Oval Definition:oval:org.opensuse.security:def:52660
Revision Date:2020-12-01Version:1
Title:Security update for the Linux Kernel (Live Patch 0 for SLE 15) (Important)
Description:

This update for the Linux Kernel 4.12.14-23 fixes several issues.

The following security issues were fixed:

- CVE-2018-10938: It was found that a crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipso_v4_optptr() function in net/ipv4/cipso_ipv4.c leading to a denial-of-service. A certain non-default configuration of LSM (Linux Security Module) and NetLabel should be set up on a system an attacker could leverage this flaw. - CVE-2018-10902: It was found that the raw midi kernel driver did not protect against concurrent access which lead to a double realloc (double free) in snd_rawmidi_input_params() and snd_rawmidi_output_status(), allowing a malicious local attacker to use this for privilege escalation (bsc#1105323).
Family:unixClass:patch
Status:Reference(s):1051510
1054914
1055117
1061840
1065600
1065729
1071995
1082555
1104967
1105323
1106191
1109158
1113722
1114279
1119086
1123034
1127988
1131304
1137069
1137865
1137959
1140155
1141013
1142076
1142635
1146042
1146519
1146540
1146664
1148133
1148712
1148868
1149313
1149446
1149555
1149651
1150381
1150423
1151350
1151610
1151667
1151680
1151891
1151955
1152024
1152025
1152026
1152161
1152325
1152457
1152460
1152466
1152972
1152974
1152975
886378
923229
924018
925019
925021
925022
928520
929339
935701
CVE-2007-6746
CVE-2009-1886
CVE-2009-1888
CVE-2009-2813
CVE-2009-2906
CVE-2009-2948
CVE-2010-0547
CVE-2010-0728
CVE-2010-0787
CVE-2010-0926
CVE-2010-1205
CVE-2010-1635
CVE-2010-1642
CVE-2010-2063
CVE-2010-3069
CVE-2010-3430
CVE-2010-3431
CVE-2010-3853
CVE-2011-0719
CVE-2011-1000
CVE-2011-1098
CVE-2011-1154
CVE-2011-1155
CVE-2011-1709
CVE-2011-2501
CVE-2011-2522
CVE-2011-2690
CVE-2011-2691
CVE-2011-2692
CVE-2011-2694
CVE-2011-3026
CVE-2011-3048
CVE-2011-3148
CVE-2011-3149
CVE-2011-3328
CVE-2011-3464
CVE-2011-3602
CVE-2012-0817
CVE-2012-0870
CVE-2012-1182
CVE-2012-2111
CVE-2012-3386
CVE-2012-6150
CVE-2013-0172
CVE-2013-0213
CVE-2013-0214
CVE-2013-0454
CVE-2013-1431
CVE-2013-1863
CVE-2013-1990
CVE-2013-1999
CVE-2013-4124
CVE-2013-4408
CVE-2013-4475
CVE-2013-4476
CVE-2013-4496
CVE-2013-6442
CVE-2014-0107
CVE-2014-0178
CVE-2014-0239
CVE-2014-0244
CVE-2014-2583
CVE-2014-3493
CVE-2014-3560
CVE-2014-8092
CVE-2014-8143
CVE-2015-0240
CVE-2015-0797
CVE-2015-1779
CVE-2015-3113
CVE-2015-3223
CVE-2015-3418
CVE-2015-3456
CVE-2015-5252
CVE-2015-5296
CVE-2015-5299
CVE-2015-5330
CVE-2015-5370
CVE-2015-7560
CVE-2015-8467
CVE-2015-8543
CVE-2016-0771
CVE-2016-2110
CVE-2016-2111
CVE-2016-2112
CVE-2016-2113
CVE-2016-2115
CVE-2016-2118
CVE-2016-2119
CVE-2016-2123
CVE-2016-2125
CVE-2016-2126
CVE-2016-9445
CVE-2016-9446
CVE-2016-9447
CVE-2016-9809
CVE-2017-18595
CVE-2017-2619
CVE-2017-7494
CVE-2018-10902
CVE-2018-10938
CVE-2019-14821
CVE-2019-15291
CVE-2019-9506
SUSE-SU-2015:0896-1
SUSE-SU-2015:1127-1
SUSE-SU-2015:1136-1
SUSE-SU-2018:2940-1
SUSE-SU-2019:2706-1
Platform(s):openSUSE Leap 15.0
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND chrony-3.2-lp150.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • flash-player-11.2.202.481-0.8 is installed
  • OR flash-player-gnome-11.2.202.481-0.8 is installed
  • OR flash-player-kde4-11.2.202.481-0.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • flash-player-11.2.202.508-0.14 is installed
  • OR flash-player-gnome-11.2.202.508-0.14 is installed
  • OR flash-player-kde4-11.2.202.508-0.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND libXvMC1-1.0.8-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • gdm-3.10.0.1-23 is installed
  • OR gdm-branding-upstream-3.10.0.1-23 is installed
  • OR gdm-lang-3.10.0.1-23 is installed
