Oval Definition:oval:org.opensuse.security:def:52651
Revision Date:2020-12-01Version:1
Title:Security update for kernel-livepatch-tools (Important)
Description:

This update for kernel-livepatch-tools fixes the following issues:

Add script for disabling SMT to help with the mitigation of the 'L1 Terminal Fault' issue (CVE-2018-3646 bsc#1099306)

The script is called 'klp-kvm-l1tf-ctrl-smt' and is used for enabling or disabling SMT to mitigate the issue when this administrative decision is taken.

Disabling SMT:

klp-kvm-l1tf-ctrl-smt -d

Enabling SMT:

klp-kvm-l1tf-ctrl-smt -e

Family:unixClass:patch
Status:Reference(s):1099306
1149841
1151021
900836
901448
909472
909563
910647
910669
913376
916203
917977
919723
CVE-2010-2800
CVE-2010-2801
CVE-2011-1098
CVE-2011-1145
CVE-2011-1154
CVE-2011-1155
CVE-2011-2895
CVE-2012-1571
CVE-2012-4024
CVE-2012-4025
CVE-2013-1991
CVE-2013-2000
CVE-2013-2064
CVE-2013-6462
CVE-2014-0209
CVE-2014-0210
CVE-2014-0211
CVE-2014-1569
CVE-2014-1932
CVE-2014-3675
CVE-2014-3676
CVE-2014-3677
CVE-2014-3710
CVE-2014-7300
CVE-2014-8116
CVE-2014-8117
CVE-2014-8169
CVE-2014-8634
CVE-2014-8635
CVE-2014-8638
CVE-2014-8639
CVE-2014-8641
CVE-2014-9556
CVE-2018-3646
CVE-2019-14835
SUSE-SU-2015:0803-1
SUSE-SU-2015:1020-1
SUSE-SU-2018:2426-1
SUSE-SU-2019:2572-1
Platform(s):openSUSE Leap 15.0
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND autofs-5.1.3-lp150.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-31.7.0esr-0.8 is installed
  • OR MozillaFirefox-translations-31.7.0esr-0.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND dhcpcd-3.2.3-45.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND libXfont1-1.4.7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • file-5.19-9 is installed
  • OR file-magic-5.19-9 is installed
  • OR libmagic1-5.19-9 is installed
  • OR libmagic1-32bit-5.19-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND squashfs-4.3-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND libXxf86dga1-1.1.4-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • gnome-settings-daemon-3.20.1-50.5 is installed
  • OR gnome-settings-daemon-lang-3.20.1-50.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND kernel-livepatch-tools-1.1-5.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • MozillaFirefox-38.4.0esr-51 is installed
  • OR MozillaFirefox-translations-38.4.0esr-51 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_60-default-5-2 is installed
  • OR kgraft-patch-3_12_74-60_64_60-xen-5-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_21-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libhogweed2-2.7.1-9 is installed
  • OR libhogweed2-32bit-2.7.1-9 is installed
  • OR libnettle4-2.7.1-9 is installed
  • OR libnettle4-32bit-2.7.1-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libdcerpc-atsvc0-4.2.4-28.29 is installed
  • OR samba-4.2.4-28.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_103-92_56-default-12-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_17-12-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_90-92_50-default-10-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_15-10-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • avahi-0.6.32-30 is installed
  • OR avahi-lang-0.6.32-30 is installed
  • OR avahi-utils-0.6.32-30 is installed
  • OR libavahi-client3-0.6.32-30 is installed
  • OR libavahi-client3-32bit-0.6.32-30 is installed
  • OR libavahi-common3-0.6.32-30 is installed
  • OR libavahi-common3-32bit-0.6.32-30 is installed
  • OR libavahi-core7-0.6.32-30 is installed
  • OR libdns_sd-0.6.32-30 is installed
  • OR libdns_sd-32bit-0.6.32-30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libssh2-1-1.4.3-20.9 is installed
  • OR libssh2-1-32bit-1.4.3-20.9 is installed
