Oval Definition:	oval:org.opensuse.security:def:51155
Revision Date: 2021-02-10 Version: 1 Title: Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP2) (Important) Description: This update for the Linux Kernel 4.4.121-92_138 fixes several issues. The following security issues were fixed: - CVE-2020-36158: Fixed a potential remote code execution in the Marvell mwifiex driver (bsc#1180562). - CVE-2020-0465: Fixed multiple missing bounds checks in hid-multitouch.c that could have led to local privilege escalation (bnc#1180030). - CVE-2020-0466: Fixed a use-after-free due to a logic error in do_epoll_ctl and ep_loop_check_proc of eventpoll.c (bnc#1180032. - CVE-2020-29569: Fixed a use after free due to a logic error (bsc#1180008). - CVE-2020-29660: Fixed a locking inconsistency in the tty subsystem that may have allowed a read-after-free attack against TIOCGSID (bsc#1179877). - CVE-2020-29661: Fixed a locking issue in the tty subsystem that allowed a use-after-free attack against TIOCSPGRP (bsc#1179877). Family: unix Class: patch Status: Reference(s): 1051510 1054914 1055117 1061840 1065600 1065729 1071995 1082555 1104967 1107832 1109158 1110233 1111666 1113722 1114279 1115375 1119086 1123034 1124729 1124734 1126284 1127988 1128378 1131304 1137069 1137443 1137865 1137959 1137982 1140155 1141013 1141780 1141782 1141783 1141784 1141785 1141786 1141787 1141789 1142076 1142635 1146042 1146519 1146540 1146664 1148133 1148712 1148868 1148931 1149313 1149446 1149555 1149651 1150305 1150381 1150423 1150846 1151067 1151192 1151350 1151610 1151661 1151662 1151667 1151680 1151891 1151955 1152024 1152025 1152026 1152161 1152187 1152243 1152325 1152457 1152460 1152466 1152525 1152972 1152974 1152975 1163102 1163103 1163104 1166844 1171252 1171254 1171477 1172402 1173159 1175992 1176072 1176382 1179877 1180008 1180030 1180032 1180562 CVE-2011-2709 CVE-2012-1174 CVE-2013-1987 CVE-2013-4288 CVE-2017-18595 CVE-2018-14633 CVE-2018-17182 CVE-2019-12735 CVE-2019-14821 CVE-2019-15291 CVE-2019-15604 CVE-2019-15605 CVE-2019-15606 CVE-2019-2745 CVE-2019-2762 CVE-2019-2766 CVE-2019-2769 CVE-2019-2786 CVE-2019-2816 CVE-2019-2842 CVE-2019-6974 CVE-2019-7221 CVE-2019-7317 CVE-2019-8595 CVE-2019-8607 CVE-2019-8615 CVE-2019-8644 CVE-2019-8649 CVE-2019-8658 CVE-2019-8666 CVE-2019-8669 CVE-2019-8671 CVE-2019-8672 CVE-2019-8673 CVE-2019-8676 CVE-2019-8677 CVE-2019-8678 CVE-2019-8679 CVE-2019-8680 CVE-2019-8681 CVE-2019-8683 CVE-2019-8684 CVE-2019-8686 CVE-2019-8687 CVE-2019-8688 CVE-2019-8689 CVE-2019-8690 CVE-2019-8912 CVE-2019-9213 CVE-2019-9506 CVE-2020-0465 CVE-2020-0466 CVE-2020-10531 CVE-2020-10722 CVE-2020-10723 CVE-2020-10724 CVE-2020-10725 CVE-2020-10726 CVE-2020-10730 CVE-2020-12398 CVE-2020-12405 CVE-2020-12406 CVE-2020-12410 CVE-2020-12653 CVE-2020-12654 CVE-2020-14386 CVE-2020-24394 CVE-2020-25212 CVE-2020-29569 CVE-2020-29660 CVE-2020-29661 CVE-2020-36158 SUSE-SU-2019:1457-1 SUSE-SU-2019:2021-1 SUSE-SU-2019:2428-1 SUSE-SU-2019:2710-1 SUSE-SU-2020:0454-1 SUSE-SU-2020:0819-1 SUSE-SU-2020:1335-1 SUSE-SU-2020:1591-1 SUSE-SU-2020:2067-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information inkscape-0.46-62.38 is installed OR inkscape-extensions-dia-0.46-62.38 is installed OR inkscape-extensions-extra-0.46-62.38 is installed OR inkscape-extensions-fig-0.46-62.38 is installed OR inkscape-extensions-gimp-0.46-62.38 is installed OR inkscape-lang-0.46-62.38 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information flash-player-11.2.202.535-0.20 is installed OR flash-player-gnome-11.2.202.535-0.20 is installed OR flash-player-kde4-11.2.202.535-0.20 