Oval Definition:	oval:org.opensuse.security:def:4651
Revision Date: 2022-07-21 Version: 1 Title: Security update for the Linux Kernel (Live Patch 21 for SLE 12 SP5) (Important) Description: This update for the Linux Kernel 4.12.14-122_80 fixes several issues. The following security issues were fixed: - CVE-2022-20154: Fixed a use after free due to a race condition in lock_sock_nested of sock.c. This could lead to local escalation of privilege with System execution privileges needed (bsc#1200599). - CVE-2022-21499: Reinforced the kernel lockdown feature, until now it's been trivial to break out of it with kgdb or kdb (bsc#1199426). - CVE-2022-1729: Fixed a sys_perf_event_open() race condition against self (bsc#1199507). Family: unix Class: patch Status: Reference(s): 1046303 1050244 1050549 1051510 1051858 1058115 1061840 1065600 1065729 1071995 1083647 1085030 1086263 1086301 1086313 1086314 1088810 1089895 1090888 1099358 1103989 1103990 1103991 1104353 1104427 1104745 1105392 1109837 1109911 1111666 1112178 1112374 1112504 1113956 1114279 1114685 1115026 1118338 1118661 1120386 1123328 1123823 1123828 1123832 1126206 1127371 1127611 1127682 1129124 1129551 1129991 1133021 1133147 1134973 1136440 1140025 1142685 1142988 1143959 1144162 1144333 1144363 1151488 1151548 1151910 1151927 1152107 1152631 1152763 1153535 1153917 1153921 1154092 1154243 1154601 1154768 1154824 1154916 1155331 1155334 1155689 1156259 1156286 1156462 1157155 1157157 1157169 1157303 1157424 1157465 1157480 1157692 1157853 1157895 1157908 1157966 1158013 1158021 1158026 1158071 1158094 1158132 1158265 1158328 1158381 1158533 1158819 1158823 1158824 1158827 1158834 1158893 1158900 1158903 1158904 1158954 1159024 1159028 1159198 1159271 1159284 1159285 1159297 1159377 1159394 1159483 1159484 1159500 1159569 1159588 1159841 1159908 1159909 1159910 1159911 1159955 1160147 1160195 1160210 1160211 1160218 1160433 1160442 1160469 1160470 1160476 1160560 1160618 1160678 1160755 1160756 1160784 1160787 1160802 1160803 1160804 1160903 1160905 1160917 1160966 1160979 1161087 1161243 1161360 1161472 1161514 1161518 1161522 1161523 1161549 1161552 1161555 1161674 1161702 1161907 1161931 1161933 1161934 1161935 1161936 1161937 1161951 1162028 1162067 1162109 1162139 1162327 1162557 1162617 1162618 1162619 1162623 1162928 1162929 1162931 1162943 1163206 1163383 1163384 1163762 1163774 1163836 1163840 1163841 1163842 1163843 1163844 1163845 1163846 1163849 1163850 1163851 1163852 1163853 1163855 1163856 1163857 1163858 1163859 1163860 1163861 1163862 1163863 1163867 1163869 1163880 1163971 1164051 1164069 1164078 1164098 1164115 1164314 1164315 1164388 1164471 1164598 1164632 1164705 1164712 1164727 1164728 1164729 1164730 1164731 1164732 1164733 1164734 1164735 1164871 1165111 1165572 1165741 1165873 1165881 1165984 1165985 1166969 1167421 1167423 1167437 1167629 1168075 1168276 1168295 1168340 1168424 1168670 1168829 1168854 1169390 1169514 1169604 1169625 1169800 1170056 1170104 1170288 1170345 1170595 1170617 1170618 1170621 1170778 1170901 1171098 1171189 1171191 1171195 1171202 1171205 1171217 1171218 1171219 1171220 1171689 1171863 1171864 1171866 1171906 1171982 1171983 1172075 1172221 1172317 1172348 1172453 1172458 1173027 1173072 1173389 1173998 1174165 1175070 1175071 1175193 1175194 1178074 1199697 1200059 1200608 CVE-2018-1000135 CVE-2018-1000199 CVE-2018-20748 CVE-2018-20749 CVE-2018-20750 CVE-2019-0816 CVE-2019-11745 CVE-2019-13722 CVE-2019-14615 CVE-2019-14896 CVE-2019-14897 CVE-2019-16746 CVE-2019-16994 CVE-2019-17005 CVE-2019-17008 CVE-2019-17009 CVE-2019-17010 