Oval Definition:oval:org.opensuse.security:def:52822
Revision Date:2020-12-01Version:1
Title:Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP1) (Important)
Description:

This update for the Linux Kernel 4.12.14-197_4 fixes several issues.

The following security issue was fixed:

- CVE-2019-14835: A buffer overflow flaw was found in the way vhost functionality, that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host (bsc#1151021).
Family:unixClass:patch
Status:Reference(s):1149841
1151021
1173942
1173963
1174186
1174247
923229
925019
925021
925022
928520
963964
963968
963975
970498
972468
CVE-2006-2607
CVE-2006-7250
CVE-2008-5077
CVE-2009-0590
CVE-2009-0591
CVE-2009-0789
CVE-2009-1377
CVE-2009-1378
CVE-2009-1379
CVE-2009-1386
CVE-2009-1387
CVE-2010-0424
CVE-2010-0740
CVE-2010-0742
CVE-2010-1633
CVE-2010-2939
CVE-2010-3864
CVE-2010-5298
CVE-2011-0014
CVE-2011-1831
CVE-2011-1832
CVE-2011-1833
CVE-2011-1834
CVE-2011-1835
CVE-2011-1836
CVE-2011-1837
CVE-2011-3207
CVE-2011-3210
CVE-2011-4108
CVE-2011-4576
CVE-2011-4577
CVE-2011-4619
CVE-2012-0027
CVE-2012-0050
CVE-2012-0884
CVE-2012-1165
CVE-2012-2110
CVE-2012-2396
CVE-2012-2686
CVE-2012-3466
CVE-2012-4929
CVE-2013-0157
CVE-2013-0166
CVE-2013-0169
CVE-2013-0211
CVE-2013-4353
CVE-2013-6449
CVE-2013-6450
CVE-2014-0076
CVE-2014-0160
CVE-2014-0195
CVE-2014-0198
CVE-2014-0221
CVE-2014-0224
CVE-2014-1932
CVE-2014-3470
CVE-2014-3505
CVE-2014-3506
CVE-2014-3507
CVE-2014-3508
CVE-2014-3509
CVE-2014-3510
CVE-2014-3511
CVE-2014-3512
CVE-2014-3513
CVE-2014-3566
CVE-2014-3567
CVE-2014-3568
CVE-2014-3570
CVE-2014-3571
CVE-2014-3572
CVE-2014-5139
CVE-2014-8092
CVE-2014-8275
CVE-2014-9114
CVE-2014-9687
CVE-2015-0204
CVE-2015-0205
CVE-2015-0206
CVE-2015-0209
CVE-2015-0286
CVE-2015-0287
CVE-2015-0288
CVE-2015-0289
CVE-2015-0293
CVE-2015-1545
CVE-2015-1546
CVE-2015-1788
CVE-2015-1789
CVE-2015-1790
CVE-2015-1791
CVE-2015-1792
CVE-2015-2304
CVE-2015-3216
CVE-2015-3418
CVE-2015-4000
CVE-2015-5218
CVE-2015-6908
CVE-2015-8629
CVE-2015-8630
CVE-2015-8631
CVE-2015-8833
CVE-2016-0636
CVE-2016-1572
CVE-2016-1602
CVE-2016-5011
CVE-2017-2616
CVE-2019-14835
CVE-2019-9458
CVE-2020-11668
CVE-2020-14331
CVE-2020-15780
SUSE-SU-2015:1127-1
SUSE-SU-2016:0429-1
SUSE-SU-2016:0912-1
SUSE-SU-2016:0959-1
SUSE-SU-2019:2572-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libXrender1-0.9.10-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • gnutls-3.6.7-lp151.2.3 is installed
  • OR gnutls-guile-3.6.7-lp151.2.3 is installed
  • OR libgnutls-dane-devel-3.6.7-lp151.2.3 is installed
  • OR libgnutls-dane0-3.6.7-lp151.2.3 is installed
  • OR libgnutls-devel-3.6.7-lp151.2.3 is installed
  • OR libgnutls-devel-32bit-3.6.7-lp151.2.3 is installed
  • OR libgnutls30-3.6.7-lp151.2.3 is installed
  • OR libgnutls30-32bit-3.6.7-lp151.2.3 is installed
  • OR libgnutlsxx-devel-3.6.7-lp151.2.3 is installed
  • OR libgnutlsxx28-3.6.7-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • MozillaFirefox-17.0.6esr-0.4 is installed
  • OR MozillaFirefox-translations-17.0.6esr-0.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-38.5.0esr-28 is installed
  • OR MozillaFirefox-translations-38.5.0esr-28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • libotr-3.2.0-10.5 is installed
