Oval Definition:	oval:org.opensuse.security:def:52774
Revision Date: 2020-12-01 Version: 1 Title: Security update for the Linux Kernel (Live Patch 13 for SLE 15) (Important) Description: This update for the Linux Kernel 4.12.14-150_32 fixes several issues. The following security issues were fixed: - CVE-2019-14896: A heap-based buffer overflow vulnerability was found in the Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP (bsc#1157157). - CVE-2019-14897: A stack-based buffer overflow was found in the Marvell WiFi chip driver. An attacker was able to cause a denial of service (system crash) or, possibly execute arbitrary code, when a STA works in IBSS mode (allows connecting stations together without the use of an AP) and connects to another STA (bsc#1157155). Family: unix Class: patch Status: Reference(s): 1103203 1153108 1156317 1157770 1160467 1160468 295284 676471 773464 872912 880007 889207 899908 901813 902421 903279 910378 912365 912368 912369 912370 912372 912457 913304 920696 920697 920699 923374 928547 931448 931854 936909 939051 940413 943989 944309 945345 947337 947552 949022 951660 953233 953382 954658 954847 956491 956852 957805 957986 958581 958582 958583 958584 958585 958586 960857 962336 962846 962872 963193 963572 963762 964461 964727 965319 966054 966245 966573 966831 967251 967292 967299 967903 968010 968141 968448 968512 968667 968670 968687 968812 968813 969439 969571 969655 969690 969735 969992 969993 970062 970114 970504 970506 970604 970892 970909 970911 970948 970955 970956 970958 970970 971049 971124 971125 971126 971159 971170 971360 971600 971628 971947 972003 972174 972844 972891 972933 972951 973378 973556 973570 973855 974165 974308 974406 974418 974646 975371 975488 975533 975945 976739 976868 977582 977685 978401 978822 979169 979213 979419 979485 979548 979867 979879 980348 980371 981143 981344 982354 982698 983213 983318 983394 983904 984456 CVE-2008-4316 CVE-2009-0368 CVE-2009-2473 CVE-2009-2474 CVE-2010-0405 CVE-2010-1163 CVE-2010-1646 CVE-2010-4523 CVE-2011-0010 CVE-2011-0465 CVE-2011-2721 CVE-2011-3627 CVE-2012-1457 CVE-2012-1458 CVE-2012-1459 CVE-2012-2337 CVE-2012-3524 CVE-2012-4559 CVE-2012-4560 CVE-2012-4561 CVE-2012-6706 CVE-2013-0176 CVE-2013-1775 CVE-2013-1776 CVE-2013-1985 CVE-2013-2003 CVE-2013-6497 CVE-2014-0017 CVE-2014-8132 CVE-2014-9050 CVE-2014-9328 CVE-2014-9717 CVE-2015-0559 CVE-2015-0560 CVE-2015-0561 CVE-2015-0562 CVE-2015-0563 CVE-2015-0564 CVE-2015-1461 CVE-2015-1462 CVE-2015-1463 CVE-2015-2170 CVE-2015-2188 CVE-2015-2189 CVE-2015-2191 CVE-2015-2221 CVE-2015-2222 CVE-2015-2305 CVE-2015-2668 CVE-2015-3146 CVE-2015-3223 CVE-2015-5252 CVE-2015-5296 CVE-2015-5299 CVE-2015-5330 CVE-2015-8467 CVE-2015-8816 CVE-2015-8845 CVE-2016-0758 CVE-2016-2053 CVE-2016-2143 CVE-2016-2184 CVE-2016-2185 CVE-2016-2186 CVE-2016-2188 CVE-2016-2782 CVE-2016-2847 CVE-2016-3134 CVE-2016-3136 CVE-2016-3137 CVE-2016-3138 CVE-2016-3139 CVE-2016-3140 CVE-2016-3156 CVE-2016-3672 CVE-2016-3689 CVE-2016-3951 CVE-2016-4482 CVE-2016-4486 CVE-2016-4565 CVE-2016-4569 CVE-2016-4578 CVE-2016-4805 CVE-2016-5244 CVE-2016-8605 CVE-2017-11423 CVE-2017-12374 CVE-2017-12375 CVE-2017-12376 CVE-2017-12377 CVE-2017-12378 CVE-2017-12379 CVE-2017-12380 CVE-2017-6418 CVE-2017-6419 CVE-2017-6420 CVE-2018-0202 CVE-2018-0360 CVE-2018-0361 CVE-2018-1000085 CVE-2018-14680 CVE-2018-14681 CVE-2018-14682 CVE-2018-15378 CVE-2019-10220 CVE-2019-14896 CVE-2019-14897 CVE-2019-15239 SUSE-SU-2015:0307-1 SUSE-SU-2015:0657-2 SUSE-SU-2015:2304-1 SUSE-SU-2016:1690-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information gstreamer-plugins-ugly-1.12.5-lp150.1 is installed OR gstreamer-plugins-ugly-lang-1.12.5-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information tomcat-9.0.21-lp151.3.3 is installed OR tomcat-admin-webapps-9.0.21-lp151.3.3 is installed OR tomcat-docs-webapp-9.0.21-lp151.3.3 is installed OR tomcat-el-3_0-api-9.0.21-lp151.3.3 is installed OR tomcat-embed-9.0.21-lp151.3.3 is installed OR tomcat-javadoc-9.0.21-lp151.3.3 is installed OR tomcat-jsp-2_3-api-9.0.21-lp151.3.3 is installed OR tomcat-jsvc-9.0.21-lp151.3.3 is installed OR tomcat-lib-9.0.21-lp151.3.3 is installed OR tomcat-servlet-4_0-api-9.0.21-lp151.3.3 is installed OR tomcat-webapps-9.0.21-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libproxy0-0.3.1-2.6 is installed OR libproxy0-32bit-0.3.1-2.6 is installed OR libproxy0-config-gnome-0.3.1-2.6 is installed OR libproxy0-config-gnome-32bit-0.3.1-2.6 is installed OR libproxy0-config-kde4-0.3.1-2.6 is installed OR libproxy0-networkmanager-0.3.1-2.6 is installed OR