Oval Definition:oval:org.opensuse.security:def:51478
Revision Date:2020-12-07Version:1
Title:Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)
Description:

This update for the Linux Kernel 4.4.180-94_135 fixes several issues.

The following security issues were fixed:

- CVE-2020-25645: Fixed an issue which traffic between two Geneve endpoints may be unencrypted when IPsec is configured to encrypt traffic for the specific UDP port used by the GENEVE tunnel allowing anyone between the two endpoints to read the traffic unencrypted (bsc#1177513). - CVE-2020-0429: Fixed a memory corruption due to a use after free which could have led to to local privilege escalation (bsc#1176931). - CVE-2020-11668: Fixed an issue where the Xirlink camera USB driver mishandled invalid descriptors (bsc#1173942). - CVE-2020-1749: Use ip6_dst_lookup_flow instead of ip6_dst_lookup (bsc#1165631).
Family:unixClass:patch
Status:Reference(s):1027282
1029377
1029902
1040164
1042670
1047238
1050911
1051510
1054914
1055117
1056686
1058115
1060662
1061840
1061843
1064597
1064701
1065600
1065729
1066369
1070853
1071009
1071306
1071995
1078248
1079761
1081750
1082555
1082635
1083507
1085030
1085536
1085539
1086001
1086103
1087092
1088004
1088009
1088573
1090734
1091171
1093205
1094814
1102097
1103990
1104353
1104427
1104745
1104902
1104967
1106061
1106284
1106434
1106531
1107030
1108382
1109158
1109663
1109837
1109847
1110938
1111666
1112178
1112374
1112894
1112899
1112902
1112903
1112905
1112906
1112907
1113698
1113699
1113722
1113784
1113994
1114197
1114279
1114542
1115645
1118689
1119086
1119113
1120046
1120644
1120876
1120902
1122191
1123034
1123105
1123959
1124370
1124593
1127988
1129346
1129424
1129519
1129664
1130840
1131107
1131281
1131304
1131489
1131565
1132686
1133021
1133452
1134291
1134476
1134881
1134882
1135219
1135642
1135897
1135990
1136039
1136261
1136346
1136349
1136352
1136496
1136498
1136502
1136682
1137069
1137322
1137323
1137586
1137865
1137884
1137942
1137959
1137982
1138099
1138100
1138459
1138539
1139020
1139021
1139101
1139500
1140012
1140155
1140426
1140487
1140683
1141013
1141340
1141450
1141543
1141554
1141853
1142019
1142076
1142109
1142117
1142118
1142119
1142496
1142541
1142635
1142685
1142701
1142857
1143300
1143331
1143466
1143706
1143738
1143765
1143841
1143843
1143962
1144123
1144333
1144375
1144474
1144502
1144518
1144582
1144718
1144813
1144880
1144886
1144912
1144920
1144979
1145010
1145018
1145051
1145059
1145134
1145189
1145235
1145256
1145300
1145302
1145357
1145388
1145389
1145390
1145391
1145392
1145393
1145394
1145395
1145396
1145397
1145408
1145409
1145446
1145661
1145678
1145687
1145920
1145922
1145934
1145937
1145940
1145941
1145942
1145946
1146042
1146074
1146084
1146141
1146163
1146215
1146285
1146346
1146351
1146352
1146361
1146368
1146376
1146378
1146381
1146391
1146399
1146413
1146425
1146512
1146514
1146516
1146519
1146524
1146526
1146529
1146531
1146540
1146543
1146547
1146550
1146575
1146589
1146664
1146678
1146938
1148031
1148032
1148033
1148034
1148035
1148093
1148133
1148192
1148196
1148198
1148202
1148219
1148297
1148303
1148308
1148363
1148379
1148394
1148527
1148570
1148574
1148616
1148617
1148619
1148698
1148712
1148859
1148868
1149053
1149083
1149104
1149105
1149106
1149121
1149197
1149214
1149224
1149313
1149325
1149376
1149413
1149418
1149424
1149446
1149522
1149527
1149539
1149552
1149555
1149591
1149602
1149612
1149626
1149651
1149652
1149713
1149792
1149940
1149955
1149976
1150025
1150033
1150112
1150305
1150381
1150423
1150562
1150727
1150846
1150860
1150861
1150933
1151067
1151192
1151350
1151490
1151610
1151661
1151662
1151667
1151680
1151891
1151955
1152024
1152025
1152026
1152161
1152187
1152243
1152325
1152457
1152460
1152466
1152472
1152489
1152525
1152972
1152974
1152975
1153238
1153274
