OVAL Reference oval:org.opensuse.security:def:52777

Oval Definition:

oval:org.opensuse.security:def:52777

Revision Date:	2020-12-01	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 10 for SLE 15) (Important)
Description:	This update for the Linux Kernel 4.12.14-150_17 fixes several issues. The following security issues were fixed: - CVE-2019-14896: A heap-based buffer overflow vulnerability was found in the Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP (bsc#1157157). - CVE-2019-14897: A stack-based buffer overflow was found in the Marvell WiFi chip driver. An attacker was able to cause a denial of service (system crash) or, possibly execute arbitrary code, when a STA works in IBSS mode (allows connecting stations together without the use of an AP) and connects to another STA (bsc#1157155).
Family:	unix	Class:	patch
Status:		Reference(s):	1103203 1153108 1156321 1160467 1160468 800024 920870 952051 954980 982366 983549 983638 983639 983643 983646 983651 983652 983653 983655 984006 984126 985659 986362 CVE-2009-2285 CVE-2009-2347 CVE-2010-2065 CVE-2010-2067 CVE-2010-2233 CVE-2010-4665 CVE-2011-0192 CVE-2011-1167 CVE-2011-2483 CVE-2011-2895 CVE-2011-3177 CVE-2011-3630 CVE-2011-3631 CVE-2011-3632 CVE-2012-1173 CVE-2012-2113 CVE-2012-3401 CVE-2012-4564 CVE-2013-0211 CVE-2013-0221 CVE-2013-0222 CVE-2013-0223 CVE-2013-0240 CVE-2013-1799 CVE-2013-1960 CVE-2013-1961 CVE-2013-1987 CVE-2013-4231 CVE-2013-4232 CVE-2013-4243 CVE-2013-4244 CVE-2013-6462 CVE-2014-0209 CVE-2014-0210 CVE-2014-0211 CVE-2014-8104 CVE-2014-8127 CVE-2014-8128 CVE-2014-8129 CVE-2014-8130 CVE-2014-9655 CVE-2015-1547 CVE-2015-1802 CVE-2015-1803 CVE-2015-1804 CVE-2015-2304 CVE-2015-4041 CVE-2015-4042 CVE-2015-7981 CVE-2015-8126 CVE-2016-1544 CVE-2016-2815 CVE-2016-2818 CVE-2016-2819 CVE-2016-2821 CVE-2016-2822 CVE-2016-2824 CVE-2016-2828 CVE-2016-2831 CVE-2016-2834 CVE-2016-4997 CVE-2016-6329 CVE-2017-7478 CVE-2017-7479 CVE-2017-7508 CVE-2017-7520 CVE-2017-7521 CVE-2019-10220 CVE-2019-13272 CVE-2019-14896 CVE-2019-14897 SUSE-SU-2015:0667-1 SUSE-SU-2015:2024-1 SUSE-SU-2016:1691-1 SUSE-SU-2016:1710-1 SUSE-SU-2019:3248-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND gzip-1.9-lp150.2 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information python3-virtualbox-6.0.10-lp151.2.6 is installed OR virtualbox-6.0.10-lp151.2.6 is installed OR virtualbox-devel-6.0.10-lp151.2.6 is installed OR virtualbox-guest-desktop-icons-6.0.10-lp151.2.6 is installed OR virtualbox-guest-kmp-default-6.0.10_k4.12.14_lp151.28.10-lp151.2.6 is installed OR virtualbox-guest-source-6.0.10-lp151.2.6 is installed OR virtualbox-guest-tools-6.0.10-lp151.2.6 is installed OR virtualbox-guest-x11-6.0.10-lp151.2.6 is installed OR virtualbox-host-kmp-default-6.0.10_k4.12.14_lp151.28.10-lp151.2.6 is installed OR virtualbox-host-source-6.0.10-lp151.2.6 is installed OR virtualbox-qt-6.0.10-lp151.2.6 is installed OR virtualbox-vnc-6.0.10-lp151.2.6 is installed OR virtualbox-websrv-6.0.10-lp151.2.6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libtiff3-3.8.2-141.154 is installed OR libtiff3-32bit-3.8.2-141.154 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information bind-libs-9.9.4P2-0.6 is installed OR bind-libs-32bit-9.9.4P2-0.6 is installed OR bind-utils-9.9.4P2-0.6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information mozilla-nspr-4.10.9-11 is installed OR mozilla-nspr-32bit-4.10.9-11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information sysvinit-tools-2.88+-94 is installed OR whois-5.1.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information gnome-online-accounts-3.10.5-1 is installed OR gnome-online-accounts-lang-3.10.5-1 is installed OR libgoa-1_0-0-3.10.5-1 is installed OR libgoa-backend-1_0-1-3.10.5-1 is installed OR typelib-1_0-Goa-1_0-3.10.5-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND libXfont1-1.5.1-10 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND hardlink-1.0-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information coreutils-8.25-13.7 is installed OR coreutils-lang-8.25-13.