libproxy0-networkmanager-32bit-0.3.1-2.6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND libaugeas0-0.9.0-3.15 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND dhcpcd-3.2.3-45.5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND sudo-1.8.10p3-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information glib2-lang-2.38.2-5 is installed OR glib2-tools-2.38.2-5 is installed OR libgio-2_0-0-2.38.2-5 is installed OR libgio-2_0-0-32bit-2.38.2-5 is installed OR libgio-fam-2.38.2-5 is installed OR libglib-2_0-0-2.38.2-5 is installed OR libglib-2_0-0-32bit-2.38.2-5 is installed OR libgmodule-2_0-0-2.38.2-5 is installed OR libgmodule-2_0-0-32bit-2.38.2-5 is installed OR libgobject-2_0-0-2.38.2-5 is installed OR libgobject-2_0-0-32bit-2.38.2-5 is installed OR libgthread-2_0-0-2.38.2-5 is installed OR libgthread-2_0-0-32bit-2.38.2-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libXcursor1-1.1.14-3 is installed OR libXcursor1-32bit-1.1.14-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information guile-2.0.9-8 is installed OR guile-modules-2_0-2.0.9-8 is installed OR libguile-2_0-22-2.0.9-8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND clamav-0.100.2-33.18 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_32-default-5-2 is installed OR kernel-livepatch-SLE15_Update_13-5-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_15-default-4-2 is installed OR kernel-livepatch-SLE15-SP1_Update_4-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND busybox-1.21.1-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_93-default-4-2 is installed OR kgraft-patch-3_12_74-60_64_93-xen-4-2 is installed OR kgraft-patch-SLE12-SP1_Update_28-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND sblim-sfcb-1.4.8-8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information ntp-4.2.8p12-64.8 is installed OR ntp-doc-4.2.8p12-64.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information xen-4.7.5_04-43.33 is installed OR xen-doc-html-4.7.5_04-43.33 is installed OR xen-libs-4.7.5_04-43.33 is installed OR xen-libs-32bit-4.7.5_04-43.33 is installed OR xen-tools-4.7.5_04-43.33 is installed OR xen-tools-domU-4.7.5_04-43.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_59-92_17-default-10-2 is installed OR kgraft-patch-SLE12-SP2_Update_7-10-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information evince-3.20.1-5 is installed OR evince-browser-plugin-3.20.1-5 is installed OR evince-lang-3.20.1-5 is installed OR evince-plugin-djvudocument-3.20.1-5 is installed OR evince-plugin-dvidocument-3.20.1-5 is installed OR evince-plugin-pdfdocument-3.20.1-5 is installed OR evince-plugin-psdocument-3.20.1-5 is installed OR evince-plugin-tiffdocument-3.20.1-5 is installed OR evince-plugin-xpsdocument-3.20.1-5 is installed OR libevdocument3-4-3.20.1-5 is installed OR libevview3-3-3.20.1-5 is installed OR nautilus-evince-3.20.1-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.50-38.41 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_162-94_69-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_21-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_178-94_91-default-3-2 is installed OR kgraft-patch-SLE12-SP3_Update_25-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information openssh-7.2p2-74.23 is installed OR openssh-askpass-gnome-7.2p2-74.23 is installed OR openssh-fips-7.2p2-74.23 is installed OR openssh-helpers-7.2p2-74.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND ant-1.9.4-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information kernel-default-3.12.74-60.64.88 is installed OR kernel-default-base-3.12.74-60.64.88 is installed OR kernel-default-devel-3.12.74-60.64.88 is installed OR kernel-devel-3.12.74-60.64.88 is installed OR kernel-macros-3.12.74-60.64.88 is installed OR kernel-source-3.12.74-60.64.88 is installed OR kernel-syms-3.12.74-60.64.88 is installed OR kernel-xen-3.12.74-60.64.88 is installed OR kernel-xen-base-3.12.74-60.64.88 is installed OR kernel-xen-devel-3.12.74-60.64.88 is installed OR kgraft-patch-3_12_74-60_64_88-default-1-2.3 is installed OR kgraft-patch-3_12_74-60_64_88-xen-1-2.3 is installed OR kgraft-patch-SLE12-SP1_Update_27-1-2.3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information MozillaFirefox-68.6.0-109.110 is installed OR MozillaFirefox-devel-68.6.0-109.110 is installed OR MozillaFirefox-translations-common-68.6.0-109.110 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND python-Django-1.11.11-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed OR libwebkit2gtk3-lang-2.24.4-2.47 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed OR webkit2gtk3-2.24.4-2.47 is installed
BACK