Oval Definition:oval:org.opensuse.security:def:52656
Revision Date:2020-12-01Version:1
Title:Security update for the Linux Kernel (Live Patch 1 for SLE 15) (Important)
Description:

This update for the Linux Kernel 4.12.14-25_3 fixes one issue.

The following security issue was fixed:

- CVE-2018-15471: An issue was discovered in xenvif_set_hash_mapping in drivers/net/xen-netback/hash.c. The Linux netback driver allowed frontends to control mapping of requests to request queues. When processing a request to set or change this mapping, some input validation (e.g., for an integer overflow) was missing or flawed, leading to OOB access in hash handling. A malicious or buggy frontend may cause the (usually privileged) backend to make out of bounds memory accesses, potentially resulting in one or more of privilege escalation, Denial of Service (DoS), or information leaks (bsc#1105026).
Family:unixClass:patch
Status:Reference(s):1105026
1149841
1151021
923945
930689
930691
931452
CVE-2006-7250
CVE-2008-5077
CVE-2009-0159
CVE-2009-0590
CVE-2009-0591
CVE-2009-0789
CVE-2009-1252
CVE-2009-1377
CVE-2009-1378
CVE-2009-1379
CVE-2009-1386
CVE-2009-1387
CVE-2009-3297
CVE-2010-0740
CVE-2010-0742
CVE-2010-1633
CVE-2010-2939
CVE-2010-3864
CVE-2010-5298
CVE-2011-0014
CVE-2011-0541
CVE-2011-3207
CVE-2011-3210
CVE-2011-4108
CVE-2011-4182
CVE-2011-4576
CVE-2011-4577
CVE-2011-4619
CVE-2012-0027
CVE-2012-0050
CVE-2012-0884
CVE-2012-1165
CVE-2012-2110
CVE-2012-2686
CVE-2012-3386
CVE-2012-4929
CVE-2013-0157
CVE-2013-0166
CVE-2013-0169
CVE-2013-1987
CVE-2013-4238
CVE-2013-4353
CVE-2013-5211
CVE-2013-6449
CVE-2013-6450
CVE-2014-0076
CVE-2014-0160
CVE-2014-0195
CVE-2014-0198
CVE-2014-0221
CVE-2014-0224
CVE-2014-3470
CVE-2014-3505
CVE-2014-3506
CVE-2014-3507
CVE-2014-3508
CVE-2014-3509
CVE-2014-3510
CVE-2014-3511
CVE-2014-3512
CVE-2014-3513
CVE-2014-3564
CVE-2014-3566
CVE-2014-3567
CVE-2014-3568
CVE-2014-3570
CVE-2014-3571
CVE-2014-3572
CVE-2014-3634
CVE-2014-4650
CVE-2014-5139
CVE-2014-8275
CVE-2014-9114
CVE-2014-9709
CVE-2015-0204
CVE-2015-0205
CVE-2015-0206
CVE-2015-0209
CVE-2015-0286
CVE-2015-0287
CVE-2015-0288
CVE-2015-0289
CVE-2015-0293
CVE-2015-1788
CVE-2015-1789
CVE-2015-1790
CVE-2015-1791
CVE-2015-1792
CVE-2015-3202
CVE-2015-3202
CVE-2015-3216
CVE-2015-3811
CVE-2015-3812
CVE-2015-3813
CVE-2015-3814
CVE-2015-4000
CVE-2015-5218
CVE-2016-0772
CVE-2016-1000110
CVE-2016-5011
CVE-2016-5636
CVE-2016-5699
CVE-2016-9843
CVE-2017-18207
CVE-2017-2616
CVE-2018-15471
CVE-2019-14835
SUSE-SU-2015:0866-1
SUSE-SU-2015:1046-1
SUSE-SU-2015:1053-1
SUSE-SU-2018:2677-1
Platform(s):openSUSE Leap 15.0
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • bluez-5.48-lp150.3 is installed
  • OR libbluetooth3-5.48-lp150.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-31.2.0esr-0.16 is installed
  • OR MozillaFirefox-branding-SLED-31.0-0.10 is installed
  • OR MozillaFirefox-translations-31.2.0esr-0.16 is installed
  • OR libfreebl3-3.17.2-0.8 is installed
  • OR libfreebl3-32bit-3.17.2-0.8 is installed
  • OR libsoftokn3-3.17.2-0.8 is installed
  • OR libsoftokn3-32bit-3.17.2-0.8 is installed
  • OR mozilla-nspr-4.10.7-0.3 is installed
  • OR mozilla-nspr-32bit-4.10.7-0.3 is installed
  • OR mozilla-nss-3.17.2-0.8 is installed
  • OR mozilla-nss-32bit-3.17.2-0.8 is installed
  • OR mozilla-nss-tools-3.17.2-0.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • MozillaFirefox-38.4.0esr-25 is installed
  • OR MozillaFirefox-branding-SLED-38-15 is installed
  • OR MozillaFirefox-translations-38.4.0esr-25 is installed
  • OR libfreebl3-3.19.2.1-19 is installed
  • OR libfreebl3-32bit-3.19.2.1-19 is installed
  • OR libsoftokn3-3.19.2.1-19 is installed
  • OR libsoftokn3-32bit-3.19.2.1-19 is installed
  • OR mozilla-nspr-4.10.10-16 is installed
  • OR mozilla-nspr-32bit-4.10.10-16 is installed
  • OR mozilla-nss-3.19.2.1-19 is installed
  • OR mozilla-nss-32bit-3.19.2.1-19 is installed
  • OR mozilla-nss-tools-3.19.2.1-19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • libXrender1-0.9.8-3 is installed
  • OR libXrender1-32bit-0.9.8-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • fuse-2.9.3-5 is installed
  • OR libfuse2-2.9.3-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND syslog-service-2.0-778 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libblkid1-2.29.2-2 is installed
  • OR libblkid1-32bit-2.29.2-2 is installed
