OVAL Reference oval:org.opensuse.security:def:51533

Oval Definition:

oval:org.opensuse.security:def:51533

Revision Date:	2021-04-07	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)
Description:	This update for the Linux Kernel 4.4.180-94_141 fixes several issues. The following security issues were fixed: - CVE-2021-27365: Fixed an issue where data structures did not have appropriate length constraints or checks, and could exceed the PAGE_SIZE value (bsc#1183491). - CVE-2021-27363: Fixed a kernel pointer leak which could have been used to determine the address of the iscsi_transport structure (bsc#1183120). - CVE-2021-27364: Fixed an issue where an unprivileged user could craft Netlink messages (bsc#1182717). - CVE-2020-25645: Fixed an an issue in IPsec that caused traffic between two Geneve endpoints to be unencrypted (bsc#1177513). - CVE-2020-0429: Fixed a memory corruption due to a use after free which could have led to local escalation of privilege with System execution privileges needed (bsc#1176931). - CVE-2020-1749: Use ip6_dst_lookup_flow instead of ip6_dst_lookup (bsc#1165631).
Family:	unix	Class:	patch
Status:		Reference(s):	1051510 1071995 1094555 1105443 1107116 1107121 1111499 1111666 1112374 1114279 1119835 1120672 1122675 1123562 1128432 1134730 1134738 1135153 1135296 1135642 1136156 1136157 1136271 1136333 1137103 1137194 1137366 1137884 1137985 1138263 1138336 1138374 1138375 1138529 1138589 1138681 1138719 1138732 1144502 1152856 1154212 1165631 1171746 1172140 1172177 1172182 1172184 1172186 1172437 1172745 1173351 1174421 1176262 1176931 1177351 1177352 1177513 1182717 1183120 1183491 CVE-2010-1163 CVE-2010-1646 CVE-2011-0010 CVE-2012-0862 CVE-2012-2337 CVE-2013-1775 CVE-2013-1776 CVE-2013-1987 CVE-2013-2062 CVE-2013-4342 CVE-2014-4910 CVE-2018-1000199 CVE-2018-1000632 CVE-2018-16428 CVE-2018-16429 CVE-2018-16871 CVE-2018-20105 CVE-2019-12614 CVE-2019-12817 CVE-2019-15666 CVE-2019-16770 CVE-2019-20916 CVE-2019-2894 CVE-2019-2933 CVE-2019-2945 CVE-2019-2949 CVE-2019-2958 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2975 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2987 CVE-2019-2988 CVE-2019-2989 CVE-2019-2992 CVE-2019-2999 CVE-2019-3681 CVE-2019-5418 CVE-2019-5419 CVE-2019-5420 CVE-2020-0429 CVE-2020-10757 CVE-2020-11076 CVE-2020-11077 CVE-2020-13233 CVE-2020-15169 CVE-2020-15705 CVE-2020-1749 CVE-2020-25645 CVE-2020-5247 CVE-2020-5249 CVE-2020-5267 CVE-2020-7069 CVE-2020-7070 CVE-2020-8164 CVE-2020-8165 CVE-2020-8166 CVE-2020-8167 CVE-2020-8184 CVE-2020-8185 CVE-2021-27363 CVE-2021-27364 CVE-2021-27365 SUSE-SU-2018:3908-1 SUSE-SU-2018:3913-1 SUSE-SU-2019:0629-1 SUSE-SU-2019:1744-1 SUSE-SU-2019:3238-1 SUSE-SU-2020:1656-1 SUSE-SU-2020:1695-2 SUSE-SU-2020:2303-1 SUSE-SU-2020:2784-1 SUSE-SU-2020:2941-1 SUSE-SU-2020:3147-1 SUSE-SU-2021:1074-1
Platform(s):	openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND libunwind-1.2.1-lp150.2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information kernel-bigsmp-3.0.101-0.47.67 is installed OR kernel-bigsmp-devel-3.0.101-0.47.67 is installed OR kernel-default-3.0.101-0.47.67 is installed OR kernel-default-base-3.0.101-0.47.67 is installed OR kernel-default-devel-3.0.101-0.47.67 is installed OR kernel-default-extra-3.0.101-0.47.67 is installed OR kernel-pae-3.0.101-0.47.67 is installed OR kernel-pae-base-3.0.101-0.47.67 is installed OR kernel-pae-devel-3.0.101-0.47.67 is installed OR kernel-pae-extra-3.0.101-0.47.67 is installed OR kernel-source-3.0.101-0.47.67 is installed OR kernel-syms-3.0.101-0.47.67 is installed OR kernel-trace-3.0.101-0.47.67 is installed OR kernel-trace-devel-3.0.101-0.47.67 is installed OR kernel-xen-3.0.101-0.47.67 is installed OR kernel-xen-base-3.0.101-0.47.67 is installed OR kernel-xen-devel-3.0.101-0.47.67 is installed OR kernel-xen-extra-3.0.101-0.47.67 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information libpng12-0-1.2.31-5.38 is installed OR libpng12-0-32bit-1.2.31-5.38 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information libXrender1-0.9.8-3 is installed OR libXrender1-32bit-0.9.8-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libXp6-1.0.2-3 is installed OR libXp6-32bit-1.0.2-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND argyllcms-1.6.