Oval Definition:	oval:org.opensuse.security:def:52842
Revision Date: 2020-12-01 Version: 1 Title: Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP1) (Important) Description: This update for the Linux Kernel 4.12.14-197_4 fixes several issues. The following security issues were fixed: - CVE-2019-13272: Fixed a privilege escalation from user to root due to improper handling of credentials by leveraging certain scenarios with a parent-child process relationship (bsc#1156321). - CVE-2019-15239: Fixed a vulnerability where a local attacker could have triggered multiple use-after-free conditions resulted in privilege escalation (bsc#1156317). - CVE-2019-10220: Fixed an issue where samba servers could inject relative paths in directory entry lists (bsc#1153108). The following bugs were fixed: - Fixed boot up hang revealed by int3 self test (bsc#1157770). Family: unix Class: patch Status: Reference(s): 1153108 1156317 1156321 1157770 1177513 1177729 854817 854824 858727 865241 866911 867362 895814 903279 907092 908491 915183 917630 918618 921430 924071 924526 926369 926953 927455 927697 927786 928131 929475 929696 929879 929974 930092 930399 930579 930599 930972 931124 931403 931538 931620 931860 931988 932348 932793 932897 932898 932899 932900 932967 933117 933429 933637 933896 933904 933907 934160 935083 935085 935088 935174 935542 935881 935918 936012 936423 936445 936446 936502 936556 936831 936875 937032 937087 937609 937612 937613 937616 938022 938023 938024 950437 960382 979422 CVE-2008-4225 CVE-2008-4226 CVE-2008-4409 CVE-2009-0186 CVE-2010-1205 CVE-2010-4494 CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543 CVE-2011-0523 CVE-2011-0524 CVE-2011-1944 CVE-2011-2501 CVE-2011-2696 CVE-2011-2896 CVE-2011-3026 CVE-2011-3045 CVE-2011-3048 CVE-2011-4182 CVE-2012-3236 CVE-2012-3386 CVE-2012-5134 CVE-2012-5576 CVE-2013-0338 CVE-2013-1969 CVE-2013-7353 CVE-2013-7354 CVE-2014-0191 CVE-2014-3248 CVE-2014-3660 CVE-2014-8137 CVE-2014-8138 CVE-2014-8157 CVE-2014-8158 CVE-2014-9029 CVE-2014-9496 CVE-2014-9622 CVE-2014-9728 CVE-2014-9729 CVE-2014-9730 CVE-2014-9731 CVE-2015-1805 CVE-2015-1819 CVE-2015-3212 CVE-2015-4036 CVE-2015-4167 CVE-2015-4692 CVE-2015-5312 CVE-2015-5364 CVE-2015-5366 CVE-2015-7497 CVE-2015-7498 CVE-2015-7499 CVE-2015-7500 CVE-2015-7542 CVE-2015-7830 CVE-2015-7941 CVE-2015-7942 CVE-2015-7981 CVE-2015-8035 CVE-2015-8126 CVE-2015-8241 CVE-2015-8242 CVE-2015-8317 CVE-2015-8710 CVE-2015-8711 CVE-2015-8712 CVE-2015-8713 CVE-2015-8714 CVE-2015-8715 CVE-2015-8716 CVE-2015-8717 CVE-2015-8718 CVE-2015-8719 CVE-2015-8720 CVE-2015-8721 CVE-2015-8722 CVE-2015-8723 CVE-2015-8724 CVE-2015-8725 CVE-2015-8726 CVE-2015-8727 CVE-2015-8728 CVE-2015-8729 CVE-2015-8730 CVE-2015-8731 CVE-2015-8732 CVE-2015-8733 CVE-2016-1006 CVE-2016-1011 CVE-2016-1012 CVE-2016-1013 CVE-2016-1014 CVE-2016-1015 CVE-2016-1016 CVE-2016-1017 CVE-2016-1018 CVE-2016-1019 CVE-2016-1020 CVE-2016-1021 CVE-2016-1022 CVE-2016-1023 CVE-2016-1024 CVE-2016-1025 CVE-2016-1026 CVE-2016-1027 CVE-2016-1028 CVE-2016-1029 CVE-2016-1030 CVE-2016-1031 CVE-2016-1032 CVE-2016-1033 CVE-2016-1096 CVE-2016-1097 CVE-2016-1098 CVE-2016-1099 CVE-2016-1100 CVE-2016-1101 CVE-2016-1102 CVE-2016-1103 CVE-2016-1104 CVE-2016-1105 CVE-2016-1106 CVE-2016-1107 CVE-2016-1108 CVE-2016-1109 CVE-2016-1110 CVE-2016-1762 CVE-2016-1833 CVE-2016-1834 CVE-2016-1835 CVE-2016-1836 CVE-2016-1837 CVE-2016-1838 CVE-2016-1839 CVE-2016-1840 CVE-2016-3627 CVE-2016-3705 CVE-2016-4108 CVE-2016-4109 CVE-2016-4110 CVE-2016-4111 CVE-2016-4112 