Oval Definition:	oval:org.opensuse.security:def:51184
Revision Date: 2021-03-17 Version: 1 Title: Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP2) (Important) Description: This update for the Linux Kernel 4.4.121-92_141 fixes several issues. The following security issues were fixed: - CVE-2021-3347: Fixed a use-after-free in the PI futexes during fault handling, allowing local users to execute code in the kernel (bsc#1181553). - CVE-2020-27786: Fixed a potential user after free which could have led to memory corruption or privilege escalation (bsc#1179616). - CVE-2020-28374: Fixed insufficient identifier checking in the LIO SCSI target code which could have been used by remote attackers to read or write files via directory traversal in an XCOPY request (bsc#1178684). Family: unix Class: patch Status: Reference(s): 1027519 1046299 1046303 1046305 1048942 1050244 1050536 1050545 1051510 1054914 1055117 1055186 1061840 1064802 1065600 1065729 1066129 1071995 1073513 1082555 1082635 1083647 1086323 1087092 1089644 1090631 1091041 1092125 1093205 1096254 1097583 1097584 1097585 1097586 1097587 1097588 1098291 1101674 1104967 1109158 1111666 1112178 1113722 1113994 1114279 1117665 1119086 1119461 1119465 1122292 1122299 1123034 1123080 1127988 1131107 1131304 1133140 1134303 1135642 1135854 1135873 1135966 1135967 1136446 1137040 1137069 1137597 1137799 1137861 1137865 1137959 1137982 1138190 1139073 1140090 1140155 1140729 1140747 1140845 1140883 1141013 1141600 1141780 1141782 1141783 1141785 1141787 1141789 1142076 1142635 1142667 1143706 1144338 1144375 1144449 1144903 1145099 1146042 1146519 1146540 1146612 1146664 1147021 1148133 1148410 1148712 1148868 1149119 1149313 1149446 1149448 1149555 1149651 1149853 1150305 1150381 1150423 1150452 1150457 1150465 1150466 1150846 1150875 1151067 1151192 1151350 1151508 1151610 1151661 1151662 1151667 1151680 1151807 1151891 1151955 1152024 1152025 1152026 1152033 1152161 1152187 1152243 1152325 1152457 1152460 1152466 1152497 1152505 1152506 1152525 1152624 1152665 1152685 1152696 1152697 1152782 1152788 1152790 1152791 1152972 1152974 1152975 1153102 1153112 1153158 1153236 1153263 1153476 1153509 1153607 1153646 1153681 1153713 1153717 1153718 1153719 1153811 1153969 1154108 1154124 1154189 1154242 1154268 1154354 1154372 1154521 1154526 1154578 1154601 1154607 1154608 1154610 1154611 1154651 1154737 1154747 1154848 1154858 1154905 1154956 1155021 1155061 1155178 1155179 1155184 1155186 1155671 1155692 1155812 1155817 1155836 1155945 1155982 1156187 1156429 1156466 1156494 1156609 1156700 1156729 1156882 1160398 1163102 1163103 1163104 1166751 1169511 1171352 1172225 1173100 1173659 1173661 1173663 1173869 1173942 1173963 1174186 1174247 1176339 1176341 1176343 1176344 1176345 1176346 1176347 1176348 1176349 1176350 1178684 1178894 1179616 1181553 CVE-2009-0945 CVE-2009-3736 CVE-2011-3193 CVE-2011-3922 CVE-2012-0037 CVE-2012-4929 CVE-2012-6093 CVE-2013-0254 CVE-2013-4549 CVE-2014-0190 CVE-2017-18595 CVE-2018-10733 CVE-2018-11212 CVE-2018-12207 CVE-2019-0154 CVE-2019-0155 CVE-2019-10220 CVE-2019-11135 CVE-2019-11477 CVE-2019-11478 CVE-2019-11771 CVE-2019-11772 CVE-2019-11775 CVE-2019-14821 CVE-2019-14895 CVE-2019-14901 CVE-2019-15291 CVE-2019-15604 CVE-2019-15605 CVE-2019-15606 CVE-2019-15916 CVE-2019-16231 CVE-2019-16232 CVE-2019-16233 CVE-2019-16234 CVE-2019-16746 CVE-2019-16995 CVE-2019-17055 CVE-2019-17056 CVE-2019-17113 CVE-2019-17133 CVE-2019-17666 CVE-2019-18805 CVE-2019-19447 CVE-2019-20807 CVE-2019-2449 CVE-2019-2762 CVE-2019-2766 CVE-2019-2769 CVE-2019-2786 CVE-2019-2816 CVE-2019-3846 CVE-2019-4473 CVE-2019-7317 CVE-2019-9458 CVE-2019-9506 CVE-2020-0556 CVE-2020-11668 CVE-2020-14331 CVE-2020-15780 CVE-2020-15999 CVE-2020-16012 CVE-2020-25595 CVE-2020-25596 CVE-2020-25597 