Oval Definition:	oval:org.opensuse.security:def:51714
Revision Date: 2021-12-14 Version: 1 Title: Security update for the Linux Kernel (Live Patch 41 for SLE 12 SP3) (Important) Description: This update for the Linux Kernel 4.4.180-94_150 fixes several issues. The following security issues were fixed: - CVE-2021-0935: In ip6_xmit of ip6_output.c, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. (bsc#1192032) - CVE-2021-28688: The fix for XSA-365 includes initialization of pointers such that subsequent cleanup code wouldn't use uninitialized or stale values. This initialization went too far and may under certain conditions also overwrite pointers which are in need of cleaning up. The lack of cleanup would result in leaking persistent grants. The leak in turn would prevent fully cleaning up after a respective guest has died, leaving around zombie domains. (bsc#1183646) Family: unix Class: patch Status: Reference(s): 1055186 1058115 1063993 1065600 1065729 1073313 1079730 1094244 1100408 1101982 1111388 1112178 1112646 1113956 1114845 1114957 1116717 1117275 1119493 1121600 1123156 1123179 1136666 1140683 1143194 1143273 1144348 1144352 1149742 1152148 1154091 1154366 1159284 1160968 1162117 1162972 1163524 1165572 1165629 1166844 1166916 1166965 1167437 1167527 1168340 1169604 1169972 1170104 1170232 1170288 1171558 1171688 1171742 1171906 1172073 1172075 1172442 1172443 1172538 1172873 1173060 1173072 1173115 1174165 1174321 1174748 1174899 1175193 1175194 1175228 1175520 1175667 1175691 1175749 1175882 1176011 1176022 1176038 1176069 1176116 1176235 1176242 1176256 1176257 1176258 1176259 1176278 1176316 1176317 1176318 1176319 1176320 1176321 1176381 1176395 1176400 1176410 1176423 1176482 1176507 1176536 1176544 1176545 1176546 1176548 1176659 1176698 1176699 1176700 1176721 1176722 1176725 1176732 1176788 1176789 1176869 1176877 1176935 1176946 1176950 1176962 1176966 1176990 1177027 1177030 1177041 1177042 1177043 1177044 1177121 1177206 1177258 1177291 1177293 1177294 1177295 1177296 1177340 1177511 1182294 1192042 CVE-2010-0750 CVE-2010-1205 CVE-2011-1485 CVE-2011-2501 CVE-2011-2690 CVE-2011-2691 CVE-2011-2692 CVE-2011-3328 CVE-2013-0157 CVE-2013-4288 CVE-2013-6954 CVE-2014-0172 CVE-2014-0333 CVE-2014-8169 CVE-2014-9447 CVE-2014-9495 CVE-2015-0973 CVE-2015-1545 CVE-2015-1546 CVE-2015-3218 CVE-2015-3255 CVE-2015-3256 CVE-2015-4625 CVE-2015-6908 CVE-2015-8126 CVE-2017-17740 CVE-2018-15750 CVE-2018-15751 CVE-2018-16872 CVE-2018-18954 CVE-2018-19364 CVE-2018-19489 CVE-2019-13057 CVE-2019-13565 CVE-2019-14491 CVE-2019-14492 CVE-2019-15939 CVE-2019-4732 CVE-2019-6778 CVE-2020-0404 CVE-2020-0427 CVE-2020-0431 CVE-2020-0432 CVE-2020-10531 CVE-2020-11080 CVE-2020-11651 CVE-2020-11652 CVE-2020-14349 CVE-2020-14350 CVE-2020-14381 CVE-2020-14386 CVE-2020-14390 CVE-2020-15103 CVE-2020-15166 CVE-2020-1749 CVE-2020-25212 CVE-2020-25284 CVE-2020-25641 CVE-2020-25643 CVE-2020-25645 CVE-2020-2583 CVE-2020-2593 CVE-2020-2604 CVE-2020-26088 CVE-2020-2659 CVE-2020-7598 CVE-2020-8174 CVE-2021-0935 CVE-2021-28688 SUSE-SU-2019:0423-1 SUSE-SU-2019:2395-1 SUSE-SU-2019:3192-1 SUSE-SU-2020:0466-1 SUSE-SU-2020:1568-1 SUSE-SU-2020:1974-1 SUSE-SU-2020:2355-1 SUSE-SU-2020:2408-1 SUSE-SU-2020:3014-1 SUSE-SU-2020:3264-1 SUSE-SU-2021:4052-1 Platform(s): openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Realtime packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information glibc-2.26-lp150.10 is installed OR