  • OR libssh2_org-1.4.3-20.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • postgresql96-9.6.15-3.29 is installed
  • OR postgresql96-contrib-9.6.15-3.29 is installed
  • OR postgresql96-docs-9.6.15-3.29 is installed
  • OR postgresql96-libs-9.6.15-3.29 is installed
  • OR postgresql96-plperl-9.6.15-3.29 is installed
  • OR postgresql96-plpython-9.6.15-3.29 is installed
  • OR postgresql96-pltcl-9.6.15-3.29 is installed
  • OR postgresql96-server-9.6.15-3.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_97-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_26-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • MozillaFirefox-52.9.0esr-109.38 is installed
  • OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • apache2-2.4.23-29.24 is installed
  • OR apache2-doc-2.4.23-29.24 is installed
  • OR apache2-example-pages-2.4.23-29.24 is installed
  • OR apache2-prefork-2.4.23-29.24 is installed
  • OR apache2-utils-2.4.23-29.24 is installed
  • OR apache2-worker-2.4.23-29.24 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND python-Django-1.8.9-1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND clamav-0.100.3-33.26 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • openstack-aodh-5.1.1~dev5-3.5 is installed
  • OR openstack-aodh-api-5.1.1~dev5-3.5 is installed
  • OR openstack-aodh-doc-5.1.1~dev5-3.5 is installed
  • OR openstack-aodh-evaluator-5.1.1~dev5-3.5 is installed
  • OR openstack-aodh-expirer-5.1.1~dev5-3.5 is installed
  • OR openstack-aodh-listener-5.1.1~dev5-3.5 is installed
  • OR openstack-aodh-notifier-5.1.1~dev5-3.5 is installed
  • OR openstack-barbican-5.0.1~dev11-3.8 is installed
  • OR openstack-barbican-api-5.0.1~dev11-3.8 is installed
  • OR openstack-barbican-doc-5.0.1~dev11-3.8 is installed
  • OR openstack-barbican-keystone-listener-5.0.1~dev11-3.8 is installed
  • OR openstack-barbican-retry-5.0.1~dev11-3.8 is installed
  • OR openstack-barbican-worker-5.0.1~dev11-3.8 is installed
  • OR openstack-cinder-11.1.2~dev14-3.6 is installed
  • OR openstack-cinder-api-11.1.2~dev14-3.6 is installed
  • OR openstack-cinder-backup-11.1.2~dev14-3.6 is installed
  • OR openstack-cinder-doc-11.1.2~dev14-3.6 is installed
  • OR openstack-cinder-scheduler-11.1.2~dev14-3.6 is installed
  • OR openstack-cinder-volume-11.1.2~dev14-3.6 is installed
  • OR openstack-dashboard-12.0.4~dev1-3.8 is installed
  • OR openstack-designate-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-agent-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-api-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-central-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-doc-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-producer-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-sink-5.0.2~dev5-3.5 is installed
  • OR openstack-designate-worker-5.0.2~dev5-3.5 is installed
  • OR openstack-glance-15.0.2~dev4-3.3 is installed
  • OR openstack-glance-api-15.0.2~dev4-3.3 is installed
  • OR openstack-glance-doc-15.0.2~dev4-3.3 is installed
  • OR openstack-glance-registry-15.0.2~dev4-3.3 is installed
  • OR openstack-heat-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-api-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-api-cfn-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-api-cloudwatch-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-doc-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-engine-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-plugin-heat_docker-9.0.5~dev11-3.6 is installed
  • OR openstack-heat-templates-0.0.0+git.1525957319.6b5a7cd-3.3 is installed
  • OR openstack-heat-test-9.0.5~dev11-3.6 is installed
  • OR openstack-horizon-plugin-designate-ui-5.0.2~dev5-3.3 is installed
  • OR openstack-horizon-plugin-freezer-ui-5.0.1~dev6-3.3 is installed