1154353
1154492
1154817
1155518
1155798
1156395
1157169
1158050
1158242
1158265
1158748
1158765
1158983
1159035
1159622
1159781
1159867
1160947
1161495
1162002
1162063
1162400
1162702
1164648
1164777
1164780
1165211
1165631
1165933
1165975
1166985
1167104
1167651
1167773
1168230
1168779
1168838
1168959
1169021
1169094
1169194
1169514
1169681
1169771
1170011
1170284
1170442
1170603
1170617
1170774
1170879
1170891
1170895
1171150
1171189
1171191
1171219
1171220
1171246
1171417
1171513
1171529
1171530
1171662
1171688
1171699
1171732
1171739
1171743
1171759
1171828
1171857
1171868
1171883
1171904
1171915
1171982
1171983
1171988
1172017
1172046
1172061
1172062
1172063
1172064
1172065
1172066
1172067
1172068
1172069
1172073
1172086
1172095
1172169
1172170
1172201
1172208
1172223
1172342
1172343
1172344
1172365
1172366
1172374
1172391
1172393
1172394
1172453
1172458
1172467
1172484
1172537
1172538
1172543
1172687
1172719
1172739
1172751
1172759
1172775
1172781
1172782
1172783
1172814
1172823
1172841
1172871
1172938
1172939
1172940
1172956
1172983
1172984
1172985
1172986
1172987
1172988
1172989
1172990
1172999
1173060
1173068
1173074
1173085
1173139
1173202
1173206
1173271
1173280
1173284
1173428
1173438
1173461
1173514
1173552
1173573
1173625
1173746
1173776
1173817
1173818
1173820
1173822
1173823
1173824
1173825
1173826
1173827
1173828
1173830
1173831
1173832
1173833
1173834
1173836
1173837
1173838
1173839
1173841
1173843
1173844
1173845
1173847
1173849
1173860
1173894
1173941
1173942
1174018
1174072
1174116
1174126
1174127
1174128
1174129
1174185
1174244
1174263
1174264
1174331
1174332
1174333
1174345
1174356
1174396
1174398
1174407
1174409
1174411
1174438
1174462
1174513
1174527
1174543
1174627
1174748
1175520
1176400
1176931
1176946
1177027
1177340
1177511
1177513
1177685
1177724
1177725
637176
658604
673071
709442
743787
747125
751718
754447
754677
787526
809831
831629
834601
871152
885662
885882
917607
942751
951166
962849
983582
984751
985177
985348
989523
CVE-2008-4225
CVE-2008-4226
CVE-2008-4409
CVE-2010-2761
CVE-2010-4410
CVE-2010-4411
CVE-2010-4494
CVE-2010-4777
CVE-2011-1944
CVE-2011-3389
CVE-2011-3635
CVE-2011-4944
CVE-2012-0845
CVE-2012-1150
CVE-2012-2451
CVE-2012-4453
CVE-2012-5134
CVE-2013-0338
CVE-2013-1752
CVE-2013-1969
CVE-2013-4238
CVE-2014-0191
CVE-2014-2667
CVE-2014-3660
CVE-2014-4650
CVE-2016-0772
CVE-2016-1000110
CVE-2016-5636
CVE-2016-5699
CVE-2017-18207
CVE-2017-18551
CVE-2017-18595
CVE-2018-1000802
CVE-2018-1060
CVE-2018-1061
CVE-2018-14647
CVE-2018-15750
CVE-2018-15751
CVE-2018-16140
CVE-2018-20406
CVE-2018-20852
CVE-2018-20976
CVE-2018-21008
CVE-2019-10160
CVE-2019-10207
CVE-2019-11477
CVE-2019-13233
CVE-2019-14814
CVE-2019-14815
CVE-2019-14816
CVE-2019-14821
CVE-2019-14835
CVE-2019-15030
CVE-2019-15031
CVE-2019-15090
CVE-2019-15098
CVE-2019-15099
CVE-2019-15117
CVE-2019-15118
CVE-2019-15211
CVE-2019-15212
CVE-2019-15214
CVE-2019-15215
CVE-2019-15216
CVE-2019-15217
CVE-2019-15218
CVE-2019-15219
CVE-2019-15220
CVE-2019-15221
CVE-2019-15222
CVE-2019-15239
CVE-2019-15290
CVE-2019-15291
CVE-2019-15292
CVE-2019-15538
CVE-2019-15666
CVE-2019-15902
CVE-2019-15903
CVE-2019-15917
CVE-2019-15919
CVE-2019-15920
CVE-2019-15921
CVE-2019-15924
CVE-2019-15926
CVE-2019-15927
CVE-2019-16056
CVE-2019-16935
CVE-2019-19462
CVE-2019-20810
CVE-2019-20812
CVE-2019-5010
CVE-2019-7164
CVE-2019-7548
CVE-2019-9456
CVE-2019-9506
CVE-2019-9636
CVE-2019-9947
CVE-2020-0305
CVE-2020-0429
CVE-2020-10135
CVE-2020-10711
CVE-2020-10732
CVE-2020-10751
CVE-2020-10766
CVE-2020-10767
CVE-2020-10768
CVE-2020-10773
CVE-2020-10781
CVE-2020-11668
CVE-2020-12268
CVE-2020-12351
CVE-2020-12352
CVE-2020-12656
CVE-2020-12769
CVE-2020-12771
CVE-2020-12888
CVE-2020-13143
CVE-2020-13974
CVE-2020-14416
CVE-2020-15393
CVE-2020-15780
CVE-2020-1749
CVE-2020-1967
