Oval Definition:	oval:org.opensuse.security:def:52695
Revision Date: 2020-12-01 Version: 1 Title: Security update for the Linux Kernel (Live Patch 3 for SLE 15) (Important) Description: This update for the Linux Kernel 4.12.14-25_13 fixes several issues. The following security issues were fixed: - CVE-2019-11477: Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an integer overflow when handling TCP Selective Acknowledgments (SACKs). A remote attacker could use this to cause a denial of service. (bsc#1137586) - CVE-2019-11478: Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment could be fragmented when handling certain TCP Selective Acknowledgment (SACK) sequences. A remote attacker could use this to cause a denial of service. (bsc#1137586) - CVE-2019-3846: A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network (bsc#1136424). This update contains a regression fix for CVE-2019-11477 and CVE-2019-11478 (bsc#1140747). Family: unix Class: patch Status: Reference(s): 1136446 1137597 1140747 1171252 1171254 912076 912878 912929 914463 CVE-2006-7250 CVE-2009-0590 CVE-2009-0591 CVE-2009-0789 CVE-2009-1377 CVE-2009-1378 CVE-2009-1379 CVE-2009-1386 CVE-2009-1387 CVE-2009-3245 CVE-2009-3555 CVE-2009-4355 CVE-2010-0405 CVE-2010-0624 CVE-2010-0740 CVE-2010-2939 CVE-2010-3864 CVE-2010-4180 CVE-2010-4252 CVE-2011-0014 CVE-2011-0904 CVE-2011-0905 CVE-2011-1164 CVE-2011-3210 CVE-2011-4108 CVE-2011-4109 CVE-2011-4354 CVE-2011-4576 CVE-2011-4577 CVE-2011-4619 CVE-2011-5095 CVE-2012-0050 CVE-2012-0884 CVE-2012-1165 CVE-2012-2110 CVE-2012-2131 CVE-2012-2333 CVE-2012-4929 CVE-2013-0166 CVE-2013-0169 CVE-2013-2003 CVE-2013-4314 CVE-2013-6393 CVE-2014-0076 CVE-2014-0221 CVE-2014-0224 CVE-2014-2525 CVE-2014-2892 CVE-2014-3470 CVE-2014-3505 CVE-2014-3506 CVE-2014-3507 CVE-2014-3508 CVE-2014-3510 CVE-2014-3634 CVE-2014-9112 CVE-2014-9130 CVE-2014-9495 CVE-2015-0295 CVE-2015-0311 CVE-2015-0973 CVE-2015-1038 CVE-2015-1858 CVE-2015-1859 CVE-2015-1860 CVE-2017-6507 CVE-2019-11477 CVE-2019-11478 CVE-2019-3846 CVE-2020-12653 CVE-2020-12654 SUSE-SU-2015:1433-1 Platform(s): openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information gimp-2.8.22-lp150.3 is installed OR gimp-lang-2.8.22-lp150.3 is installed OR gimp-plugins-python-2.8.22-lp150.3 is installed OR libgimp-2_0-0-2.8.22-lp150.3 is installed OR libgimpui-2_0-0-2.8.22-lp150.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND bogofilter-1.1.1-174.27 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information java-1_7_0-openjdk-1.7.0.95-0.17 is installed OR java-1_7_0-openjdk-demo-1.7.0.95-0.17 is installed OR java-1_7_0-openjdk-devel-1.7.0.95-0.17 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND kvm-1.4.2-35 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libopenssl0_9_8-0.9.8j-59 is installed OR libopenssl0_9_8-32bit-0.9.8j-59 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information bzip2-1.0.6-27 is installed OR libbz2-1-1.0.6-27 is installed OR libbz2-1-32bit-1.0.6-27 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information cpio-2.11-29 is installed OR cpio-lang-2.11-29 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information apparmor-docs-2.8.2-49 is installed OR apparmor-parser-2.8.2-49 is installed OR apparmor-profiles-2.8.2-49 is installed OR apparmor-utils-2.8.2-49 is installed OR libapparmor1-2.8.2-49 is installed OR libapparmor1-32bit-2.8.2-49 is installed OR pam_apparmor-2.8.2-49 is installed OR pam_apparmor-32bit-2.8.2-49 is installed OR perl-apparmor-2.8.2-49 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libQt5Concurrent5-5.6.2-6.12 is installed OR libQt5Core5-5.6.2-6.12 is installed OR libQt5DBus5-5.6.2-6.12 is installed OR libQt5Gui5-5.6.2-6.12 is installed OR libQt5Network5-5.6.2-6.12 is installed OR libQt5OpenGL5-5.6.2-6.12 is installed OR libQt5PrintSupport5-5.6.2-6.12 is installed OR libQt5Sql5-5.6.2-6.12 is installed OR libQt5Sql5-mysql-5.6.2-6.12 is installed OR libQt5Sql5-postgresql-5.6.2-6.12 is installed OR libQt5Sql5-sqlite-5.6.2-6.12 is installed OR libQt5Sql5-unixODBC-5.6.2-6.12 is installed OR libQt5Test5-5.6.2-6.12 is installed OR libQt5Widgets5-5.6.2-6.12 is installed OR libQt5Xml5-5.6.2-6.12 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_13-default-8-2 is installed OR kernel-livepatch-SLE15_Update_3-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-9 is installed OR aaa_base-extras-13.2+git20140911.61c1681-9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_51-default-9-2 is installed OR kgraft-patch-3_12_74-60_64_51-xen-9-2 is installed OR kgraft-patch-SLE12-SP1_Update_18-9-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libruby2_1-2_1-2.1.2-12 is installed OR