Oval Definition:	oval:org.opensuse.security:def:52873
Revision Date: 2020-12-01 Version: 1 Title: Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP1) (Important) Description: This update for the Linux Kernel 4.12.14-197_7 fixes several issues. The following security issues were fixed: - CVE-2019-13233: Fixed a race condition between modify_ldt() and a #BR exception for an MPX bounds violation (bsc#1144502). - CVE-2020-10757: Fixed an issue where remaping hugepage DAX to anon mmap could have caused user PTE access (bsc#1172437). - CVE-2019-15666: Fixed an out of bounds read __xfrm_policy_unlink, which could have led to denial of service (bsc#1172140). - CVE-2018-1000199: Fixed a potential local code execution via ptrace (bsc#1171746). Family: unix Class: patch Status: Reference(s): 1144502 1171746 1172140 1172437 1176072 1176382 929414 929690 941794 953516 953519 953521 960317 979441 980391 CVE-2006-7250 CVE-2009-0590 CVE-2009-0591 CVE-2009-0789 CVE-2009-0793 CVE-2009-1377 CVE-2009-1378 CVE-2009-1379 CVE-2009-1386 CVE-2009-1387 CVE-2009-3245 CVE-2009-3555 CVE-2009-4355 CVE-2009-5146 CVE-2010-0740 CVE-2010-2529 CVE-2010-2939 CVE-2010-3864 CVE-2010-4180 CVE-2010-4252 CVE-2010-4530 CVE-2011-0014 CVE-2011-3210 CVE-2011-4108 CVE-2011-4109 CVE-2011-4354 CVE-2011-4576 CVE-2011-4577 CVE-2011-4619 CVE-2011-5095 CVE-2012-0037 CVE-2012-0050 CVE-2012-0247 CVE-2012-0248 CVE-2012-0884 CVE-2012-1165 CVE-2012-1185 CVE-2012-1186 CVE-2012-2110 CVE-2012-2131 CVE-2012-2333 CVE-2012-4929 CVE-2013-0166 CVE-2013-0169 CVE-2013-2003 CVE-2013-4276 CVE-2014-0004 CVE-2014-0076 CVE-2014-0221 CVE-2014-0224 CVE-2014-2653 CVE-2014-3470 CVE-2014-3505 CVE-2014-3506 CVE-2014-3507 CVE-2014-3508 CVE-2014-3510 CVE-2014-3566 CVE-2014-3567 CVE-2014-3568 CVE-2014-3570 CVE-2014-3571 CVE-2014-3572 CVE-2014-8275 CVE-2014-8354 CVE-2014-8355 CVE-2014-8562 CVE-2014-8716 CVE-2014-9756 CVE-2014-9805 CVE-2014-9806 CVE-2014-9807 CVE-2014-9808 CVE-2014-9809 CVE-2014-9810 CVE-2014-9811 CVE-2014-9812 CVE-2014-9813 CVE-2014-9814 CVE-2014-9815 CVE-2014-9816 CVE-2014-9817 CVE-2014-9818 CVE-2014-9819 CVE-2014-9820 CVE-2014-9821 CVE-2014-9822 CVE-2014-9823 CVE-2014-9824 CVE-2014-9825 CVE-2014-9826 CVE-2014-9828 CVE-2014-9829 CVE-2014-9830 CVE-2014-9831 CVE-2014-9832 CVE-2014-9833 CVE-2014-9834 CVE-2014-9835 CVE-2014-9836 CVE-2014-9837 CVE-2014-9838 CVE-2014-9839 CVE-2014-9840 CVE-2014-9841 CVE-2014-9842 CVE-2014-9843 CVE-2014-9844 CVE-2014-9845 CVE-2014-9846 CVE-2014-9847 CVE-2014-9848 CVE-2014-9849 CVE-2014-9850 CVE-2014-9851 CVE-2014-9852 CVE-2014-9853 CVE-2014-9854 CVE-2014-9939 CVE-2015-0204 CVE-2015-0205 CVE-2015-0209 CVE-2015-0286 CVE-2015-0287 CVE-2015-0288 CVE-2015-0289 CVE-2015-0292 CVE-2015-0293 CVE-2015-1283 CVE-2015-1788 CVE-2015-1789 CVE-2015-1790 CVE-2015-1791 CVE-2015-1792 CVE-2015-3195 CVE-2015-3197 CVE-2015-3216 CVE-2015-3622 CVE-2015-4000 CVE-2015-5352 CVE-2015-5600 CVE-2015-6251 CVE-2015-6563 CVE-2015-6564 CVE-2015-7805 CVE-2015-8075 CVE-2015-8459 CVE-2015-8460 CVE-2015-8634 CVE-2015-8635 CVE-2015-8636 CVE-2015-8638 CVE-2015-8639 CVE-2015-8640 CVE-2015-8641 CVE-2015-8642 CVE-2015-8643 CVE-2015-8644 CVE-2015-8645 CVE-2015-8646 CVE-2015-8647 CVE-2015-8648 CVE-2015-8649 CVE-2015-8650 CVE-2015-8651 CVE-2015-8894 CVE-2015-8895 CVE-2015-8896 CVE-2015-8897 CVE-2015-8898 CVE-2015-8900 CVE-2015-8901 CVE-2015-8902 CVE-2015-8903 CVE-2015-9262 CVE-2016-0702 CVE-2016-0718 CVE-2016-0797 CVE-2016-0799 CVE-2016-0800 CVE-2016-2105 CVE-2016-2106 CVE-2016-2108 CVE-2016-2109 CVE-2016-2177 CVE-2016-2178 CVE-2016-2179 CVE-2016-2181 CVE-2016-2182 CVE-2016-2183 CVE-2016-3714 CVE-2016-3715 CVE-2016-3716 CVE-2016-3717 CVE-2016-3718 CVE-2016-4562 CVE-2016-4563 CVE-2016-4564 CVE-2016-5010 CVE-2016-5118 CVE-2016-5687 CVE-2016-5688 CVE-2016-5689 CVE-2016-5690 CVE-2016-5691 CVE-2016-5841 