Oval Definition:oval:org.opensuse.security:def:52824
Revision Date:2020-12-01Version:1
Title:Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP1) (Important)
Description:

This update for the Linux Kernel 4.12.14-197_10 fixes several issues.

The following security issue was fixed:

- CVE-2019-14835: A buffer overflow flaw was found in the way vhost functionality, that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host (bsc#1151021).
Family:unixClass:patch
Status:Reference(s):1149841
1151021
1165631
1174186
1174247
926597
929678
931698
933898
933911
934487
934489
934491
934493
939460
945842
950944
952151
953831
954002
955382
955647
956716
958315
961721
962736
962737
962738
962739
962765
964468
966220
968771
974209
CVE-2009-3736
CVE-2009-4012
CVE-2010-0407
CVE-2010-4531
CVE-2012-0035
CVE-2013-0157
CVE-2013-4314
CVE-2013-6473
CVE-2013-6474
CVE-2013-6475
CVE-2013-6476
CVE-2014-2707
CVE-2014-3421
CVE-2014-3422
CVE-2014-3423
CVE-2014-3424
CVE-2014-3634
CVE-2014-4336
CVE-2014-4337
CVE-2014-4338
CVE-2014-7300
CVE-2014-9114
CVE-2014-9761
CVE-2015-1788
CVE-2015-1789
CVE-2015-1790
CVE-2015-1791
CVE-2015-1792
CVE-2015-2265
CVE-2015-3216
CVE-2015-3258
CVE-2015-3279
CVE-2015-4000
CVE-2015-5218
CVE-2015-5276
CVE-2015-7547
CVE-2015-8776
CVE-2015-8777
CVE-2015-8778
CVE-2015-8779
CVE-2016-1019
CVE-2016-5180
CVE-2019-14835
CVE-2020-14331
CVE-2020-15780
CVE-2020-1749
SUSE-SU-2015:1143-1
SUSE-SU-2016:0473-1
SUSE-SU-2016:0963-1
SUSE-SU-2016:0990-1
SUSE-SU-2020:2517-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libXtst6-1.2.3-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • GraphicsMagick-1.3.29-lp151.4.3 is installed
  • OR GraphicsMagick-devel-1.3.29-lp151.4.3 is installed
  • OR libGraphicsMagick++-Q16-12-1.3.29-lp151.4.3 is installed
  • OR libGraphicsMagick++-devel-1.3.29-lp151.4.3 is installed
  • OR libGraphicsMagick-Q16-3-1.3.29-lp151.4.3 is installed
  • OR libGraphicsMagick3-config-1.3.29-lp151.4.3 is installed
  • OR libGraphicsMagickWand-Q16-2-1.3.29-lp151.4.3 is installed
  • OR perl-GraphicsMagick-1.3.29-lp151.4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • MozillaFirefox-17.0.10esr-0.4.2 is installed
  • OR MozillaFirefox-branding-SLED-7-0.6.9 is installed
  • OR MozillaFirefox-translations-17.0.10esr-0.4.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-31.6.0esr-0.8 is installed
  • OR MozillaFirefox-translations-31.6.0esr-0.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • libpng12-0-1.2.31-5.38 is installed
  • OR libpng12-0-32bit-1.2.31-5.38 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • libopenssl1_0_0-1.0.1i-25 is installed
  • OR libopenssl1_0_0-32bit-1.0.1i-25 is installed
  • OR openssl-1.0.1i-25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • cups-filters-1.0.58-8 is installed
  • OR cups-filters-cups-browsed-1.0.58-8 is installed
  • OR cups-filters-foomatic-rip-1.0.58-8 is installed
  • OR cups-filters-ghostscript-1.0.58-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • emacs-24.3-16 is installed
  • OR emacs-info-24.3-16 is installed
  • OR emacs-x11-24.3-16 is installed
  • OR etags-24.3-16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libcares2-1.9.1-5 is installed
  • OR libcares2-32bit-1.9.1-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • gnome-settings-daemon-3.20.1-50.5 is installed
  • OR gnome-settings-daemon-lang-3.20.1-50.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-197_10-default-2-2 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_3-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • gvim-7.4.326-2 is installed
  • OR vim-7.4.326-2 is installed
  • OR vim-data-7.4.326-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • postgresql94-9.4.13-21.5 is installed
  • OR postgresql94-contrib-9.4.13-21.5 is installed
  • OR postgresql94-docs-9.4.13-21.5 is installed
  • OR postgresql94-server-9.4.13-21.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • cyrus-sasl-2.1.26-7 is installed
  • OR cyrus-sasl-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-crammd5-2.1.26-7 is installed