  • OR gdmflexiserver-3.10.0.1-23 is installed
  • OR libgdm1-3.10.0.1-23 is installed
  • OR typelib-1_0-Gdm-1_0-3.10.0.1-23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND telepathy-gabble-0.18.3-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libdcerpc-binding0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libdcerpc-binding0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libdcerpc0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libdcerpc0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libndr-krb5pac0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libndr-krb5pac0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libndr-nbt0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libndr-nbt0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libndr-standard0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libndr-standard0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libndr0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libndr0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libnetapi0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libnetapi0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamba-credentials0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamba-credentials0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamba-errors0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamba-errors0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamba-hostconfig0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamba-hostconfig0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamba-passdb0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamba-passdb0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamba-util0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamba-util0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamdb0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsamdb0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsmbclient0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsmbclient0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsmbconf0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsmbconf0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsmbldap0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libsmbldap0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libtevent-util0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libtevent-util0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libwbclient0-4.6.5+git.27.6afd48b1083-2 is installed
  • OR libwbclient0-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR samba-4.6.5+git.27.6afd48b1083-2 is installed
  • OR samba-client-4.6.5+git.27.6afd48b1083-2 is installed
  • OR samba-client-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR samba-doc-4.6.5+git.27.6afd48b1083-2 is installed
  • OR samba-libs-4.6.5+git.27.6afd48b1083-2 is installed
  • OR samba-libs-32bit-4.6.5+git.27.6afd48b1083-2 is installed
  • OR samba-winbind-4.6.5+git.27.6afd48b1083-2 is installed
  • OR samba-winbind-32bit-4.6.5+git.27.6afd48b1083-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • gstreamer-0_10-plugins-bad-0.10.23-25 is installed
  • OR gstreamer-0_10-plugins-bad-lang-0.10.23-25 is installed
  • OR libgstbasecamerabinsrc-0_10-23-0.10.23-25 is installed
  • OR libgstbasecamerabinsrc-0_10-23-32bit-0.10.23-25 is installed
  • OR libgstbasevideo-0_10-23-0.10.23-25 is installed
  • OR libgstbasevideo-0_10-23-32bit-0.10.23-25 is installed
  • OR libgstcodecparsers-0_10-23-0.10.23-25 is installed
  • OR libgstphotography-0_10-23-0.10.23-25 is installed
  • OR libgstphotography-0_10-23-32bit-0.10.23-25 is installed
  • OR libgstsignalprocessor-0_10-23-0.10.23-25 is installed
  • OR libgstsignalprocessor-0_10-23-32bit-0.10.23-25 is installed