  • OR openstack-horizon-plugin-gbp-ui-5.0.1~dev21-4.3 is installed
  • OR openstack-horizon-plugin-manila-ui-2.10.3~dev4-4.5 is installed
  • OR openstack-horizon-plugin-neutron-lbaas-ui-3.0.3~dev2-3.5 is installed
  • OR openstack-horizon-plugin-trove-ui-9.0.1~dev7-3.3 is installed
  • OR openstack-ironic-9.1.5~dev7-3.6 is installed
  • OR openstack-ironic-api-9.1.5~dev7-3.6 is installed
  • OR openstack-ironic-conductor-9.1.5~dev7-3.6 is installed
  • OR openstack-ironic-doc-9.1.5~dev7-3.6 is installed
  • OR openstack-keystone-12.0.1~dev19-5.8 is installed
  • OR openstack-keystone-doc-12.0.1~dev19-5.8 is installed
  • OR openstack-manila-5.0.2~dev55-3.6 is installed
  • OR openstack-manila-api-5.0.2~dev55-3.6 is installed
  • OR openstack-manila-data-5.0.2~dev55-3.6 is installed
  • OR openstack-manila-doc-5.0.2~dev55-3.6 is installed
  • OR openstack-manila-scheduler-5.0.2~dev55-3.6 is installed
  • OR openstack-manila-share-5.0.2~dev55-3.6 is installed
  • OR openstack-neutron-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-dhcp-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-doc-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-fwaas-11.0.2~dev7-3.5 is installed
  • OR openstack-neutron-fwaas-doc-11.0.2~dev7-3.5 is installed
  • OR openstack-neutron-ha-tool-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-l3-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-lbaas-11.0.4~dev4-3.3 is installed
  • OR openstack-neutron-lbaas-agent-11.0.4~dev4-3.3 is installed
  • OR openstack-neutron-lbaas-doc-11.0.4~dev4-3.3 is installed
  • OR openstack-neutron-linuxbridge-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-macvtap-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-metadata-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-metering-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-openvswitch-agent-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-server-11.0.6~dev63-3.6 is installed
  • OR openstack-neutron-vpn-agent-11.0.1~dev1-3.3 is installed
  • OR openstack-neutron-vpnaas-11.0.1~dev1-3.3 is installed
  • OR openstack-neutron-vpnaas-doc-11.0.1~dev1-3.3 is installed
  • OR openstack-neutron-vyatta-agent-11.0.1~dev1-3.3 is installed
  • OR openstack-neutron-zvm-agent-8.0.1~dev12-4.3 is installed
  • OR openstack-nova-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-api-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-cells-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-compute-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-conductor-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-console-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-consoleauth-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-doc-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-novncproxy-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-placement-api-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-scheduler-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-serialproxy-16.1.5~dev49-3.8 is installed
  • OR openstack-nova-virt-zvm-8.0.1~dev56-3.3 is installed
  • OR openstack-nova-vncproxy-16.1.5~dev49-3.8 is installed
  • OR openstack-octavia-1.0.3~dev21-4.6 is installed
  • OR openstack-octavia-amphora-agent-1.0.3~dev21-4.6 is installed
  • OR openstack-octavia-api-1.0.3~dev21-4.6 is installed
  • OR openstack-octavia-health-manager-1.0.3~dev21-4.6 is installed
  • OR openstack-octavia-housekeeping-1.0.3~dev21-4.6 is installed
  • OR openstack-octavia-worker-1.0.3~dev21-4.6 is installed
  • OR openstack-trove-8.0.1~dev11-3.3 is installed
  • OR openstack-trove-api-8.0.1~dev11-3.3 is installed
  • OR openstack-trove-conductor-8.0.1~dev11-3.3 is installed
  • OR openstack-trove-doc-8.0.1~dev11-3.3 is installed
  • OR openstack-trove-guestagent-8.0.1~dev11-3.3 is installed
