Oval Definition:	oval:org.opensuse.security:def:52670
Revision Date: 2020-12-01 Version: 1 Title: Security update for the Linux Kernel (Live Patch 4 for SLE 15) (Important) Description: This update for the Linux Kernel 4.12.14-25_16 fixes several issues. The following security issues were fixed: - CVE-2018-17182: The vmacache_flush_all function in mm/vmacache.c mishandled sequence number overflows. An attacker can trigger a use-after-free (and possibly gain privileges) via certain thread creation, map, unmap, invalidation, and dereference operations (bsc#1110233). - CVE-2018-14633: A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack. The attack requires the iSCSI target to be enabled on the victim host. Depending on how the target's code was built (i.e. depending on a compiler, compile flags and hardware architecture) an attack may lead to a system crash and thus to a denial-of-service or possibly to a non-authorized access to data exported by an iSCSI target. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is highly unlikely. (bsc#1107832). Family: unix Class: patch Status: Reference(s): 1046299 1046303 1046305 1050244 1050536 1050545 1051510 1055186 1061840 1064802 1065600 1066129 1073513 1082635 1083647 1086323 1087092 1089644 1090631 1093205 1096254 1097583 1097584 1097585 1097586 1097587 1097588 1098291 1101674 1107832 1109158 1110233 1114279 1117665 1119461 1119465 1123034 1123080 1133140 1134303 1135642 1135854 1135873 1135966 1135967 1137040 1137799 1138190 1139073 1140090 1140729 1140845 1140883 1141600 1142635 1142667 1143706 1144338 1144375 1144449 1144903 1145099 1146612 1148410 1149119 1150452 1150457 1150465 1150875 1151508 1152624 1152685 1152788 1152791 1153112 1153158 1153236 1153263 1153476 1153509 1153646 1153713 1153717 1153718 1153719 1153811 1153969 1154108 1154189 1154354 1154372 1154578 1154607 1154608 1154610 1154611 1154651 1154737 1154747 1154848 1154858 1154905 1155178 1155179 1155184 1155186 1155671 900611 915323 925225 927558 937752 CVE-2006-4484 CVE-2009-2624 CVE-2010-0001 CVE-2010-2252 CVE-2011-2483 CVE-2011-3177 CVE-2012-2812 CVE-2012-2813 CVE-2012-2814 CVE-2012-2836 CVE-2012-2837 CVE-2012-2840 CVE-2012-2841 CVE-2012-4929 CVE-2013-2126 CVE-2013-2127 CVE-2013-4242 CVE-2014-0107 CVE-2014-2653 CVE-2014-3564 CVE-2014-3591 CVE-2014-3686 CVE-2014-4877 CVE-2014-8119 CVE-2015-0210 CVE-2015-0837 CVE-2015-1863 CVE-2015-2059 CVE-2015-5122 CVE-2015-5123 CVE-2015-5352 CVE-2015-5600 CVE-2015-6563 CVE-2015-6564 CVE-2015-7511 CVE-2015-8325 CVE-2016-0777 CVE-2016-0778 CVE-2016-10009 CVE-2016-10010 CVE-2016-10011 CVE-2016-10012 CVE-2016-1908 CVE-2016-3115 CVE-2016-4971 CVE-2016-6210 CVE-2016-6313 CVE-2016-6515 CVE-2016-8858 CVE-2017-6318 CVE-2018-12207 CVE-2018-14633 CVE-2018-17182 CVE-2019-0154 CVE-2019-0155 CVE-2019-10220 CVE-2019-11135 CVE-2019-16232 CVE-2019-16233 CVE-2019-16234 CVE-2019-16995 CVE-2019-17056 CVE-2019-17133 CVE-2019-17666 SUSE-SU-2015:1013-1 SUSE-SU-2015:1249-1 SUSE-SU-2015:1255-1 SUSE-SU-2019:2946-1 Platform(s): openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information curl-7.59.0-lp150.1 is installed OR libcurl4-7.59.0-lp150.1 is installed OR libcurl4-32bit-7.59.0-lp150.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information MozillaFirefox-17.0.9esr-0.3 is installed OR MozillaFirefox-translations-17.0.9esr-0.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information freetype2-2.3.7-25.34 is installed OR freetype2-32bit-2.3.7-25.34 is installed OR ft2demos-2.3.7-25.34 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information gcc5-5.3.1+r233831-10 is installed OR libgcc_s1-5.3.1+r233831-10 is installed OR libgcc_s1-32bit-5.3.1+r233831-10 is installed OR libgfortran3-5.3.1+r233831-10 is installed OR libgfortran3-32bit-5.3.1+r233831-10 is installed OR libgomp1-5.3.1+r233831-10 is installed OR libgomp1-32bit-5.3.1+r233831-10 is installed OR libquadmath0-5.3.1+r233831-10 is installed OR libquadmath0-32bit-5.3.1+r233831-10 is installed OR libstdc++6-5.3.1+r233831-10 is installed OR libstdc++6-32bit-5.3.1+r233831-10 is installed OR libstdc++6-locale-5.3.1+r233831-10 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libexif12-0.6.21-6 is installed OR libexif12-32bit-0.6.21-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information gpgme-1.5.1-1 is installed OR libgpgme11-1.5.1-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND wget-1.14-10 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libgcrypt20-1.6.1-16.39 is installed OR libgcrypt20-32bit-1.6.1-16.39 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND gzip-1.6-9.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_16-default-3-2 is installed OR kernel-livepatch-SLE15_Update_4-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND busybox-1.21.1-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_60-default-11-2 is installed OR kgraft-patch-3_12_74-60_64_60-xen-11-2 is installed OR kgraft-patch-SLE12-SP1_Update_21-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND libmms0-0.6.2-15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-openjdk-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-demo-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-devel-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-headless-1.8.0.181-27.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND wpa_supplicant-2.6-15.10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kernel-default-4.4.121-92.95 is installed OR kernel-default-base-4.4.121-92.95 is installed OR kernel-default-devel-4.4.121-92.95 is installed OR kernel-default-man-4.4.121-92.95 is installed OR kernel-devel-4.4.121-92.95 is installed OR kernel-macros-4.4.121-92.95 is installed OR kernel-source-4.4.121-92.95 is installed OR kernel-syms-4.4.121-92.95 is installed OR kgraft-patch-4_4_121-92_95-default-1-3.4 is installed OR kgraft-patch-SLE12-SP2_Update_25-1-3.4 is installed OR lttng-modules-2.7.1-9.6 is installed OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.95-9.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information curl-7.37.0-37.43 is installed OR libcurl4-7.37.0-37.43 is installed OR libcurl4-32bit-7.37.0-37.43 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_156-94_64-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_20-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_176-94_88-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_24-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information xen-4.9.2_10-3.41 is installed OR xen-doc-html-4.9.2_10-3.41 is installed OR xen-libs-4.9.2_10-3.41 is installed OR xen-libs-32bit-4.9.2_10-3.41 is installed OR xen-tools-4.9.2_10-3.41 is installed OR xen-tools-domU-4.9.2_10-3.41 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND chrony-2.3-3 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND ruby2.1-rubygem-multi_xml-0.5.5-1 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information kernel-firmware-20170530-21.28 is installed OR ucode-amd-20170530-21.28 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information bzip2-1.0.6-30.8 is installed OR bzip2-doc-1.0.6-30.8 is installed OR libbz2-1-1.0.6-30.8 is installed OR libbz2-1-32bit-1.0.6-30.8 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND sudo-1.8.20p2-3.14 is installed
BACK