Oval Definition:	oval:org.opensuse.security:def:4689
Revision Date: 2022-02-16 Version: 1 Title: Security update for the Linux Kernel (Live Patch 27 for SLE 12 SP5) (Critical) Description: This update for the Linux Kernel 4.12.14-122_106 fixes several issues. The following security issues were fixed: - CVE-2021-4202: Fixed NFC race condition by adding NCI_UNREG flag (bsc#1194533). - CVE-2022-0435: Fixed remote stack overflow in net/tipc module that validate domain record count on input (bsc#1195308). - CVE-2021-4083: Fixed a read-after-free memory flaw inside the garbage collection for Unix domain socket file handlers when users call close() and fget() simultaneouslyand can potentially trigger a race condition (bnc#1194460). Family: unix Class: patch Status: Reference(s): 1047238 1050911 1051510 1054914 1055117 1056686 1058115 1060662 1061840 1061843 1064597 1064701 1065600 1065729 1066369 1071009 1071306 1071995 1078248 1082555 1082635 1085030 1085536 1085539 1086103 1087092 1090734 1091171 1093205 1102097 1103990 1104353 1104427 1104745 1104902 1106061 1106284 1106434 1108382 1109837 1111666 1112178 1112374 1112894 1112899 1112902 1112903 1112905 1112906 1112907 1113722 1113994 1114279 1114542 1118689 1119086 1119113 1120046 1120876 1120902 1120999 1123105 1123959 1124370 1125330 1129424 1129519 1129664 1129821 1130165 1130262 1131107 1131281 1131489 1131565 1133021 1134291 1134476 1134881 1134882 1135219 1135642 1135897 1135990 1136039 1136261 1136346 1136349 1136352 1136496 1136498 1136502 1136682 1137322 1137323 1137884 1138099 1138100 1138539 1139020 1139021 1139101 1139500 1140012 1140426 1140487 1141340 1141450 1141543 1141554 1142019 1142076 1142109 1142117 1142118 1142119 1142496 1142541 1142635 1142685 1142701 1142857 1143300 1143331 1143466 1143706 1143738 1143765 1143841 1143843 1143962 1144123 1144333 1144375 1144474 1144518 1144582 1144718 1144813 1144880 1144886 1144912 1144920 1144979 1145010 1145018 1145051 1145059 1145189 1145235 1145256 1145300 1145302 1145357 1145388 1145389 1145390 1145391 1145392 1145393 1145394 1145395 1145396 1145397 1145408 1145409 1145446 1145661 1145678 1145687 1145920 1145922 1145934 1145937 1145940 1145941 1145942 1145946 1146074 1146084 1146141 1146163 1146215 1146285 1146346 1146351 1146352 1146361 1146368 1146376 1146378 1146381 1146391 1146399 1146413 1146425 1146516 1146519 1146524 1146526 1146529 1146531 1146543 1146547 1146550 1146575 1146589 1146678 1146938 1148031 1148032 1148033 1148034 1148035 1148093 1148133 1148192 1148196 1148198 1148202 1148219 1148297 1148303 1148308 1148363 1148379 1148394 1148527 1148570 1148574 1148616 1148617 1148619 1148698 1148859 1148868 1149053 1149083 1149104 1149105 1149106 1149197 1149214 1149224 1149325 1149376 1149413 1149418 1149424 1149522 1149527 1149539 1149552 1149591 1149602 1149612 1149626 1149652 1149713 1149940 1149976 1150025 1150033 1150112 1150562 1150727 1150860 1150861 1150933 1153163 1153164 1154366 1159670 1165629 1165631 1167070 1168404 1168407 1169066 1169473 1169851 1171988 1172428 1172686 1173798 1173937 1174157 1174205 1174633 1174635 1174638 1174757 1174910 1174913 1175112 1175122 1175128 1175204 1175213 1175476 1175515 1175518 1175674 1175691 1175987 1175992 1176024 1176069 1176294 1176397 1176579 1176589 1176764 1177867 1177943 1178319 1178361 1178362 1178485 1194460 1194533 1195308 CVE-2017-18551 CVE-2018-18335 CVE-2018-18356 CVE-2018-18506 CVE-2018-18509 CVE-2018-20976 CVE-2018-21008 CVE-2019-10207 CVE-2019-14562 