CVE-2016-4113 CVE-2016-4114 CVE-2016-4115 CVE-2016-4116 CVE-2016-4117 CVE-2016-4483 CVE-2016-4658 CVE-2016-4994 CVE-2016-5131 CVE-2016-9318 CVE-2016-9597 CVE-2017-0663 CVE-2017-15412 CVE-2017-18258 CVE-2017-5130 CVE-2017-5969 CVE-2017-7375 CVE-2017-7376 CVE-2017-8872 CVE-2017-9047 CVE-2017-9048 CVE-2017-9049 CVE-2017-9050 CVE-2018-14404 CVE-2018-14567 CVE-2018-9251 CVE-2019-10220 CVE-2019-13272 CVE-2019-15239 CVE-2020-12351 CVE-2020-25645 SUSE-SU-2015:1324-1 SUSE-SU-2016:0109-1 SUSE-SU-2016:1305-1 SUSE-SU-2019:3249-1 SUSE-SU-403 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information NetworkManager-applet-1.8.10-lp150.3 is installed OR NetworkManager-applet-lang-1.8.10-lp150.3 is installed OR NetworkManager-connection-editor-1.8.10-lp150.3 is installed OR libnm-gtk0-1.8.10-lp150.3 is installed OR libnma0-1.8.10-lp150.3 is installed OR nma-data-1.8.10-lp150.3 is installed OR typelib-1_0-NMGtk-1_0-1.8.10-lp150.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information MozillaFirefox-60.7.2-lp151.2.7 is installed OR MozillaFirefox-branding-upstream-60.7.2-lp151.2.7 is installed OR MozillaFirefox-buildsymbols-60.7.2-lp151.2.7 is installed OR MozillaFirefox-devel-60.7.2-lp151.2.7 is installed OR MozillaFirefox-translations-common-60.7.2-lp151.2.7 is installed OR MozillaFirefox-translations-other-60.7.2-lp151.2.7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information MozillaFirefox-10.0.7-0.3 is installed OR MozillaFirefox-branding-SLED-7-0.6.7 is installed OR MozillaFirefox-translations-10.0.7-0.3 is installed OR libfreebl3-3.13.6-0.5 is installed OR libfreebl3-32bit-3.13.6-0.5 is installed OR mozilla-nspr-4.9.2-0.6 is installed OR mozilla-nspr-32bit-4.9.2-0.6 is installed OR mozilla-nss-3.13.6-0.5 is installed OR mozilla-nss-32bit-3.13.6-0.5 is installed OR mozilla-nss-tools-3.13.6-0.5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information cpio-2.9-75.78 is installed OR cpio-lang-2.9-75.78 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information libmysql55client18-5.5.46-0.14 is installed OR libmysql55client18-32bit-5.5.46-0.14 is installed OR libmysql55client_r18-5.5.46-0.14 is installed OR libmysql55client_r18-32bit-5.5.46-0.14 is installed OR mysql-5.5.46-0.14 is installed OR mysql-client-5.5.46-0.14 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information kernel-default-3.12.44-52.10 is installed OR kernel-default-devel-3.12.44-52.10 is installed OR kernel-default-extra-3.12.44-52.10 is installed OR kernel-devel-3.12.44-52.10 is installed OR kernel-macros-3.12.44-52.10 is installed OR kernel-source-3.12.44-52.10 is installed OR kernel-syms-3.12.44-52.10 is installed OR kernel-xen-3.12.44-52.10 is installed OR kernel-xen-devel-3.12.44-52.10 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND facter-2.0.2-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information gimp-2.8.18-4 is installed OR gimp-lang-2.8.18-4 is installed OR gimp-plugins-python-2.8.18-4 is installed OR libgimp-2_0-0-2.8.18-4 is installed OR libgimpui-2_0-0-2.8.18-4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND libgypsy0-0.9-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gwenhywfar-lang-4.9.0beta-3.3 is installed OR gwenhywfar-tools-4.9.0beta-3.3 is installed OR libgwengui-gtk2-0-4.9.0beta-3.3 is installed OR libgwenhywfar60-4.9.0beta-3.3 is installed OR libgwenhywfar60-plugins-4.9.0beta-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_4-default-7-2 is installed OR kernel-livepatch-SLE15-SP1_Update_1-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libHX28-3.18-1 is installed OR libHX28-32bit-3.18-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information xen-4.5.5_16-22.28 is installed OR xen-doc-html-4.5.5_16-22.28 is installed OR xen-kmp-default-4.5.5_16_k3.12.74_60.64.57-22.28 is installed OR xen-libs-4.5.5_16-22.28 is installed OR xen-libs-32bit-4.5.5_16-22.28 is installed OR xen-tools-4.5.5_16-22.28 is installed OR xen-tools-domU-4.5.5_16-22.