CVE-2020-25645
SUSE-SU-2018:3815-1
SUSE-SU-2019:1291-1
SUSE-SU-2019:2232-1
SUSE-SU-2019:2253-2
SUSE-SU-2019:2658-1
SUSE-SU-2020:0114-1
SUSE-SU-2020:1220-1
SUSE-SU-2020:1858-1
SUSE-SU-2020:2041-1
SUSE-SU-2020:2972-1
SUSE-SU-2020:3656-1
Platform(s):openSUSE Leap 15.0
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1
SUSE Linux Enterprise Module for Development Tools 15 SP1
SUSE Linux Enterprise Module for Development Tools 15 SP2
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Live Patching 15 SP2
SUSE Linux Enterprise Module for Public Cloud 15 SP1
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Workstation Extension 15
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libmwaw-0_3-3-0.3.13-lp150.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-24.8.0esr-0.8 is installed
  • OR MozillaFirefox-translations-24.8.0esr-0.8 is installed
  • OR libfreebl3-3.16.4-0.8 is installed
  • OR libfreebl3-32bit-3.16.4-0.8 is installed
  • OR libsoftokn3-3.16.4-0.8 is installed
  • OR libsoftokn3-32bit-3.16.4-0.8 is installed
  • OR mozilla-nspr-4.10.7-0.3 is installed
  • OR mozilla-nspr-32bit-4.10.7-0.3 is installed
  • OR mozilla-nss-3.16.4-0.8 is installed
  • OR mozilla-nss-32bit-3.16.4-0.8 is installed
  • OR mozilla-nss-tools-3.16.4-0.8 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND cabextract-1.2-2.12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND dracut-037-34 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • empathy-3.10.3-1 is installed
  • OR empathy-lang-3.10.3-1 is installed
  • OR telepathy-mission-control-plugin-goa-3.10.3-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND kdump-0.8.15-28 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • gstreamer-0_10-plugins-good-0.10.31-16 is installed
  • OR gstreamer-0_10-plugins-good-lang-0.10.31-16 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND ctags-5.8-7 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed
  • AND Package Information
  • python-SQLAlchemy-1.2.14-6.3 is installed
  • OR python2-SQLAlchemy-1.2.14-6.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed
  • AND Package Information
  • python3-base-3.6.10-3.42 is installed
  • OR python3-tools-3.6.10-3.42 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed
  • AND Package Information
  • cargo-1.43.1-12 is installed
  • OR clippy-1.43.1-12 is installed
  • OR rls-1.43.1-12 is installed
  • OR rust-1.43.1-12 is installed
  • OR rust-analysis-1.43.1-12 is installed
  • OR rust-src-1.43.1-12 is installed
  • OR rust-std-static-1.43.1-12 is installed
  • OR rustfmt-1.43.1-12 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-197_7-default-3-2 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_2-3-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed
  • AND Package Information
  • kernel-default-5.3.18-24.9 is installed
  • OR kernel-default-livepatch-5.3.18-24.9 is installed
  • OR kernel-default-livepatch-devel-5.3.18-24.9 is installed
  • OR kernel-livepatch-5_3_18-24_9-default-1-5.3 is installed
  • OR kernel-livepatch-SLE15-SP2_Update_1-1-5.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed
  • AND Package Information
  • kernel-azure-4.12.14-8.16 is installed
  • OR kernel-azure-base-4.12.14-8.16 is installed
  • OR kernel-azure-devel-4.12.14-8.16 is installed
  • OR kernel-devel-azure-4.12.14-8.16 is installed
  • OR kernel-source-azure-4.12.14-8.16 is installed
  • OR kernel-syms-azure-4.12.14-8.16 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • salt-2018.3.0-5.20 is installed
  • OR salt-api-2018.3.0-5.20 is installed
  • OR salt-cloud-2018.3.0-5.20 is installed
  • OR salt-fish-completion-2018.3.0-5.20 is installed
  • OR salt-master-2018.3.0-5.20 is installed
  • OR salt-proxy-2018.3.0-5.20 is installed
  • OR salt-ssh-2018.3.0-5.20 is installed
