OVAL Reference oval:org.opensuse.security:def:51676

Oval Definition:

oval:org.opensuse.security:def:51676

Revision Date:	2021-10-18	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP3) (Important)
Description:	This update for the Linux Kernel 4.4.180-94_144 fixes several issues. The following security issues were fixed: - CVE-2021-3715: Fixed a user-after-free in the Linux kernel's Traffic Control networking subsystem which could lead to local privilege escalation. (bsc#1190350). - CVE-2021-38160: Fixed a bug that could lead to a data corruption or loss. This can be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size in drivers/char/virtio_console.c (bsc#1190118) - CVE-2021-3640: Fixed a user-after-free bug in the function sco_sock_sendmsg which could lead to local privilege escalation. (bsc#1188613) - CVE-2021-3573: Fixed a user-after-free bug in the function hci_sock_bound_ioctl which could lead to local privilege escalation. (bsc#1187054).
Family:	unix	Class:	patch
Status:		Reference(s):	1027519 1040109 1040113 1040115 1058115 1067720 1071995 1079730 1093697 1098403 1102379 1102400 1102410 1111025 1111331 1112178 1120067 1120095 1132091 1133089 1136666 1140738 1141329 1141330 1141332 1141442 1141897 1142649 1148517 1149145 1156323 1156324 1156326 1156328 1156329 1171558 1172021 1173060 1173674 1175691 1176069 1176409 1176412 1187054 1188613 1190118 1190350 CVE-2006-0855 CVE-2007-1669 CVE-2010-4000 CVE-2011-1946 CVE-2011-2483 CVE-2013-2063 CVE-2015-7555 CVE-2016-3977 CVE-2017-9111 CVE-2017-9113 CVE-2017-9115 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-1336 CVE-2018-8014 CVE-2018-8034 CVE-2018-8037 CVE-2019-11023 CVE-2019-11091 CVE-2019-12523 CVE-2019-12525 CVE-2019-12526 CVE-2019-12527 CVE-2019-12529 CVE-2019-12854 CVE-2019-13345 CVE-2019-14250 CVE-2019-15847 CVE-2019-18676 CVE-2019-18677 CVE-2019-18678 CVE-2019-18679 CVE-2019-19956 CVE-2019-3688 CVE-2020-14386 CVE-2020-14392 CVE-2020-14393 CVE-2020-15503 CVE-2021-3573 CVE-2021-3640 CVE-2021-3715 CVE-2021-38160 SUSE-SU-2018:3011-1 SUSE-SU-2019:1248-1 SUSE-SU-2019:1267-3 SUSE-SU-2019:1963-1 SUSE-SU-2019:2702-1 SUSE-SU-2019:2975-1 SUSE-SU-2020:1532-1 SUSE-SU-2020:2029-1 SUSE-SU-2020:2579-1 SUSE-SU-2020:2645-1 SUSE-SU-2021:3459-1
Platform(s):	openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND chromium-66.0.3359.170-lp150.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information MozillaFirefox-17.0.10esr-0.4.2 is installed OR MozillaFirefox-branding-SLED-7-0.6.9 is installed OR MozillaFirefox-translations-17.0.10esr-0.4.2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information xorg-x11-libX11-7.4-5.11.15 is installed OR xorg-x11-libX11-32bit-7.4-5.11.15 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information libldb1-3.6.3-64 is installed OR libldb1-32bit-3.6.3-64 is installed OR libsmbclient0-3.6.3-64 is installed OR libsmbclient0-32bit-3.6.3-64 is installed OR libtalloc2-3.6.3-64 is installed OR libtalloc2-32bit-3.6.3-64 is installed OR libtdb1-3.6.3-64 is installed OR libtdb1-32bit-3.6.3-64 is installed OR libtevent0-3.6.3-64 is installed OR libtevent0-32bit-3.6.3-64 is installed OR libwbclient0-3.6.3-64 is installed OR libwbclient0-32bit-3.6.3-64 is installed OR samba-3.6.3-64 is installed OR samba-32bit-3.6.3-64 is installed OR samba-client-3.6.3-64 is installed OR samba-client-32bit-3.6.3-64 is installed OR samba-doc-3.6.3-64 is installed OR samba-krb-printing-3.6.3-64 is installed OR samba-winbind-3.6.3-64 is installed OR samba-winbind-32bit-3.6.3-64 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information gnome-shell-3.10.4-22 is installed OR gnome-shell-browser-plugin-3.10.4-22 is installed OR gnome-shell-calendar-3.10.4-22 is installed OR gnome-shell-lang-3.10.4-22 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information sysvinit-tools-2.88+-94 is installed OR whois-5.1.