OVAL Reference oval:org.opensuse.security:def:52662

Oval Definition:

oval:org.opensuse.security:def:52662

Revision Date:	2020-12-01	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 2 for SLE 15) (Important)
Description:	This update for the Linux Kernel 4.12.14-25_6 fixes one issue. The following security issue was fixed: - CVE-2018-10938: It was found that a crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipso_v4_optptr() function in net/ipv4/cipso_ipv4.c leading to a denial-of-service. A certain non-default configuration of LSM (Linux Security Module) and NetLabel should be set up on a system an attacker could leverage this flaw (bsc#1106191).
Family:	unix	Class:	patch
Status:		Reference(s):	1106191 1144903 1153108 1153158 1153161 879179 922705 922709 926597 927967 929339 929678 931698 933898 933911 934487 934489 934491 934493 CVE-2004-2771 CVE-2007-4772 CVE-2007-6600 CVE-2008-3825 CVE-2008-4316 CVE-2009-1384 CVE-2009-4034 CVE-2009-4136 CVE-2010-0750 CVE-2010-1169 CVE-2010-1170 CVE-2010-3433 CVE-2011-1485 CVE-2011-1898 CVE-2011-2199 CVE-2012-0029 CVE-2012-0217 CVE-2012-0866 CVE-2012-0867 CVE-2012-0868 CVE-2012-2143 CVE-2012-2625 CVE-2012-2655 CVE-2012-3432 CVE-2012-3433 CVE-2012-3488 CVE-2012-3489 CVE-2012-3524 CVE-2012-4411 CVE-2012-4535 CVE-2012-4536 CVE-2012-4537 CVE-2012-4538 CVE-2012-4539 CVE-2012-4544 CVE-2012-5510 CVE-2012-5511 CVE-2012-5513 CVE-2012-5514 CVE-2012-5515 CVE-2012-5525 CVE-2012-5634 CVE-2012-6075 CVE-2013-0151 CVE-2013-0152 CVE-2013-0153 CVE-2013-0255 CVE-2013-1442 CVE-2013-1899 CVE-2013-1900 CVE-2013-1901 CVE-2013-1917 CVE-2013-1918 CVE-2013-1919 CVE-2013-1922 CVE-2013-1952 CVE-2013-2001 CVE-2013-2007 CVE-2013-3495 CVE-2013-4288 CVE-2013-4355 CVE-2013-4356 CVE-2013-4361 CVE-2013-4375 CVE-2013-4416 CVE-2013-4494 CVE-2013-4540 CVE-2013-4551 CVE-2013-4553 CVE-2013-4554 CVE-2014-0011 CVE-2014-0060 CVE-2014-0061 CVE-2014-0062 CVE-2014-0063 CVE-2014-0064 CVE-2014-0065 CVE-2014-0066 CVE-2014-0067 CVE-2014-0222 CVE-2014-3124 CVE-2014-3615 CVE-2014-5146 CVE-2014-5149 CVE-2014-6268 CVE-2014-7154 CVE-2014-7155 CVE-2014-7156 CVE-2014-7188 CVE-2014-7844 CVE-2014-8594 CVE-2014-8595 CVE-2014-8866 CVE-2014-8867 CVE-2014-9030 CVE-2014-9065 CVE-2014-9066 CVE-2015-0361 CVE-2015-1788 CVE-2015-1789 CVE-2015-1790 CVE-2015-1791 CVE-2015-1792 CVE-2015-2044 CVE-2015-2045 CVE-2015-2151 CVE-2015-2152 CVE-2015-2751 CVE-2015-2751 CVE-2015-2752 CVE-2015-2752 CVE-2015-2756 CVE-2015-3165 CVE-2015-3166 CVE-2015-3167 CVE-2015-3216 CVE-2015-3218 CVE-2015-3255 CVE-2015-3256 CVE-2015-3259 CVE-2015-3340 CVE-2015-3340 CVE-2015-3456 CVE-2015-3456 CVE-2015-4000 CVE-2015-4037 CVE-2015-4103 CVE-2015-4104 CVE-2015-4105 CVE-2015-4106 CVE-2015-4625 CVE-2015-5154 CVE-2015-5239 CVE-2015-5288 CVE-2015-5289 CVE-2015-5307 CVE-2015-6815 CVE-2015-7236 CVE-2015-7311 CVE-2015-7835 CVE-2015-7969 CVE-2015-7970 CVE-2015-7971 CVE-2015-7972 CVE-2016-0766 CVE-2016-0773 CVE-2016-2193 CVE-2016-3065 CVE-2016-9634 CVE-2016-9635 CVE-2016-9636 CVE-2016-9807 CVE-2016-9808 CVE-2016-9810 CVE-2017-7484 CVE-2017-7485 CVE-2017-7486 CVE-2017-8779 CVE-2018-10938 CVE-2019-10220 CVE-2019-17133 SUSE-SU-2015:0923-1 SUSE-SU-2015:1143-1 SUSE-SU-2015:1150-1 SUSE-SU-2018:2938-1
