OVAL Reference oval:org.opensuse.security:def:52796

Oval Definition:

oval:org.opensuse.security:def:52796

Revision Date:	2020-12-01	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 17 for SLE 15) (Important)
Description:	This update for the Linux Kernel 4.12.14-150_47 fixes several issues. The following security issues were fixed: - CVE-2020-0430: Fixed an OOB read in skb_headlen of /include/linux/skbuff.h (bsc#1176723, bsc#1178003). - CVE-2020-12351: Fixed a type confusion while processing AMP packets aka 'BleedingTooth' aka 'BadKarma' (bsc#1177724, bsc#1177729, bsc#1178397). - CVE-2020-25645: Fixed an an issue in IPsec that caused traffic between two Geneve endpoints to be unencrypted (bnc#1177513).
Family:	unix	Class:	patch
Status:		Reference(s):	1103203 1160467 1160468 1177513 1177729 1178003 295284 773464 872912 901813 902421 910378 912457 913304 923374 923945 931854 934333 934524 934525 934526 934527 934528 934529 936676 936909 939051 947552 949022 951660 953382 954658 958581 958582 958583 958584 958585 958586 962983 962996 CVE-2009-0159 CVE-2009-0799 CVE-2009-0800 CVE-2009-1179 CVE-2009-1180 CVE-2009-1181 CVE-2009-1182 CVE-2009-1183 CVE-2009-1187 CVE-2009-1188 CVE-2009-1252 CVE-2009-3607 CVE-2009-3608 CVE-2010-2240 CVE-2010-2947 CVE-2011-0460 CVE-2011-3848 CVE-2011-3872 CVE-2012-3864 CVE-2012-3865 CVE-2012-3866 CVE-2012-3867 CVE-2013-1788 CVE-2013-1789 CVE-2013-1790 CVE-2013-1940 CVE-2013-1992 CVE-2013-3567 CVE-2013-4396 CVE-2013-4473 CVE-2013-4474 CVE-2013-4761 CVE-2013-4956 CVE-2013-5211 CVE-2013-6424 CVE-2013-6487 CVE-2014-3248 CVE-2014-3253 CVE-2014-3775 CVE-2014-9293 CVE-2014-9294 CVE-2014-9295 CVE-2014-9296 CVE-2014-9297 CVE-2014-9298 CVE-2014-9645 CVE-2014-9709 CVE-2014-9732 CVE-2015-0247 CVE-2015-1572 CVE-2015-1798 CVE-2015-1799 CVE-2015-3223 CVE-2015-3405 CVE-2015-4467 CVE-2015-4468 CVE-2015-4469 CVE-2015-4470 CVE-2015-4471 CVE-2015-4472 CVE-2015-5252 CVE-2015-5296 CVE-2015-5299 CVE-2015-5330 CVE-2015-7691 CVE-2015-7692 CVE-2015-7701 CVE-2015-7702 CVE-2015-7703 CVE-2015-7704 CVE-2015-7705 CVE-2015-7848 CVE-2015-7849 CVE-2015-7850 CVE-2015-7851 CVE-2015-7852 CVE-2015-7853 CVE-2015-7854 CVE-2015-7855 CVE-2015-7871 CVE-2015-8467 CVE-2016-0755 CVE-2017-1000456 CVE-2017-14517 CVE-2017-14518 CVE-2017-14520 CVE-2017-14617 CVE-2017-14928 CVE-2017-14975 CVE-2017-14976 CVE-2017-14977 CVE-2017-15565 CVE-2017-7511 CVE-2017-7515 CVE-2017-9406 CVE-2017-9408 CVE-2017-9775 CVE-2017-9776 CVE-2017-9865 CVE-2019-14896 CVE-2019-14897 CVE-2020-0430 CVE-2020-12351 CVE-2020-25645 SUSE-SU-2015:0866-1 SUSE-SU-2015:2304-1 SUSE-SU-2016:0011-1 SUSE-SU-2016:0340-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND klogd-1.4.1-lp150.2 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-accessibility-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-javadoc-1.8.0.222-lp151.2.3 is installed OR java-1_8_0-openjdk-src-1.8.0.222-lp151.2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND telepathy-idle-0.1.5-1.5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND libaugeas0-0.9.0-3.15 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information glibc-2.11.3-17.95 is installed OR glibc-32bit-2.11.3-17.95 is installed OR glibc-devel-2.11.3-17.95 is installed OR glibc-devel-32bit-2.11.3-17.95 is installed OR glibc-i18ndata-2.11.3-17.95 is installed OR glibc-locale-2.11.3-17.95 is installed OR glibc-locale-32bit-2.11.3-17.95 is installed OR nscd-2.11.3-17.95 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information xorg-x11-server-7.6_1.15.2-12 is installed OR xorg-x11-server-extra-7.6_1.15.2-12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND kbd-1.15.5-8.4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND busybox-1.21.1-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libHX28-3.18-1 is installed OR libHX28-32bit-3.18-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information e2fsprogs-1.43.8-1 is installed OR libcom_err2-1.43.8-1 is installed OR libcom_err2-32bit-1.43.8-1 is installed OR libext2fs2-1.43.8-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_47-default-8-2 is installed OR kernel-livepatch-SLE15_Update_17-8-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_26-default-2-2 is installed OR kernel-livepatch-SLE15-SP1_Update_7-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information dracut-037-66 is installed OR dracut-fips-037-66 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_67-60_64_18-default-8-3 is installed OR kgraft-patch-3_12_67-60_64_18-xen-8-3 is installed OR kgraft-patch-SLE12-SP1_Update_9-8-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND apache2-mod_nss-1.0.14-18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information xen-4.7.5_02-43.30 is installed OR xen-doc-html-4.7.5_02-43.30 is installed OR xen-libs-4.7.5_02-43.30 is installed OR xen-libs-32bit-4.7.5_02-43.30 is installed OR xen-tools-4.7.5_02-43.30 is installed OR xen-tools-domU-4.7.5_02-43.30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.30-38.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_45-default-5-2 is installed OR kgraft-patch-SLE12-SP2_Update_14-5-2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information gpgme-1.5.1-1 is installed OR libgpgme11-1.5.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND ucode-intel-20191112-13.53 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND squid-3.5.21-26.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ceph-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR ceph-common-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR libcephfs2-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR librados2-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR libradosstriper1-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR librbd1-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR librgw2-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR python-cephfs-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR python-rados-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR python-rbd-12.2.7+git.1531910353.c0ef85b854-2.12 is installed OR python-rgw-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache2-2.4.23-29.24 is installed OR apache2-doc-2.4.23-29.24 is installed OR apache2-example-pages-2.4.23-29.24 is installed OR apache2-prefork-2.4.23-29.24 is installed OR apache2-utils-2.4.23-29.24 is installed OR apache2-worker-2.4.23-29.24 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND python-Twisted-15.2.1-9.5 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.14.4-11.18 is installed

BACK