CVE-2016-5842 CVE-2016-6302 CVE-2016-6303 CVE-2016-6304 CVE-2016-6306 CVE-2016-6491 CVE-2016-6520 CVE-2016-7056 CVE-2016-8610 CVE-2017-12448 CVE-2017-12450 CVE-2017-12452 CVE-2017-12453 CVE-2017-12454 CVE-2017-12456 CVE-2017-12799 CVE-2017-13757 CVE-2017-14128 CVE-2017-14129 CVE-2017-14130 CVE-2017-14333 CVE-2017-14529 CVE-2017-14729 CVE-2017-14745 CVE-2017-14974 CVE-2017-15938 CVE-2017-15939 CVE-2017-15996 CVE-2017-16612 CVE-2017-16826 CVE-2017-16827 CVE-2017-16828 CVE-2017-16829 CVE-2017-16830 CVE-2017-16831 CVE-2017-16832 CVE-2017-6965 CVE-2017-6966 CVE-2017-6969 CVE-2017-7209 CVE-2017-7210 CVE-2017-7223 CVE-2017-7224 CVE-2017-7225 CVE-2017-7226 CVE-2017-7299 CVE-2017-7300 CVE-2017-7301 CVE-2017-7302 CVE-2017-7303 CVE-2017-7304 CVE-2017-8392 CVE-2017-8393 CVE-2017-8394 CVE-2017-8396 CVE-2017-8421 CVE-2017-9746 CVE-2017-9747 CVE-2017-9748 CVE-2017-9750 CVE-2017-9755 CVE-2017-9756 CVE-2018-1000199 CVE-2018-10372 CVE-2018-10373 CVE-2018-10534 CVE-2018-10535 CVE-2018-6323 CVE-2018-6543 CVE-2018-6759 CVE-2018-6872 CVE-2018-7208 CVE-2018-7568 CVE-2018-7569 CVE-2018-7570 CVE-2018-7642 CVE-2018-7643 CVE-2018-8945 CVE-2019-15666 CVE-2020-10757 CVE-2020-13233 CVE-2020-14386 CVE-2020-25212 SUSE-SU-2015:1518-1 SUSE-SU-2015:2000-2 SUSE-SU-2015:2401-1 SUSE-SU-2016:1508-1 SUSE-SU-2020:1656-1 SUSE-SU-2020:3186-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND chrony-3.2-lp150.5 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libruby2_5-2_5-2.5.5-lp151.4.3 is installed OR ruby-bundled-gems-rpmhelper-0.0.2-lp151.2 is installed OR ruby2.5-2.5.5-lp151.4.3 is installed OR ruby2.5-devel-2.5.5-lp151.4.3 is installed OR ruby2.5-devel-extra-2.5.5-lp151.4.3 is installed OR ruby2.5-doc-2.5.5-lp151.4.3 is installed OR ruby2.5-doc-ri-2.5.5-lp151.4.3 is installed OR ruby2.5-stdlib-2.5.5-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libmysqlclient15-5.0.96-0.6 is installed OR libmysqlclient15-32bit-5.0.96-0.6 is installed OR libmysqlclient_r15-5.0.96-0.6 is installed OR libmysqlclient_r15-32bit-5.0.96-0.6 is installed OR mysql-5.0.96-0.6 is installed OR mysql-client-5.0.96-0.6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information libFLAC++6-1.2.1-68.17 is installed OR libFLAC8-1.2.1-68.17 is installed OR libFLAC8-32bit-1.2.1-68.17 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information mozilla-nspr-4.10.9-11 is installed OR mozilla-nspr-32bit-4.10.9-11 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information gnutls-3.2.15-11 is installed OR libgnutls28-3.2.15-11 is installed OR libgnutls28-32bit-3.2.15-11 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND iputils-s20121221-2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information ImageMagick-6.8.8.1-33 is installed OR libMagick++-6_Q16-3-6.8.8.1-33 is installed OR libMagickCore-6_Q16-1-6.8.8.1-33 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-33 is installed OR libMagickWand-6_Q16-1-6.8.8.1-33 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libopenssl0_9_8-0.9.8j-105 is installed OR libopenssl0_9_8-32bit-0.9.8j-105 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND binutils-2.31-9.26 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_7-default-10-2 is installed OR kernel-livepatch-SLE15-SP1_Update_2-10-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed AND Package Information kernel-livepatch-5_3_18-24_12-default-2-2 is installed OR kernel-livepatch-SLE15-SP2_Update_2-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libfreebl3-3.19.2.1-29 is installed OR libfreebl3-32bit-3.19.2.1-29 is installed OR libfreebl3-hmac-3.19.2.1-29 is installed OR libfreebl3-hmac-32bit-3.19.2.1-29 is installed OR libsoftokn3-3.19.2.1-29 is installed OR libsoftokn3-32bit-3.19.2.1-29 is installed OR libsoftokn3-hmac-3.19.2.1-29 