Platform(s):	openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information colord-1.4.2-lp150.1 is installed OR colord-color-profiles-1.4.2-lp150.1 is installed OR colord-gtk-lang-0.1.26-lp150.1 is installed OR colord-lang-1.4.2-lp150.1 is installed OR libcolord-gtk1-0.1.26-lp150.1 is installed OR libcolord2-1.4.2-lp150.1 is installed OR libcolorhug2-1.4.2-lp150.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information flash-player-11.2.202.508-0.14 is installed OR flash-player-gnome-11.2.202.508-0.14 is installed OR flash-player-kde4-11.2.202.508-0.14 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information flash-player-11.2.202.535-0.20 is installed OR flash-player-gnome-11.2.202.535-0.20 is installed OR flash-player-kde4-11.2.202.535-0.20 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information libXxf86vm1-1.1.3-3 is installed OR libXxf86vm1-32bit-1.1.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information glib2-lang-2.38.2-5 is installed OR glib2-tools-2.38.2-5 is installed OR libgio-2_0-0-2.38.2-5 is installed OR libgio-2_0-0-32bit-2.38.2-5 is installed OR libgio-fam-2.38.2-5 is installed OR libglib-2_0-0-2.38.2-5 is installed OR libglib-2_0-0-32bit-2.38.2-5 is installed OR libgmodule-2_0-0-2.38.2-5 is installed OR libgmodule-2_0-0-32bit-2.38.2-5 is installed OR libgobject-2_0-0-2.38.2-5 is installed OR libgobject-2_0-0-32bit-2.38.2-5 is installed OR libgthread-2_0-0-2.38.2-5 is installed OR libgthread-2_0-0-32bit-2.38.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND tftp-5.2-10 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libecpg6-9.6.3-2 is installed OR libpq5-9.6.3-2 is installed OR libpq5-32bit-9.6.3-2 is installed OR postgresql96-9.6.3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gstreamer-0_10-plugins-good-0.10.31-16 is installed OR gstreamer-0_10-plugins-good-lang-0.10.31-16 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_6-default-4-2 is installed OR kernel-livepatch-SLE15_Update_2-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND apache2-mod_perl-2.0.8-11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kernel-default-3.12.74-60.64.104 is installed OR kernel-default-base-3.12.74-60.64.104 is installed OR kernel-default-devel-3.12.74-60.64.104 is installed OR kernel-default-man-3.12.74-60.64.104 is installed OR kernel-devel-3.12.74-60.64.104 is installed OR kernel-macros-3.12.74-60.64.104 is installed OR kernel-source-3.12.74-60.64.104 is installed OR kernel-syms-3.12.74-60.64.104 is installed OR kernel-xen-3.12.74-60.64.104 is installed OR kernel-xen-base-3.12.74-60.64.104 is installed OR kernel-xen-devel-3.12.74-60.64.104 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libjson-c2-0.11-2 is installed OR libjson-c2-32bit-0.11-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information MozillaFirefox-52.8.0esr-109.31 is installed OR MozillaFirefox-devel-52.8.0esr-109.31 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_80-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_22-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information coreutils-8.25-12 is installed OR coreutils-lang-8.25-12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND squid-3.5.21-26.