Oval Definition:	oval:org.opensuse.security:def:51182
Revision Date: 2021-03-17 Version: 1 Title: Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP2) (Important) Description: This update for the Linux Kernel 4.4.121-92_149 fixes several issues. The following security issues were fixed: - CVE-2020-27786: Fixed a potential user after free which could have led to memory corruption or privilege escalation (bsc#1179616). - CVE-2020-28374: Fixed insufficient identifier checking in the LIO SCSI target code which could have been used by remote attackers to read or write files via directory traversal in an XCOPY request (bsc#1178684). - CVE-2020-25645: Fixed an issue where the traffic between two Geneve endpoints may have been unencrypted when IPsec was configured to encrypt traffic for the specific UDP port used by the GENEVE tunnel allowing anyone between the two endpoints to read the traffic unencrypted (bsc#1177513). - CVE-2020-0429: Fixed a potential memory corruption due to a use after free which could have led local escalation of privilege with System execution privileges needed (bsc#1176931). - CVE-2020-1749: Fixed an issue in some networking protocols in IPsec, such as VXLAN and GENEVE tunnels over IPv6 where the kernel was not correctly routing tunneled data over the encrypted link rather sending the data unencrypted (bsc#1165631). Family: unix Class: patch Status: Reference(s): 1050242 1050549 1051510 1052904 1053043 1055117 1055121 1055186 1056787 1058115 1061840 1064802 1065600 1065729 1066129 1070872 1071995 1075020 1082387 1082555 1083647 1083710 1085535 1085536 1088047 1088804 1093389 1094555 1096003 1098633 1099658 1102247 1103186 1103259 1103990 1103991 1103992 1104745 1104967 1106011 1106284 1106383 1106751 1108193 1108838 1108937 1109837 1110946 1111331 1111666 1111696 1112063 1112128 1112178 1112374 1113722 1113956 1114279 1114427 1114542 1114638 1114685 1115375 1115688 1117114 1117158 1117507 1117508 1117561 1118139 1118599 1119113 1119222 1119532 1119680 1120091 1120318 1120423 1120566 1120843 1120902 1122767 1122776 1123080 1123454 1123663 1124503 1124839 1125703 1126206 1126356 1126704 1127034 1127175 1127315 1127371 1127374 1127611 1127616 1128052 1128415 1128432 1128544 1128902 1128904 1128971 1128979 1129138 1129273 1129693 1129770 1129845 1130195 1130425 1130527 1130567 1130579 1130699 1130836 1130937 1130972 1131326 1131427 1131438 1131451 1131467 1131488 1131530 1131565 1131574 1131587 1131645 1131659 1131673 1131847 1131848 1131851 1131900 1131934 1131935 1132044 1132219 1132226 1132227 1132365 1132368 1132369 1132370 1132372 1132373 1132384 1132390 1132397 1132402 1132403 1132404 1132405 1132407 1132411 1132412 1132413 1132414 1132426 1132527 1132531 1132555 1132558 1132561 1132562 1132563 1132564 1132570 1132571 1132572 1132589 1132618 1132673 1132681 1132726 1132828 1132894 1132943 1132982 1133005 1133016 1133021 1133094 1133095 1133115 1133149 1133176 1133188 1133190 1133311 1133320 1133401 1133486 1133529 1133547 1133584 1133593 1133612 1133616 1133667 1133668 1133672 1133674 1133675 1133698 1133702 1133731 1133738 1133769 1133772 1133774 1133778 1133779 1133780 1133825 1133850 1133851 1133852 1133897 1134090 1134097 1134160 1134162 1134199 1134200 1134201 1134202 1134203 1134204 1134205 1134223 1134303 1134354 1134390 1134393 1134395 1134397 1134399 1134459 1134460 1134461 1134597 1134600 1134607 1134618 1134651 1134671 1134730 1134738 1134743 1134760 1134806 1134810 1134813 1134848 1134936 1134945 1134946 1134947 1134948 1134949 1134950 1134951 1134952 1134953 1134972 1134974 1134975 1134980 1134981 1134983 1134987 1134989 1134990 1134994 1134995 1134998 1134999 1135006 1135007 1135008 1135018 1135021 1135024 1135026 1135027 1135028 1135029 1135031 1135033 1135034 1135035 1135036 1135037 1135038 1135039 1135041 1135042 1135044 1135045 1135046 1135047 1135049 1135051 1135052 1135053 1135055 1135056 1135058 1135100 1135120 1135153 1135278 1135281 