CVE-2020-25598 CVE-2020-25599 CVE-2020-25600 CVE-2020-25601 CVE-2020-25602 CVE-2020-25603 CVE-2020-25604 CVE-2020-26951 CVE-2020-26953 CVE-2020-26956 CVE-2020-26958 CVE-2020-26959 CVE-2020-26960 CVE-2020-26961 CVE-2020-26965 CVE-2020-26966 CVE-2020-26968 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2773 CVE-2020-27786 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 CVE-2020-28374 CVE-2021-3347 SUSE-SU-2019:0720-1 SUSE-SU-2019:2291-1 SUSE-SU-2019:2622-1 SUSE-SU-2019:3295-1 SUSE-SU-2020:0454-1 SUSE-SU-2020:0918-1 SUSE-SU-2020:1551-1 SUSE-SU-2020:1569-2 SUSE-SU-2020:2513-1 SUSE-SU-2020:2790-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Realtime packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 6-LTSS SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND openssl-certs-1.95-0.4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information java-1_7_0-openjdk-1.7.0.85-0.11 is installed OR java-1_7_0-openjdk-demo-1.7.0.85-0.11 is installed OR java-1_7_0-openjdk-devel-1.7.0.85-0.11 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libltdl7-2.4.2-14 is installed OR libltdl7-32bit-2.4.2-14 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information gnome-shell-3.10.4-40 is installed OR gnome-shell-browser-plugin-3.10.4-40 is installed OR gnome-shell-calendar-3.10.4-40 is installed OR gnome-shell-lang-3.10.4-40 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND kbd-1.15.5-8.7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information cups-pk-helper-0.2.5-5 is installed OR cups-pk-helper-lang-0.2.5-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND argyllcms-1.6.3-3 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information libgxps-0.3.0-4.3 is installed OR libgxps-devel-0.3.0-4.3 is installed OR libgxps2-0.3.0-4.3 is installed OR typelib-1_0-GXPS-0_1-0.3.0-4.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information libmodplug-devel-0.3.19-2.10 is installed OR libmodplug1-0.3.19-2.10 is installed OR libopenmpt-0.3.19-2.10 is installed OR libopenmpt-devel-0.3.19-2.10 is installed OR libopenmpt0-0.3.19-2.10 is installed OR libopenmpt_modplug1-0.3.19-2.10 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-3.24 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-3.24 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.40-3.24 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-3.24 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP2 is installed AND Package Information java-1_8_0-openjdk-1.8.0.252-3.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.252-3.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.252-3.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.252-3.35 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_28-default-4-2 is installed OR kernel-livepatch-SLE15_Update_8-4-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_29-default-6-2 is installed OR kernel-livepatch-SLE15-SP1_Update_8-6-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information MozillaThunderbird-78.5.0-3.107 is installed OR MozillaThunderbird-translations-common-78.5.0-3.107 is installed OR MozillaThunderbird-translations-other-78.5.0-3.107 is installed Definition Synopsis SUSE Linux Enterprise Module for Realtime packages 15 SP1 is installed AND Package Information cluster-md-kmp-rt-4.12.14-14.14 is installed OR dlm-kmp-rt-4.12.14-14.14 is installed OR gfs2-kmp-rt-4.12.14-14.14 is installed OR kernel-devel-rt-4.12.14-14.14 is installed OR kernel-rt-4.12.14-14.14 is installed OR kernel-rt-base-4.12.14-14.14 is installed OR kernel-rt-devel-4.12.14-14.14 is installed OR kernel-rt_debug-4.12.14-14.14 is installed OR kernel-rt_debug-devel-4.12.14-14.14 is installed OR kernel-source-rt-4.12.14-14.14 is installed OR kernel-syms-rt-4.12.14-14.14 is installed OR ocfs2-kmp-rt-4.12.14-14.14 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information xen-4.12.3_08-3.28 is installed OR xen-devel-4.12.3_08-3.28 is installed OR xen-tools-4.12.3_08-3.28 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs8-8.17.0-3.28 is installed OR nodejs8-devel-8.17.0-3.28 is installed OR nodejs8-docs-8.17.0-3.28 is installed OR npm8-8.17.0-3.