  • OR libotr2-3.2.0-10.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • xorg-x11-server-7.6_1.15.2-28 is installed
  • OR xorg-x11-server-extra-7.6_1.15.2-28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • cron-4.2-58 is installed
  • OR cronie-1.4.11-58 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • ecryptfs-utils-103-7 is installed
  • OR ecryptfs-utils-32bit-103-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libblkid1-2.29.2-2 is installed
  • OR libblkid1-32bit-2.29.2-2 is installed
  • OR libfdisk1-2.29.2-2 is installed
  • OR libmount1-2.29.2-2 is installed
  • OR libmount1-32bit-2.29.2-2 is installed
  • OR libsmartcols1-2.29.2-2 is installed
  • OR libuuid-devel-2.29.2-2 is installed
  • OR libuuid1-2.29.2-2 is installed
  • OR libuuid1-32bit-2.29.2-2 is installed
  • OR python-libmount-2.29.2-2 is installed
  • OR util-linux-2.29.2-2 is installed
  • OR util-linux-lang-2.29.2-2 is installed
  • OR util-linux-systemd-2.29.2-2 is installed
  • OR uuidd-2.29.2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • gnome-keyring-3.20.0-28.3 is installed
  • OR gnome-keyring-32bit-3.20.0-28.3 is installed
  • OR gnome-keyring-lang-3.20.0-28.3 is installed
  • OR gnome-keyring-pam-3.20.0-28.3 is installed
  • OR gnome-keyring-pam-32bit-3.20.0-28.3 is installed
  • OR libgck-modules-gnome-keyring-3.20.0-28.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-197_4-default-5-2 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_1-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • guestfs-data-1.26.10-4 is installed
  • OR guestfs-tools-1.26.10-4 is installed
  • OR guestfsd-1.26.10-4 is installed
  • OR libguestfs0-1.26.10-4 is installed
  • OR perl-Sys-Guestfs-1.26.10-4 is installed
  • OR python-libguestfs-1.26.10-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • xen-4.5.5_14-22.25 is installed
  • OR xen-doc-html-4.5.5_14-22.25 is installed
  • OR xen-kmp-default-4.5.5_14_k3.12.74_60.64.54-22.25 is installed
  • OR xen-libs-4.5.5_14-22.25 is installed
  • OR xen-libs-32bit-4.5.5_14-22.25 is installed
  • OR xen-tools-4.5.5_14-22.25 is installed
  • OR xen-tools-domU-4.5.5_14-22.25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • curl-7.37.0-31 is installed
  • OR libcurl4-7.37.0-31 is installed
  • OR libcurl4-32bit-7.37.0-31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libvirt-2.0.0-27.42 is installed
  • OR libvirt-client-2.0.0-27.42 is installed
  • OR libvirt-daemon-2.0.0-27.42 is installed
  • OR libvirt-daemon-config-network-2.0.0-27.42 is installed
  • OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-network-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed
  • OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed
  • OR libvirt-daemon-hooks-2.0.0-27.42 is installed
  • OR libvirt-daemon-lxc-2.0.0-27.42 is installed
  • OR libvirt-daemon-qemu-2.0.0-27.42 is installed
  • OR libvirt-daemon-xen-2.0.0-27.42 is installed
  • OR libvirt-doc-2.0.0-27.42 is installed
  • OR libvirt-lock-sanlock-2.0.0-27.42 is installed
  • OR libvirt-nss-2.0.0-27.42 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • xen-4.7.6_02-43.36 is installed