  • OR libfdisk1-2.29.2-2 is installed
  • OR libmount1-2.29.2-2 is installed
  • OR libmount1-32bit-2.29.2-2 is installed
  • OR libsmartcols1-2.29.2-2 is installed
  • OR libuuid-devel-2.29.2-2 is installed
  • OR libuuid1-2.29.2-2 is installed
  • OR libuuid1-32bit-2.29.2-2 is installed
  • OR python-libmount-2.29.2-2 is installed
  • OR util-linux-2.29.2-2 is installed
  • OR util-linux-lang-2.29.2-2 is installed
  • OR util-linux-systemd-2.29.2-2 is installed
  • OR uuidd-2.29.2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • gpgme-1.5.1-1 is installed
  • OR libgpgme11-1.5.1-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-25_3-default-3-2 is installed
  • OR kernel-livepatch-SLE15_Update_1-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • apache-commons-beanutils-1.9.2-1 is installed
  • OR apache-commons-beanutils-javadoc-1.9.2-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_51-default-6-2 is installed
  • OR kgraft-patch-3_12_74-60_64_51-xen-6-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_18-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND libjansson4-2.7-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • dovecot22-2.2.31-19.11 is installed
  • OR dovecot22-backend-mysql-2.2.31-19.11 is installed
  • OR dovecot22-backend-pgsql-2.2.31-19.11 is installed
  • OR dovecot22-backend-sqlite-2.2.31-19.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-60.4.0esr-109.55 is installed
  • OR MozillaFirefox-devel-60.4.0esr-109.55 is installed
  • OR MozillaFirefox-translations-common-60.4.0esr-109.55 is installed
  • OR libfreebl3-3.40.1-58.18 is installed
  • OR libfreebl3-32bit-3.40.1-58.18 is installed
  • OR libsoftokn3-3.40.1-58.18 is installed
  • OR libsoftokn3-32bit-3.40.1-58.18 is installed
  • OR mozilla-nspr-4.20-19.6 is installed
  • OR mozilla-nspr-32bit-4.20-19.6 is installed
  • OR mozilla-nss-3.40.1-58.18 is installed
  • OR mozilla-nss-32bit-3.40.1-58.18 is installed
  • OR mozilla-nss-certs-3.40.1-58.18 is installed
  • OR mozilla-nss-certs-32bit-3.40.1-58.18 is installed
  • OR mozilla-nss-sysinit-3.40.1-58.18 is installed
  • OR mozilla-nss-sysinit-32bit-3.40.1-58.18 is installed
  • OR mozilla-nss-tools-3.40.1-58.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_114-92_67-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_19-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • bzip2-1.0.6-29 is installed
  • OR bzip2-doc-1.0.6-29 is installed
  • OR libbz2-1-1.0.6-29 is installed
  • OR libbz2-1-32bit-1.0.6-29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • glibc-2.22-62.22 is installed
  • OR glibc-32bit-2.22-62.22 is installed
  • OR glibc-devel-2.22-62.22 is installed
  • OR glibc-devel-32bit-2.22-62.22 is installed
  • OR glibc-html-2.22-62.22 is installed
  • OR glibc-i18ndata-2.22-62.22 is installed
  • OR glibc-info-2.22-62.22 is installed
  • OR glibc-locale-2.22-62.22 is installed
  • OR glibc-locale-32bit-2.22-62.22 is installed
  • OR glibc-profile-2.22-62.22 is installed
  • OR glibc-profile-32bit-2.22-62.22 is installed
  • OR nscd-2.22-62.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.50-38.41 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_178-94_91-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_25-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • ovmf-2017+git1492060560.b6d11d7c46-4.12 is installed
  • OR ovmf-tools-2017+git1492060560.b6d11d7c46-4.12 is installed
  • OR qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-4.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • at-3.1.14-8.6 is installed
  • OR flex-2.5.37-8 is installed
  • OR flex-32bit-2.5.37-8 is installed
  • OR libQtWebKit4-4.8.7+2.3.4-4.7 is installed
  • OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed
  • OR libbonobo-2.32.1-16 is installed
  • OR libbonobo-32bit-2.32.1-16 is installed
  • OR libbonobo-doc-2.32.1-16 is installed
  • OR libbonobo-lang-2.32.1-16 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND python-keystonemiddleware-2.3.1-1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND permissions-2015.09.28.1626-17.20 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND ansible-2.4.6.0-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • curl-7.37.0-37.43 is installed
  • OR libcurl4-7.37.0-37.43 is installed
  • OR libcurl4-32bit-7.37.0-37.43 is installed
    • BACK