CVE-2019-14814 CVE-2019-14815 CVE-2019-14816 CVE-2019-14835 CVE-2019-15030 CVE-2019-15031 CVE-2019-15090 CVE-2019-15098 CVE-2019-15099 CVE-2019-15117 CVE-2019-15118 CVE-2019-15211 CVE-2019-15212 CVE-2019-15214 CVE-2019-15215 CVE-2019-15216 CVE-2019-15217 CVE-2019-15218 CVE-2019-15219 CVE-2019-15220 CVE-2019-15221 CVE-2019-15222 CVE-2019-15239 CVE-2019-15290 CVE-2019-15292 CVE-2019-15538 CVE-2019-15666 CVE-2019-15902 CVE-2019-15917 CVE-2019-15919 CVE-2019-15920 CVE-2019-15921 CVE-2019-15924 CVE-2019-15926 CVE-2019-15927 CVE-2019-17177 CVE-2019-17178 CVE-2019-20919 CVE-2019-5785 CVE-2019-9456 CVE-2019-9755 CVE-2019-9788 CVE-2019-9790 CVE-2019-9791 CVE-2019-9792 CVE-2019-9793 CVE-2019-9794 CVE-2019-9795 CVE-2019-9796 CVE-2019-9801 CVE-2019-9810 CVE-2019-9813 CVE-2020-10135 CVE-2020-10704 CVE-2020-14314 CVE-2020-14331 CVE-2020-14345 CVE-2020-14346 CVE-2020-14347 CVE-2020-14356 CVE-2020-14361 CVE-2020-14362 CVE-2020-14386 CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-1472 CVE-2020-14779 CVE-2020-14781 CVE-2020-14782 CVE-2020-14792 CVE-2020-14796 CVE-2020-14797 CVE-2020-14798 CVE-2020-14803 CVE-2020-15095 CVE-2020-16166 CVE-2020-16846 CVE-2020-1749 CVE-2020-17490 CVE-2020-1927 CVE-2020-1934 CVE-2020-1938 CVE-2020-24394 CVE-2020-25592 CVE-2020-8252 CVE-2021-4083 CVE-2021-4202 CVE-2022-0435 SUSE-SU-2019:0853-1 SUSE-SU-2019:1001-1 SUSE-SU-2019:2424-1 SUSE-SU-2019:3079-1 SUSE-SU-2020:1126-1 SUSE-SU-2020:1133-1 SUSE-SU-2020:2326-1 SUSE-SU-2020:2398-1 SUSE-SU-2020:2610-1 SUSE-SU-2020:2713-1 SUSE-SU-2020:2722-1 SUSE-SU-2020:2827-1 SUSE-SU-2020:2829-1 SUSE-SU-2020:3244-1 SUSE-SU-2020:3460-1 Platform(s): SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP5 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 5 SUSE Package Hub for SUSE Linux Enterprise 12 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information openstack-ceilometer-2014.2.4.dev18-3.2 is installed OR openstack-ceilometer-agent-compute-2014.2.4.dev18-3.2 is installed OR openstack-neutron-2014.2.4~a0~dev78-7.2 is installed OR openstack-neutron-dhcp-agent-2014.2.4~a0~dev78-7.2 is installed OR openstack-neutron-ha-tool-2014.2.4~a0~dev78-7.2 is installed OR openstack-neutron-l3-agent-2014.2.4~a0~dev78-7.2 is installed OR openstack-neutron-lbaas-agent-2014.2.4~a0~dev78-7.2 is installed OR openstack-neutron-linuxbridge-agent-2014.2.4~a0~dev78-7.2 is installed OR openstack-neutron-metadata-agent-2014.2.4~a0~dev78-7.2 is installed OR openstack-neutron-metering-agent-2014.2.4~a0~dev78-7.2 is installed OR openstack-neutron-openvswitch-agent-2014.2.4~a0~dev78-7.2 is installed OR openstack-neutron-vpn-agent-2014.2.4~a0~dev78-7.2 is installed OR openstack-nova-2014.2.4~a0~dev61-6.2 is installed OR openstack-nova-compute-2014.2.4~a0~dev61-6.2 is installed OR openstack-suse-2014.2-5.1 is installed OR openstack-suse-sudo-2014.2-5.1 is installed OR python-ceilometer-2014.2.4.dev18-3.2 is installed OR python-neutron-2014.2.4~a0~dev78-7.2 is installed OR python-nova-2014.2.4~a0~dev61-6.2 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND Package Information texlive-2013.20130620-22.3 is installed OR texlive-cyrillic-bin-bin-2013.20130620.svn29741-22.3 is installed OR texlive-epstopdf-bin-2013.20130620.svn18336-22.