  • OR xen-doc-html-4.7.6_02-43.36 is installed
  • OR xen-libs-4.7.6_02-43.36 is installed
  • OR xen-libs-32bit-4.7.6_02-43.36 is installed
  • OR xen-tools-4.7.6_02-43.36 is installed
  • OR xen-tools-domU-4.7.6_02-43.36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_74-92_29-default-11-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_10-11-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND kdump-0.8.16-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • gcc9-9.2.1+r275327-1.3 is installed
  • OR libasan5-9.2.1+r275327-1.3 is installed
  • OR libasan5-32bit-9.2.1+r275327-1.3 is installed
  • OR libatomic1-9.2.1+r275327-1.3 is installed
  • OR libatomic1-32bit-9.2.1+r275327-1.3 is installed
  • OR libgcc_s1-9.2.1+r275327-1.3 is installed
  • OR libgcc_s1-32bit-9.2.1+r275327-1.3 is installed
  • OR libgfortran5-9.2.1+r275327-1.3 is installed
  • OR libgfortran5-32bit-9.2.1+r275327-1.3 is installed
  • OR libgo14-9.2.1+r275327-1.3 is installed
  • OR libgo14-32bit-9.2.1+r275327-1.3 is installed
  • OR libgomp1-9.2.1+r275327-1.3 is installed
  • OR libgomp1-32bit-9.2.1+r275327-1.3 is installed
  • OR libitm1-9.2.1+r275327-1.3 is installed
  • OR libitm1-32bit-9.2.1+r275327-1.3 is installed
  • OR liblsan0-9.2.1+r275327-1.3 is installed
  • OR libquadmath0-9.2.1+r275327-1.3 is installed
  • OR libquadmath0-32bit-9.2.1+r275327-1.3 is installed
  • OR libstdc++6-9.2.1+r275327-1.3 is installed
  • OR libstdc++6-32bit-9.2.1+r275327-1.3 is installed
  • OR libstdc++6-locale-9.2.1+r275327-1.3 is installed
  • OR libtsan0-9.2.1+r275327-1.3 is installed
  • OR libubsan1-9.2.1+r275327-1.3 is installed
  • OR libubsan1-32bit-9.2.1+r275327-1.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • glib2-2.48.2-12.15 is installed
  • OR glib2-lang-2.48.2-12.15 is installed
  • OR glib2-tools-2.48.2-12.15 is installed
  • OR libgio-2_0-0-2.48.2-12.15 is installed
  • OR libgio-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libglib-2_0-0-2.48.2-12.15 is installed
  • OR libglib-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgmodule-2_0-0-2.48.2-12.15 is installed
  • OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgobject-2_0-0-2.48.2-12.15 is installed
  • OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed
  • OR libgthread-2_0-0-2.48.2-12.15 is installed
  • OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • MozillaFirefox-52.9.0esr-109.38 is installed
  • OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • openstack-glance-13.0.1~a0~dev6-4.3 is installed
  • OR openstack-glance-api-13.0.1~a0~dev6-4.3 is installed
  • OR openstack-glance-doc-13.0.1~a0~dev6-4.3 is installed
  • OR openstack-glance-glare-13.0.1~a0~dev6-4.3 is installed
  • OR openstack-glance-registry-13.0.1~a0~dev6-4.3 is installed
  • OR python-glance-13.0.1~a0~dev6-4.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libgcrypt-1.6.1-16.68 is installed
  • OR libgcrypt20-1.6.1-16.68 is installed
  • OR libgcrypt20-32bit-1.6.1-16.68 is installed
  • OR libgcrypt20-hmac-1.6.1-16.68 is installed
  • OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND nodejs6-6.17.0-11.27 is installed
    • BACK