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information ecryptfs-utils-103-8.3 is installed OR ecryptfs-utils-32bit-103-8.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information glib2-2.54.3-4.7 is installed OR glib2-devel-32bit-2.54.3-4.7 is installed OR glib2-tools-32bit-2.54.3-4.7 is installed OR libgthread-2_0-0-32bit-2.54.3-4.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed AND Package Information php7-7.4.6-3.11 is installed OR php7-embed-7.4.6-3.11 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed AND osc-0.169.1-3.20 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_7-default-10-2 is installed OR kernel-livepatch-SLE15-SP1_Update_2-10-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information dom4j-1.6.1-4.3 is installed OR dom4j-demo-1.6.1-4.3 is installed OR dom4j-javadoc-1.6.1-4.3 is installed OR dom4j-manual-1.6.1-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python-pip-10.0.1-3.3 is installed OR python2-pip-10.0.1-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND yast2-rmt-1.2.2-3.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information gv-3.7.4-1 is installed OR wdiff-1.2.1-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND wget-1.14-21.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information coreutils-8.25-12 is installed OR coreutils-lang-8.25-12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information xen-4.7.6_04-43.39 is installed OR xen-doc-html-4.7.6_04-43.39 is installed OR xen-libs-4.7.6_04-43.39 is installed OR xen-libs-32bit-4.7.6_04-43.39 is installed OR xen-tools-4.7.6_04-43.39 is installed OR xen-tools-domU-4.7.6_04-43.39 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information git-2.12.3-27.14 is installed OR git-core-2.12.3-27.14 is installed OR git-doc-2.12.3-27.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_50-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_15-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND gd-2.1.0-23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND ucode-intel-20191112a-13.56 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.55-38.44 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.55-38.44 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.55-38.44 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.55-38.44 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libtirpc-1.0.1-17.6 is installed OR libtirpc-netconfig-1.0.1-17.6 is installed OR libtirpc3-1.0.1-17.6 is installed OR libtirpc3-32bit-1.0.1-17.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information at-3.1.14-8.6 is installed OR flex-2.5.37-8 is installed OR flex-32bit-2.5.37-8 is installed OR libQtWebKit4-4.8.7+2.3.4-4.7 is installed OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-doc-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information grub2-2.02-19.56 is installed OR grub2-arm64-efi-2.02-19.56 is installed OR grub2-i386-pc-2.02-19.56 is installed OR grub2-powerpc-ieee1275-2.02-19.56 is installed OR grub2-s390x-emu-2.02-19.56 is installed OR grub2-snapper-plugin-2.02-19.56 is installed OR grub2-systemd-sleep-plugin-2.02-19.56 is installed OR grub2-x86_64-efi-2.02-19.56 is installed OR grub2-x86_64-xen-2.02-19.56 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND kgraft-patch-4_4_180-94_141-default-2-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information rmt-server-2.6.5-3.34 is installed OR rmt-server-config-2.6.5-3.34 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.7 is installed OR kernel-default-extra-4.12.14-197.7 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr4.10-30.5 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr4.10-30.5 is installed OR java-1_8_0-ibm-devel-1.8.0_sr4.10-30.5 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr4.10-30.5 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information MozillaFirefox-52.8.1esr-109.34 is installed OR MozillaFirefox-devel-52.8.1esr-109.34 is installed OR MozillaFirefox-translations-52.8.1esr-109.34 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-60.7.2-109.80 is installed OR MozillaFirefox-translations-common-60.7.2-109.80 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND nodejs6-6.17.0-11.27 is installed

BACK