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information dbus-1-glib-0.100.2-3 is installed OR dbus-1-glib-32bit-0.100.2-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-9 is installed OR aaa_base-extras-13.2+git20140911.61c1681-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND bogofilter-1.2.4-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information gimp-2.8.18-8 is installed OR gimp-lang-2.8.18-8 is installed OR gimp-plugins-python-2.8.18-8 is installed OR libgimp-2_0-0-2.8.18-8 is installed OR libgimpui-2_0-0-2.8.18-8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 is installed AND haproxy-1.5.4-2.4.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP1 is installed AND Package Information libpacemaker3-1.1.13-20.1 is installed OR pacemaker-1.1.13-20.1 is installed OR pacemaker-cli-1.1.13-20.1 is installed OR pacemaker-cts-1.1.13-20.1 is installed OR pacemaker-remote-1.1.13-20.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND Package Information cluster-md-kmp-default-4.4.21-84.1 is installed OR cluster-network-kmp-default-4.4.21-84.1 is installed OR dlm-kmp-default-4.4.21-84.1 is installed OR gfs2-kmp-default-4.4.21-84.1 is installed OR kernel-default-4.4.21-84.1 is installed OR ocfs2-kmp-default-4.4.21-84.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND python-requests-2.8.1-6.16 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND Package Information cluster-md-kmp-default-4.12.14-94.41 is installed OR dlm-kmp-default-4.12.14-94.41 is installed OR gfs2-kmp-default-4.12.14-94.41 is installed OR ocfs2-kmp-default-4.12.14-94.41 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP5 is installed AND lighttpd-1.4.35-3 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND ant-1.9.4-3.3 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_43-52_6-default-1-2.3 is installed OR kgraft-patch-3_12_43-52_6-xen-1-2.3 is installed OR kgraft-patch-SLE12_Update_5-1-2.3 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 SP5 is installed AND kgraft-patch-4_12_14-122_106-default-2-2.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information libsamba-policy0-4.9.5+git.317.6d82fb3918b-3.35 is installed OR samba-4.9.5+git.317.6d82fb3918b-3.35 is installed OR samba-ad-dc-4.9.5+git.317.6d82fb3918b-3.35 is installed OR samba-dsdb-modules-4.9.5+git.317.6d82fb3918b-3.35 is installed OR samba-libs-python-4.9.5+git.317.6d82fb3918b-3.35 is installed OR samba-python-4.9.5+git.317.6d82fb3918b-3.35 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information nodejs4-4.9.1-15.20 is installed OR nodejs4-devel-4.9.1-15.20 is installed OR nodejs4-docs-4.9.1-15.20 is installed OR npm4-4.9.1-15.20 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2 is installed AND Package Information libzmq3-4.0.4-15.3 is installed OR zeromq-4.0.4-15.3 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed AND Package Information res-signingkeys-3.0.37-52.23 is installed OR smt-3.0.37-52.23 is installed OR smt-support-3.0.37-52.23 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND openssh-5.1p1-41.57.1 is installed OR openssh-askpass-5.1p1-41.57.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP2 is installed AND openssh-5.1p1-41.57.1 is installed OR openssh-askpass-5.1p1-41.57.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information PolicyKit-0.9-14.39.1 is installed OR PolicyKit-32bit-0.9-14.39.1 is installed OR PolicyKit-doc-0.9-14.39.2 is installed OR PolicyKit-x86-0.9-14.39.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information file-5.19-5.2 is installed OR file-magic-5.19-5.2 is installed OR libmagic1-5.19-5.2 is installed OR libmagic1-32bit-5.19-5.