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information openssh-6.6p1-13 is installed OR openssh-askpass-gnome-6.6p1-13 is installed OR openssh-helpers-6.6p1-13 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libXrender1-0.9.8-3 is installed OR libXrender1-32bit-0.9.8-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information dhcp-4.3.3-2 is installed OR dhcp-client-4.3.3-2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information gdk-pixbuf-loader-rsvg-2.40.15-4 is installed OR librsvg-2-2-2.40.15-4 is installed OR librsvg-2-2-32bit-2.40.15-4 is installed OR rsvg-view-2.40.15-4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information NetworkManager-1.0.12-12 is installed OR NetworkManager-lang-1.0.12-12 is installed OR libnm-glib-vpn1-1.0.12-12 is installed OR libnm-glib4-1.0.12-12 is installed OR libnm-util2-1.0.12-12 is installed OR libnm0-1.0.12-12 is installed OR typelib-1_0-NM-1_0-1.0.12-12 is installed OR typelib-1_0-NMClient-1_0-1.0.12-12 is installed OR typelib-1_0-NetworkManager-1_0-1.0.12-12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information bzip2-1.0.6-29 is installed OR libbz2-1-1.0.6-29 is installed OR libbz2-1-32bit-1.0.6-29 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information typelib-1_0-JavaScriptCore-4_0-2.24.4-3.31 is installed OR typelib-1_0-WebKit2-4_0-2.24.4-3.31 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.24.4-3.31 is installed OR webkit2gtk3-2.24.4-3.31 is installed OR webkit2gtk3-devel-2.24.4-3.31 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information gvim-8.0.1568-5.3 is installed OR vim-8.0.1568-5.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-3.24 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-3.24 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-3.24 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-3.24 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.21 is installed OR reiserfs-kmp-default-4.12.14-197.21 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-23-default-5-13 is installed OR kernel-livepatch-SLE15_Update_0-5-13 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_7-default-9-2 is installed OR kernel-livepatch-SLE15-SP1_Update_2-9-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information kernel-livepatch-5_3_18-22-preempt-3-8 is installed OR kernel-livepatch-SLE15-SP2_Update_0-3-8 is installed Definition Synopsis SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information ldb-1.4.6-3.5 is installed OR python-ldb-1.4.6-3.5 is installed OR python-ldb-devel-1.4.6-3.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information dpdk-18.11.3-4.6 is installed OR dpdk-devel-18.11.3-4.6 is installed OR dpdk-kmp-default-18.11.3_k4.12.14_197.40-4.6 is installed OR dpdk-tools-18.11.3-4.6 is installed OR libdpdk-18_11-18.11.3-4.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs8-8.17.0-3.28 is installed OR nodejs8-devel-8.17.0-3.28 is installed OR nodejs8-docs-8.17.0-3.28 is installed OR npm8-8.17.0-3.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information krb5-1.12.1-36 is installed OR krb5-32bit-1.12.1-36 is installed OR krb5-client-1.12.1-36 is installed OR krb5-doc-1.12.1-36 is installed OR krb5-plugin-kdb-ldap-1.12.1-36 is installed OR krb5-plugin-preauth-otp-1.12.1-36 is installed OR krb5-plugin-preauth-pkinit-1.12.1-36 is installed OR krb5-server-1.12.1-36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information xen-4.5.5_24-22.49 is installed OR xen-doc-html-4.5.5_24-22.49 is installed OR xen-kmp-default-4.5.5_24_k3.12.74_60.64.93-22.49 is installed OR xen-libs-4.5.5_24-22.49 is installed OR xen-libs-32bit-4.5.5_24-22.49 is installed OR xen-tools-4.5.5_24-22.49 is installed OR xen-tools-domU-4.5.5_24-22.49 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information expat-2.1.0-17 is installed OR libexpat1-2.1.0-17 is installed OR libexpat1-32bit-2.1.0-17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libzypp-16.17.20-27.52 is installed OR zypper-1.13.45-18.33 is installed OR zypper-log-1.13.45-18.