OVAL Reference oval:org.opensuse.security:def:52836

Oval Definition:

oval:org.opensuse.security:def:52836

Revision Date:	2020-12-01	Version:	1
Title:	Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP1) (Important)
Description:	This update for the Linux Kernel 4.12.14-197_7 fixes several issues. The following security issues were fixed: - CVE-2019-13272: Fixed a privilege escalation from user to root due to improper handling of credentials by leveraging certain scenarios with a parent-child process relationship (bsc#1156321). - CVE-2019-15239: Fixed a vulnerability where a local attacker could have triggered multiple use-after-free conditions resulted in privilege escalation (bsc#1156317). - CVE-2019-10220: Fixed an issue where samba servers could inject relative paths in directory entry lists (bsc#1153108). The following bugs were fixed: - Fixed boot up hang revealed by int3 self test (bsc#1157770).
Family:	unix	Class:	patch
Status:		Reference(s):	1153108 1156317 1156321 1157770 1176012 1176382 856315 933336 935033 935979 958501 961964 967026 976340 976942 976943 977614 977615 977616 977617 977621 CVE-2008-1686 CVE-2009-2905 CVE-2009-3297 CVE-2011-0541 CVE-2011-1831 CVE-2011-1832 CVE-2011-1833 CVE-2011-1834 CVE-2011-1835 CVE-2011-1836 CVE-2011-1837 CVE-2013-2126 CVE-2013-2127 CVE-2013-4242 CVE-2014-3591 CVE-2014-9638 CVE-2014-9639 CVE-2014-9640 CVE-2015-0837 CVE-2015-2721 CVE-2015-2722 CVE-2015-2724 CVE-2015-2725 CVE-2015-2726 CVE-2015-2728 CVE-2015-2730 CVE-2015-2733 CVE-2015-2734 CVE-2015-2735 CVE-2015-2736 CVE-2015-2737 CVE-2015-2738 CVE-2015-2739 CVE-2015-2740 CVE-2015-2743 CVE-2015-3202 CVE-2015-4000 CVE-2015-5185 CVE-2015-6749 CVE-2015-7511 CVE-2016-0686 CVE-2016-0687 CVE-2016-0695 CVE-2016-0787 CVE-2016-10169 CVE-2016-10170 CVE-2016-10171 CVE-2016-10172 CVE-2016-2105 CVE-2016-2106 CVE-2016-2107 CVE-2016-2108 CVE-2016-2109 CVE-2016-3425 CVE-2016-3427 CVE-2016-6313 CVE-2016-9445 CVE-2016-9446 CVE-2016-9809 CVE-2016-9812 CVE-2016-9813 CVE-2017-5843 CVE-2017-5848 CVE-2019-10220 CVE-2019-13272 CVE-2019-15239 CVE-2020-14381 CVE-2020-25212 SUSE-SU-2015:1269-1 SUSE-SU-2016:0718-1 SUSE-SU-2016:1228-1 SUSE-SU-2016:1250-1 SUSE-SU-2019:3230-1 SUSE-SU-2020:3188-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information apache2-2.4.33-lp150.1 is installed OR apache2-doc-2.4.33-lp150.1 is installed OR apache2-example-pages-2.4.33-lp150.1 is installed OR apache2-prefork-2.4.33-lp150.1 is installed OR apache2-utils-2.4.33-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information kernel-debug-4.12.14-lp151.28.7 is installed OR kernel-debug-base-4.12.14-lp151.28.7 is installed OR kernel-debug-devel-4.12.14-lp151.28.7 is installed OR kernel-default-4.12.14-lp151.28.7 is installed OR kernel-default-base-4.12.14-lp151.28.7 is installed OR kernel-default-devel-4.12.14-lp151.28.7 is installed OR kernel-devel-4.12.14-lp151.28.7 is installed OR kernel-docs-4.12.14-lp151.28.7 is installed OR kernel-docs-html-4.12.14-lp151.28.7 is installed OR kernel-kvmsmall-4.12.14-lp151.28.7 is installed OR kernel-kvmsmall-base-4.12.14-lp151.28.7 is installed OR kernel-kvmsmall-devel-4.12.14-lp151.28.7 is installed OR kernel-macros-4.12.14-lp151.28.7 is installed OR kernel-obs-build-4.12.14-lp151.28.7 is installed OR kernel-obs-qa-4.12.14-lp151.28.7 is installed OR kernel-source-4.12.14-lp151.28.7 is installed OR kernel-source-vanilla-4.12.14-lp151.28.7 is installed OR kernel-syms-4.12.14-lp151.28.7 is installed OR kernel-vanilla-4.12.14-lp151.28.7 is installed OR kernel-vanilla-base-4.12.14-lp151.28.7 is installed OR kernel-vanilla-devel-4.12.14-lp151.28.7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information compat-openssl097g-0.9.7g-146.22 is installed OR compat-openssl097g-32bit-0.9.7g-146.22 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND binutils-2.23.1-0.23 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND lxc-0.8.0-0.25 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information MozillaFirefox-31.8.0esr-37 is installed OR MozillaFirefox-translations-31.8.0esr-37 is installed OR libfreebl3-3.19.2_CKBI_1.98-21 is installed OR libfreebl3-32bit-3.19.2_CKBI_1.98-21 is installed OR libsoftokn3-3.19.2_CKBI_1.98-21 is installed OR libsoftokn3-32bit-3.19.2_CKBI_1.98-21 is installed OR