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information emacs-24.3-14 is installed OR emacs-el-24.3-14 is installed OR emacs-info-24.3-14 is installed OR emacs-nox-24.3-14 is installed OR emacs-x11-24.3-14 is installed OR etags-24.3-14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information ecryptfs-utils-103-7 is installed OR ecryptfs-utils-32bit-103-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information at-3.1.14-8.6 is installed OR flex-2.5.37-8 is installed OR flex-32bit-2.5.37-8 is installed OR libQtWebKit4-4.8.7+2.3.4-4.7 is installed OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-doc-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information libopenssl1_0_0-1.0.1i-27.21.1 is installed OR libopenssl1_0_0-32bit-1.0.1i-27.21.1 is installed OR libopenssl1_0_0-hmac-1.0.1i-27.21.1 is installed OR libopenssl1_0_0-hmac-32bit-1.0.1i-27.21.1 is installed OR openssl-1.0.1i-27.21.1 is installed OR openssl-doc-1.0.1i-27.21.1 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information xorg-x11-server-1.19.6-8.16 is installed OR xorg-x11-server-extra-1.19.6-8.16 is installed OR xorg-x11-server-sdk-1.19.6-8.16 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information qemu-2.6.1-27 is installed OR qemu-arm-2.6.1-27 is installed OR qemu-block-curl-2.6.1-27 is installed OR qemu-block-rbd-2.6.1-27 is installed OR qemu-block-ssh-2.6.1-27 is installed OR qemu-guest-agent-2.6.1-27 is installed OR qemu-ipxe-1.0.0-27 is installed OR qemu-lang-2.6.1-27 is installed OR qemu-tools-2.6.1-27 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information apache2-2.4.33-3.30 is installed OR apache2-devel-2.4.33-3.30 is installed OR apache2-doc-2.4.33-3.30 is installed OR apache2-prefork-2.4.33-3.30 is installed OR apache2-utils-2.4.33-3.30 is installed OR apache2-worker-2.4.33-3.30 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND MozillaFirefox-devel-17.0.9esr-0.7.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information libwmf-0.2.8.4-206.29.29.1 is installed OR libwmf-32bit-0.2.8.4-206.29.29.1 is installed OR libwmf-devel-0.2.8.4-206.29.29.1 is installed OR libwmf-gnome-0.2.8.4-206.29.29.1 is installed OR libwmf-gnome-32bit-0.2.8.4-206.29.29.1 is installed OR libwmf-gnome-x86-0.2.8.4-206.29.29.1 is installed OR libwmf-x86-0.2.8.4-206.29.29.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND accountsservice-devel-0.6.35-1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information DirectFB-devel-1.7.1-4 is installed OR lib++dfb-devel-1.7.1-4 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND MozillaFirefox-devel-45.4.0esr-81 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information gd-2.1.0-17.1 is installed OR gd-32bit-2.1.0-17.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information gd-2.1.0-20.1 is installed OR gd-32bit-2.1.0-20.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information libntfs-3g87-2016.2.22-3.3 is installed OR ntfs-3g-2016.2.22-3.3 is installed OR ntfs-3g_ntfsprogs-2016.2.22-3.3 is installed OR ntfsprogs-2016.2.22-3.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.18 is installed OR kernel-default-extra-4.12.14-197.18 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information libopencv3_3-3.3.1-6.6 is installed OR opencv-3.3.1-6.6 is installed OR opencv-devel-3.3.1-6.6 is installed Definition Synopsis SUSE Package Hub for SUSE Linux Enterprise 12 is installed AND Package Information chromedriver-54.0.2840.59-109 is installed OR chromium-54.0.2840.59-109 is installed OR chromium-ffmpegsumo-54.0.2840.59-109 is installed
BACK