glibc-32bit-2.26-lp150.10 is installed OR glibc-extra-2.26-lp150.10 is installed OR glibc-locale-2.26-lp150.10 is installed OR glibc-locale-32bit-2.26-lp150.10 is installed OR nscd-2.26-lp150.10 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libfreebl3-3.15.3.1-0.4.2 is installed OR libfreebl3-32bit-3.15.3.1-0.4.2 is installed OR mozilla-nss-3.15.3.1-0.4.2 is installed OR mozilla-nss-32bit-3.15.3.1-0.4.2 is installed OR mozilla-nss-tools-3.15.3.1-0.4.2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information flash-player-11.2.202.548-0.26 is installed OR flash-player-gnome-11.2.202.548-0.26 is installed OR flash-player-kde4-11.2.202.548-0.26 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libblkid1-2.25-6 is installed OR libblkid1-32bit-2.25-6 is installed OR libmount1-2.25-6 is installed OR libmount1-32bit-2.25-6 is installed OR libsmartcols1-2.25-6 is installed OR libuuid-devel-2.25-6 is installed OR libuuid1-2.25-6 is installed OR libuuid1-32bit-2.25-6 is installed OR python-libmount-2.25-6 is installed OR util-linux-2.25-6 is installed OR util-linux-lang-2.25-6 is installed OR util-linux-systemd-2.25-6 is installed OR uuidd-2.25-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information elfutils-0.158-6 is installed OR libasm1-0.158-6 is installed OR libdw1-0.158-6 is installed OR libdw1-32bit-0.158-6 is installed OR libebl1-0.158-6 is installed OR libebl1-32bit-0.158-6 is installed OR libelf1-0.158-6 is installed OR libelf1-32bit-0.158-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND autofs-5.0.9-21 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information coreutils-8.25-12 is installed OR coreutils-lang-8.25-12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information coreutils-8.25-13.7 is installed OR coreutils-lang-8.25-13.7 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed AND Package Information libunwind-1.2.1-4.2 is installed OR libunwind-32bit-1.2.1-4.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information libldap-data-2.4.46-9.19 is installed OR openldap2-2.4.46-9.19 is installed OR openldap2-back-sock-2.4.46-9.19 is installed OR openldap2-back-sql-2.4.46-9.19 is installed OR openldap2-contrib-2.4.46-9.19 is installed OR openldap2-doc-2.4.46-9.19 is installed OR openldap2-ppolicy-check-password-1.2-9.19 is installed Definition Synopsis SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python2-salt-3000-6.37 is installed OR salt-3000-6.37 is installed Definition Synopsis SUSE Linux Enterprise Module for Realtime packages 15 SP1 is installed AND Package Information cluster-md-kmp-rt-4.12.14-14.36 is installed OR dlm-kmp-rt-4.12.14-14.36 is installed OR gfs2-kmp-rt-4.12.14-14.36 is installed OR kernel-devel-rt-4.12.14-14.36 is installed OR kernel-rt-4.12.14-14.36 is installed OR kernel-rt-base-4.12.14-14.36 is installed OR kernel-rt-devel-4.12.14-14.36 is installed OR kernel-rt_debug-4.12.14-14.36 is installed OR kernel-rt_debug-devel-4.12.14-14.36 is installed OR kernel-source-rt-4.12.14-14.36 is installed OR kernel-syms-rt-4.12.14-14.36 is installed OR ocfs2-kmp-rt-4.12.14-14.36 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information qemu-2.11.2-9.20 is installed OR qemu-arm-2.11.2-9.20 is installed OR qemu-block-curl-2.11.2-9.20 is installed OR qemu-block-iscsi-2.11.2-9.20 is installed OR qemu-block-rbd-2.11.2-9.20 is installed OR qemu-block-ssh-2.11.2-9.20 is installed OR qemu-guest-agent-2.11.2-9.20 is installed OR qemu-ipxe-1.0.0+-9.20 