1135296 1135309 1135312 1135314 1135315 1135316 1135320 1135323 1135330 1135335 1135492 1135542 1135556 1135603 1135642 1135661 1135758 1135897 1136156 1136157 1136161 1136188 1136206 1136215 1136217 1136264 1136271 1136333 1136342 1136343 1136345 1136347 1136348 1136353 1136424 1136428 1136430 1136432 1136434 1136435 1136438 1136439 1136446 1136456 1136460 1136461 1136462 1136467 1136469 1136477 1136478 1136498 1136573 1136586 1136598 1136881 1136922 1136935 1136978 1136990 1137103 1137151 1137152 1137153 1137162 1137194 1137201 1137224 1137232 1137233 1137236 1137366 1137372 1137429 1137444 1137458 1137534 1137535 1137584 1137586 1137597 1137609 1137625 1137728 1137739 1137752 1137811 1137827 1137884 1137985 1137995 1137996 1137998 1137999 1138000 1138002 1138003 1138005 1138006 1138007 1138008 1138009 1138010 1138011 1138012 1138013 1138014 1138015 1138016 1138017 1138018 1138019 1138263 1138291 1138293 1138336 1138374 1138375 1138589 1138681 1138719 1138732 1138874 1138879 1139358 1139619 1139712 1139751 1139771 1139865 1140133 1140139 1140228 1140322 1140328 1140405 1140424 1140428 1140454 1140463 1140559 1140575 1140577 1140637 1140652 1140658 1140676 1140715 1140719 1140726 1140727 1140728 1140747 1140814 1140887 1140888 1140889 1140891 1140893 1140903 1140945 1140948 1140954 1140955 1140956 1140957 1140958 1140959 1140960 1140961 1140962 1140964 1140971 1140972 1140992 1141312 1141401 1141402 1141452 1141453 1141454 1141478 1141558 1141780 1141782 1141783 1141784 1141785 1141786 1141787 1141789 1142023 1142052 1142083 1142112 1142115 1142119 1142220 1142221 1142254 1142350 1142351 1142354 1142359 1142450 1142623 1142673 1142701 1142868 1143003 1143045 1143105 1143185 1143189 1143191 1143209 1143507 1152107 1158755 1158809 1162002 1165631 1166238 1167462 1169511 1170011 1171078 1171673 1171732 1171868 1172257 1172775 1172781 1172782 1172783 1172999 1173100 1173265 1173280 1173514 1173567 1173573 1173659 1173661 1173663 1173805 1173869 1173942 1173963 1173999 1174000 1174115 1174186 1174247 1174462 1174543 1176590 1176931 1177513 1177582 1178684 1178890 1178891 1179616 CVE-2011-1521 CVE-2011-3389 CVE-2011-4944 CVE-2012-0845 CVE-2012-1150 CVE-2013-1752 CVE-2013-1753 CVE-2013-4238 CVE-2013-6369 CVE-2014-1912 CVE-2014-2667 CVE-2014-4650 CVE-2017-5753 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-16871 CVE-2018-16880 CVE-2018-19540 CVE-2018-19541 CVE-2018-19869 CVE-2018-20836 CVE-2018-20855 CVE-2018-7191 CVE-2019-0155 CVE-2019-10124 CVE-2019-10638 CVE-2019-10639 CVE-2019-11085 CVE-2019-11091 CVE-2019-1125 CVE-2019-11477 CVE-2019-11478 CVE-2019-11479 CVE-2019-11486 CVE-2019-11487 CVE-2019-11599 CVE-2019-11810 CVE-2019-11811 CVE-2019-11815 CVE-2019-11833 CVE-2019-11884 CVE-2019-12380 CVE-2019-12382 CVE-2019-12456 CVE-2019-12614 CVE-2019-12817 CVE-2019-12818 CVE-2019-12819 CVE-2019-13233 CVE-2019-13631 CVE-2019-13648 CVE-2019-14283 CVE-2019-14284 CVE-2019-14895 CVE-2019-14901 CVE-2019-1551 CVE-2019-16746 CVE-2019-19447 CVE-2019-20503 CVE-2019-20908 CVE-2019-2745 CVE-2019-2762 CVE-2019-2766 CVE-2019-2769 CVE-2019-2786 CVE-2019-2816 CVE-2019-2842 CVE-2019-3846 CVE-2019-3882 CVE-2019-5489 CVE-2019-7317 CVE-2019-8564 CVE-2019-9003 CVE-2019-9458 CVE-2019-9500 CVE-2019-9503 CVE-2020-0305 CVE-2020-0429 CVE-2020-10766 CVE-2020-10767 CVE-2020-10768 CVE-2020-10769 CVE-2020-10773 CVE-2020-11668 CVE-2020-12771 CVE-2020-12888 CVE-2020-13943 CVE-2020-13974 CVE-2020-14331 CVE-2020-14374 CVE-2020-14375 CVE-2020-14376 CVE-2020-14377 CVE-2020-14378 CVE-2020-14416 CVE-2020-15393 CVE-2020-15780 CVE-2020-1749 CVE-2020-25645 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2767 CVE-2020-2773 CVE-2020-27745 CVE-2020-27746 CVE-2020-2778 CVE-2020-27786 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2816 CVE-2020-2830 CVE-2020-28374 CVE-2020-6805 CVE-2020-6806 CVE-2020-6807 CVE-2020-6811 CVE-2020-6812 CVE-2020-6814 SUSE-SU-2019:0706-1 SUSE-SU-2019:2021-1 SUSE-SU-2019:2430-1 SUSE-SU-2019:2512-1 