is installed OR libsoftokn3-hmac-32bit-3.19.2.1-29 is installed OR mozilla-nss-3.19.2.1-29 is installed OR mozilla-nss-32bit-3.19.2.1-29 is installed OR mozilla-nss-certs-3.19.2.1-29 is installed OR mozilla-nss-certs-32bit-3.19.2.1-29 is installed OR mozilla-nss-sysinit-3.19.2.1-29 is installed OR mozilla-nss-sysinit-32bit-3.19.2.1-29 is installed OR mozilla-nss-tools-3.19.2.1-29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information qemu-2.3.1-33.3 is installed OR qemu-block-curl-2.3.1-33.3 is installed OR qemu-block-rbd-2.3.1-33.3 is installed OR qemu-guest-agent-2.3.1-33.3 is installed OR qemu-ipxe-1.0.0-33.3 is installed OR qemu-kvm-2.3.1-33.3 is installed OR qemu-lang-2.3.1-33.3 is installed OR qemu-ppc-2.3.1-33.3 is installed OR qemu-s390-2.3.1-33.3 is installed OR qemu-seabios-1.8.1-33.3 is installed OR qemu-sgabios-8-33.3 is installed OR qemu-tools-2.3.1-33.3 is installed OR qemu-vgabios-1.8.1-33.3 is installed OR qemu-x86-2.3.1-33.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND ipsec-tools-0.8.0-15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libwireshark9-2.4.10-48.32 is installed OR libwiretap7-2.4.10-48.32 is installed OR libwscodecs1-2.4.10-48.32 is installed OR libwsutil8-2.4.10-48.32 is installed OR wireshark-2.4.10-48.32 is installed OR wireshark-gtk-2.4.10-48.32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information gnutls-3.2.15-18.6 is installed OR libgnutls-openssl27-3.2.15-18.6 is installed OR libgnutls28-3.2.15-18.6 is installed OR libgnutls28-32bit-3.2.15-18.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-30.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache2-mod_apparmor-2.8.2-49 is installed OR apparmor-docs-2.8.2-49 is installed OR apparmor-parser-2.8.2-49 is installed OR apparmor-profiles-2.8.2-49 is installed OR apparmor-utils-2.8.2-49 is installed OR libapparmor1-2.8.2-49 is installed OR libapparmor1-32bit-2.8.2-49 is installed OR pam_apparmor-2.8.2-49 is installed OR pam_apparmor-32bit-2.8.2-49 is installed OR perl-apparmor-2.8.2-49 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information MozillaFirefox-60.9.0-109.86 is installed OR MozillaFirefox-translations-common-60.9.0-109.86 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_140-94_42-default-10-2 is installed OR kgraft-patch-SLE12-SP3_Update_15-10-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ovmf-2017+git1492060560.b6d11d7c46-4.12 is installed OR ovmf-tools-2017+git1492060560.b6d11d7c46-4.12 is installed OR qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-4.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND dnsmasq-2.78-18.3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information gnutls-3.2.15-18.6 is installed OR libgnutls-openssl27-3.2.15-18.6 is installed OR libgnutls28-3.2.15-18.6 is installed OR libgnutls28-32bit-3.2.15-18.6 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libQt5Concurrent5-5.6.2-6.22 is installed OR libQt5Core5-5.6.2-6.22 is installed OR libQt5DBus5-5.6.2-6.22 is installed OR libQt5Gui5-5.6.2-6.22 is installed OR libQt5Network5-5.6.2-6.22 is installed OR libQt5OpenGL5-5.6.2-6.22 is installed OR libQt5PrintSupport5-5.6.2-6.22 is installed OR libQt5Sql5-5.6.2-6.22 is installed OR libQt5Sql5-mysql-5.6.2-6.22 is installed OR libQt5Sql5-postgresql-5.6.2-6.22 is installed OR libQt5Sql5-sqlite-5.6.2-6.22 is installed OR libQt5Sql5-unixODBC-5.6.2-6.22 is installed OR libQt5Test5-5.6.2-6.22 is installed OR libQt5Widgets5-5.6.2-6.22 is installed OR libQt5Xml5-5.6.2-6.22 is installed OR libqt5-qtbase-5.6.2-6.22 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND haproxy-1.6.11-11.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information mariadb-10.2.29-3.22 is installed OR mariadb-galera-10.2.29-3.22 is installed
BACK