  • OR salt-syndic-2018.3.0-5.20 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND autofs-5.0.9-8 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_62-60_64_8-default-10-2 is installed
  • OR kgraft-patch-3_12_62-60_64_8-xen-10-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_8-10-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • grub2-2.02~beta2-104 is installed
  • OR grub2-arm64-efi-2.02~beta2-104 is installed
  • OR grub2-i386-pc-2.02~beta2-104 is installed
  • OR grub2-powerpc-ieee1275-2.02~beta2-104 is installed
  • OR grub2-s390x-emu-2.02~beta2-104 is installed
  • OR grub2-snapper-plugin-2.02~beta2-104 is installed
  • OR grub2-systemd-sleep-plugin-2.02~beta2-104 is installed
  • OR grub2-x86_64-efi-2.02~beta2-104 is installed
  • OR grub2-x86_64-xen-2.02~beta2-104 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • ntp-4.2.8p11-64.5 is installed
  • OR ntp-doc-4.2.8p11-64.5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_90-92_50-default-11-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_15-11-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_103-92_53-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_16-7-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • apache2-mod_apparmor-2.8.2-49 is installed
  • OR apparmor-docs-2.8.2-49 is installed
  • OR apparmor-parser-2.8.2-49 is installed
  • OR apparmor-profiles-2.8.2-49 is installed
  • OR apparmor-utils-2.8.2-49 is installed
  • OR libapparmor1-2.8.2-49 is installed
  • OR libapparmor1-32bit-2.8.2-49 is installed
  • OR pam_apparmor-2.8.2-49 is installed
  • OR pam_apparmor-32bit-2.8.2-49 is installed
  • OR perl-apparmor-2.8.2-49 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libsqlite3-0-3.8.10.2-9.15 is installed
  • OR libsqlite3-0-32bit-3.8.10.2-9.15 is installed
  • OR sqlite3-3.8.10.2-9.15 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND mutt-1.10.1-55.6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND clamav-0.100.2-33.18 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • ghostscript-9.52-3.27 is installed
  • OR ghostscript-devel-9.52-3.27 is installed
  • OR ghostscript-x11-9.52-3.27 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed
  • AND kgraft-patch-4_4_180-94_135-default-2-2.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND permissions-20180125-3.27 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND transfig-3.2.6a-4.3 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • openstack-nova-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-api-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-cells-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-cert-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-compute-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-conductor-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-console-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-consoleauth-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-novncproxy-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-objectstore-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-scheduler-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-serialproxy-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-vncproxy-12.0.2~a0~dev18-1 is installed
  • OR python-nova-12.0.2~a0~dev18-1 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.181-27.26 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.181-27.26 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.181-27.26 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.181-27.26 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND git-2.12.3-27.14 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ruby2.1-rubygem-loofah-2.0.2-3.8 is installed
  • OR rubygem-loofah-2.0.2-3.8 is installed
  • BACK