Oval Definition:oval:org.opensuse.security:def:52668
Revision Date:2020-12-01Version:1
Title:Security update for the Linux Kernel (Live Patch 2 for SLE 15) (Important)
Description:

This update for the Linux Kernel 4.12.14-25_6 fixes several issues.

The following security issues were fixed:

- CVE-2018-17182: The vmacache_flush_all function in mm/vmacache.c mishandled sequence number overflows. An attacker can trigger a use-after-free (and possibly gain privileges) via certain thread creation, map, unmap, invalidation, and dereference operations (bsc#1110233). - CVE-2018-14633: A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack. The attack requires the iSCSI target to be enabled on the victim host. Depending on how the target's code was built (i.e. depending on a compiler, compile flags and hardware architecture) an attack may lead to a system crash and thus to a denial-of-service or possibly to a non-authorized access to data exported by an iSCSI target. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is highly unlikely. (bsc#1107832).
Family:unixClass:patch
Status:Reference(s):1107832
1110233
1144903
1149841
1153108
1153158
1153161
918330
923144
928867
936476
937339
CVE-2007-6600
CVE-2008-4989
CVE-2009-0316
CVE-2009-0368
CVE-2009-0945
CVE-2009-3627
CVE-2009-4034
CVE-2009-4136
CVE-2009-4492
CVE-2010-0541
CVE-2010-1169
CVE-2010-1170
CVE-2010-2074
CVE-2010-2240
CVE-2010-2252
CVE-2010-3433
CVE-2010-4523
CVE-2011-1004
CVE-2011-1005
CVE-2011-3193
CVE-2011-3922
CVE-2011-4128
CVE-2011-4815
CVE-2012-0390
CVE-2012-0866
CVE-2012-0867
CVE-2012-0868
CVE-2012-1569
CVE-2012-1573
CVE-2012-2143
CVE-2012-2655
CVE-2012-3488
CVE-2012-3489
CVE-2012-4929
CVE-2012-6093
CVE-2013-0254
CVE-2013-0255
CVE-2013-1899
CVE-2013-1900
CVE-2013-1901
CVE-2013-1940
CVE-2013-4396
CVE-2013-4549
CVE-2013-6424
CVE-2013-6487
CVE-2014-0060
CVE-2014-0061
CVE-2014-0062
CVE-2014-0063
CVE-2014-0064
CVE-2014-0065
CVE-2014-0066
CVE-2014-0067
CVE-2014-0092
CVE-2014-0190
CVE-2014-0578
CVE-2014-1959
CVE-2014-3466
CVE-2014-3775
CVE-2014-8091
CVE-2014-8092
CVE-2014-8093
CVE-2014-8094
CVE-2014-8095
CVE-2014-8096
CVE-2014-8097
CVE-2014-8098
CVE-2014-8099
CVE-2014-8100
CVE-2014-8101
CVE-2014-8102
CVE-2014-8103
CVE-2014-8564
CVE-2015-0255
CVE-2015-0294
CVE-2015-0295
CVE-2015-1349
CVE-2015-1858
CVE-2015-1859
CVE-2015-1860
CVE-2015-3114
CVE-2015-3115
CVE-2015-3116
CVE-2015-3117
CVE-2015-3118
CVE-2015-3119
CVE-2015-3120
CVE-2015-3121
CVE-2015-3122
CVE-2015-3123
CVE-2015-3124
CVE-2015-3125
CVE-2015-3126
CVE-2015-3127
CVE-2015-3128
CVE-2015-3129
CVE-2015-3130
CVE-2015-3131
CVE-2015-3132
CVE-2015-3133
CVE-2015-3134
CVE-2015-3135
CVE-2015-3136
CVE-2015-3137
CVE-2015-3294
CVE-2015-3418
CVE-2015-3622
CVE-2015-4428
CVE-2015-4429
CVE-2015-4430
CVE-2015-4431
CVE-2015-4432
CVE-2015-4433
CVE-2015-4620
CVE-2015-5116
CVE-2015-5117
CVE-2015-5118
CVE-2015-5119
CVE-2015-6251
CVE-2016-1248
CVE-2017-5953
CVE-2017-6349
CVE-2017-6350
CVE-2018-14633
CVE-2018-17182
CVE-2019-10220
CVE-2019-17133
SUSE-SU-2015:0979-1
SUSE-SU-2015:1204-1
SUSE-SU-2015:1211-1
SUSE-SU-2019:2859-1
Platform(s):openSUSE Leap 15.0
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND cups-filters-1.20.3-lp150.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • ImageMagick-6.4.3.6-7.26 is installed
  • OR libMagick++1-6.4.3.6-7.26 is installed
  • OR libMagickCore1-6.4.3.6-7.26 is installed
  • OR libMagickCore1-32bit-6.4.3.6-7.26 is installed
  • OR libMagickWand1-6.4.3.6-7.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • flash-player-11.2.202.559-0.32 is installed
  • OR flash-player-gnome-11.2.202.559-0.32 is installed
  • OR flash-player-kde4-11.2.202.559-0.32 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • flash-player-11.2.202.577-0.38 is installed
  • OR flash-player-gnome-11.2.202.577-0.38 is installed
  • OR flash-player-kde4-11.2.202.577-0.38 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • libecpg6-9.3.5-2 is installed
  • OR libpq5-9.3.5-2 is installed
  • OR libpq5-32bit-9.3.5-2 is installed
  • OR postgresql93-9.3.5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • gnutls-3.2.15-11 is installed
  • OR libgnutls28-3.2.15-11 is installed
  • OR libgnutls28-32bit-3.2.15-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND w3m-0.5.3-157 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND libgadu3-1.11.4-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • gvim-7.4.326-16 is installed