SUSE-SU-2020:0064-1 SUSE-SU-2020:0721-1 SUSE-SU-2020:1511-1 SUSE-SU-2020:2106-1 SUSE-SU-2020:2505-1 SUSE-SU-2020:2769-1 SUSE-SU-2020:3069-1 SUSE-SU-2021:0835-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Realtime packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libfreebl3-3.15.3.1-0.4.2 is installed OR libfreebl3-32bit-3.15.3.1-0.4.2 is installed OR mozilla-nss-3.15.3.1-0.4.2 is installed OR mozilla-nss-32bit-3.15.3.1-0.4.2 is installed OR mozilla-nss-tools-3.15.3.1-0.4.2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information libjasper-1.900.1-134.17 is installed OR libjasper-32bit-1.900.1-134.17 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information xorg-x11-libX11-7.4-5.11.15 is installed OR xorg-x11-libX11-32bit-7.4-5.11.15 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libjbig2-2.0-12 is installed OR libjbig2-32bit-2.0-12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information gnome-online-accounts-3.10.5-1 is installed OR gnome-online-accounts-lang-3.10.5-1 is installed OR libgoa-1_0-0-3.10.5-1 is installed OR libgoa-backend-1_0-1-3.10.5-1 is installed OR typelib-1_0-Goa-1_0-3.10.5-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information java-1_7_0-openjdk-plugin-1.6.1-2.3 is installed OR java-1_8_0-openjdk-plugin-1.6.1-2.4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information cups-1.7.5-19 is installed OR cups-client-1.7.5-19 is installed OR cups-libs-1.7.5-19 is installed OR cups-libs-32bit-1.7.5-19 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information alsa-1.0.27.2-15 is installed OR libasound2-1.0.27.2-15 is installed OR libasound2-32bit-1.0.27.2-15 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information libqt5-qtsvg-5.9.4-3.3 is installed OR libqt5-qtsvg-private-headers-devel-5.9.4-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information jasper-2.0.14-3.8 is installed OR libjasper-devel-2.0.14-3.8 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-3.24 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-3.24 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-3.24 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-3.24 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_22-default-6-2 is installed OR kernel-livepatch-SLE15_Update_6-6-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_21-default-8-2 is installed OR kernel-livepatch-SLE15-SP1_Update_6-8-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information libnss_slurm2-20.02.6-3.3 is installed OR libpmi0-20.02.6-3.3 is installed OR libslurm35-20.02.6-3.3 is installed OR perl-slurm-20.02.6-3.3 is installed OR slurm-20.02.6-3.3 is installed OR slurm-auth-none-20.02.6-3.3 is installed OR slurm-config-20.02.6-3.3 is installed OR slurm-config-man-20.02.6-3.3 is installed OR slurm-cray-20.02.6-3.3 is installed OR slurm-devel-20.02.6-3.3 is installed OR slurm-doc-20.02.6-3.3 is installed OR slurm-hdf5-20.02.6-3.3 is installed OR slurm-lua-20.02.6-3.3 is installed OR slurm-munge-20.02.6-3.3 is installed OR slurm-node-20.02.6-3.3 is installed OR slurm-openlava-20.02.6-3.3 is installed OR slurm-pam_slurm-20.02.6-3.3 is installed OR slurm-plugins-20.02.6-3.3 is installed OR slurm-rest-20.02.6-3.3 is installed OR slurm-seff-20.02.6-3.3 is installed OR slurm-sjstat-20.02.6-3.3 is installed OR slurm-slurmdbd-20.02.6-3.3 is installed OR slurm-sql-20.02.6-3.3 is installed OR slurm-sview-20.02.6-3.3 is installed OR slurm-torque-20.02.6-3.3 is installed OR slurm-webdoc-20.02.6-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Realtime packages 15 SP1 is installed AND Package Information cluster-md-kmp-rt-4.12.14-14.8 is installed OR dlm-kmp-rt-4.12.14-14.8 is installed OR gfs2-kmp-rt-4.12.14-14.8 is installed OR kernel-devel-rt-4.12.14-14.8 is installed OR kernel-rt-4.12.14-14.8 is installed OR kernel-rt-base-4.12.14-14.8 is installed OR kernel-rt-devel-4.12.14-14.8 is installed OR kernel-rt_debug-4.12.14-14.8 is