ruby2.1-2.1.2-12 is installed OR ruby2.1-stdlib-2.1.2-12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND mailman-2.1.17-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libvirt-2.0.0-27.54 is installed OR libvirt-client-2.0.0-27.54 is installed OR libvirt-daemon-2.0.0-27.54 is installed OR libvirt-daemon-config-network-2.0.0-27.54 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.54 is installed OR libvirt-daemon-driver-interface-2.0.0-27.54 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.54 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.54 is installed OR libvirt-daemon-driver-network-2.0.0-27.54 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.54 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.54 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.54 is installed OR libvirt-daemon-driver-secret-2.0.0-27.54 is installed OR libvirt-daemon-driver-storage-2.0.0-27.54 is installed OR libvirt-daemon-hooks-2.0.0-27.54 is installed OR libvirt-daemon-lxc-2.0.0-27.54 is installed OR libvirt-daemon-qemu-2.0.0-27.54 is installed OR libvirt-daemon-xen-2.0.0-27.54 is installed OR libvirt-doc-2.0.0-27.54 is installed OR libvirt-lock-sanlock-2.0.0-27.54 is installed OR libvirt-nss-2.0.0-27.54 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_95-default-2-2 is installed OR kgraft-patch-SLE12-SP2_Update_25-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache-commons-daemon-1.0.15-6 is installed OR apache-commons-daemon-javadoc-1.0.15-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information glib2-2.48.2-12.15 is installed OR glib2-lang-2.48.2-12.15 is installed OR glib2-tools-2.48.2-12.15 is installed OR libgio-2_0-0-2.48.2-12.15 is installed OR libgio-2_0-0-32bit-2.48.2-12.15 is installed OR libglib-2_0-0-2.48.2-12.15 is installed OR libglib-2_0-0-32bit-2.48.2-12.15 is installed OR libgmodule-2_0-0-2.48.2-12.15 is installed OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed OR libgobject-2_0-0-2.48.2-12.15 is installed OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed OR libgthread-2_0-0-2.48.2-12.15 is installed OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libvirt-3.3.0-5.40 is installed OR libvirt-admin-3.3.0-5.40 is installed OR libvirt-client-3.3.0-5.40 is installed OR libvirt-daemon-3.3.0-5.40 is installed OR libvirt-daemon-config-network-3.3.0-5.40 is installed OR libvirt-daemon-config-nwfilter-3.3.0-5.40 is installed OR libvirt-daemon-driver-interface-3.3.0-5.40 is installed OR libvirt-daemon-driver-libxl-3.3.0-5.40 is installed OR libvirt-daemon-driver-lxc-3.3.0-5.40 is installed OR libvirt-daemon-driver-network-3.3.0-5.40 is installed OR libvirt-daemon-driver-nodedev-3.3.0-5.40 is installed OR libvirt-daemon-driver-nwfilter-3.3.0-5.40 is installed OR libvirt-daemon-driver-qemu-3.3.0-5.40 is installed OR libvirt-daemon-driver-secret-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-core-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-disk-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-iscsi-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-logical-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-mpath-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-rbd-3.3.0-5.40 is installed OR libvirt-daemon-driver-storage-scsi-3.3.0-5.40 is installed OR libvirt-daemon-hooks-3.3.0-5.40 is installed OR libvirt-daemon-lxc-3.3.0-5.40 is installed OR libvirt-daemon-qemu-3.3.0-5.40 is installed OR libvirt-daemon-xen-3.3.0-5.40 is installed OR libvirt-doc-3.3.0-5.40 is installed OR libvirt-libs-3.3.0-5.40 is installed OR libvirt-lock-sanlock-3.3.0-5.40 is installed OR libvirt-nss-3.3.0-5.40 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND permissions-2015.09.28.1626-17.27 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND gd-2.1.0-24.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND ant-1.9.4-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information evince-3.10.3-2.3 is installed OR evince-lang-3.10.3-2.3 is installed OR libevdocument3-4-3.10.3-2.3 is installed OR libevview3-3-3.10.3-2.3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND clamav-0.100.3-33.21 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libopenssl-devel-1.0.2j-60.55 is installed OR libopenssl1_0_0-1.0.2j-60.55 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed OR openssl-1.0.2j-60.55 is installed OR openssl-doc-1.0.2j-60.55 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information xen-4.9.4_06-3.59 is installed OR xen-doc-html-4.9.4_06-3.59 is installed OR xen-libs-4.9.4_06-3.59 is installed OR xen-libs-32bit-4.9.4_06-3.59 is installed OR xen-tools-4.9.4_06-3.59 is installed OR xen-tools-domU-4.9.4_06-3.59 is installed
BACK