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_17-default-7-2 is installed OR kernel-livepatch-SLE15_Update_10-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-195-default-8-22 is installed OR kernel-livepatch-SLE15-SP1_Update_0-8-22 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND clamav-0.98.7-13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_85-default-7-2 is installed OR kgraft-patch-3_12_74-60_64_85-xen-7-2 is installed OR kgraft-patch-SLE12-SP1_Update_26-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND squashfs-4.3-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information res-signingkeys-3.0.38-52.26 is installed OR smt-3.0.38-52.26 is installed OR smt-support-3.0.38-52.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information ntp-4.2.8p11-64.5 is installed OR ntp-doc-4.2.8p11-64.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_29-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_10-9-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information file-5.19-9 is installed OR file-magic-5.19-9 is installed OR libmagic1-5.19-9 is installed OR libmagic1-32bit-5.19-9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information bzip2-1.0.6-30.5 is installed OR bzip2-doc-1.0.6-30.5 is installed OR libbz2-1-1.0.6-30.5 is installed OR libbz2-1-32bit-1.0.6-30.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libtirpc-1.0.1-17.6 is installed OR libtirpc-netconfig-1.0.1-17.6 is installed OR libtirpc3-1.0.1-17.6 is installed OR libtirpc3-32bit-1.0.1-17.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND apache-commons-httpclient-3.1-4 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information icu-52.1-8.7 is installed OR libicu-doc-52.1-8.7 is installed OR libicu52_1-52.1-8.7 is installed OR libicu52_1-32bit-52.1-8.7 is installed OR libicu52_1-data-52.1-8.7 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information crowbar-core-4.0+git.1574788924.e4a6aeb0c-9.60 is installed OR crowbar-core-branding-upstream-4.0+git.1574788924.e4a6aeb0c-9.60 is installed OR crowbar-openstack-4.0+git.1574869671.9c7bade2d-9.65 is installed OR grafana-monasca-ui-drilldown-1.5.5~dev3-8 is installed OR openstack-horizon-plugin-monasca-ui-1.5.5~dev3-8 is installed OR openstack-monasca-api-1.7.1~dev18-12 is installed OR openstack-monasca-log-api-1.4.3~dev3-5 is installed OR openstack-neutron-9.4.2~dev21-7.38 is installed OR openstack-neutron-dhcp-agent-9.4.2~dev21-7.38 is installed OR openstack-neutron-doc-9.4.2~dev21-7.38 is installed OR openstack-neutron-ha-tool-9.4.2~dev21-7.38 is installed OR openstack-neutron-l3-agent-9.4.2~dev21-7.38 is installed OR openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.38 is installed OR openstack-neutron-macvtap-agent-9.4.2~dev21-7.38 is installed OR openstack-neutron-metadata-agent-9.4.2~dev21-7.38 is installed OR openstack-neutron-metering-agent-9.4.2~dev21-7.38 is installed OR openstack-neutron-openvswitch-agent-9.4.2~dev21-7.38 is installed OR openstack-neutron-server-9.4.2~dev21-7.38 is installed OR python-horizon-plugin-monasca-ui-1.5.5~dev3-8 is installed OR python-monasca-api-1.7.1~dev18-12 is installed OR python-monasca-log-api-1.4.3~dev3-5 is installed OR python-neutron-9.4.2~dev21-7.38 is installed OR ruby2.1-rubygem-puma-2.16.0-4.3 is installed OR rubygem-puma-2.16.0-4.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND ansible-2.4.6.0-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ibus-1.5.13-15.11 is installed OR ibus-gtk-1.5.13-15.11 is installed OR ibus-gtk3-1.5.13-15.11 is installed OR ibus-lang-1.5.13-15.11 is installed OR libibus-1_0-5-1.5.13-15.11 is installed OR typelib-1_0-IBus-1_0-1.5.13-15.11 is installed

BACK