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information file-5.19-9 is installed OR file-magic-5.19-9 is installed OR libmagic1-5.19-9 is installed OR libmagic1-32bit-5.19-9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND ucode-intel-20180807-13.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libvirt-2.0.0-27.42 is installed OR libvirt-client-2.0.0-27.42 is installed OR libvirt-daemon-2.0.0-27.42 is installed OR libvirt-daemon-config-network-2.0.0-27.42 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed OR libvirt-daemon-driver-network-2.0.0-27.42 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed OR libvirt-daemon-hooks-2.0.0-27.42 is installed OR libvirt-daemon-lxc-2.0.0-27.42 is installed OR libvirt-daemon-qemu-2.0.0-27.42 is installed OR libvirt-daemon-xen-2.0.0-27.42 is installed OR libvirt-doc-2.0.0-27.42 is installed OR libvirt-lock-sanlock-2.0.0-27.42 is installed OR libvirt-nss-2.0.0-27.42 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information icu-52.1-8.7 is installed OR libicu-doc-52.1-8.7 is installed OR libicu52_1-52.1-8.7 is installed OR libicu52_1-32bit-52.1-8.7 is installed OR libicu52_1-data-52.1-8.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information alsa-1.0.27.2-15 is installed OR alsa-docs-1.0.27.2-15 is installed OR libasound2-1.0.27.2-15 is installed OR libasound2-32bit-1.0.27.2-15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libecpg6-10.12-1.18 is installed OR libpq5-10.12-1.18 is installed OR libpq5-32bit-10.12-1.18 is installed OR postgresql10-10.12-1.18 is installed OR postgresql10-contrib-10.12-1.18 is installed OR postgresql10-docs-10.12-1.18 is installed OR postgresql10-libs-10.12-1.18 is installed OR postgresql10-plperl-10.12-1.18 is installed OR postgresql10-plpython-10.12-1.18 is installed OR postgresql10-pltcl-10.12-1.18 is installed OR postgresql10-server-10.12-1.18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND sudo-1.8.20p2-3.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information bzip2-1.0.6-30.8 is installed OR bzip2-doc-1.0.6-30.8 is installed OR libbz2-1-1.0.6-30.8 is installed OR libbz2-1-32bit-1.0.6-30.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND libcares2-1.9.1-9.4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information avahi-0.6.32-30 is installed OR avahi-lang-0.6.32-30 is installed OR avahi-utils-0.6.32-30 is installed OR libavahi-client3-0.6.32-30 is installed OR libavahi-client3-32bit-0.6.32-30 is installed OR libavahi-common3-0.6.32-30 is installed OR libavahi-common3-32bit-0.6.32-30 is installed OR libavahi-core7-0.6.32-30 is installed OR libdns_sd-0.6.32-30 is installed OR libdns_sd-32bit-0.6.32-30 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information cups-1.7.5-20.26 is installed OR cups-client-1.7.5-20.26 is installed OR cups-libs-1.7.5-20.26 is installed OR cups-libs-32bit-1.7.5-20.26 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-urllib3-1.23-3.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND python-Twisted-15.2.1-9.8 is installed
BACK