mozilla-nspr-4.10.8-3 is installed OR mozilla-nspr-32bit-4.10.8-3 is installed OR mozilla-nss-3.19.2_CKBI_1.98-21 is installed OR mozilla-nss-32bit-3.19.2_CKBI_1.98-21 is installed OR mozilla-nss-certs-3.19.2_CKBI_1.98-21 is installed OR mozilla-nss-certs-32bit-3.19.2_CKBI_1.98-21 is installed OR mozilla-nss-tools-3.19.2_CKBI_1.98-21 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information ecryptfs-utils-103-5 is installed OR ecryptfs-utils-32bit-103-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information fuse-2.9.3-5 is installed OR libfuse2-2.9.3-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libgcrypt20-1.6.1-16.39 is installed OR libgcrypt20-32bit-1.6.1-16.39 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gstreamer-plugins-bad-1.8.3-17 is installed OR gstreamer-plugins-bad-lang-1.8.3-17 is installed OR libgstadaptivedemux-1_0-0-1.8.3-17 is installed OR libgstbadaudio-1_0-0-1.8.3-17 is installed OR libgstbadbase-1_0-0-1.8.3-17 is installed OR libgstbadvideo-1_0-0-1.8.3-17 is installed OR libgstbasecamerabinsrc-1_0-0-1.8.3-17 is installed OR libgstcodecparsers-1_0-0-1.8.3-17 is installed OR libgstgl-1_0-0-1.8.3-17 is installed OR libgstmpegts-1_0-0-1.8.3-17 is installed OR libgstphotography-1_0-0-1.8.3-17 is installed OR libgsturidownloader-1_0-0-1.8.3-17 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_7-default-6-2 is installed OR kernel-livepatch-SLE15-SP1_Update_2-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information java-1_8_0-openjdk-1.8.0.65-1 is installed OR java-1_8_0-openjdk-demo-1.8.0.65-1 is installed OR java-1_8_0-openjdk-devel-1.8.0.65-1 is installed OR java-1_8_0-openjdk-headless-1.8.0.65-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_67-60_64_18-default-10-2 is installed OR kgraft-patch-3_12_67-60_64_18-xen-10-2 is installed OR kgraft-patch-SLE12-SP1_Update_9-10-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information elfutils-0.158-6 is installed OR libasm1-0.158-6 is installed OR libasm1-32bit-0.158-6 is installed OR libdw1-0.158-6 is installed OR libdw1-32bit-0.158-6 is installed OR libebl1-0.158-6 is installed OR libebl1-32bit-0.158-6 is installed OR libelf1-0.158-6 is installed OR libelf1-32bit-0.158-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information perl-5.18.2-12.14 is installed OR perl-32bit-5.18.2-12.14 is installed OR perl-base-5.18.2-12.14 is installed OR perl-doc-5.18.2-12.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_7_0-openjdk-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information libvirt-2.0.0-27.42 is installed OR libvirt-client-2.0.0-27.42 is installed OR libvirt-daemon-2.0.0-27.42 is installed OR libvirt-daemon-config-network-2.0.0-27.42 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed OR libvirt-daemon-driver-network-2.0.0-27.42 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed OR libvirt-daemon-hooks-2.0.0-27.42 is installed OR libvirt-daemon-lxc-2.0.0-27.42 is installed OR libvirt-daemon-qemu-2.0.0-27.42 is installed OR libvirt-daemon-xen-2.0.0-27.42 is installed OR libvirt-doc-2.0.0-27.42 is installed OR libvirt-lock-sanlock-2.0.0-27.42 is installed OR libvirt-nss-2.0.0-27.42 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libXext6-1.3.2-3 is installed OR libXext6-32bit-1.3.2-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libpng16-1.6.8-15.5 is installed OR libpng16-16-1.6.8-15.5 is installed OR libpng16-16-32bit-1.6.8-15.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_103-default-2-2 is installed OR kgraft-patch-SLE12-SP3_Update_28-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_178-94_91-default-3-2 is installed OR kgraft-patch-SLE12-SP3_Update_25-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND shadow-4.2.1-27.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND apache2-mod_perl-2.0.8-11 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND ucode-intel-20180425-13.20 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND ucode-intel-20191112-13.53 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND python-requests-2.20.1-4.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed OR libwebkit2gtk3-lang-2.24.4-2.47 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed OR webkit2gtk3-2.24.4-2.47 is installed

BACK