  • OR vim-7.4.326-16 is installed
  • OR vim-data-7.4.326-16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-25_6-default-5-2 is installed
  • OR kernel-livepatch-SLE15_Update_2-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • bind-9.9.6P1-30 is installed
  • OR bind-chrootenv-9.9.6P1-30 is installed
  • OR bind-doc-9.9.6P1-30 is installed
  • OR bind-libs-9.9.6P1-30 is installed
  • OR bind-libs-32bit-9.9.6P1-30 is installed
  • OR bind-utils-9.9.6P1-30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_69-default-7-2 is installed
  • OR kgraft-patch-3_12_74-60_64_69-xen-7-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_24-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • liblua5_2-5.2.2-4 is installed
  • OR liblua5_2-32bit-5.2.2-4 is installed
  • OR lua-5.2.2-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • ghostscript-9.25-23.13 is installed
  • OR ghostscript-x11-9.25-23.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • freeradius-server-3.0.3-17.12 is installed
  • OR freeradius-server-doc-3.0.3-17.12 is installed
  • OR freeradius-server-krb5-3.0.3-17.12 is installed
  • OR freeradius-server-ldap-3.0.3-17.12 is installed
  • OR freeradius-server-libs-3.0.3-17.12 is installed
  • OR freeradius-server-mysql-3.0.3-17.12 is installed
  • OR freeradius-server-perl-3.0.3-17.12 is installed
  • OR freeradius-server-postgresql-3.0.3-17.12 is installed
  • OR freeradius-server-python-3.0.3-17.12 is installed
  • OR freeradius-server-sqlite-3.0.3-17.12 is installed
  • OR freeradius-server-utils-3.0.3-17.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • cups-filters-1.0.58-15.2 is installed
  • OR cups-filters-cups-browsed-1.0.58-15.2 is installed
  • OR cups-filters-foomatic-rip-1.0.58-15.2 is installed
  • OR cups-filters-ghostscript-1.0.58-15.2 is installed
  • OR libqpdf18-7.1.1-3.3 is installed
  • OR qpdf-7.1.1-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND ctags-5.8-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libsolv-0.6.36-2.27.19 is installed
  • OR libsolv-tools-0.6.36-2.27.19 is installed
  • OR libzypp-16.20.2-27.60 is installed
  • OR perl-solv-0.6.36-2.27.19 is installed
  • OR python-solv-0.6.36-2.27.19 is installed
  • OR zypper-1.13.54-18.40 is installed
  • OR zypper-log-1.13.54-18.40 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_162-94_72-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_22-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_97-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_26-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND mutt-1.10.1-55.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • bzip2-1.0.6-29 is installed
  • OR bzip2-doc-1.0.6-29 is installed
  • OR libbz2-1-1.0.6-29 is installed
  • OR libbz2-1-32bit-1.0.6-29 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • ruby2.1-rubygem-chef-10.32.2-3 is installed
  • OR ruby2.1-rubygem-chef-expander-10.32.2-1 is installed
  • OR ruby2.1-rubygem-chef-server-10.32.2-1 is installed
  • OR ruby2.1-rubygem-chef-server-api-10.32.2-4 is installed
  • OR ruby2.1-rubygem-chef-solr-10.32.2-1 is installed
  • OR rubygem-chef-10.32.2-3 is installed
  • OR rubygem-chef-expander-10.32.2-1 is installed
  • OR rubygem-chef-server-api-10.32.2-4 is installed
  • OR rubygem-chef-solr-10.32.2-1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • libprocps3-3.3.9-11.18 is installed
  • OR procps-3.3.9-11.18 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • glibc-2.22-62.22 is installed
  • OR glibc-32bit-2.22-62.22 is installed
  • OR glibc-devel-2.22-62.22 is installed
  • OR glibc-devel-32bit-2.22-62.22 is installed
  • OR glibc-html-2.22-62.22 is installed
  • OR glibc-i18ndata-2.22-62.22 is installed
  • OR glibc-info-2.22-62.22 is installed
  • OR glibc-locale-2.22-62.22 is installed
  • OR glibc-locale-32bit-2.22-62.22 is installed
  • OR glibc-profile-2.22-62.22 is installed
  • OR glibc-profile-32bit-2.22-62.22 is installed
  • OR nscd-2.22-62.22 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • MozillaFirefox-68.1.0-109.89 is installed
  • OR MozillaFirefox-branding-SLE-68-32.8 is installed
  • OR MozillaFirefox-translations-common-68.1.0-109.89 is installed
    • BACK