  • OR openstack-trove-taskmanager-8.0.1~dev11-3.3 is installed
  • OR python-aodh-5.1.1~dev5-3.5 is installed
  • OR python-barbican-5.0.1~dev11-3.8 is installed
  • OR python-barbicanclient-4.5.2-4.3 is installed
  • OR python-barbicanclient-doc-4.5.2-4.3 is installed
  • OR python-cinder-11.1.2~dev14-3.6 is installed
  • OR python-designate-5.0.2~dev5-3.5 is installed
  • OR python-glance-15.0.2~dev4-3.3 is installed
  • OR python-heat-9.0.5~dev11-3.6 is installed
  • OR python-horizon-12.0.4~dev1-3.8 is installed
  • OR python-horizon-plugin-designate-ui-5.0.2~dev5-3.3 is installed
  • OR python-horizon-plugin-freezer-ui-5.0.1~dev6-3.3 is installed
  • OR python-horizon-plugin-gbp-ui-5.0.1~dev21-4.3 is installed
  • OR python-horizon-plugin-manila-ui-2.10.3~dev4-4.5 is installed
  • OR python-horizon-plugin-neutron-lbaas-ui-3.0.3~dev2-3.5 is installed
  • OR python-horizon-plugin-trove-ui-9.0.1~dev7-3.3 is installed
  • OR python-ironic-9.1.5~dev7-3.6 is installed
  • OR python-keystone-12.0.1~dev19-5.8 is installed
  • OR python-keystone-json-assignment-0.0.2-3.3 is installed
  • OR python-manila-5.0.2~dev55-3.6 is installed
  • OR python-manilaclient-1.17.3-3.3 is installed
  • OR python-manilaclient-doc-1.17.3-3.3 is installed
  • OR python-neutron-11.0.6~dev63-3.6 is installed
  • OR python-neutron-fwaas-11.0.2~dev7-3.5 is installed
  • OR python-neutron-lbaas-11.0.4~dev4-3.3 is installed
  • OR python-neutron-vpnaas-11.0.1~dev1-3.3 is installed
  • OR python-nova-16.1.5~dev49-3.8 is installed
  • OR python-octavia-1.0.3~dev21-4.6 is installed
  • OR python-trove-8.0.1~dev11-3.3 is installed
  • OR python-vmware-nsx-11.0.3~dev16-3.3 is installed
  • OR python-vmware-nsxlib-11.0.4~dev7-3.3 is installed
  • OR venv-openstack-aodh-5.0.1-12.4 is installed
  • OR venv-openstack-aodh-x86_64-5.0.1-12.4 is installed
  • OR venv-openstack-barbican-5.0.1-12.5 is installed
  • OR venv-openstack-barbican-x86_64-5.0.1-12.5 is installed
  • OR venv-openstack-cinder-11.0.2-14.5 is installed
  • OR venv-openstack-cinder-x86_64-11.0.2-14.5 is installed
  • OR venv-openstack-designate-5.0.1-12.3 is installed
  • OR venv-openstack-designate-x86_64-5.0.1-12.3 is installed
  • OR venv-openstack-glance-15.0.1-12.3 is installed
  • OR venv-openstack-glance-x86_64-15.0.1-12.3 is installed
  • OR venv-openstack-heat-9.0.1-12.5 is installed
  • OR venv-openstack-heat-x86_64-9.0.1-12.5 is installed
  • OR venv-openstack-horizon-11.0.2-14.6 is installed
  • OR venv-openstack-horizon-x86_64-11.0.2-14.6 is installed
  • OR venv-openstack-ironic-9.1.3-12.5 is installed
  • OR venv-openstack-ironic-x86_64-9.1.3-12.5 is installed
  • OR venv-openstack-keystone-12.0.1-11.5 is installed
  • OR venv-openstack-keystone-x86_64-12.0.1-11.5 is installed
  • OR venv-openstack-magnum-5.0.2-11.4 is installed
  • OR venv-openstack-magnum-x86_64-5.0.2-11.4 is installed
  • OR venv-openstack-manila-5.0.2-12.5 is installed
  • OR venv-openstack-manila-x86_64-5.0.2-12.5 is installed
  • OR venv-openstack-neutron-11.0.2-13.8 is installed
  • OR venv-openstack-neutron-x86_64-11.0.2-13.8 is installed
  • OR venv-openstack-nova-16.0.3-11.6 is installed
  • OR venv-openstack-nova-x86_64-16.0.3-11.6 is installed
  • OR venv-openstack-octavia-1.0.2-12.5 is installed
  • OR venv-openstack-octavia-x86_64-1.0.2-12.5 is installed
  • OR venv-openstack-sahara-7.0.1-11.4 is installed
  • OR venv-openstack-sahara-x86_64-7.0.1-11.4 is installed
  • OR venv-openstack-trove-8.0.0.0-11.4 is installed
  • OR venv-openstack-trove-x86_64-8.0.0.0-11.4 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • perl-5.18.2-12.20 is installed
  • OR perl-32bit-5.18.2-12.20 is installed
  • OR perl-base-5.18.2-12.20 is installed
  • OR perl-doc-5.18.2-12.20 is installed
    • BACK