CVE-2019-17011 CVE-2019-17012 CVE-2019-18808 CVE-2019-18897 CVE-2019-18902 CVE-2019-19036 CVE-2019-19045 CVE-2019-19051 CVE-2019-19054 CVE-2019-19066 CVE-2019-19318 CVE-2019-19319 CVE-2019-19332 CVE-2019-19338 CVE-2019-19447 CVE-2019-19462 CVE-2019-19523 CVE-2019-19526 CVE-2019-19527 CVE-2019-19532 CVE-2019-19533 CVE-2019-19535 CVE-2019-19537 CVE-2019-19767 CVE-2019-19768 CVE-2019-19770 CVE-2019-19927 CVE-2019-19965 CVE-2019-19966 CVE-2019-20054 CVE-2019-20095 CVE-2019-20096 CVE-2019-20810 CVE-2019-20812 CVE-2019-3695 CVE-2019-3696 CVE-2019-3701 CVE-2019-9455 CVE-2019-9458 CVE-2020-0543 CVE-2020-10543 CVE-2020-10690 CVE-2020-10711 CVE-2020-10720 CVE-2020-10732 CVE-2020-10751 CVE-2020-10757 CVE-2020-10878 CVE-2020-10942 CVE-2020-11494 CVE-2020-11608 CVE-2020-11609 CVE-2020-11651 CVE-2020-11652 CVE-2020-11669 CVE-2020-11993 CVE-2020-11996 CVE-2020-12114 CVE-2020-12464 CVE-2020-12652 CVE-2020-12653 CVE-2020-12654 CVE-2020-12655 CVE-2020-12656 CVE-2020-12657 CVE-2020-12723 CVE-2020-12769 CVE-2020-13143 CVE-2020-13753 CVE-2020-14349 CVE-2020-14350 CVE-2020-2732 CVE-2020-7053 CVE-2020-7216 CVE-2020-8177 CVE-2020-8428 CVE-2020-8647 CVE-2020-8648 CVE-2020-8649 CVE-2020-8834 CVE-2020-8992 CVE-2020-9383 CVE-2020-9490 CVE-2020-9802 CVE-2020-9803 CVE-2020-9805 CVE-2020-9806 CVE-2020-9807 CVE-2020-9843 CVE-2020-9850 CVE-2022-1729 CVE-2022-20154 CVE-2022-21499 SUSE-SU-2019:0283-1 SUSE-SU-2019:1369-1 SUSE-SU-2019:3096-1 SUSE-SU-2019:3339-1 SUSE-SU-2020:0263-1 SUSE-SU-2020:0357-1 SUSE-SU-2020:0511-1 SUSE-SU-2020:1663-1 SUSE-SU-2020:1682-1 SUSE-SU-2020:1773-1 SUSE-SU-2020:1841-1 SUSE-SU-2020:1973-1 SUSE-SU-2020:1990-1 SUSE-SU-2020:2264-1 SUSE-SU-2020:3067-1 Platform(s): SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SP5 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 5 SUSE Package Hub for SUSE Linux Enterprise 12 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information dnsmasq-2.71-4.1 is installed OR dnsmasq-utils-2.71-4.1 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND Package Information ghostscript-mini-9.15-22 is installed OR ghostscript-mini-devel-9.15-22 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND kernel-zfcpdump-4.4.92-6.18 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND argyllcms-1.6.3-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information DirectFB-1.7.1-4 is installed OR lib++dfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-32bit-1.7.1-4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information fuse-2.9.3-5 is installed OR libfuse2-2.9.3-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information apparmor-docs-2.8.2-49 is installed OR apparmor-parser-2.8.2-49 is installed OR apparmor-profiles-2.8.2-49 is installed OR apparmor-utils-2.8.2-49 is installed OR libapparmor1-2.8.2-49 is installed OR libapparmor1-32bit-2.8.2-49 is installed OR pam_apparmor-2.8.2-49 is installed OR pam_apparmor-32bit-2.8.2-49 is installed OR perl-apparmor-2.8.2-49 is installed Definition Synopsis SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information kgraft-patch-3_12_67-60_64_24-default-6-3.1 is installed OR kgraft-patch-3_12_67-60_64_24-xen-6-3.1 is installed OR kgraft-patch-SLE12-SP1_Update_11-6-3.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 is installed AND Package Information conntrack-tools-1.4.2-5.2 is installed OR libnetfilter_cthelper-1.0.0-7.1 is installed OR libnetfilter_cthelper0-1.0.0-7.1 is installed OR libnetfilter_cttimeout-1.0.0-9.1 is installed OR libnetfilter_cttimeout1-1.0.0-9.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP1 is installed AND hawk2-1.0.1+git.1456406635.49e230d-12.