is installed OR qemu-kvm-2.11.2-9.20 is installed OR qemu-lang-2.11.2-9.20 is installed OR qemu-ppc-2.11.2-9.20 is installed OR qemu-s390-2.11.2-9.20 is installed OR qemu-seabios-1.11.0-9.20 is installed OR qemu-sgabios-8-9.20 is installed OR qemu-vgabios-1.11.0-9.20 is installed OR qemu-x86-2.11.2-9.20 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information postgresql10-10.14-8.19 is installed OR postgresql10-contrib-10.14-8.19 is installed OR postgresql10-devel-10.14-8.19 is installed OR postgresql10-docs-10.14-8.19 is installed OR postgresql10-plperl-10.14-8.19 is installed OR postgresql10-plpython-10.14-8.19 is installed OR postgresql10-pltcl-10.14-8.19 is installed OR postgresql10-server-10.14-8.19 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs10-10.21.0-1.21 is installed OR nodejs10-devel-10.21.0-1.21 is installed OR nodejs10-docs-10.21.0-1.21 is installed OR npm10-10.21.0-1.21 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND busybox-1.21.1-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_88-default-4-2 is installed OR kgraft-patch-3_12_74-60_64_88-xen-4-2 is installed OR kgraft-patch-SLE12-SP1_Update_27-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libecpg6-9.4.9-14 is installed OR libpq5-9.4.9-14 is installed OR libpq5-32bit-9.4.9-14 is installed OR postgresql94-9.4.9-14 is installed OR postgresql94-contrib-9.4.9-14 is installed OR postgresql94-docs-9.4.9-14 is installed OR postgresql94-server-9.4.9-14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libdcerpc-atsvc0-4.2.4-28.29 is installed OR samba-4.2.4-28.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_38-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_13-9-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information java-1_7_0-openjdk-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-demo-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-devel-1.7.0.241-43.30 is installed OR java-1_7_0-openjdk-headless-1.7.0.241-43.30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libgcrypt-1.6.1-16.58 is installed OR libgcrypt20-1.6.1-16.58 is installed OR libgcrypt20-32bit-1.6.1-16.58 is installed OR libgcrypt20-hmac-1.6.1-16.58 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.58 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND kgraft-patch-4_4_180-94_150-default-2-2.1 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.5-3.33 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.5-3.33 is installed OR java-1_8_0-ibm-devel-1.8.0_sr6.5-3.33 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.5-3.33 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information freerdp-2.1.2-15.10 is installed OR freerdp-devel-2.1.2-15.10 is installed OR libfreerdp2-2.1.2-15.10 is installed OR libwinpr2-2.1.2-15.10 is installed OR winpr2-devel-2.1.2-15.10 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND python-pycrypto-2.6.1-10.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information kernel-default-4.4.180-94.103 is installed OR kernel-default-base-4.4.180-94.103 is installed OR kernel-default-devel-4.4.180-94.103 is installed OR kernel-devel-4.4.180-94.103 is installed OR kernel-macros-4.4.180-94.103 is installed OR kernel-source-4.4.180-94.103 is installed OR kernel-syms-4.4.180-94.103 is installed OR kgraft-patch-4_4_180-94_103-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_28-1-4.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.14.3-11.15 is installed
BACK