  • OR cyrus-sasl-crammd5-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-digestmd5-2.1.26-7 is installed
  • OR cyrus-sasl-gssapi-2.1.26-7 is installed
  • OR cyrus-sasl-gssapi-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-otp-2.1.26-7 is installed
  • OR cyrus-sasl-otp-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-plain-2.1.26-7 is installed
  • OR cyrus-sasl-plain-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-saslauthd-2.1.26-7 is installed
  • OR cyrus-sasl-sqlauxprop-2.1.26-7 is installed
  • OR cyrus-sasl-sqlauxprop-32bit-2.1.26-7 is installed
  • OR libsasl2-3-2.1.26-7 is installed
  • OR libsasl2-3-32bit-2.1.26-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-52.9.0esr-109.38 is installed
  • OR MozillaFirefox-devel-52.9.0esr-109.38 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_74-92_35-default-10-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_12-10-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • krb5-1.12.5-39 is installed
  • OR krb5-32bit-1.12.5-39 is installed
  • OR krb5-client-1.12.5-39 is installed
  • OR krb5-doc-1.12.5-39 is installed
  • OR krb5-plugin-kdb-ldap-1.12.5-39 is installed
  • OR krb5-plugin-preauth-otp-1.12.5-39 is installed
  • OR krb5-plugin-preauth-pkinit-1.12.5-39 is installed
  • OR krb5-server-1.12.5-39 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • wicked-0.6.60-38.27 is installed
  • OR wicked-service-0.6.60-38.27 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libopenssl-devel-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed
  • OR openssl-1.0.2j-60.55 is installed
  • OR openssl-doc-1.0.2j-60.55 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • MozillaFirefox-60.8.0-109.83 is installed
  • OR MozillaFirefox-translations-common-60.8.0-109.83 is installed
  • OR libfreebl3-3.44.1-58.28 is installed
  • OR libfreebl3-32bit-3.44.1-58.28 is installed
  • OR libfreebl3-hmac-3.44.1-58.28 is installed
  • OR libfreebl3-hmac-32bit-3.44.1-58.28 is installed
  • OR libsoftokn3-3.44.1-58.28 is installed
  • OR libsoftokn3-32bit-3.44.1-58.28 is installed
  • OR libsoftokn3-hmac-3.44.1-58.28 is installed
  • OR libsoftokn3-hmac-32bit-3.44.1-58.28 is installed
  • OR mozilla-nss-3.44.1-58.28 is installed
  • OR mozilla-nss-32bit-3.44.1-58.28 is installed
  • OR mozilla-nss-certs-3.44.1-58.28 is installed
  • OR mozilla-nss-certs-32bit-3.44.1-58.28 is installed
  • OR mozilla-nss-sysinit-3.44.1-58.28 is installed
  • OR mozilla-nss-sysinit-32bit-3.44.1-58.28 is installed
  • OR mozilla-nss-tools-3.44.1-58.28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND ucode-intel-20180807-13.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND SuSEfirewall2-3.6.312.333-3.13 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • ruby2.1-rubygem-actionmailer-4_2-4.2.9-3.3 is installed
  • OR ruby2.1-rubygem-actionpack-4_2-4.2.9-7.3 is installed
  • OR ruby2.1-rubygem-actionview-4_2-4.2.9-9.3 is installed
  • OR ruby2.1-rubygem-activejob-4_2-4.2.9-3.3 is installed
  • OR ruby2.1-rubygem-activemodel-4_2-4.2.9-6.3 is installed
  • OR ruby2.1-rubygem-activerecord-4_2-4.2.9-6.3 is installed
  • OR ruby2.1-rubygem-activesupport-4_2-4.2.9-7.3 is installed
  • OR ruby2.1-rubygem-rails-4_2-4.2.9-3.3 is installed
  • OR ruby2.1-rubygem-rails-html-sanitizer-1.0.3-8.3 is installed
  • OR ruby2.1-rubygem-railties-4_2-4.2.9-3.3 is installed
  • OR rubygem-actionmailer-4_2-4.2.9-3.3 is installed
  • OR rubygem-actionpack-4_2-4.2.9-7.3 is installed
  • OR rubygem-actionview-4_2-4.2.9-9.3 is installed
  • OR rubygem-activejob-4_2-4.2.9-3.3 is installed
  • OR rubygem-activemodel-4_2-4.2.9-6.3 is installed
  • OR rubygem-activerecord-4_2-4.2.9-6.3 is installed
  • OR rubygem-activesupport-4_2-4.2.9-7.3 is installed
  • OR rubygem-rails-4_2-4.2.9-3.3 is installed
  • OR rubygem-rails-html-sanitizer-1.0.3-8.3 is installed
  • OR rubygem-railties-4_2-4.2.9-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND binutils-2.32-9.33 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ruby2.1-rubygem-loofah-2.0.2-3.8 is installed
  • OR rubygem-loofah-2.0.2-3.8 is installed
    • BACK