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information dovecot22-2.2.31-19.11 is installed OR dovecot22-backend-mysql-2.2.31-19.11 is installed OR dovecot22-backend-pgsql-2.2.31-19.11 is installed OR dovecot22-backend-sqlite-2.2.31-19.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND ucode-intel-20180425-13.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND cifs-utils-6.5-8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information MozillaFirefox-68.1.0-109.89 is installed OR MozillaFirefox-branding-SLE-68-32.8 is installed OR MozillaFirefox-translations-common-68.1.0-109.89 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information MozillaFirefox-60.9.0-109.86 is installed OR MozillaFirefox-translations-common-60.9.0-109.86 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libgcrypt-1.6.1-16.58 is installed OR libgcrypt20-1.6.1-16.58 is installed OR libgcrypt20-32bit-1.6.1-16.58 is installed OR libgcrypt20-hmac-1.6.1-16.58 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.58 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information icu-60.2-3.9 is installed OR libicu-devel-60.2-3.9 is installed OR libicu60_2-60.2-3.9 is installed OR libicu60_2-bedata-60.2-3.9 is installed OR libicu60_2-ledata-60.2-3.9 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND kgraft-patch-4_4_121-92_138-default-6-2.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-68.9.0-3.85 is installed OR MozillaThunderbird-translations-common-68.9.0-3.85 is installed OR MozillaThunderbird-translations-other-68.9.0-3.85 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information kernel-default-3.12.74-60.64.63 is installed OR kernel-default-base-3.12.74-60.64.63 is installed OR kernel-default-devel-3.12.74-60.64.63 is installed OR kernel-devel-3.12.74-60.64.63 is installed OR kernel-macros-3.12.74-60.64.63 is installed OR kernel-source-3.12.74-60.64.63 is installed OR kernel-syms-3.12.74-60.64.63 is installed OR kernel-xen-3.12.74-60.64.63 is installed OR kernel-xen-base-3.12.74-60.64.63 is installed OR kernel-xen-devel-3.12.74-60.64.63 is installed OR kgraft-patch-3_12_74-60_64_63-default-1-2 is installed OR kgraft-patch-3_12_74-60_64_63-xen-1-2 is installed OR kgraft-patch-SLE12-SP1_Update_22-1-2 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information kernel-default-4.4.121-92.95 is installed OR kernel-default-base-4.4.121-92.95 is installed OR kernel-default-devel-4.4.121-92.95 is installed OR kernel-default-man-4.4.121-92.95 is installed OR kernel-devel-4.4.121-92.95 is installed OR kernel-macros-4.4.121-92.95 is installed OR kernel-source-4.4.121-92.95 is installed OR kernel-syms-4.4.121-92.95 is installed OR kgraft-patch-4_4_121-92_95-default-1-3.4 is installed OR kgraft-patch-SLE12-SP2_Update_25-1-3.4 is installed OR lttng-modules-2.7.1-9.6 is installed OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.95-9.6 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND cobbler-2.6.6-49.14 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information bzip2-1.0.6-30.8 is installed OR bzip2-doc-1.0.6-30.8 is installed OR libbz2-1-1.0.6-30.8 is installed OR libbz2-1-32bit-1.0.6-30.8 is installed
BACK