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information MozillaFirefox-60.9.0-109.86 is installed OR MozillaFirefox-translations-common-60.9.0-109.86 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kernel-default-4.4.180-94.113 is installed OR kernel-default-base-4.4.180-94.113 is installed OR kernel-default-devel-4.4.180-94.113 is installed OR kernel-default-kgraft-4.4.180-94.113 is installed OR kernel-default-man-4.4.180-94.113 is installed OR kernel-devel-4.4.180-94.113 is installed OR kernel-macros-4.4.180-94.113 is installed OR kernel-source-4.4.180-94.113 is installed OR kernel-syms-4.4.180-94.113 is installed OR kgraft-patch-4_4_180-94_113-default-1-4.5 is installed OR kgraft-patch-SLE12-SP3_Update_30-1-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information rsyslog-8.24.0-3.7 is installed OR rsyslog-diag-tools-8.24.0-3.7 is installed OR rsyslog-doc-8.24.0-3.7 is installed OR rsyslog-module-gssapi-8.24.0-3.7 is installed OR rsyslog-module-gtls-8.24.0-3.7 is installed OR rsyslog-module-mysql-8.24.0-3.7 is installed OR rsyslog-module-pgsql-8.24.0-3.7 is installed OR rsyslog-module-relp-8.24.0-3.7 is installed OR rsyslog-module-snmp-8.24.0-3.7 is installed OR rsyslog-module-udpspoof-8.24.0-3.7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND axis-1.4-290.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND ruby2.1-rubygem-actionview-4_2-4.2.2-5 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information MozillaFirefox-60.5.0esr-109.58 is installed OR MozillaFirefox-branding-SLE-60-32.5 is installed OR MozillaFirefox-devel-60.5.0esr-109.58 is installed OR MozillaFirefox-translations-common-60.5.0esr-109.58 is installed OR libfreebl3-3.41.1-58.25 is installed OR libfreebl3-32bit-3.41.1-58.25 is installed OR libfreebl3-hmac-3.41.1-58.25 is installed OR libfreebl3-hmac-32bit-3.41.1-58.25 is installed OR libsoftokn3-3.41.1-58.25 is installed OR libsoftokn3-32bit-3.41.1-58.25 is installed OR libsoftokn3-hmac-3.41.1-58.25 is installed OR libsoftokn3-hmac-32bit-3.41.1-58.25 is installed OR mozilla-nss-3.41.1-58.25 is installed OR mozilla-nss-32bit-3.41.1-58.25 is installed OR mozilla-nss-certs-3.41.1-58.25 is installed OR mozilla-nss-certs-32bit-3.41.1-58.25 is installed OR mozilla-nss-sysinit-3.41.1-58.25 is installed OR mozilla-nss-sysinit-32bit-3.41.1-58.25 is installed OR mozilla-nss-tools-3.41.1-58.25 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information glib2-2.48.2-12.15 is installed OR glib2-lang-2.48.2-12.15 is installed OR glib2-tools-2.48.2-12.15 is installed OR libgio-2_0-0-2.48.2-12.15 is installed OR libgio-2_0-0-32bit-2.48.2-12.15 is installed OR libglib-2_0-0-2.48.2-12.15 is installed OR libglib-2_0-0-32bit-2.48.2-12.15 is installed OR libgmodule-2_0-0-2.48.2-12.15 is installed OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed OR libgobject-2_0-0-2.48.2-12.15 is installed OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed OR libgthread-2_0-0-2.48.2-12.15 is installed OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information MozillaFirefox-60.9.0-109.86 is installed OR MozillaFirefox-translations-common-60.9.0-109.86 is installed

BACK