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libXtst6-1.2.2-3 is installed OR libXtst6-32bit-1.2.2-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information elfutils-0.158-6 is installed OR libasm1-0.158-6 is installed OR libdw1-0.158-6 is installed OR libdw1-32bit-0.158-6 is installed OR libebl1-0.158-6 is installed OR libebl1-32bit-0.158-6 is installed OR libelf1-0.158-6 is installed OR libelf1-32bit-0.158-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND clamav-0.100.2-33.18 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information graphviz-addons-2.40.1-6.3 is installed OR graphviz-gnome-2.40.1-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information openexr-2.2.1-3.6 is installed OR openexr-doc-2.2.1-3.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information kernel-azure-4.12.14-8.44 is installed OR kernel-azure-base-4.12.14-8.44 is installed OR kernel-azure-devel-4.12.14-8.44 is installed OR kernel-devel-azure-4.12.14-8.44 is installed OR kernel-source-azure-4.12.14-8.44 is installed OR kernel-syms-azure-4.12.14-8.44 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python-libxml2-python-2.9.7-3.22 is installed OR python2-libxml2-python-2.9.7-3.22 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information xen-4.10.3_04-3.19 is installed OR xen-devel-4.10.3_04-3.19 is installed OR xen-tools-4.10.3_04-3.19 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND squid-4.9-5.11 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information tomcat-9.0.10-3.7 is installed OR tomcat-admin-webapps-9.0.10-3.7 is installed OR tomcat-el-3_0-api-9.0.10-3.7 is installed OR tomcat-jsp-2_3-api-9.0.10-3.7 is installed OR tomcat-lib-9.0.10-3.7 is installed OR tomcat-servlet-4_0-api-9.0.10-3.7 is installed OR tomcat-webapps-9.0.10-3.7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libMagickCore-6_Q16-1-6.8.8.1-8 is installed OR libMagickWand-6_Q16-1-6.8.8.1-8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information git-2.12.3-27.14 is installed OR git-core-2.12.3-27.14 is installed OR git-doc-2.12.3-27.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND kbd-1.15.5-8.7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libsystemd0-228-150.53 is installed OR libsystemd0-32bit-228-150.53 is installed OR libudev1-228-150.53 is installed OR libudev1-32bit-228-150.53 is installed OR systemd-228-150.53 is installed OR systemd-32bit-228-150.53 is installed OR systemd-bash-completion-228-150.53 is installed OR systemd-sysvinit-228-150.53 is installed OR udev-228-150.53 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libvirt-2.0.0-27.42 is installed OR libvirt-client-2.0.0-27.42 is installed OR libvirt-daemon-2.0.0-27.42 is installed OR libvirt-daemon-config-network-2.0.0-27.42 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed OR libvirt-daemon-driver-network-2.0.0-27.42 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed OR libvirt-daemon-hooks-2.0.0-27.42 is installed OR libvirt-daemon-lxc-2.0.0-27.42 is installed OR libvirt-daemon-qemu-2.0.0-27.42 is installed OR libvirt-daemon-xen-2.0.0-27.42 is installed OR libvirt-doc-2.0.0-27.42 is installed OR libvirt-lock-sanlock-2.0.0-27.42 is installed OR libvirt-nss-2.0.0-27.42 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_103-92_53-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_16-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND apache-commons-httpclient-3.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_162-94_72-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_22-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information openssh-7.2p2-74.30 is installed OR openssh-askpass-gnome-7.2p2-74.30 is installed OR openssh-fips-7.2p2-74.30 is installed OR openssh-helpers-7.2p2-74.30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND ant-1.9.4-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND kgraft-patch-4_4_180-94_144-default-7-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND perl-DBI-1.639-3.8 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information libraw-0.18.9-3.11 is installed OR libraw-devel-0.18.9-3.11 is installed OR libraw16-0.18.9-3.11 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information MozillaFirefox-60.3.0-109.50 is installed OR MozillaFirefox-devel-60.3.0-109.50 is installed OR MozillaFirefox-translations-common-60.3.0-109.50 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND slf4j-1.7.12-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND python-Twisted-15.2.1-9.5 is installed

BACK