installed OR kernel-rt_debug-devel-4.12.14-14.8 is installed OR kernel-source-rt-4.12.14-14.8 is installed OR kernel-syms-rt-4.12.14-14.8 is installed OR ocfs2-kmp-rt-4.12.14-14.8 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information dpdk-18.11.9-4.12 is installed OR dpdk-devel-18.11.9-4.12 is installed OR dpdk-kmp-default-18.11.9_k4.12.14_197.56-4.12 is installed OR dpdk-tools-18.11.9-4.12 is installed OR libdpdk-18_11-18.11.9-4.12 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information tomcat-9.0.36-4.47 is installed OR tomcat-admin-webapps-9.0.36-4.47 is installed OR tomcat-el-3_0-api-9.0.36-4.47 is installed OR tomcat-jsp-2_3-api-9.0.36-4.47 is installed OR tomcat-lib-9.0.36-4.47 is installed OR tomcat-servlet-4_0-api-9.0.36-4.47 is installed OR tomcat-webapps-9.0.36-4.47 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libecpg6-9.4.9-14 is installed OR libpq5-9.4.9-14 is installed OR libpq5-32bit-9.4.9-14 is installed OR postgresql94-9.4.9-14 is installed OR postgresql94-contrib-9.4.9-14 is installed OR postgresql94-docs-9.4.9-14 is installed OR postgresql94-libs-9.4.9-14 is installed OR postgresql94-server-9.4.9-14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-branding-SLE-52-31 is installed OR MozillaFirefox-devel-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information gvim-7.4.326-2 is installed OR vim-7.4.326-2 is installed OR vim-data-7.4.326-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libmysqlclient18-10.0.35-29.20 is installed OR libmysqlclient18-32bit-10.0.35-29.20 is installed OR mariadb-10.0.35-29.20 is installed OR mariadb-client-10.0.35-29.20 is installed OR mariadb-errormessages-10.0.35-29.20 is installed OR mariadb-tools-10.0.35-29.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_114-92_67-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_19-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND shadow-4.2.1-27.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_perl-2.0.8-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.50-38.41 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information dovecot22-2.2.31-19.17 is installed OR dovecot22-backend-mysql-2.2.31-19.17 is installed OR dovecot22-backend-pgsql-2.2.31-19.17 is installed OR dovecot22-backend-sqlite-2.2.31-19.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_178-94_91-default-3-2 is installed OR kgraft-patch-SLE12-SP3_Update_25-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libpolkit0-0.113-5.12 is installed OR polkit-0.113-5.12 is installed OR typelib-1_0-Polkit-1_0-0.113-5.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information fontconfig-2.11.1-7 is installed OR fontconfig-32bit-2.11.1-7 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND kgraft-patch-4_4_121-92_149-default-2-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information java-11-openjdk-11.0.7.0-3.42 is installed OR java-11-openjdk-demo-11.0.7.0-3.42 is installed OR java-11-openjdk-devel-11.0.7.0-3.42 is installed OR java-11-openjdk-headless-11.0.7.0-3.42 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-68.6.0-3.74 is installed OR MozillaThunderbird-translations-common-68.6.0-3.74 is installed OR MozillaThunderbird-translations-other-68.6.0-3.74 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information openvswitch-2.5.1-6.4 is installed OR openvswitch-kmp-default-2.5.1_k3.12.74_60.64.69-6.4 is installed OR openvswitch-kmp-xen-2.5.1_k3.12.74_60.64.69-6.4 is installed OR openvswitch-switch-2.5.1-6.4 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND ansible-2.2.3.0-9 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND squid-3.5.21-26.17 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ibus-1.5.13-15.11 is installed OR ibus-gtk-1.5.13-15.11 is installed OR ibus-gtk3-1.5.13-15.11 is installed OR ibus-lang-1.5.13-15.11 is installed OR libibus-1_0-5-1.5.13-15.11 is installed OR typelib-1_0-IBus-1_0-1.5.13-15.11 is installed
BACK