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND ctdb-4.4.2-29 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND fence-agents-4.0.25+git.1485179354.eb43835-2 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP5 is installed AND libqb0-1.0.3+20171226.6d62b64-4.3 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information audiofile-0.3.6-11.3 is installed OR libaudiofile1-0.3.6-11.3 is installed OR libaudiofile1-32bit-0.3.6-11.3 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 SP5 is installed AND kgraft-patch-4_12_14-122_80-default-17-2.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information cloud-init-19.2-8.11 is installed OR cloud-init-config-suse-19.2-8.11 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php7-7.0.7-50.52 is installed OR php7-7.0.7-50.52 is installed OR php7-bcmath-7.0.7-50.52 is installed OR php7-bz2-7.0.7-50.52 is installed OR php7-calendar-7.0.7-50.52 is installed OR php7-ctype-7.0.7-50.52 is installed OR php7-curl-7.0.7-50.52 is installed OR php7-dba-7.0.7-50.52 is installed OR php7-dom-7.0.7-50.52 is installed OR php7-enchant-7.0.7-50.52 is installed OR php7-exif-7.0.7-50.52 is installed OR php7-fastcgi-7.0.7-50.52 is installed OR php7-fileinfo-7.0.7-50.52 is installed OR php7-fpm-7.0.7-50.52 is installed OR php7-ftp-7.0.7-50.52 is installed OR php7-gd-7.0.7-50.52 is installed OR php7-gettext-7.0.7-50.52 is installed OR php7-gmp-7.0.7-50.52 is installed OR php7-iconv-7.0.7-50.52 is installed OR php7-imap-7.0.7-50.52 is installed OR php7-intl-7.0.7-50.52 is installed OR php7-json-7.0.7-50.52 is installed OR php7-ldap-7.0.7-50.52 is installed OR php7-mbstring-7.0.7-50.52 is installed OR php7-mcrypt-7.0.7-50.52 is installed OR php7-mysql-7.0.7-50.52 is installed OR php7-odbc-7.0.7-50.52 is installed OR php7-opcache-7.0.7-50.52 is installed OR php7-openssl-7.0.7-50.52 is installed OR php7-pcntl-7.0.7-50.52 is installed OR php7-pdo-7.0.7-50.52 is installed OR php7-pear-7.0.7-50.52 is installed OR php7-pear-Archive_Tar-7.0.7-50.52 is installed OR php7-pgsql-7.0.7-50.52 is installed OR php7-phar-7.0.7-50.52 is installed OR php7-posix-7.0.7-50.52 is installed OR php7-pspell-7.0.7-50.52 is installed OR php7-shmop-7.0.7-50.52 is installed OR php7-snmp-7.0.7-50.52 is installed OR php7-soap-7.0.7-50.52 is installed OR php7-sockets-7.0.7-50.52 is installed OR php7-sqlite-7.0.7-50.52 is installed OR php7-sysvmsg-7.0.7-50.52 is installed OR php7-sysvsem-7.0.7-50.52 is installed OR php7-sysvshm-7.0.7-50.52 is installed OR php7-tokenizer-7.0.7-50.52 is installed OR php7-wddx-7.0.7-50.52 is installed OR php7-xmlreader-7.0.7-50.52 is installed OR php7-xmlrpc-7.0.7-50.52 is installed OR php7-xmlwriter-7.0.7-50.52 is installed OR php7-xsl-7.0.7-50.52 is installed OR php7-zip-7.0.7-50.52 is installed OR php7-zlib-7.0.7-50.52 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2 is installed AND Package Information libzmq3-4.0.4-15.3 is installed OR zeromq-4.0.4-15.3 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed AND Package Information libvirt-2.0.0-27.42 is installed OR libvirt-client-2.0.0-27.42 is installed OR libvirt-daemon-2.0.0-27.42 is installed OR libvirt-daemon-config-network-2.0.0-27.42 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed OR libvirt-daemon-driver-network-2.0.0-27.42 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed OR libvirt-daemon-hooks-2.0.0-27.42 is installed OR libvirt-daemon-lxc-2.0.0-27.42 is installed OR libvirt-daemon-qemu-2.0.0-27.42 is installed OR libvirt-daemon-xen-2.0.0-27.42 is installed OR libvirt-doc-2.0.0-27.42 is installed OR libvirt-lock-sanlock-2.0.0-27.42 is installed OR libvirt-nss-2.0.0-27.42 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND kvm-0.15.1-0.27.