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information DirectFB-1.7.1-4 is installed OR lib++dfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-1.7.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND clamav-0.99.2-32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND hardlink-1.0-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information kernel-default-4.4.121-92.85 is installed OR kernel-default-base-4.4.121-92.85 is installed OR kernel-default-devel-4.4.121-92.85 is installed OR kernel-devel-4.4.121-92.85 is installed OR kernel-macros-4.4.121-92.85 is installed OR kernel-source-4.4.121-92.85 is installed OR kernel-syms-4.4.121-92.85 is installed OR kgraft-patch-4_4_121-92_85-default-1-3.5 is installed OR kgraft-patch-SLE12-SP2_Update_23-1-3.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND binutils-2.31-9.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_32-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_11-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed OR webkit2gtk3-2.24.4-2.47 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libgcrypt-1.6.1-16.68 is installed OR libgcrypt20-1.6.1-16.68 is installed OR libgcrypt20-32bit-1.6.1-16.68 is installed OR libgcrypt20-hmac-1.6.1-16.68 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND ucode-intel-20190618-13.47 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND mutt-1.10.1-55.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND ft2demos-2.6.3-7.15 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND kgraft-patch-4_4_121-92_141-default-6-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information vim-8.0.1568-5.6 is installed OR vim-data-8.0.1568-5.6 is installed OR vim-data-common-8.0.1568-5.6 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information bluez-5.48-5.25 is installed OR bluez-cups-5.48-5.25 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information qemu-2.3.1-33.6 is installed OR qemu-block-curl-2.3.1-33.6 is installed OR qemu-block-rbd-2.3.1-33.6 is installed OR qemu-guest-agent-2.3.1-33.6 is installed OR qemu-ipxe-1.0.0-33.6 is installed OR qemu-kvm-2.3.1-33.6 is installed OR qemu-lang-2.3.1-33.6 is installed OR qemu-seabios-1.8.1-33.6 is installed OR qemu-sgabios-8-33.6 is installed OR qemu-tools-2.3.1-33.6 is installed OR qemu-vgabios-1.8.1-33.6 is installed OR qemu-x86-2.3.1-33.6 is installed Definition Synopsis SUSE OpenStack Cloud 6-LTSS is installed AND Package Information containerd-1.2.6-16.23 is installed OR docker-19.03.1_ce-98.46 is installed OR docker-libnetwork-0.7.0.1+gitr2800_fc5a7d91d54c-25 is installed OR docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.29 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2800_fc5a7d91d54c-25 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND python-paramiko-2.0.8-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information postgresql96-9.6.15-3.29 is installed OR postgresql96-contrib-9.6.15-3.29 is installed OR postgresql96-docs-9.6.15-3.29 is installed OR postgresql96-libs-9.6.15-3.29 is installed OR postgresql96-plperl-9.6.15-3.29 is installed OR postgresql96-plpython-9.6.15-3.29 is installed OR postgresql96-pltcl-9.6.15-3.29 is installed OR postgresql96-server-9.6.15-3.29 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information MozillaFirefox-60.9.0-109.86 is installed OR MozillaFirefox-translations-common-60.9.0-109.86 is installed
BACK