installed
  • OR sle2docker-0.2.3-5.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • alsa-1.0.27.2-11 is installed
  • OR alsa-docs-1.0.27.2-11 is installed
  • OR libasound2-1.0.27.2-11 is installed
  • OR libasound2-32bit-1.0.27.2-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-28 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND apache2-mod_jk-1.2.40-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-38.8 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-38.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_51-52_39-default-5-2.1 is installed
  • OR kgraft-patch-3_12_51-52_39-xen-5-2.1 is installed
  • OR kgraft-patch-SLE12_Update_11-5-2.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • nodejs8-8.17.0-3.32 is installed
  • OR nodejs8-devel-8.17.0-3.32 is installed
  • OR nodejs8-docs-8.17.0-3.32 is installed
  • OR npm8-8.17.0-3.32 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • libxcb-dri2-0-1.10-3 is installed
  • OR libxcb-dri3-0-1.10-3 is installed
  • OR libxcb-glx0-1.10-3 is installed
  • OR libxcb-present0-1.10-3 is installed
  • OR libxcb-randr0-1.10-3 is installed
  • OR libxcb-render0-1.10-3 is installed
  • OR libxcb-shape0-1.10-3 is installed
  • OR libxcb-shm0-1.10-3 is installed
  • OR libxcb-sync1-1.10-3 is installed
  • OR libxcb-xf86dri0-1.10-3 is installed
  • OR libxcb-xfixes0-1.10-3 is installed
  • OR libxcb-xinerama0-1.10-3 is installed
  • OR libxcb-xkb1-1.10-3 is installed
  • OR libxcb-xv0-1.10-3 is installed
  • OR libxcb1-1.10-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND ucode-intel-20200602-3.43 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP2 is installed
  • AND Package Information
  • python-32bit-2.6.8-0.23.1 is installed
  • OR python-demo-2.6.8-0.23.1 is installed
  • OR python-devel-2.6.8-0.23.1 is installed
  • OR python-gdbm-2.6.8-0.23.1 is installed
  • OR python-idle-2.6.8-0.23.1 is installed
  • OR python-tk-2.6.8-0.23.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
  • AND mozilla-nss-devel-3.16.5-0.7.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND Package Information
  • gtk2-2.18.9-0.39.1 is installed
  • OR gtk2-devel-2.18.9-0.39.1 is installed
  • OR gtk2-devel-32bit-2.18.9-0.39.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-5 is installed
  • OR ImageMagick-devel-6.8.8.1-5 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-5 is installed
  • OR libMagick++-devel-6.8.8.1-5 is installed
  • OR perl-PerlMagick-6.8.8.1-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND apache2-devel-2.4.16-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND Package Information
  • DirectFB-devel-1.7.1-6 is installed
  • OR lib++dfb-devel-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND Package Information
  • flash-player-11.2.202.577-123.1 is installed
  • OR flash-player-gnome-11.2.202.577-123.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND Package Information
  • kernel-default-3.12.62-60.62.1 is installed
  • OR kernel-default-extra-3.12.62-60.62.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-47.1 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-47.1 is installed
  • OR libMagickCore-6_Q16-1-32bit-6.8.8.1-47.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND transfig-3.2.6a-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • ffmpeg-3.4.2-4.17 is installed
  • OR libavcodec-devel-3.4.2-4.17 is installed
  • OR libavformat-devel-3.4.2-4.17 is installed
  • OR libavformat57-3.4.2-4.17 is installed
  • OR libavresample-devel-3.4.2-4.17 is installed
  • OR libavresample3-3.4.2-4.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
  • AND Package Information
  • kernel-default-5.3.18-24.24 is installed
  • OR kernel-default-extra-5.3.18-24.24 is installed
    • BACK