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP2-LTSS is installed AND kvm-0.15.1-0.27.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information OpenEXR-1.6.1-83.17.1 is installed OR OpenEXR-32bit-1.6.1-83.17.1 is installed OR OpenEXR-x86-1.6.1-83.17.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information ntp-4.2.6p5-31.1 is installed OR ntp-doc-4.2.6p5-31.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND apache-commons-httpclient-3.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_60-52_49-default-3-2.1 is installed OR kgraft-patch-3_12_60-52_49-xen-3-2.1 is installed OR kgraft-patch-SLE12_Update_14-3-2.1 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information kernel-default-4.12.14-150.52 is installed OR kernel-default-base-4.12.14-150.52 is installed OR kernel-default-devel-4.12.14-150.52 is installed OR kernel-default-man-4.12.14-150.52 is installed OR kernel-devel-4.12.14-150.52 is installed OR kernel-docs-4.12.14-150.52 is installed OR kernel-macros-4.12.14-150.52 is installed OR kernel-obs-build-4.12.14-150.52 is installed OR kernel-source-4.12.14-150.52 is installed OR kernel-syms-4.12.14-150.52 is installed OR kernel-vanilla-4.12.14-150.52 is installed OR kernel-vanilla-base-4.12.14-150.52 is installed OR kernel-zfcpdump-4.12.14-150.52 is installed OR reiserfs-kmp-default-4.12.14-150.52 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND libzip2-0.11.1-12 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information perl-5.26.1-7.12 is installed OR perl-base-5.26.1-7.12 is installed OR perl-base-32bit-5.26.1-7.12 is installed OR perl-doc-5.26.1-7.12 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND rubygem-rack-1_3-1.3.10-0.5.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information libgcrypt-devel-1.5.0-0.17.1 is installed OR libgcrypt-devel-32bit-1.5.0-0.17.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information imlib2-1.4.2-2.20.1 is installed OR imlib2-devel-1.4.2-2.20.1 is installed OR imlib2-filters-1.4.2-2.20.1 is installed OR imlib2-loaders-1.4.2-2.20.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND alsa-devel-1.0.27.2-11 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information FastCGI-2.4.0-167 is installed OR perl-FastCGI-2.4.0-167 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND LibVNCServer-devel-0.9.9-16 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information flash-player-11.2.202.616-126.1 is installed OR flash-player-gnome-11.2.202.616-126.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND bogofilter-1.2.4-5.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information kernel-default-4.4.21-84.1 is installed OR kernel-default-extra-4.4.21-84.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information NetworkManager-1.10.6-5.6 is installed OR NetworkManager-lang-1.10.6-5.6 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-60.7.0-3.36 is installed OR MozillaThunderbird-translations-common-60.7.0-3.36 is installed OR MozillaThunderbird-translations-other-60.7.0-3.36 is installed Definition Synopsis SUSE Package Hub for SUSE Linux Enterprise 12 is installed AND Package Information chromedriver-53.0.2785.89-96 is installed OR chromium-53.0.2785.89-96 is installed OR chromium-desktop-gnome-53.0.2785.89-96 is installed OR chromium-desktop-kde-53.0.2785.89-96 is installed OR chromium-ffmpegsumo-53.0.2785.89-96 is installed
BACK