  • OR libgstvdp-0_10-23-0.10.23-25 is installed
  • OR libgstvdp-0_10-23-32bit-0.10.23-25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-23-default-4-10 is installed
  • OR kernel-livepatch-SLE15_Update_0-4-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND apache2-mod_jk-1.2.40-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • libwireshark9-2.4.9-48.29 is installed
  • OR libwiretap7-2.4.9-48.29 is installed
  • OR libwscodecs1-2.4.9-48.29 is installed
  • OR libwsutil8-2.4.9-48.29 is installed
  • OR wireshark-2.4.9-48.29 is installed
  • OR wireshark-gtk-2.4.9-48.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libjbig2-2.0-12 is installed
  • OR libjbig2-32bit-2.0-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • apache2-2.4.23-29.24 is installed
  • OR apache2-doc-2.4.23-29.24 is installed
  • OR apache2-example-pages-2.4.23-29.24 is installed
  • OR apache2-prefork-2.4.23-29.24 is installed
  • OR apache2-utils-2.4.23-29.24 is installed
  • OR apache2-worker-2.4.23-29.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • xen-4.7.5_02-43.30 is installed
  • OR xen-doc-html-4.7.5_02-43.30 is installed
  • OR xen-libs-4.7.5_02-43.30 is installed
  • OR xen-libs-32bit-4.7.5_02-43.30 is installed
  • OR xen-tools-4.7.5_02-43.30 is installed
  • OR xen-tools-domU-4.7.5_02-43.30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND yast2-smt-3.0.14-17.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • colord-gtk-lang-0.1.26-6 is installed
  • OR libcolord-gtk1-0.1.26-6 is installed
  • OR libcolord2-1.3.3-12 is installed
  • OR libcolord2-32bit-1.3.3-12 is installed
  • OR libcolorhug2-1.3.3-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libpython3_4m1_0-3.4.6-25.29 is installed
  • OR python3-3.4.6-25.29 is installed
  • OR python3-base-3.4.6-25.29 is installed
  • OR python3-curses-3.4.6-25.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • ibus-1.5.13-15.11 is installed
  • OR ibus-gtk-1.5.13-15.11 is installed
  • OR ibus-gtk3-1.5.13-15.11 is installed
  • OR ibus-lang-1.5.13-15.11 is installed
  • OR libibus-1_0-5-1.5.13-15.11 is installed
  • OR typelib-1_0-IBus-1_0-1.5.13-15.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • MozillaFirefox-68.3.0-109.98 is installed
  • OR MozillaFirefox-translations-common-68.3.0-109.98 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libpython2_7-1_0-2.7.13-28.8 is installed
  • OR libpython2_7-1_0-32bit-2.7.13-28.8 is installed
  • OR python-2.7.13-28.8 is installed
  • OR python-32bit-2.7.13-28.8 is installed
  • OR python-base-2.7.13-28.8 is installed
  • OR python-base-32bit-2.7.13-28.8 is installed
  • OR python-curses-2.7.13-28.8 is installed
  • OR python-demo-2.7.13-28.8 is installed
  • OR python-doc-2.7.13-28.8 is installed
  • OR python-doc-pdf-2.7.13-28.8 is installed
  • OR python-gdbm-2.7.13-28.8 is installed
  • OR python-idle-2.7.13-28.8 is installed
  • OR python-tk-2.7.13-28.8 is installed
  • OR python-xml-2.7.13-28.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • automake-1.13.4-6 is installed
  • OR m4-1.4.16-15 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • rabbitmq-server-3.4.4-2 is installed
  • OR rabbitmq-server-plugins-3.4.4-2 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • git-2.12.3-27.22 is installed
  • OR git-core-2.12.3-27.22 is installed
  • OR git-doc-2.12.3-27.22 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • dnsmasq-2.78-18.6 is installed
  • OR dnsmasq-utils-2.78-18.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ibus-1.5.13-15.11 is installed
  • OR ibus-gtk-1.5.13-15.11 is installed
  • OR ibus-gtk3-1.5.13-15.11 is installed
  • OR ibus-lang-1.5.13-15.11 is installed
  • OR libibus-1_0-5-1.5.13-15.11 is installed
  • OR typelib-1_0-IBus-1_0-1.5.13-15.11 is installed
    • BACK